Most attacked computer ports revealed

[rpm]

Most attacked computer ports revealed

The latest Akamai State of the Internet report reveals the most targeted ports for cyber attackers

 

[saa044]

RB750 and you're sorted. (Knocks on wood)

 

[rrcatto]

https://www.securitymetrics.com/howtos/445.adp

 

[McGuywer]

https://www.securitymetrics.com/howtos/445.adp

Thanx for the link.
So Port 455 is basically File and Printer Sharing.

 

[saa044]

On my RB750 when I look at the logs they mostly went for port 21, 22 and 3389. (Ftp, SSH, Remote Desktop.) And also 90% came from China. Nice thing on the 750, you can block x ip range from ever gaining access over your RB, adds the whole range to a blacklist for incoming, but outgoing still fine.

 

[b@nD]

Accuracy

https://www.securitymetrics.com/howtos/445.adp

That report is somewhat misleading in the sense that you can EDIT the exception and specify ONLY a certain IP or a range of IP addresses.
Then there is also the IP filter option which it seems very few people use ?

Port 445 is part of a larger set of ports ( and not only TCP but UDP as well )

Microsoft Server Message Block


NO need for an "RB750" ..........

 

[entrepr]

I'm sure port 5060 gets its share of attacks (sip signalling) - maybe not in shear volume but certainly in intensity of calculated probing.

 

[Vice]

The report confirms what I already experienced! This 445 is a pain in the bvtt. It would great to get the SA ISPs' perspective on this...