Re: Chasing down an attacker.
From: Shawn (greyhat@attbi.com)Date: 05/09/02
- Next message: Shawn: "Re: is this right?"
- Previous message: Ian Jones: "If you didn't believe in strict OUTPUT filtering"
- In reply to: Burg: "Chasing down an attacker."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Shawn" <greyhat@attbi.com> Date: Thu, 09 May 2002 00:41:39 GMT
> Here is a question for everyone. I've been attacked. I have the logs.
> So what is the next logical step. I called the ISP security guru. No
> answer and his voice mail is full. No response on the generic Abuse
> E-mail listing. Something tells me that they either don't care or can't
> keep up.
By attacked, do you mean someone has made hacking attempt against your
computer or has it been comprised (rooted)?
> What would be the next step?
Unfortunately, if their ISP isn't responding to your email, there's not a
whole lot you can do about an attack. You could bug the hell out of them
with emails until they respond. Or check the ip block for the ISP
www.geektools.com, see if they answer the a high authority, email the ISP's
provider.
> Who can I go to for results?
You might try www.incidents.org for starters. Hope this helps.
-- Shawn www.intrusiondefense.com
- Next message: Shawn: "Re: is this right?"
- Previous message: Ian Jones: "If you didn't believe in strict OUTPUT filtering"
- In reply to: Burg: "Chasing down an attacker."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
