Re: compromised machine as ASU (fwd)

[fred anger <anger () RIGHTARM ORG>]

Thank you to all who responded with information/suggestions.  For those
who wondered why I didn't start with the whois info, I was under the
assumption that that info was either out of date, or incorrec, so I
thought I'd plug the list first.  I actuallly had a hope that someone at
ASU was on the INCIDENTS list.  Anyway, I've contacted those whom I think
might be interested and sent them as much detail as appropriate, and
hopefully they'll follow through.  I haven't heard back from anyone except
my initial contact who referred me to the appropriate people
(incidentally, none of whom were in the whois info).  We'll see...

On Mon, 18 Sep 2000, Ryan Russell wrote:

> ---------- Forwarded message ----------
> Date: Mon, 18 Sep 2000 05:58:07 -0700
> From: Darel Eschbach <Darel.Eschbach () asu edu>
> To: 'Ryan Russell' <ryan () securityfocus com>, Dave McKee <Dave.McKee () asu edu>,
>      Mark Petterson <petterson () asu edu>
> Cc: EMAIL-Q Consulting <EMAIL-Q () asu edu>
> Subject: RE: compromised machine as ASU (fwd)
>
> We will investigate and take appropriate action.
>
> Thanks for your report.
>
> ______________
> Darel Eschbach
> 480 965-4650
>
> -----Original Message-----
> From: Ryan Russell [mailto:ryan () securityfocus com]
> Sent: Monday, September 18, 2000 12:00 AM
> To: Darel.Eschbach () asu edu; dave.mckee () asu edu; petterson () asu edu
> Subject: compromised machine as ASU (fwd)
>
>
> FYI.
>
>                       Ryan
>
> ---------- Forwarded message ----------
> Date: Sat, 16 Sep 2000 10:09:04 -0700
> From: fred anger <anger () RIGHTARM ORG>
> To: INCIDENTS () SECURITYFOCUS COM
> Subject: compromised machine as ASU
>
> <snip>
>
> I have no idea who to contact at ASU regarding this, so if anyone has any
> ideas, please let me know.  Thanks.
>
> -fa