My gateway is being constantly bombarded by these guys trying to port scan and use WEB-IIS CodeRed v2 root.exe access and WEB-IIS ISAPI .ida attempt or WEB-MISC sadmind worm access or even WEB-IIS cmd.exe access hack into my system......

My IDS system activly send these ip's to block them from repeat offenses but two seconds later they are back with a different ip! This is happening constantly and there cant be this many losers out there with nothing better to do than try to hack into my empty box!:mad:

Does any one know of anyway to get these guys real ip's? Im using linux kernal 2.4.9.

Originally posted by Xhost
Does any one know of anyway to get these guys real ip's? Im using linux kernal 2.4.9.

Those IPs are probably real. There are a lot of computers infected by worms out there, so maybe there are more than one party that are 'attacking' you. However, I don't think they are doing it intentionally, they even probably don't know their system has been infected. If they are doing it intentionally, what's the point of using those exploits on a Linux box?

we get that every day

Well, ok, if thats what it is, i guess I will just have to live with it,

Worms can do attacks on your system from an external computer? Holy..
:eek:

Originally posted by Xhost
Well, ok, if thats what it is, i guess I will just have to live with it,

Worms can do attacks on your system from an external computer? Holy..
:eek:

Yes, it could be much worse than that. Be thankful you are using Linux :)