Snort mailing list archives
Re: A case of beer on 63.204.135.168
From: John Sage <jsage () finchhaven com>
Date: Fri, 22 Feb 2002 17:02:05 -0800
This is a perfect example of the biggest misconception that less-knowledgeable people have about the security of their computers. "I don't keep my credit cards numbers on my computer anyway. What do I care if I get hacked?" bzztt.. Wrong. Totally wrong. The worst problem is that your unattended box will be commandeered by crackers and used as a zombie in an attack on someone else, or assembled into a host of zombies in a Distributed Denial of Service attack. See: http://staff.washington.edu/dittrich/misc/ddos/ by Dave Dittirch It's horribly ironic that I'm typing this right now, because for 30 hours my web site and my pop3 server has been inaccessible to anybody for exactly this reason: the web hosting company I'm with had an entire netblock taken down for over 30 hours by some punk commiting a DDoS. So in a sense I seem to have just contradicted my first response to this thread, but when I say "off with their heads" I'm really hoping that something so profound will happen to those with wide-open boxes that they're off the air for days, just as my web site and my pop3 server just were... You have little understanding of what a weapon your unsecured computer can become... - John On Fri, Feb 22, 2002 at 06:23:13PM -0600, Ryan Lindsey wrote:
I agree. Some of us aren't exactly the most knowledgable on computer security. That's why we are subscribed to this list. Yes, maybe this guy doesn't know what he is doing but who cares? What effect does it have on you? I have a WinXP box for video games and junk and it's probably wide open. If someone wants to hack my box and check out my counter-strike config, have at it. Like I have anything worth knowing about on my computer anyway. Maybe some good porn but that's about it. Anyway, sorry for the rant, but you shouldn't beat down on someone just because they don't know what they are doing, much less make it public. rbl ----- Original Message ----- From: "dr.kaos" <dr.kaos () kaos to> To: <jjennings () zoominternet net>; <snort-users () lists sourceforge net> Sent: Friday, February 22, 2002 5:14 PM Subject: Re: [Snort-users] A case of beer on 63.204.135.168On Friday 22 February 2002 04:48 pm, Jeff Jennings wrote:This week's grand prize goes to 63.204.135.168 For allowing PUT rights on Port 80 (I wonder how many hackers are lurking here). Being vulnerable on Port 25 and many other ports... Anyone need an open relay?Ok, now, I don't mean to be a dick... but... Posting someone else's IP to the list, at least in my book, qualifies asbadpractice. Granted, the guy's box may be insecure, but so are those of the majority of the Win box owners out there. Hell, for all we know, this listissubscribed to by countless lurking script-kiddies just _hoping_ someonewillpost info like this to the list. Let's all do the world a favor and help each other _improve_ the securityofeach other's networks. If you're really concerned, try to contact the owner of the box, or more easily, his ISP, and notify him/them of the problem. Posting his IP could be constitued as _part_ of the problem. In this case, I think I'll take a drink on your behalf as well... ;)No wonder the guy is spewing Code Reds... We just ran a port scan and tested the guy. Some guy running IIS over a DSL connection with a site that is listed as "Under Construction". Just another unsuspecting guy who installed IIS on his home computer and has no idea of how to protect it.Yeah, you're right, they represent the vast majority of the population,butlet's educate them rather than humiliating them and making them more of a target than they likely already are. Again, I'm not trying to be mean, just wanna be helpful... ..[hiccup]... peace, ./dr.kaos _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
-- Most people don't type their own logfiles; but, what do I care? _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Re: attack, (continued)
- Re: attack Erek Adams (Feb 22)
- Re: attack Phil Wood (Feb 22)
- RE: attack Wayne Work (Feb 22)
- Re: attack Skip Carter (Feb 22)
- A case of beer on 63.204.135.168 Jeff Jennings (Feb 22)
- Re: A case of beer on 63.204.135.168 dr . kaos (Feb 22)
- Re: A case of beer on 63.204.135.168 John Sage (Feb 22)
- Re: A case of beer on 63.204.135.168 dr . kaos (Feb 22)
- Message not available
- Re: A case of beer on 63.204.135.168 John Sage (Feb 22)
- A case of beer on 63.204.135.168 Jeff Jennings (Feb 22)
- Re: A case of beer on 63.204.135.168 Ryan Lindsey (Feb 22)
- Re: A case of beer on 63.204.135.168 John Sage (Feb 22)
- Re: A case of beer on 63.204.135.168 spyguy703 (Feb 22)
- OT: A case of beer on 63.204.135.168 Chris Keladis (Feb 22)
- Re: attack Erek Adams (Feb 22)
- Re: A case of beer on 63.204.135.168 John Kiehnle (Feb 23)