[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: [ldap] Internet scans on port 389



At 10:27 AM 2/23/2004, bruce wrote:
>why would this not be appropriate to this list....

Because thread, as the poster admits, is not specific to
any particular LDAP implementation.  See the charter.

>some may only be subscribed to this list..

By choice, I presume.

Kurt

>-----Original Message-----
>From: owner-openldap-software@OpenLDAP.org
>[mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of Kurt D.
>Zeilenga
>Sent: Monday, February 23, 2004 9:58 AM
>To: Tony Earnshaw
>Cc: Openldap list
>Subject: Re: [ldap] Internet scans on port 389
>
>
>This topic is more appropriate discussed on the general LDAP
>list <ldap@umich.edu> (which this message was cross posted to).
>Please respond only to that list.
>
>Kurt
>
>At 10:56 PM 2/22/2004, Tony Earnshaw wrote:
>>List,
>>
>>Although the following has nothing to do directly with the vendor
>>software used, it does have a bearing on how that software is
>>configured.
>>
>>It's worth mentioning that port 389 has reached the top 10 Internet
>>ports being scanned (SANS ISC, http://isc.sans.org/). Why this should be
>>is not reported.
>>
>>It might be as well to pay extra attention to your firewalling of this
>>port, if your LDAP transactions involve sensitive information, and even
>>to consider exclusively using TLS for transactions using this port.
>>
>>Best,
>>
>>--Tonni
>>
>>--
>>
>>mail: billy - at - billy.demon.nl
>>http://www.billy.demon.nl
>>
>>
>>---
>>You are currently subscribed to ldap@umich.edu as: [Kurt@openldap.org]
>>To unsubscribe send email to ldap-request@umich.edu with the word
>UNSUBSCRIBE as the SUBJECT of the message.