|This workstation is connected via a DSL line
to the Internet and runs no services with the
exception of sshd (secure shell daemon),
SMTP (mail service), and Ident (RFC 1413).
|9 minutes after connecting my workstation to the
Internet, I observed the first attack
(on my non-existing FTP server).
|There is no firewall provided by the ISP, i.e.
all attacks come unfiltered to my workstation.
|In the last month I observed 1532 attacks:
|The attacks came from 402 different IP addresses. The
largest number of entries in the logs (56 in total, and
all on the HTTP port) came from another dialin provider
in Rochester. The second-largest number (50 in total,
and all on the UDP tcp port) came from a Swedish company
(most likely a machine which is ``owned'' by some intruder).
|Copyright © 2001, 2002 Andreas Borchert, converted to HTML on April 07, 2002|