[Snort-users] port 22 scan

Muhammad Faisal Rauf Danka mfrd at ...6006...
Tue Jun 4 11:49:02 EDT 2002

Most probably you are being scanned for vulnerable SSH versions, 
and as far as source port 22 is concerned, yes it can be accomplished by nmap and hping.
man nmap 
and lookup for the option -g

Muhammad Faisal Rauf Danka

Chief Technology Officer
Gem Internet Services (Pvt) Ltd.
web: www.gem.net.pk

Vice President
Pakistan Computer Emergency Responce Team (PakCERT)
web: www.pakcert.org

Chief Security Analyst
Applied Technology Research Center (ATRC)
web: www.atrc.net.pk

--- Gongya Yu <yu at ...6004...> wrote:


Promote your group and strengthen ties to your members with email at ...6007... by Everyone.net  http://www.everyone.net/?btn=tag

More information about the Snort-users mailing list