Jim McCloskey said: > > I have the following in syslog (and in /var/log/messages): > > Nov 20 01:18:12 localhost SERVER[21311]: Dispatch_input: bad > request line > 'BBÜóÿ¿Ýóÿ¿Þóÿ¿ßóÿ¿XXXXXXXXXXXXXXXXXX%.156u%300$n%.21u%301$nsecurity%302$n%.192u%303$n\220\220\220\220\220\220\220\220\220> > and so on and so on and so on.
looks like you might of been hit with a lprng exploit .. >> http://www.securityfocus.com/archive/1/85002 hope your lprng is updated! i would run a nmap -sS -p 1-65535 YOUR_REAL_IP and a nmap -sU -p 1-65535 YOUR_REAL_IP and firewall all ports that are not vital to access the internet .. nate
