FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.

» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS
Reload this Page hack / spam/ probe /attack

 
Page 2 of 2 < 1 2
 
LinkBack Thread Tools
 
Old 05-04-2012, 03:00 AM
Diego Sanchez
 
Default hack / spam/ probe /attack
Have you tryied with http://www.us-cert.gov/ ?
Or http://www.first.org/ ?

Maybe they can help you.

(At least, ArCert helped me a few times)



--
Diego - Yo no soy paranoico! (pero que me siguen, me siguen)
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 05-04-2012, 04:27 PM
"Asymmetrics Webmaster"
 
Default hack / spam/ probe /attack
You were lucky you got a repsonse. I didn't and I was getting persistent
spam for years. Till I started looking deeper. The company behind was
internap. I think still it is. I went around and published the information I
had including the MTAs. It then stopped.
http://www.spamhaus.org/sbl/listings/internap.com



-----Original Message-----
From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf
Of bob
Sent: Thursday, May 03, 2012 6:43 PM
To: centos@centos.org
Subject: [CentOS] hack / spam/ probe /attack

so last night all my servers were severely probed and they tried to violate
me (lol)

the attack was so egregious I decided to contact the isp for that ip.
Telepacific.
The ip has some google searches that point to a few spam and a few
attacks...So i assume a compromised server.

So I sent them the info and said it must be a hacked server (the ip is on
their business network)

they responded ' you are not a customer and we cannot by law discuss a
customer with you'
They wanted me to contact my datacenter so they could look into it.

I responded and told them the info again and they basically said it is up to
my isp or datacenter to deal with it and to basically 'go away'


that was my first attempt to notify an isp about a hacker/hacked
computer on their servers....did not go so well.
Is that the way they all deal with these issues?


was not expecting that from the isp
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 05-04-2012, 04:33 PM
Bob Hoffman
 
Default hack / spam/ probe /attack
On 5/4/2012 12:27 PM, Asymmetrics Webmaster wrote:
> You were lucky you got a repsonse. I didn't and I was getting persistent
> spam for years. Till I started looking deeper. The company behind was
> internap. I think still it is. I went around and published the information I
> had including the MTAs. It then stopped.
> http://www.spamhaus.org/sbl/listings/internap.com
>
>
>
well, the mail to abuse was just a 'don't call us, we'll probably not
call you, thanks for the info'
Guess it is not worth wasting the time if the isps won't furnish info
without a court order..bs. but understandable.

On a lighter note, my spam set up is getting better and it is
interesting to see how they move it around and upgrade
their attacks as you upgrade your spam system.
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 05-07-2012, 11:48 PM
Scott Silva
 
Default hack / spam/ probe /attack
on 5/3/2012 6:18 PM Bob Hoffman spake the following:
> On 5/3/2012 4:05 PM, m.roth@5-cent.us wrote:
>> whois only lists a "technical contact" ofhostmaster@telepacific.com.
>> However, from their website, I went to contact
>> <http://www.telepacific.com/support/corporate-contacts.asp>, and see
>> <snip>
>> 877-487-8349 Emergency Law Enforcement
>> Option 2. Fraud and subpoena compliance
>> 866-839-8545 Non-Emergency Toll Fraud, Call Annoyance, Subpoena
>> Compliance and non-emergency law enforcement
>> 877-702-2873 Internet Abuse Complaints
>> <snip>
> Thanks for the ideas guys.
> I got home late and could only send a mail to abuse. Gonna try the calls
> tomorrow.
> It would be nice to know the way all these isps would like this stuff
> presented...
> And if I can get this yahoos name and address.
>
> bob
Even the best abuse departments will probably not give you any info on the
attacker... That might open them up to liability

_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 05-20-2012, 12:48 AM
Tilman Schmidt
 
Default hack / spam/ probe /attack
Am 03.05.2012 23:16, schrieb Cliff Pratt:
> On Fri, May 4, 2012 at 6:14 AM, <m.roth@5-cent.us> wrote:

>> Do it. And try abuse; if not, I meant it about asking for the legal
>> service address, which is what you have your lawyer send a letter to. Or
>> the FBI. Give them something to do other than setting up naive innocent
>> idiots so they can bust them for Big Headlines.
>>
> My mother told me that abuse rarely helps. Talking nicely often does. LOL.

It seems that few ISPs have "talking nicely" mailboxes.

> (Joking, of course).

AOL

T.
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Page 2 of 2 < 1 2

Thread Tools




All times are GMT. The time now is 08:35 AM.

VBulletin, Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org

Contact Us - Linux Archive - Archive - Top -