SCOUG-HELP Mailing List Archives

<< Previous Message << >> Next Message >>

Date:	Mon, 22 Aug 2005 11:28:16 PDT7
From:	"Bob" <2lvvuss02@sneakemail.com >
Reply-To:	scoug-help@scoug.com
To:	scoug-help@scoug.com
Subject:	SCOUG-Help: Bob, Sheridan, D_____.org ?

** Reply to message from "J R FOX jr_fox@pacbell.net" on Mon, 22 Aug 2005
11:06:58 PDT7

> Any idea what they may be able to actually DO about
> this ?

All they do is send reports to the ISP that has responsibility for the IP that
is doing the probes. It is up to the ISP to fix the problem, some do some
don't.

> And, tell me -- isn't this of very limited
> value, in the best case scenario ? I mean, anyone
> launching these "exploits" -- beyond the greenest
> script kiddies, running canned attacks right off of
> the skull & crossbones CD they bought for 8 bucks at
> the computer show -- are probably going to be able to
> hijack someone else's real IP, or otherwise fake out
> the "Source" IP. Right ? And most of the world uses
> DHCP, where the IPs change regularly from lease period
> to lease period.

Most of the IPs doing the probing are hijacked machines. It is up to the ISP
to get them offline until they are cleaned up.

Go to dshield.com and see what they have. There are others but this one seemed
to be the best, for me, when I was looking for such a service.

--
Robert Blair

=====================================================

To unsubscribe from this list, send an email message
to "steward@scoug.com". In the body of the message,
put the command "unsubscribe scoug-help".

For problems, contact the list owner at
"postmaster@scoug.com".

=====================================================

Return to [ 22 | August | 2005 ]

SCOUG, Warp Expo West, and Warpfest are trademarks of the Southern California OS/2 User Group. OS/2, Workplace Shell, and IBM are registered trademarks of International Business Machines Corporation. All other trademarks remain the property of their respective owners.