*SHORT* summary of some of the attacks against us for Nov 2004

   Just too many scans and not enough time to keep the list up all the time
    so... some of the more intresting scans/attacks, or 1 day samples are here
 

 year - time EASTERN source_ip[:port] (dns name, if any) attack/scan/notes


2004/11/01-02:00:03 222.45.45.132 (Yuetan Mansion,Xicheng District,Beijing,P.R.China) scan ssh ports, try to login to root with bad passwords
2004/11/01-13:05:12 64.251.10.246 (246-10-251-64.serverpronto.com.) scan ssh ports try to login to root with bad passwords
2004/11/03-20:10:58 220.69.177.218 (v77-218.icu.ac.kr)  scan ssh ports try to login to root with bad passwords
2004/11/04-23:01:37 203.115.112.136 (PRIMENET GLOBAL LTD.,IN) scannet for dtspc port, buff overflow attacks
2004/11/05-19:58:51 219.252.1.125 (korea crap) scan ssh ports try to login to root with bad passwords
2004/11/07-03:52:02 219.252.1.125 (korea crap) scan ssh ports try to login to root with bad passwords

2004/11/07-07:52:45 219.252.1.125 (korea crap) scan ssh ports try to login to root with bad passwords
2004/11/07-16:22:30 200.85.97.210 (telviso-host-200-85-97-210.telviso.net.ar.) scan ssh ports try to login to root with bad passwords

2004/11/08-05:55:54 200.85.97.210 (telviso-host-200-85-97-210.telviso.net.ar.)  scan ssh ports try to
login to root with bad passwords
2004/11/08-05:57:27 62.209.40.84 (Frankfurt GERMANY) scannet for port 111
2004/11/26-05:21:52 68.81.69.23 (pcp05316166pcs.norstn01.pa.comcast.net) ftp to ace with login root & multiple bad passwds like root, guest, 12345, todd,