red.iceman
30.08.02, 17:26
Aug 30 17:38:01 hans PAM_unix[711]: (cron) session opened for user mail by (uid=0)
Aug 30 17:38:01 hans PAM_unix[711]: (cron) session closed for user mail
Aug 30 17:47:50 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=711 F=0x0000 T=64 SYN (#38)
Aug 30 17:47:53 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=712 F=0x0000 T=64 SYN (#38)
Aug 30 17:47:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=723 F=0x0000 T=64 SYN (#38)
Aug 30 17:48:11 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=724 F=0x0000 T=64 SYN (#38)
Aug 30 17:48:35 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=725 F=0x0000 T=64 SYN (#38)
Aug 30 17:49:23 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=726 F=0x0000 T=64 SYN (#38)
Aug 30 17:50:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=727 F=0x0000 T=64 SYN (#38)
Aug 30 17:52:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1270 F=0x0000 T=64 SYN (#38)
Aug 30 17:53:01 hans PAM_unix[724]: (cron) session opened for user mail by (uid=0)
Aug 30 17:53:02 hans PAM_unix[724]: (cron) session closed for user mail
Aug 30 17:54:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1609 F=0x0000 T=64 SYN (#38)
Aug 30 17:56:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1610 F=0x0000 T=64 SYN (#38)
Aug 30 17:58:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1691 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:02 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1717 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:08 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1718 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:20 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1719 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:44 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1720 F=0x0000 T=64 SYN (#38)
Aug 30 18:02:01 hans PAM_unix[730]: (cron) session opened for user root by (uid=0)
Wer oder was ist das? das ganze hab ich seit gestern, seit ich mein system erneuert hab (potato -> woody).
ri
PS: noch was komisches:
This mail is sent by logcheck. If you do not want to receive it any more,
please modify the configuration files in /etc/logcheck or deinstall logcheck.
Active System Attack Alerts
=-=-=-=-=-=-=-=-=-=-=-=-=-=
Binary file /var/tmp/logcheck/check.837 matches
Possible Security Violations
=-=-=-=-=-=-=-=-=-=
Binary file /var/tmp/logcheck/check.837 matches
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
Binary file /var/tmp/logcheck/check.837 matches
das teil kam zwei mal, direkt nach dem ich nach dem update den rechner das naechste mal neu gebootet hab.
Aug 30 17:38:01 hans PAM_unix[711]: (cron) session closed for user mail
Aug 30 17:47:50 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=711 F=0x0000 T=64 SYN (#38)
Aug 30 17:47:53 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=712 F=0x0000 T=64 SYN (#38)
Aug 30 17:47:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=723 F=0x0000 T=64 SYN (#38)
Aug 30 17:48:11 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=724 F=0x0000 T=64 SYN (#38)
Aug 30 17:48:35 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=725 F=0x0000 T=64 SYN (#38)
Aug 30 17:49:23 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=726 F=0x0000 T=64 SYN (#38)
Aug 30 17:50:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=727 F=0x0000 T=64 SYN (#38)
Aug 30 17:52:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1270 F=0x0000 T=64 SYN (#38)
Aug 30 17:53:01 hans PAM_unix[724]: (cron) session opened for user mail by (uid=0)
Aug 30 17:53:02 hans PAM_unix[724]: (cron) session closed for user mail
Aug 30 17:54:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1609 F=0x0000 T=64 SYN (#38)
Aug 30 17:56:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1610 F=0x0000 T=64 SYN (#38)
Aug 30 17:58:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1691 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1062 194.25.0.52:53 L=60 S=0x00 I=1715 F=0x0000 T=64 SYN (#38)
Aug 30 18:00:59 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1716 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:02 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1717 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:08 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1718 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:20 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1719 F=0x0000 T=64 SYN (#38)
Aug 30 18:01:44 hans kernel: Packet log: output DENY eth0 PROTO=6 192.168.1.3:1138 194.25.0.60:53 L=60 S=0x00 I=1720 F=0x0000 T=64 SYN (#38)
Aug 30 18:02:01 hans PAM_unix[730]: (cron) session opened for user root by (uid=0)
Wer oder was ist das? das ganze hab ich seit gestern, seit ich mein system erneuert hab (potato -> woody).
ri
PS: noch was komisches:
This mail is sent by logcheck. If you do not want to receive it any more,
please modify the configuration files in /etc/logcheck or deinstall logcheck.
Active System Attack Alerts
=-=-=-=-=-=-=-=-=-=-=-=-=-=
Binary file /var/tmp/logcheck/check.837 matches
Possible Security Violations
=-=-=-=-=-=-=-=-=-=
Binary file /var/tmp/logcheck/check.837 matches
Unusual System Events
=-=-=-=-=-=-=-=-=-=-=
Binary file /var/tmp/logcheck/check.837 matches
das teil kam zwei mal, direkt nach dem ich nach dem update den rechner das naechste mal neu gebootet hab.