Bonjour
Je me pose des question sur la bonne protection de smooth installé par defaut.
Dans les logs ntrusion detection system j'ai :
Date:
05/10 04:19:54
Name:
MS-SQL Worm propagation attempt
Priority:
2
Type:
Misc Attack
IP info:
219.149.25.131:1219 ->mon@ip:1434
References:
1 2 3
Date:
05/10 04:35:44
Name:
ICMP PING NMAP
Priority:
2
Type:
Attempted Information Leak
IP info:
81.56.42.182:n/a ->mon@ip:n/a
References:
1
Date:
05/10 04:37:00
Name:
ICMP PING NMAP
Priority:
2
Type:
Attempted Information Leak
IP info:
81.56.81.25:n/a ->mon@ip:n/a
References:
1
Et dans les logs Firewall c'est de la folie :
03:14:54
eth2
-
TCP
210.97.187.49
4609
mon@ip
3127
03:14:55
eth2
-
TCP
68.148.151.240
2562
mon@ip
1025
[....]
04:55:02
eth2
-
TCP
81.56.67.106
3138
mon@ip
135
04:55:16
eth2
-
TCP
81.56.153.125
4889
mon@ip
135