Re: Website Hacking Attempt - letting the IP Block owners know?

From: chris@nospam.com
Date: 06/28/02 

From: chris@nospam.com
Date: Thu, 27 Jun 2002 21:25:08 -0700

On Wed, 26 Jun 2002 12:04:26 -0400, Jim Patrick <jpatrick@shentel.net>
wrote:

>In comp.security.misc, Jeffrey F. Bloss wrote:
>
>>This might be OK in a smaller or more obscure environment, where attacks
>>aren't all that common, but think about an environment like a large,
>>inter-campus network for a major university. Not only do you have more
>>exposure both in the simple number of machines and visibility or public
>>access, but the students themselves are naturally more "curious" than the
>>average corporate user. ;) The sheer volume of probing simply negates the
>>possibility of taking each and every one of them so seriously.
>
>Sheer volume is what computers are made for. Be interesting to see
>what the drop would be if you installed a "probe? block address" on
>all the servers. A block that lasts until the lease expires combined
>with a timed block on the computer name would be reasonably effective
>as a starting point.

And voila you create another potential DOS attack where the attacker
sends spoofed probes with addresses of legitimate customers.

Relevant Pages

  • Re: Website Hacking Attempt - letting the IP Block owners know?
    ... >>This might be OK in a smaller or more obscure environment, where attacks ... >Sheer volume is what computers are made for. ... >with a timed block on the computer name would be reasonably effective ...
    (comp.security.firewalls)
  • Re: Website Hacking Attempt - letting the IP Block owners know?
    ... >>This might be OK in a smaller or more obscure environment, where attacks ... >Sheer volume is what computers are made for. ... >with a timed block on the computer name would be reasonably effective ...
    (comp.security.firewalls)
  • Re: Website Hacking Attempt - letting the IP Block owners know?
    ... >>This might be OK in a smaller or more obscure environment, where attacks ... >Sheer volume is what computers are made for. ... >with a timed block on the computer name would be reasonably effective ...
    (comp.security.misc)
  • [REVS] Acoustic Cryptanalysis: On Nosy People and Noisy Machines
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... emitted by a computer's CPU. ... systems is side-channel attacks: ... desktop and laptop computers, and in all cases it was possible to ...
    (Securiteam)
  • Re: So, windows doesnt get viruses and worms eh?
    ... Computers will get attacked often if you have a constant connection to the Internet. ... I've ran Solaris for years on broadband and have never had problems with viruses or worms. ... Those that admined Unix/Linux servers at ISPs see windows worms knocking on their servers constantly, looking for computers to accept them. ... The viruses aren't the think that's hurting the web, it's DOS attacks. ...
    (comp.sys.mac.advocacy)