[635] in linux-security and linux-alert archive
[linux-security] Sysklogd spam
daemon@ATHENA.MIT.EDU (owner-linux-security@tarsier.cv.nr)
Mon Mar 18 15:06:22 1996
From: owner-linux-security@tarsier.cv.nrao.edu
To: linux-security@tarsier.cv.nrao.edu
Date: Mon, 18 Mar 1996 10:21:16 +0200 (SAT)
My machine (and a few friends on mine as well) 's sysklogd is
getting spammed, saying
#################################
Mar 18 10:06:57 www1.netscape.com [916406389] Your syslogd is broked! ##########################################################################################################################
where www1.netscape.com varies and is a range of hosts.
I am getting termendous of these from tcpdump -p
0:06:02.664395 rbit.co.za.echo > www.iuma.com.echo: udp 186
10:06:02.732615 www.iuma.com.echo > rbit.co.za.echo: udp 186
10:06:02.733221 rbit.co.za.echo > www.iuma.com.echo: udp 186
Know what the hack is, and how to fix?
tia
ciao
--
John Betts, Aztec Internet Services Port Elizabeth, South Africa
johnb@aztec.co.za, Tel. +27(0)41 303 475, Fax. +27(0)41 301 052
Unix -- The Ultimate Solution for Microsoft Products
