|
|
#1
April 4th, 2002, 06:02 AM
|
||||
|
||||
Intrusions by ISP
The greatest number of hits on my ZAP logs are from my ISP - IP Protocl 89 and 103 being the most recent. *There seems to be an enormous number of different types of intrusions - ICMP, Finger, UDP, etcetera. *Either that or I'm being probed by other users on my ISP's network. *Is that likely? *Why would my ISP try so many different ways to probe me? *I've noticed similar things with CompuServe too, when I've used it as an ISP - mostly probes from CompuServe France.
I'm sure this is all so-called 'background noise' but what's it trying to achieve? * 
__________________
My Novel |
|
#2
April 4th, 2002, 05:53 PM
|
||||
|
||||
|
Re: Intrusions by ISP
Checkout - It's one of the big mysteries for me as well. It's the same thing as you described and it drives me crazy. There's hardly a minute when my activity light isn't buzzing with activity. I am not into that and don't understand it all, but I sure wish I knew why my ZA logs are always filled up with all that stuff from the ISP. Maybe someone can help us out?
Take care! John
__________________
John Luv2BSecure |
|
#3
April 5th, 2002, 11:22 AM
|
||||
|
||||
|
Re: Intrusions by ISP
Checkout - What it's trying to achieve could be many things, your ISP checking for problems, checking to see if your connection is active (in the case of people who get dis-connected if their not actually using their connection - sucking up bandwidth for no reason) , port probes from scriptkiddies - the list is actually kind of endless.
I just ignore it unless the hits are close together and all from the same source. Pete
__________________
"When fascism comes to America it will come wrapped in the flag and carrying a cross." Sinclair Lewis |
|
#5
April 5th, 2002, 04:30 PM
|
|||
|
|||
|
Re: Intrusions by ISP
* * Checkout * *for the past few weeks I have been logging countless contacts from "proxy cache servers"......very often it will appear that a person's IP is scanning when in fact its one of the cache servers........... * when a person trys to access a url instead of going directly to the url a "copy" of the url will be sent from the cache server......this imo is a very serious security problem....in numerous ways............but to date its been ignorred..........personally O don't want a "copy" of someone's trogan or virus. * *an yes...it may in fact just be harmless scans by your ip.............have you try to trace them? * *you may just be surprised. * * * also, after weeks of blocking the proxy cache servers located so far.....no harmful effects have been noticed..... |
|
#7
April 5th, 2002, 05:59 PM
|
|||
|
|||
|
Re: Intrusions by ISP
* * * Checkout * * *hey friend....really nice to see you again .....hope you are doing well. * * amasingly since blocking those sneaky cache servers I rarely get an alert from my firewall......unfortunately the cache servers are rather difficult to locate.....they remain hidden for the most part.....fortunately once blocked they remain blocked. * *eventually I may decide to take the time to make a personal list of all the addys...many of the smaller ip's are being forced to use the cache servers......an someday this may result in a massive problem for the entire internet.........of course anything on the cache servers can be read by whomever.......this was the brainchild of M$......an we all know about M$..... * *well enough said on the subject.....wishing you well Checkout.......have a pleasent weekend.. |
| « Previous Thread | Next Thread » |
| Thread Tools | Search this Thread |
|
|
