- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - OpenVMS
- >
- TCPIP services for OpenVMS Alpha V5.4 ECO 4
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-14-2007 07:15 AM
тАО06-14-2007 07:15 AM
I also noticed that $ sho user/full shows:
Username Process Name PID Terminal
OpenVMS User Processes at 14-JUN-2007
Total number of users = 86, number of processes = 151
Username Process Name PID Terminal
(Host: d-d2s1n41.wst.corproot.com Port: 1049)
(Host: d-lkvgw1z.wst.corproot.com Port: 2609)
(Host: d-lkkzk77.wst.corproot.com Port: 2850)
(Host: d-bkst641.wst.corproot.com Port: 3790)
(Host: d-lkvdy4x.wst.corproot.com Port: 3477)
(Host: d-lkvdy4x.wst.corproot.com Port: 3478)
(Host: d-l3a6677.wst.corproot.com Port: 4952)
(Host: d-lkkzk13.wst.corproot.com Port: 3045)
(Host: d-lkvgp6r.wst.corproot.com Port: 4640)
(Host: d-lkvdt5f.wst.corproot.com Port: 4511)
(Host: d-lkkzh40.wst.corproot.com Port: 1983)
(Host: d-lkvdz7l.wst.corproot.com Port: 2377)
(Host: d-lkvgt2g.wst.corproot.com Port: 4668)
(Host: l-l3bx843.wst.corproot.com Port: 2231)
(Host: d-l3a6676.wst.corproot.com Port: 3783)
(Host: d-lkvdt5f.wst.corproot.com Port: 4512)
(Host: d-lkvgt1w.wst.corproot.com Port: 1299)
(Host: d-klbhac9.wst.corproot.com Port: 2463)
(Host: d-lkvgr7w.wst.corproot.com Port: 2082)
(Host: d-lkvgr0g.wst.corproot.com Port: 2319)
ACHAMBLISS BATCH_1617 001260BA (Batch)
ACHASE ACHASE 000EF37E TNA2049:
noticed that d-lkvdy4x.wst.corproot.com as well as others have two loginout processes at consecutive port nombers.
When checking the accounting records for them they are several logfails per workstation.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-14-2007 09:01 AM
тАО06-14-2007 09:01 AM
Re: TCPIP services for OpenVMS Alpha V5.4 ECO 4
looks like you have external attempts attempting to get into your
system and failing. accounting can show
the time interval of the attempts. I
had that about a month ago. turns out
someone had a embedded username/pwd
in a procedure and the pwd had changed.
how this helps -Dean
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-14-2007 11:33 AM
тАО06-14-2007 11:33 AM
Re: TCPIP services for OpenVMS Alpha V5.4 ECO 4
See if you can determine what is on the other end of the connection, if you can catch one.
If the server is connected to the open internet or an intermediate firewall is passing telnet, this sort of thing is entirely normal -- telnet and ssh attacks are commonplace. If these are your hosts and are inside a network, various bots can be active in furtherance of a beachhead.
Also take a look at the software running on the clients, as there were packages around (PATHWORKS32 client?) that triggered logfails due to the way they operated. This was eons ago, and I'm fuzzy on the details.
There can also be SYN attacks which have looked like this embryonic error, and there have been cases where routers have been stomping on or have regurgitated stale sequence numbers.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-21-2007 03:26 AM
тАО06-21-2007 03:26 AM
Re: TCPIP services for OpenVMS Alpha V5.4 ECO 4
Thank you for the responses.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-21-2007 03:45 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-22-2007 06:19 AM
тАО06-22-2007 06:19 AM
Re: TCPIP services for OpenVMS Alpha V5.4 ECO 4
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-27-2007 03:26 AM
тАО06-27-2007 03:26 AM