[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] New round of SSH scan IP's

To: "James Lay" <jlay@xxxxxxxxxxxxxxxxxxx>, full-disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] New round of SSH scan IP's
From: "Knud Erik Højgaard" <kokanin@xxxxxxxxx>
Date: Wed, 9 Jul 2008 20:17:09 +0200

On 7/9/08, James Lay <jlay@xxxxxxxxxxxxxxxxxxx> wrote:

> I have a homebrew setup...using snort and syslog and an app called wots it
>  adds a firewall rule the first time something naughty happens.  It's bee
>  pretty effective all in all.  Last time I posted a list of IP's I had a net
>  admin contact me wanting more info since one of the IP's was one under his
>  responsibility.  Glad I could assist :D

Oh wow, that is amazing. Learn whois, contact the respective abuse
handlers, let the rest of us be in peace. Better yet, show us your app
and tell us your ip so we can laugh and most likely lock you out of
your box.
--

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] New round of SSH scan IP's
  - From: Michael Holstein

References:
- Re: [Full-disclosure] New round of SSH scan IP's
  - From: Peter van den Heuvel
- Re: [Full-disclosure] New round of SSH scan IP's
  - From: James Lay

Prev by Date: Re: [Full-disclosure] Zone Alarm Firewall users without Internet after MS patch (MS08-037)
Next by Date: Re: [Full-disclosure] Zone Alarm Firewall users without Internet after MS patch (MS08-037)
Previous by thread: Re: [Full-disclosure] New round of SSH scan IP's
Next by thread: Re: [Full-disclosure] New round of SSH scan IP's
Index(es):
- Date
- Thread