nanog mailing list archives

Re: Code Red on dial-in ppp

From: John Kristoff <jtk () aharp is-net depaul edu>
Date: Sat, 21 Jul 2001 13:29:48 -0500


On Sat, Jul 21, 2001 at 01:09:06PM -0500, Chris Adams wrote:

I don't think the issue is bandwidth.  The issue is that the reports
being sent out say such-and-such IP is infected without giving a time
stamp (I got one of the reports as well).  Without the time of the
attack, the IP address is absolutely useless, as a hundred users may
have had that IP in the last couple of days.


I have timestamps for the IPs I had on my list I posted a link to.  If
you need them, contact me directly.

John

Current thread:

Code Red on dial-in ppp Mitch Halmu (Jul 21)
- Re: Code Red on dial-in ppp Jason A. Mills (Jul 21)
  - Re: Code Red on dial-in ppp Mitch Halmu (Jul 21)
    - Re: Code Red on dial-in ppp up (Jul 21)
    - Re: Code Red on dial-in ppp Damon M. Conway (Jul 21)
  - Re: Code Red on dial-in ppp Chris Adams (Jul 21)
    - Re: Code Red on dial-in ppp John Kristoff (Jul 21)
    - Re: Code Red on dial-in ppp Keith Woodworth (Jul 21)
- Code Red seemingly on firewall (Re: Code Red on dial-in ppp) E.B. Dreger (Jul 21)