Security Incidents mailing list archives

Re: scan log and subsequent response from the host's ISP

From: patrick () PINE NL (Patrick Oonk)
Date: Thu, 6 Jul 2000 00:17:46 +0200


On Mon, Jul 03, 2000 at 10:18:15AM +0800, Bradley Woodward wrote:

G'day peoples.

These scans are so common, I wouldn't bother posting them, except for the
rather disappointing response from the ISP's support department.  I've
included an edited log file and email response.

Only my machine's IP is changed.  Everything else is as reported by IPCHAINS.


tin.it should be blackholed IMHO. They never respond. Even CERT-IT
said these people are hopeless.

--
 Patrick Oonk -  PO1-6BONE -  patrick () pine nl -  www.pine.nl/~patrick
 Pine Internet - PAT31337-RIPE - PGPkeyID BE7497F1 - XOIP+31208723350
 Tel: +31-70-3111010  -   Fax: +31-70-3111011   -  http://security.nl
 PGP   fingerprint   A6 12 66 7F 22 84 1B E5  73 8C 99 F7 17 7B A3 98
 Excuse of the day: vapors from evaporating sticky-note adhesives

Current thread:

scan log and subsequent response from the host's ISP Bradley Woodward (Jul 02)
- Fwd: [Fw: Ive been broken into ] JEFF WATSON (Jul 05)
- version.bind from zen.isi.edu Patrick Oonk (Jul 05)
- Re: scan log and subsequent response from the host's ISP Patrick Oonk (Jul 05)
- Re: scan log and subsequent response from the host's ISP Dan Hollis (Jul 05)
- Re: scan log and subsequent response from the host's ISP Dan Hollis (Jul 05)
  - Re: scan log and subsequent response from the host's ISP Talisker (Jul 10)
- Re: scan log and subsequent response from the host's ISP Pauel Loshkin (Jul 05)
- how to close security holes from nessus vulnerability scan report ? Chew Poh Chang (CAPL) (Jul 06)
- Snort SMTP expn-root Oxenreider, Jeff (Jul 06)
  - Re: Snort SMTP expn-root Joe McAlerney (Jul 06)
  - Re: Snort SMTP expn-root Bill Pennington (Jul 06)
  - Re: Snort SMTP expn-root dyer (Jul 06)
  - Simultaneous Attacks Harlan S. Barney, Jr. (Jul 06)

(Thread continues...)