Security Incidents mailing list archives

Re: Scans from proxyprotector.com

From: "Kurt Seifried" <bt () seifried org>
Date: Tue, 27 May 2003 12:22:15 -0700

If someone does that much spoofing, constantly, then the target is going to
get bombarded anyways. Plus this wouldn't be totally automated, attempts to
contact the "hostile" party would be made, etc. No system is perfect, but
that doesn't mean it can't be used. This type of activity already occurs, a
new network block was opened up (67 or 69? I can't remember) and many
systems are firewalling it (used to be a reserved, unused class A), or
companies that get assigned network blocks formerly used in asia. This type
of thing happens all the time.

Kurt Seifried, kurt () seifried org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/


----------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

RE: Scans from proxyprotector.com, (continued)
- RE: Scans from proxyprotector.com Compton, Rich (May 20)
  - Re: Scans from proxyprotector.com Kurt Seifried (May 21)
    - Re: Scans from proxyprotector.com Erik Fichtner (May 22)
  - Are they back? (was Re: Scans from proxyprotector.com) Erik V. Olson (May 26)
    - RE: Are they back? (was Re: Scans from proxyprotector.com) Mark Ng (May 27)
    - RE: Are they back? (was Re: Scans from proxyprotector.com) jlewis (May 28)
- Re: Scans from proxyprotector.com Justin Pryzby (May 22)
  - Re: Scans from proxyprotector.com Valdis . Kletnieks (May 22)
  - RE: Scans from proxyprotector.com Mark Ng (May 27)
    - RE: Scans from proxyprotector.com Rob Shein (May 27)
    - Re: Scans from proxyprotector.com Kurt Seifried (May 27)