[2305] in linux-security and linux-alert archive
[linux-security] portmap messages under /var/log/messages
daemon@ATHENA.MIT.EDU (Mike Starr)
Fri Feb 11 09:29:18 2000
Message-ID: <003601bf6542$0f251a80$0100a8c0@triad.rr.com>
From: "Mike Starr" <starr@homemail.com>
To: <linux-security@redhat.com>
Date: Sat, 22 Jan 2000 20:34:57 -0500
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Resent-From: linux-security@redhat.com
I am running Redhat 6.1 as a firewall between a cable modem and my home
network.
Occasionally, I see messages such as these under /var/log/messages:
Jan 17 13:38:16 saturn5 portmap[3726]: connect from 24.28.77.200 to dump():
request from unauthorized host
Jan 18 14:00:34 saturn5 portmap[1544]: connect from 204.151.148.146 to
dump(): request from unauthorized host
My assumption is that the service is fulfilling its purpose of rejecting
unauthorized traffic. However, I'm curious. Search as I will, I have been
unable to find any information about dump() that apparently is being probed
on random IP addresses.
Can anyone clue me into this?
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null
