nanog mailing list archives

Re: Country of Origin for Malicious Attacks

From: "Jamie Reid" <Jamie.Reid () mbs gov on ca>
Date: Thu, 26 Jun 2003 21:50:21 -0400


I've found that country of origin is less relevant than route/subnet and ASN, as there
is a link between the address and the people in a position to actually respond to the problem. 

I'd be interested in knowing how linking aggregated attack information to country of 
origin is actually valuable relative to our ability to respond to it. 

Cheers, 

-j



--
Jamie.Reid, CISSP, jamie.reid () mbs gov on ca
Senior Security Specialist, Information Protection Centre 
Corporate Security, MBS  
416 327 2324

Attachment: TEXT.htm
Description:

Current thread:

Country of Origin for Malicious Attacks sgorman1 (Jun 25)
- Re: Country of Origin for Malicious Attacks Sean Donelan (Jun 25)
- <Possible follow-ups>
- RE: Country of Origin for Malicious Attacks netadm (Jun 25)
  - RE: Country of Origin for Malicious Attacks Scott Weeks (Jun 25)
    - Re: Country of Origin for Malicious Attacks Adam Debus (Jun 25)
    - Re: Country of Origin for Malicious Attacks Scott A. McIntyre (Jun 25)
- RE: Country of Origin for Malicious Attacks McBurnett, Jim (Jun 25)
- Re: Country of Origin for Malicious Attacks sgorman1 (Jun 25)
- Re: Country of Origin for Malicious Attacks Jamie Reid (Jun 26)
  - Live attackers or blind worms? (was Re: Country of Origin for Malicious Attacks) Bill Zeng (Jun 26)
  - Re: Country of Origin for Malicious Attacks Peter Galbavy (Jun 27)
- Re: Country of Origin for Malicious Attacks sgorman1 (Jun 27)
- Re: Country of Origin for Malicious Attacks sgorman1 (Jun 27)