Re: [Full-disclosure] Brute force attack - need your advice

Salut, Abilash,

On Tue, 12 Feb 2008 02:16:02 +0530, Abilash Praveen wrote:
I had been talking to our web hosts the other day and they seem to
have a lot of unusual brute force attack on the servers recently. I'm
guessing that it could be because of my emails to the list? I mean,
do you advice on using a personal email for this type of list? Or
should I use something like @ gmail.com? I know they can't easily
break in to our servers, but am I just giving them a chance?

I don't really think that this is closely related to the use of your
mail address. Outside in the real nature, there is rain/snow/whatever,
which occurs from time to time in some type of natural cycle, and you
can't help it.

The same goes for SPAM and worms/virii/other automated attacks. They'll
always be there, like the rain and the show. What you should do is put
on a rain coat: make sure your systems are up to date and looking
regularly for holes in the coat. Keep the SPAM and worms off yourself,
and whatever flies through your network is just random noise.

(But please don't deduce from this posting that you should use it as
input in a random number generator to generate cryptographic keys!)

Tonnerre
--
SyGroup GmbH
Tonnerre Lombard

Solutions Systematiques
Tel:+41 61 333 80 33 Güterstrasse 86
Fax:+41 61 383 14 67 4053 Basel
Web:www.sygroup.ch tonnerre.lombard@xxxxxxxxxx

Attachment: signature.asc
Description: PGP signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages

  • Re: Reading Exchange 2003 SMTP Logs / Expected emails dont always arrive
    ... and it has nothing to do with Exchange itself (have spent a week on Exchange ... The issue appears to be as a result of an advanced option on our servers NIC ... As soon as I disabled the option, the emails from ... attachments, but I have checked the 'Message Delivery Option' defaults ...
    (microsoft.public.exchange.connectivity)
  • Re: Reading Exchange 2003 SMTP Logs / Expected emails dont always arrive
    ... directly to it bypassing the ISPs relay servers? ... I would say that the vast majority of emails get to us. ... aware of issues with emails which have no attachments (I have sent myself ... Do any other senders from other companies report any issues sending email ...
    (microsoft.public.exchange.connectivity)
  • Re: There needs to be an international policy
    ... knocking it out circulation in the internet; futher more you wait for these ... >>number of emails going out from a certain IP, domain or host over a period ... >>If these countries had their IP addresses banned on the Internet then 90% ... >>concerted effort to shut down their spamming servers, say after 2 years, ...
    (microsoft.public.security)
  • Re: MS Exchange 5.5 SP4: Outgoing internet mails disappears
    ... >> emails, we set the smarthost in IMS Conntections to ... >> the ISP mail servers. ... the loss rate can ...
    (microsoft.public.exchange.connectivity)
  • Re: Evolution throwing away emails for one of my accounts ?
    ... directly and checked and there are over a dozen emails sitting in the ... account that haven't shown up in Evolution. ... that can get messy if servers do something unpredictable. ... Clients not downloading what it thinks are ...
    (Fedora)