[PLUG] scanned by filenet

Mike De La Mater mikedela at theplatinumrule.com
Sat Sep 13 11:54:02 UTC 2003


I was scanned on several filenet ports last night. UDP 32770, 32771, 32772, 32773, 32774.

Portsentry dutifully closed the connection and banned the offending system. I like portsentry.

The only problem is that the scanning machine was my ISP's name server, actually two of the name servers. 

Is there a vulnerability on this port? Is there a possibility that they've installed this software and let it 
try to index files on their subnet?

Any thoughts on the technical side welcomed. 

Mike







More information about the PLUG mailing list