On Sunday 06 January 2008, David L. Gehrt wrote: >Actually the question mark is fraudulent. My gateway/firewall machine >has been under what appears to be a DDOS attack. A persistent, >continuous attack from several system directed at UDP port 16252. It >appears to be related to a CISCO RTR/SAA attack. > >What I am interested in knowing if anyone else has experienced a >similar attack? The only thing I can think may have triggered this >was a report to a net administrator that his system might have been >compromised. A few hours later this seeming attack started. > >No good deed goes unpunished. Before I retired I did some security work >for an employer. You would think I would've learned about sending email >alerts to admins of compromised systems. Retire and a few years later >you finds yourself violating the best practices. I will call the guy >tomorrow. > If there is a person on the other end of that phone number. I've found the numbers listed are often funnier than a 3 dollar bill. >Feeling stupid. > >dlg -- Cheers, Gene "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) We are using Linux daily to UP our productivity - so UP yours! (Adapted from Pat Paulsen by Joe Sloan)
