do a lot of you get hacking attempts and port probes quite often? I am using zonealarm, and since then, i get probed on all the known trojan ports, sub seven,invasor,netbus,back orifice......and others,

I use Neotrace sometimes to track down the would be hackers, most of them come from within the US, but some from Russia and Uk, Im american living in sydney australia,,and quite a few of the hacking attempts come from users on the same server as me, and some other nearby ISP's, none of them have seemed to notice all the users they have logged on that are scanning ip addresses at random. SHEEESH,,,,,,,,,,,,,anyway, to make a long question short,,is anyone getting attacked this frequently, or is it just me?


thanx in advance

dos7

[This message has been edited by dos7 (edited 06-22-2000).]

I used to get a ton of hacking attemps until I finished getting my network security straightened around. (it's best to get a stealth port rating than a closed port rating as a stealth port doesn't even reply to the hit where the closed port sends a reply saying it's closed) I still get a few direct attacks from people that know what my IP addy is but getting fewwer and fewwer as time goes on. I active persue the people that do this and notify their ISP and local police with the logs showing the time/dates and what they tried to do.

Good luck and may the force be with you.

Mntsnow

Its not just you dos. Mostof those attacks are large scale, with a cracker(hehe, hackers are not malicious, crackers are) scanning all IPS froma certian range, ie. 24.2.79.1 - 24.2.80.255. Dont feel like you are being targeted exclusively.

I use several programs (BID, ZA, Tauscan and Jammer) and feel pretty safe. Every once and a while I'll get a Trojan horse probe. Most are from US ISP's {I'm in the US of course as well) and every once in a while, someone will break through my first two lines (ZA and then BID) to hit Jammer. All of my ports are stealthed as far as GRC is concerned. I don't get nearly as many on my Cable as I did on my Mindspring account which is contrary to most things I have read. Anyway, I introduced ZA to one of our server operators int he department and he put it on to find that several Russian guys had been tapping our server for whatever reason. They were in school. He got in touch with their administrators and he got an email that they had been expelled from school with this being the 'final straw'. http://sysopt.earthweb.com/forum/smile.gif Oh well. I a few words, I do get hit. Mostly from US bound attacks.
Dave

yeah i figured that it wasn't isolated, i just wanted to hear some other people's experiences. I have all my port stealthed as well, according to GRC, and zonealarm seems to stop everything, i get my friends back in the states to run port scans and NETBIOS name requests,,they can never turn up anything,,plus i have a proxy server, but i dont use it usually, dont know if it would help much more.

I have done things on the net that i wouldn't dare do these days. Things like nuking in IRC and ICQ. I remember the days of OOB data nukes, netbus trojan, just amonst friends though,never anything malicious>,

dos7

Is this (hacking attempts) something that's more likely if you have broadband internet connection, or are you just as likely to get targeted with a dial up modem??

I don't run any kind of firewall (but I do use anti-virus) and I only use the web for surfing, not hosting, etc. Am I just pottering along in blissfull ignorance, or should I be a bit more paranoid?? I really would like to know if someone's trying to probe my back orifice!

well krusty, you should try zone alarm,,it's really great peace of mind if you ask me,,

well of course if you have a broadband internet connection, then more than likely you are online more , possibly your computer is connected 24/7. That's raises the odds of your computer getting probed. I use 56k dial up, but my computer is online quite a lot, and i get hit quite a lot,,,,,

krusty,,i suggest you go here,,and read up on this info.... http://sysopt.earthweb.com/forum/smile.gif

https://grc.com/x/ne.dll?bh0bkyd2

cheers, dos7 http://sysopt.earthweb.com/forum/smile.gif

cheers to you krusty http://sysopt.earthweb.com/forum/smile.gif