On Wed, October 18, 2006 1:21 am, David Cuthbert wrote: > My DragonFly box doesn't actually connect directly; I use a different > machine as a firewall. And you will definitely want a very restrictive > firewall configuration; the number of daily hack attempts and portscans > I get is staggering. (But this is hardly unique to Comcast.)
For instance, last night: Checking for rejected mail hosts: 7 k12coffee.net 3 e-standard.biz 2 yahoo.co.kr 2 positive-id.biz 2 eu-vest.biz 1 tgflk.com 1 schmidtbank.de 1 repairnet.biz 1 funeasy.biz 1 edenbs.demon.co.uk 1 drop-bear.com 1 caracha.net 1 admin.darcoinc.us These levels are actually pretty low, because I know my cable ISP (Time Warner) is blocking some of the worse scanners at the network border. I'd see a large number of probing attempts on whatever ports were available - FTP, SSH, whatever. Most of the exploits are for Windows vulnerabilities, but not all.