Security Incidents mailing list archives

Re: @home: Is anyone really home there???

From: woods () MOST WEIRD COM (Greg A. Woods)
Date: Wed, 1 Mar 2000 01:10:24 -0500


[ On Monday, February 28, 2000 at 15:37:02 (-0500), David Kennedy CISSP wrote: ]

Subject: Re: @home: Is *anyone* really home there???

What does an ISP *want* to have reported?  I agree that complaints
that "so-and-so just banged on my Quake port all afternoon" should be
unwelcome.  However some activities tend to be more troublesome and I
wonder what the threshold of pain has to be for an ISP? In general,
not a specific policy:


I don't want to see any reports that simply mention an errant packet or
two, regardless of what the packet destination port was.

I do want to see reports of systematic and repeated attacks where a
variety of types of attacks are in use, provided of course there's
adequate documentation to demonstrate the persistence and variance of
such annoyances.

I obviously want to hear about successful penetrations too.

--
                                                        Greg A. Woods

+1 416 218-0098      VE3TCP      <gwoods () acm org>      <robohack!woods>
Planix, Inc. <woods () planix com>; Secrets of the Weird <woods () weird com>

Current thread:

@home: Is *anyone* really home there??? (fwd), (continued)
- - - @home: Is *anyone* really home there??? (fwd) Light Of Day (Mar 04)
    - Re: Port 65535 Pavel Kankovsky (Mar 04)
    - Re: Port 65535 Murray, Mike (Mar 04)
    - Re: Port 65535 Richard Bejtlich (Mar 04)
    - Re: Port 65535 Keith Pachulski (Mar 06)
    - Re: auto-reporting to ISPs wozz () LUVEWE BONCH ORG (Mar 02)
    - Re: auto-reporting to ISPs Stuart Staniford-Chen (Mar 06)
  - Re: @home: Is *anyone* really home there??? Wozz (Feb 29)
- Re: @home: Is *anyone* really home there??? Erick Brockway (Feb 29)
- Re: @home: Is *anyone* really home there??? Greg A. Woods (Feb 29)
- Re: @home: Is *anyone* really home there??? Greg A. Woods (Feb 29)
- Re: @home: Is *anyone* really home there??? Rob Quinn (Mar 01)
- Re: @home: Is *anyone* really home there??? Jon Burdge (Mar 02)
  - Re: @home: Is *anyone* really home there??? Greg A. Woods (Mar 02)
    - Re: @home: Is *anyone* really home there??? William Annis (Mar 03)
    - scans with spoofed address (was @home: Is *anyone*...) Russell Fulton (Mar 07)
    - Re: @home: Is *anyone* really home there??? Ville (Mar 03)
    - ingreslock message Dino Amato (Mar 05)
    - Re: ingreslock message Graeme Fowler (Mar 07)
    - Re: ingreslock message Dino Amato (Mar 07)
    - Re: ingreslock message Robert Graham (Mar 07)

(Thread continues...)