OK here is the scoop. I run 4 Linux web servers I have on those servers a
program called Port Sentry which watchs for some one doing a port scan on
my server. Twice in 3 months I have had a company I deal with set it off. I
have tried to do so with a web browser but can't see how they can be
causing a port scan in error. I suspect their router (gateway) could be
hacked or possibly one of their PC's behind it and the attack is being
perp'ed by some one outside. Does any one now how in hell you can cause a
scan on port 443 via a browser??

I know that port 443 is https but that is the really odd thing, simply
opening your web browser and putting in https://www.xxx.com instead of
http://www.xxx.com does not cause a port scan of port 443, as the port is
closed on the server all I get is a message saying that it can't be
accessed.

Any help would be greatly appreciated as I want to maintain the security but
I don't want to lock out visitors either.

Dave

Report this post to a moderator

Paul Lutus wrote in message ...
>On Fri, 13 Dec 2002 18:29:02 +0000, DaveW wrote:
>
>> OK here is the scoop.
>
>NO, here's the scoop. Choose ONE newsgroup. Make ONE post. NEVER
>multi-post.
>
>--
>Paul Lutus
>http://www.arachnoid.com
>
>

Or even better not be a knob and answer the question then push your view of
how to post onto the person.

Report this post to a moderator

On Fri, 13 Dec 2002 20:48:57 +0000, Jason wrote:

>
> Paul Lutus wrote in message ...
>>On Fri, 13 Dec 2002 18:29:02 +0000, DaveW wrote:
>>
>>> OK here is the scoop.
>>
>>NO, here's the scoop. Choose ONE newsgroup. Make ONE post. NEVER
>>multi-post.
>>
>>--
>>Paul Lutus
>>http://www.arachnoid.com
>>
>>
>
> Or even better not be a knob and answer the question then push your view of
> how to post onto the person.

You clearly haven't a clue about Usenet. Until you do, you need to take
thee advice of those who do have a clue.

Do not multi-post.

--
Paul Lutus
http://www.arachnoid.com

Report this post to a moderator

Paul Lutus wrote:

> On Fri, 13 Dec 2002 20:48:57 +0000, Jason wrote:
>
>>
>> Paul Lutus wrote in message ...
>>>On Fri, 13 Dec 2002 18:29:02 +0000, DaveW wrote:
>>>
>>>> OK here is the scoop.
>>>
>>>NO, here's the scoop. Choose ONE newsgroup. Make ONE post. NEVER
>>>multi-post.
>>>
>>>--
>>>Paul Lutus
>>>http://www.arachnoid.com
>>>
>>>
>>
>> Or even better not be a knob and answer the question then push your view
>> of how to post onto the person.
>
> You clearly haven't a clue about Usenet. Until you do, you need to take
> thee advice of those who do have a clue.
>
> Do not multi-post.
>

Yep we get knobs who XXXXX about top posting, we get knobs who XXXXX about
bottom posting, we get knobs who XXXXX about inline posting, we get knobs
who XXXXX about cross posting, we get knobs who XXXXX about multi posting
and we bet Paul who's just a knob.

Crawl back to where you came from and take your own advice Paul and get a
clue.

Report this post to a moderator

On Fri, 13 Dec 2002 23:33:09 +0000, Jason wrote:


> Crawl back to where you came from and take your own advice Paul and get a
> clue.

Low-life clueless jackass. *PLONK*

--
Paul Lutus
http://www.arachnoid.com

Report this post to a moderator

Paul Lutus wrote:

> On Fri, 13 Dec 2002 23:33:09 +0000, Jason wrote:
>
>
>> Crawl back to where you came from and take your own advice Paul and get a
>> clue.
>
> Low-life clueless jackass. *PLONK*
>

LOL, I think I hit a weak spot. What's the matter Paul can't take your own
medicine?

Report this post to a moderator

On Fri, 13 Dec 2002 18:29:02 GMT, DaveW <davew@citywebsites.com> wrote:
> OK here is the scoop. I run 4 Linux web servers I have on those servers a
> program called Port Sentry which watchs for some one doing a port scan on
> my server. Twice in 3 months I have had a company I deal with set it off. I
> have tried to do so with a web browser but can't see how they can be
> causing a port scan in error. I suspect their router (gateway) could be
> hacked or possibly one of their PC's behind it and the attack is being
> perp'ed by some one outside. Does any one now how in hell you can cause a
> scan on port 443 via a browser??

Maybe someone who did not keep their apache (actually mod_ssl) up to date
got hit with the Linux slapper worm which tries to infect similarly
neglected servers via port 443. What makes you think it was a browser
that set it off? Anything that would attempt to infect you via https
would likely appear to be a browser request.

--
David Efflandt - All spam ignored http://www.de-srv.com/
http://www.autox.chicago.il.us/ http://www.berniesfloral.net/
http://cgi-help.virtualave.net/ http://hammer.prohosting.com/~cgi-wiz/

Report this post to a moderator

On Fri, 13 Dec 2002 23:33:09 +0000, Jason wrote:
[-snip-]
>> Do not multi-post.
>>
>
> Yep we get knobs who XXXXX about top posting, we get knobs who XXXXX about
> bottom posting, we get knobs who XXXXX about inline posting, we get knobs
> who XXXXX about cross posting, we get knobs who XXXXX about multi posting
> and we bet Paul who's just a knob.
>

Exactly what is the difference between cross post, and multi post?
What is it in your terminology that has gnone me by?

--
-> Erik Ljungstroem (erik@northernmost.org)
-> ipv4: http://www.northernmost.org
-> ipv6: http://freebsd.northernmost.org
-> Norrköping, Sweden

Report this post to a moderator

On Sat, 14 Dec 2002 03:10:45 +0000, "Erik =?iso-8859-1?q?Ljungstr=F6m=22?=
<eri wrote:

/ ...

> Exactly what is the difference between cross post, and multi post? What
> is it in your terminology that has gnone me by?

A multi-post is two or more simultaneous, independent posts of the same
post to different newsgroups.

A cross-post is almost the same thing, except the posts are linked -- the
"newsgroups" line lists all the newsgroups in which the post appears. Any
replies to the post appear in all the newsgroups (unless a follow-up is
specified). This prevents duplication of effort, compared to a multi-post.

Both are frowned upon, but multi-posting more than cross-posting.

--
Paul Lutus
http://www.arachnoid.com

Report this post to a moderator

Erik Ljungstr=F6m wrote:
> On Fri, 13 Dec 2002 23:33:09 +0000, Jason wrote:
> [-snip-]=20
> =20
>>>Do not multi-post.
>>>
>>
>>Yep we get knobs who XXXXX about top posting, we get knobs who XXXXX ab=
out=20
>>bottom posting, we get knobs who XXXXX about inline posting, we get kno=
bs=20

>>who XXXXX about cross posting, we get knobs who XXXXX about multi posti=
ng=20

>>and we bet Paul who's just a knob.
>>
>=20
>=20
> Exactly what is the difference between cross post, and multi post?
> What is it in your terminology that has gnone me by?

Basic Netiquette, see http://www.ietf.org/rfc/rfc1855.txt
Quotes:
If you are sending a reply to a message or a posting be sure you
summarize the original at the top of the message, or include just
enough text of the original to give a context.
"Cross-Posting" refers to posting a message to more than one
group. If you introduce Cross-Posting to a group, or if you
direct "Followup-To:" in the header of your posting, warn
readers!
If you feel an article will be of interest to more than one
Newsgroup, be sure to CROSSPOST the article rather than individually
post it to those groups.

Individually posting to several groups is called multi-posting, and
is bad. Crossposting is usually not warranted, but, depending on
circumstances, may be ok (see the quote above).

-Joe

Report this post to a moderator