World Community Grid - View Thread - Since I joined I get Portscans from IBM Almaden

World Community Grid Forums

Category: Retired Forums

Forum: The New Members Forum [Read Only]

Thread: Since I joined I get Portscans from IBM Almaden

Quick Go »

No member browsing this thread

Thread Status: Active
Total posts in this thread: 32

[ ]

Author

This topic has been viewed 5226 times and has 31 replies

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

Here's a couple of recently rejected UDP probes from my firewall logs (trimmed slightly for legibility, times are EST-5):

Nov 27 06:01:42 SRC=129.33.82.51 DST=24.34.179.130 PROTO=UDP SPT=42866 DPT=33434
Nov 27 09:08:38 last message repeated 9 time(s)
Nov 27 09:22:16 SRC=129.33.82.50 DST=24.34.179.130 PROTO=UDP SPT=43200 DPT=33434
Nov 27 09:52:26 last message repeated 1 time(s)

Smells like traceroute. Not particulary threatening, but still a bit odd if IBM is tracerouting a bunch of World Community Grid users.

[Nov 28, 2004 12:09:13 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

Hi!
interesting!

i asked earlier in an other forum and got answer from a tech-pro, that this ports are used for traceroute (from unix systems).
but why to members of the grid? and is this happening only to three or four people or to al members? can others please check their logs?

i could imagine that this is sort of misconfiguration, but wth pros at IBM?
we should wait for an answer. in the morning it got even worst, i let it go to the end.
heres a screen:
http://img96.exs.cx/img96/8642/scan105.jpg

the "scans" only come from
129.33.82.49
129.33.82.50
129.33.82.51
129.33.82.52
129.33.82.53
and ends at port 33458, while many ports between 33434 and 33458 are multiple scanned.

what else is traceroute good for as to find out where a client is located?
and why would that be interesting? there are so many that this makes no sense.

as my client got his update 1.0.0.4 it has really nothing to do with data communication for the rosetta program.
i hope we get a really explaining answer from IBM pros.

tom

----------------------------------------
[Edit 1 times, last edit by Former Member at Nov 28, 2004 1:33:46 PM]

[Nov 28, 2004 1:28:32 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

but why to members of the grid? and is this happening only to three or four people or to al members? can others please check their logs?

Just checked, count me in.

[Nov 28, 2004 2:23:41 PM]

deltavee
Ace Cruncher
Texas Hill Country
Joined: Nov 17, 2004
Post Count: 4848
Status: Offline
Project Badges:

5 year badge for Human Proteome Folding - Phase 2

180 day badge for Discovering Dengue Drugs - Together

90 day badge for Nutritious Rice for the World

14 day badge for The Clean Energy Project

10 year badge for Help Fight Childhood Cancer

14 day badge for Influenza Antiviral Drug Search

5 year badge for Help Cure Muscular Dystrophy - Phase 2

2 year badge for Discovering Dengue Drugs - Together - Phase 2

100 year badge for The Clean Energy Project - Phase 2

10 year badge for Computing for Clean Water

10 year badge for Drug Search for Leishmaniasis

10 year badge for GO Fight Against Malaria

5 year badge for Computing for Sustainable Water

200 year badge for Mapping Cancer Markers

100 year badge for Uncovering Genome Mysteries

200 year badge for Outsmart Ebola Together

200 year badge for FightAIDS@Home - Phase 2

200 year badge for Smash Childhood Cancer

200 year badge for Microbiome Immunity Project

200 year badge for Africa Rainfall Project

200 year badge for OpenPandemics - COVID-19


Re: Since I joined I get Portscans from IBM Almaden

is this happening only to three or four people or to al members? can others please check their logs?

I've been "scanned" by IBM Almaden 68 times since Nov-17.

----------------------------------------

----------------------------------------
[Edit 1 times, last edit by deltavee at Nov 28, 2004 3:23:38 PM]

[Nov 28, 2004 3:21:26 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

I'm getting scans also. Here is scan log data from October 28:

FWIN,2004/10/28,23:20:48 -5:00 GMT,129.33.82.50:41402,<my ip>:33434,UDP
FWIN,2004/10/28,23:20:50 -5:00 GMT,129.33.82.50:41402,<my ip>:33435,UDP
FWIN,2004/10/28,23:20:50 -5:00 GMT,129.33.82.50:41402,<my ip>:33436,UDP
FWIN,2004/10/28,23:20:52 -5:00 GMT,129.33.82.50:41402,<my ip>:33453,UDP
FWIN,2004/10/28,23:20:54 -5:00 GMT,129.33.82.50:41402,<my ip>:33454,UDP
FWIN,2004/10/28,23:20:54 -5:00 GMT,129.33.82.50:41402,<my ip>:33455,UDP
FWIN,2004/10/28,23:20:56 -5:00 GMT,129.33.82.50:41402,<my ip>:33456,UDP
FWIN,2004/10/28,23:20:56 -5:00 GMT,129.33.82.50:41402,<my ip>:33457,UDP
FWOUT,2004/10/28,23:20:56 -5:00 GMT,<my ip>:137,129.33.82.50:137,UDP
FWIN,2004/10/28,23:20:58 -5:00 GMT,129.33.82.50:41402,<my ip>:33458,UDP
FWIN,2004/10/28,23:21:00 -5:00 GMT,129.33.82.50:41402,<my ip>:33460,UDP
FWIN,2004/10/28,23:21:00 -5:00 GMT,129.33.82.50:41402,<my ip>:33461,UDP
FWIN,2004/10/28,23:24:06 -5:00 GMT,129.33.82.53:39757,<my ip>:33434,UDP
FWIN,2004/10/28,23:24:06 -5:00 GMT,129.33.82.53:39757,<my ip>:33435,UDP
FWIN,2004/10/28,23:24:08 -5:00 GMT,129.33.82.53:39757,<my ip>:33436,UDP
FWIN,2004/10/28,23:24:10 -5:00 GMT,129.33.82.53:39757,<my ip>:33452,UDP
FWIN,2004/10/28,23:24:12 -5:00 GMT,129.33.82.53:39757,<my ip>:33454,UDP
FWIN,2004/10/28,23:24:12 -5:00 GMT,129.33.82.53:39757,<my ip>:33455,UDP
FWIN,2004/10/28,23:24:14 -5:00 GMT,129.33.82.53:39757,<my ip>:33456,UDP
FWIN,2004/10/28,23:24:14 -5:00 GMT,129.33.82.53:39757,<my ip>:33457,UDP
FWIN,2004/10/28,23:24:16 -5:00 GMT,129.33.82.53:39757,<my ip>:33458,UDP
FWIN,2004/10/28,23:24:16 -5:00 GMT,129.33.82.53:39757,<my ip>:33459,UDP
FWIN,2004/10/28,23:24:18 -5:00 GMT,129.33.82.53:39757,<my ip>:33460,UDP
FWOUT,2004/10/28,23:24:20 -5:00 GMT,<my ip>:137,129.33.82.53:137,UDP
FWIN,2004/10/28,23:30:20 -5:00 GMT,129.33.82.49:40117,<my ip>:33434,UDP
FWIN,2004/10/28,23:30:22 -5:00 GMT,129.33.82.49:40117,<my ip>:33436,UDP
FWIN,2004/10/28,23:30:22 -5:00 GMT,129.33.82.49:40117,<my ip>:33445,UDP
FWIN,2004/10/28,23:30:24 -5:00 GMT,129.33.82.49:40117,<my ip>:33446,UDP
FWIN,2004/10/28,23:30:24 -5:00 GMT,129.33.82.49:40117,<my ip>:33447,UDP
FWIN,2004/10/28,23:30:26 -5:00 GMT,129.33.82.49:40117,<my ip>:33448,UDP
FWIN,2004/10/28,23:30:26 -5:00 GMT,129.33.82.49:40117,<my ip>:33449,UDP
FWIN,2004/10/28,23:30:28 -5:00 GMT,129.33.82.49:40117,<my ip>:33450,UDP
FWOUT,2004/10/28,23:30:28 -5:00 GMT,<my ip>:137,129.33.82.49:137,UDP
FWIN,2004/10/28,23:30:28 -5:00 GMT,129.33.82.49:40117,<my ip>:33451,UDP
FWIN,2004/10/28,23:30:30 -5:00 GMT,129.33.82.49:40117,<my ip>:33452,UDP
FWIN,2004/10/28,23:34:32 -5:00 GMT,129.33.82.51:41099,<my ip>:33434,UDP
FWOUT,2004/10/28,23:34:34 -5:00 GMT,<my ip>:137,129.33.82.51:137,UDP
FWIN,2004/10/28,23:34:34 -5:00 GMT,129.33.82.51:41099,<my ip>:33435,UDP
FWIN,2004/10/28,23:34:34 -5:00 GMT,129.33.82.51:41099,<my ip>:33436,UDP
FWIN,2004/10/28,23:34:36 -5:00 GMT,129.33.82.51:41099,<my ip>:33455,UDP
FWIN,2004/10/28,23:34:38 -5:00 GMT,129.33.82.51:41099,<my ip>:33456,UDP
FWIN,2004/10/28,23:34:38 -5:00 GMT,129.33.82.51:41099,<my ip>:33457,UDP
FWIN,2004/10/28,23:34:40 -5:00 GMT,129.33.82.51:41099,<my ip>:33458,UDP
FWIN,2004/10/28,23:34:40 -5:00 GMT,129.33.82.51:41099,<my ip>:33459,UDP
FWIN,2004/10/28,23:34:42 -5:00 GMT,129.33.82.51:41099,<my ip>:33460,UDP
FWIN,2004/10/28,23:34:44 -5:00 GMT,129.33.82.51:41099,<my ip>:33462,UDP
FWIN,2004/10/28,23:34:44 -5:00 GMT,129.33.82.51:41099,<my ip>:33463,UDP

[Nov 28, 2004 4:13:34 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

I'm getting scans also. Here is scan log data from October 28:

FWIN,2004/10/28,23:20:48 -5:00 GMT,129.33.82.50:41402,<my ip>:33434,UDP
FWIN,2004/10/28,23:20:50 -5:00 GMT,129.33.82.50:41402,<my ip>:33435,UDP
FWIN,2004/10/28,23:20:50 -5:00 GMT,129.33.82.50:41402,<my ip>:33436,UDP
FWIN,2004/10/28,23:20:52 -5:00 GMT,129.33.82.50:41402,<my ip>:33453,UDP
FWIN,2004/10/28,23:20:54 -5:00 GMT,129.33.82.50:41402,<my ip>:33454,UDP
FWIN,2004/10/28,23:20:54 -5:00 GMT,129.33.82.50:41402,<my ip>:33455,UDP
FWIN,2004/10/28,23:20:56 -5:00 GMT,129.33.82.50:41402,<my ip>:33456,UDP
FWIN,2004/10/28,23:20:56 -5:00 GMT,129.33.82.50:41402,<my ip>:33457,UDP
FWOUT,2004/10/28,23:20:56 -5:00 GMT,<my ip>:137,129.33.82.50:137,UDP
FWIN,2004/10/28,23:20:58 -5:00 GMT,129.33.82.50:41402,<my ip>:33458,UDP
FWIN,2004/10/28,23:21:00 -5:00 GMT,129.33.82.50:41402,<my ip>:33460,UDP
FWIN,2004/10/28,23:21:00 -5:00 GMT,129.33.82.50:41402,<my ip>:33461,UDP
FWIN,2004/10/28,23:24:06 -5:00 GMT,129.33.82.53:39757,<my ip>:33434,UDP
FWIN,2004/10/28,23:24:06 -5:00 GMT,129.33.82.53:39757,<my ip>:33435,UDP
FWIN,2004/10/28,23:24:08 -5:00 GMT,129.33.82.53:39757,<my ip>:33436,UDP
FWIN,2004/10/28,23:24:10 -5:00 GMT,129.33.82.53:39757,<my ip>:33452,UDP
FWIN,2004/10/28,23:24:12 -5:00 GMT,129.33.82.53:39757,<my ip>:33454,UDP
FWIN,2004/10/28,23:24:12 -5:00 GMT,129.33.82.53:39757,<my ip>:33455,UDP
FWIN,2004/10/28,23:24:14 -5:00 GMT,129.33.82.53:39757,<my ip>:33456,UDP
FWIN,2004/10/28,23:24:14 -5:00 GMT,129.33.82.53:39757,<my ip>:33457,UDP
FWIN,2004/10/28,23:24:16 -5:00 GMT,129.33.82.53:39757,<my ip>:33458,UDP
FWIN,2004/10/28,23:24:16 -5:00 GMT,129.33.82.53:39757,<my ip>:33459,UDP
FWIN,2004/10/28,23:24:18 -5:00 GMT,129.33.82.53:39757,<my ip>:33460,UDP
FWOUT,2004/10/28,23:24:20 -5:00 GMT,<my ip>:137,129.33.82.53:137,UDP
FWIN,2004/10/28,23:30:20 -5:00 GMT,129.33.82.49:40117,<my ip>:33434,UDP
FWIN,2004/10/28,23:30:22 -5:00 GMT,129.33.82.49:40117,<my ip>:33436,UDP
FWIN,2004/10/28,23:30:22 -5:00 GMT,129.33.82.49:40117,<my ip>:33445,UDP
FWIN,2004/10/28,23:30:24 -5:00 GMT,129.33.82.49:40117,<my ip>:33446,UDP
FWIN,2004/10/28,23:30:24 -5:00 GMT,129.33.82.49:40117,<my ip>:33447,UDP
FWIN,2004/10/28,23:30:26 -5:00 GMT,129.33.82.49:40117,<my ip>:33448,UDP
FWIN,2004/10/28,23:30:26 -5:00 GMT,129.33.82.49:40117,<my ip>:33449,UDP
FWIN,2004/10/28,23:30:28 -5:00 GMT,129.33.82.49:40117,<my ip>:33450,UDP
FWOUT,2004/10/28,23:30:28 -5:00 GMT,<my ip>:137,129.33.82.49:137,UDP
FWIN,2004/10/28,23:30:28 -5:00 GMT,129.33.82.49:40117,<my ip>:33451,UDP
FWIN,2004/10/28,23:30:30 -5:00 GMT,129.33.82.49:40117,<my ip>:33452,UDP
FWIN,2004/10/28,23:34:32 -5:00 GMT,129.33.82.51:41099,<my ip>:33434,UDP
FWOUT,2004/10/28,23:34:34 -5:00 GMT,<my ip>:137,129.33.82.51:137,UDP
FWIN,2004/10/28,23:34:34 -5:00 GMT,129.33.82.51:41099,<my ip>:33435,UDP
FWIN,2004/10/28,23:34:34 -5:00 GMT,129.33.82.51:41099,<my ip>:33436,UDP
FWIN,2004/10/28,23:34:36 -5:00 GMT,129.33.82.51:41099,<my ip>:33455,UDP
FWIN,2004/10/28,23:34:38 -5:00 GMT,129.33.82.51:41099,<my ip>:33456,UDP
FWIN,2004/10/28,23:34:38 -5:00 GMT,129.33.82.51:41099,<my ip>:33457,UDP
FWIN,2004/10/28,23:34:40 -5:00 GMT,129.33.82.51:41099,<my ip>:33458,UDP
FWIN,2004/10/28,23:34:40 -5:00 GMT,129.33.82.51:41099,<my ip>:33459,UDP
FWIN,2004/10/28,23:34:42 -5:00 GMT,129.33.82.51:41099,<my ip>:33460,UDP
FWIN,2004/10/28,23:34:44 -5:00 GMT,129.33.82.51:41099,<my ip>:33462,UDP
FWIN,2004/10/28,23:34:44 -5:00 GMT,129.33.82.51:41099,<my ip>:33463,UDP

[Nov 28, 2004 4:17:11 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

Note that my scans occurred on Oct. 28, BEFORE I installed the WCG client. Thus, these scans are probably not related to the WCG program.

[Nov 28, 2004 4:55:48 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

Me, too.

FWIN,2004/11/27,22:19:10 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33434,UDP
FWIN,2004/11/27,22:19:10 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33435,UDP
FWIN,2004/11/27,22:19:12 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33436,UDP
FWIN,2004/11/27,22:19:14 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33453,UDP
FWIN,2004/11/27,22:19:14 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33454,UDP
FWIN,2004/11/27,22:19:14 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33455,UDP
FWIN,2004/11/27,22:19:16 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33456,UDP
FWIN,2004/11/27,22:19:16 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33457,UDP
FWIN,2004/11/27,22:19:18 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33458,UDP
FWIN,2004/11/27,22:19:18 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33459,UDP
FWIN,2004/11/27,22:19:20 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33460,UDP
FWIN,2004/11/27,22:19:22 +1:00 GMT,129.33.82.51:42907,62.10.36.148:33461,UDP
FWIN,2004/11/27,22:22:28 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33434,UDP
FWIN,2004/11/27,22:22:28 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33435,UDP
FWIN,2004/11/27,22:22:30 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33436,UDP
FWIN,2004/11/27,22:22:30 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33447,UDP
FWIN,2004/11/27,22:22:32 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33448,UDP
FWIN,2004/11/27,22:22:32 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33449,UDP
FWIN,2004/11/27,22:22:34 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33450,UDP
FWIN,2004/11/27,22:22:34 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33451,UDP
FWIN,2004/11/27,22:22:36 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33452,UDP
FWIN,2004/11/27,22:22:36 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33453,UDP
FWIN,2004/11/27,22:22:38 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33454,UDP
FWIN,2004/11/27,22:22:38 +1:00 GMT,129.33.82.53:46327,62.10.36.148:33455,UDP
FWIN,2004/11/27,22:25:44 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33434,UDP
FWIN,2004/11/27,22:25:44 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33435,UDP
FWIN,2004/11/27,22:25:46 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33436,UDP
FWIN,2004/11/27,22:25:46 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33445,UDP
FWIN,2004/11/27,22:25:48 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33446,UDP
FWIN,2004/11/27,22:25:48 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33447,UDP
FWIN,2004/11/27,22:25:50 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33448,UDP
FWIN,2004/11/27,22:25:50 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33449,UDP
FWIN,2004/11/27,22:25:52 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33450,UDP
FWIN,2004/11/27,22:25:52 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33451,UDP
FWIN,2004/11/27,22:25:54 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33452,UDP
FWIN,2004/11/27,22:25:56 +1:00 GMT,129.33.82.49:41820,62.10.36.148:33453,UDP
FWIN,2004/11/27,22:34:34 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33434,UDP
FWIN,2004/11/27,22:34:34 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33435,UDP
FWIN,2004/11/27,22:34:36 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33436,UDP
FWIN,2004/11/27,22:34:36 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33448,UDP
FWIN,2004/11/27,22:34:38 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33449,UDP
FWIN,2004/11/27,22:34:38 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33450,UDP
FWIN,2004/11/27,22:34:40 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33451,UDP
FWIN,2004/11/27,22:34:40 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33452,UDP
FWIN,2004/11/27,22:34:42 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33453,UDP
FWIN,2004/11/27,22:34:42 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33454,UDP
FWIN,2004/11/27,22:34:44 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33455,UDP
FWIN,2004/11/27,22:34:46 +1:00 GMT,129.33.82.50:43232,62.10.36.148:33456,UDP
FWIN,2004/11/27,22:44:36 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33434,UDP
FWIN,2004/11/27,22:44:36 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33435,UDP
FWIN,2004/11/27,22:44:36 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33436,UDP
FWIN,2004/11/27,22:44:38 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33447,UDP
FWIN,2004/11/27,22:44:42 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33448,UDP
FWIN,2004/11/27,22:44:44 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33449,UDP
FWIN,2004/11/27,22:44:44 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33450,UDP
FWIN,2004/11/27,22:44:46 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33451,UDP
FWIN,2004/11/27,22:44:46 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33452,UDP
FWIN,2004/11/27,22:44:46 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33453,UDP
FWIN,2004/11/27,22:44:46 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33454,UDP
FWIN,2004/11/27,22:44:46 +1:00 GMT,129.33.82.52:46326,62.10.36.148:33455,UDP

[Nov 28, 2004 6:01:21 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

As we pick up more members, we are going to start noticing every odd activity over the net. I think that MNTechnoGuy put this into perspective when he published his logs showing this going on back on 28 Oct 2004. It is unconnected with the World Community Grid.

[Nov 28, 2004 7:24:12 PM]

Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline


Re: Since I joined I get Portscans from IBM Almaden

Unconnected with the Grid, but perhaps not unconnected with IBM.

However, this information is very interesting. The IP addresses are definitely IBM owned (assuming they're not spoofed). Also, due to the nature of the "scan" I wouldn't call this a scan at all. Infrequent knocks on a few high UDP ports is not a typical scan looking for security vulnerabilites. This looks suspiciously like a traceroute to me. Why this is occurring, I don't know. An inquiry has been sent to the network security folks asking what this might be.

[Nov 29, 2004 12:13:58 AM]

[ ]