I'm currently running an ftp server on my PC and I often run into this message:
[000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > connected to ip : 192.168.0.7
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > sending welcome message.
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > 220 BradFTP
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > USER anonymous
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > 331 Password required for anonymous.
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > PASS ********
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > 530 Login or Password incorrect.
(000002) 1/25/2005 8:07:12 PM - (not logged in) (209.174.230.69) > disconnected.
Is this some hacker looking for a random ftp server (based on port)? I have no anonymous account, so they will never be able to log in, and I always add that IP to the block list, but should I still be concerned?
_________________________
Brad B.