Well, actually, I'm NOT using SWAT; I don't use SAMBA either, so there's no need for SWAT. I know what SWAT is, though, and my firewall suddenly started reporting hits on port 901 (SWAT) yesterday; I've checked, and I've NEVER had hits on 901 before (though the firewall hasn't changed), yet yesteday, they were coming from all over.
So, I'm wondering if there's a new SWAT exploit? I know a lot of folks around here use SAMBA, so I figure a few also use SWAT, so they would need to be aware of it, as well. Heh, here's more fuel for that debate the other day over "To firewall, or not to firewall"; I wouldn't have caught this on the server (I don't log rejected or ignored ports on that machine) but I do on the firewall. -----Original Message----- From: xwangbu To: [EMAIL PROTECTED] Sent: 2/15/03 5:26 AM Subject: Re: SWAT exploits? t not disable it? or just install it if u don't need it. On Sat, 2003-02-15 at 06:43, Ward William E DLDN wrotz I had never used SWAT before, but all of a sudden, my firewall is being > hammered by folks trying to use it; has there been a new exploit that came > out in the last few days? > > Since I don't even run SAMBA, I have no need for SWAT, but it's > disconcerting to see ten different IPs trying to access it in a couple > hours. > > Bill Ward -- xwangbu <[EMAIL PROTECTED]> -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
