[nsp-sec] Odd "attack" traffic
Kevin Oberman
oberman at es.net
Tue Dec 28 18:52:50 EST 2010
For some time I have been seeing I have been continual packets destined
for an unused port, 17368/udp. I've looked around for some idea of what
the reason might be for this, ut all I can find is a passing reference
to apache v2.
I see dozens of packets to this port almost every night, usually all
from one or two remote addresses, though yesterday had six systems
poking at it again and again.
Any clues on what this is all about?
--
R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: oberman at es.net Phone: +1 510 486-8634
Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751
More information about the nsp-security
mailing list