I checked my log this morning and I get this long messages... Can someone tell me what this person did/doing to my system? My Ip address is 24.162.x.x I just don't want to post my exact IP..

Here's my log messages...


Mar 16 14:21:40 router portsentry[691]: attackalert: Connect from host:
lsanca1-ar8-068-190.biz.dsl.gtei.net/4.35.68.190 to TCP port: 1080
Mar 16 14:21:40 router portsentry[691]: attackalert: Host 4.35.68.190 has been
blocked via wrappers with string: "ALL: 4.35.68.190"
Mar 16 14:21:40 router portsentry[691]: attackalert: Host 4.35.68.190 has been
blocked via dropped route using command: "/sbin/ipchains -I input -s 4.35.68.190
-j DENY -l"
Mar 16 14:21:40 router kernel: Packet log: input DENY eth0 PROTO=6
4.35.68.190:64592 24.162.x.x:1080 L=40 S=0x00 I=5869 F=0x4000 T=116 (#1)
Mar 16 14:21:40 router kernel: Packet log: input DENY eth0 PROTO=6
4.35.68.190:64592 24.162.x.x:1080 L=40 S=0x00 I=5870 F=0x4000 T=116 (#1)
Mar 16 14:21:43 router kernel: Packet log: input DENY eth0 PROTO=6
4.35.68.190:64592 24.162.x.x:1080 L=40 S=0x00 I=6310 F=0x4000 T=116 (#1)

and so on

and so on

These messages are telling you that someone connected to your system on port 1080 and portsentry blocked/logged all communications from that ip.

Thanks... I was just wondering if he's trying to flood my system...

I think so, you know where to get different images?