[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Warning - hack attempts
Marc A. Volovic wrote:
>
> I am getting repeated imapd hack attempts from shsrv.shaked.co.il and
> unitednation.net, please take note.
According to my logs, "unitednation.net" tried all the known
vulnerabilities: named AXFR buffer overflow, telnet guesses, imapd,
finger old hole, httpd vulnerabilities (e.g. "phf" of yearly
servers), and POP3. It tried all of these on all the available IPs.
I believe they just use the robot which is widespread on the Net.
The attacks are the usual ones. I face DOZENS of similar attacks per
week.
I am more concerned about the unknown holes, which hackers expoited
in sites like Slashdot and FIFA99 (the last was hacked by an Israeli
hacker). Does anybody have any idea what is the new hole and/or how
to defend yourself?
--
Eli Marmor
marmor@elmar.co.il
El-Mar Software Ltd.