The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

NMap Xmas Scan Attack

Discussion in 'General Discussion' started by MeGaMASTER, Jun 3, 2006.

  1. MeGaMASTER

    MeGaMASTER Well-Known Member

    Joined:
    May 24, 2003
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    I have Norton AntiVirus 2006 installed and when I operate on one of my servers I'm sometime getting an attack alert from Norton which state that I'm being port scan (NMap Xmas Scan) from one of my servers. The server I'm getting it from is a new server (5 days old) with cPanel installed.

    I started to get these attacks from the day I have installed cPanel. My datacenter also told me that it could be nessus or portsentry causing such attack.
     
  2. techark

    techark Well-Known Member

    Joined:
    May 22, 2002
    Messages:
    280
    Likes Received:
    0
    Trophy Points:
    16
    Ask your data center if they are running any route optimizing software like route science.

    If they are it will send a packet your computer when you connect to the network to determine the best route back to the data center so it can optimize the route. Norton decides this is a port scan and sends up a false alarm.
     

Share This Page