disorder
Useful Idiot
Premium
join:2003-04-16
Alexandria, VA
clubs:
1 edit | reply to nevertheless
Re: Someone At Earthlink Trying To Hack Into My PC
Ah... I see soo it should be someone using the actual service then. Where could I get the full log on my pc?
I want to know the f*ck that was trying to do this... |
|
nevertheless
Premium,VIP
join:2002-03-08
Burlington, ON
 ·Cogeco Cable
| said by disorder  :
Ah... I see soo it should be someone using the actual service then. Where could I get the full log on my pc?
Most likely it's simply a user of theirs that's been scanning you, and your firewall has kindly looked up the administrative contact info for you. said by disorder :
I want to know the f*ck that was trying to do this...
Earthlink won't tell you, that would violate their subscriber confidentiality agreement.
It doesn't really matter, odds are it's simply another worm, virus, or trojan doing it's automated scanning.
Go into your firewall again, find the log(s) that gets you timestamp, port information (both source and destination) and email that to their abuse contact listed in their ARIN information.
--
Some people think I'm an idiot. I disagree, but idiocy is subjective--so they may well be right. With this in mind, take everything I post with a grain of salt, eh? |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| said by nevertheless :
Go into your firewall again, find the log(s) that gets you timestamp, port information (both source and destination) and email that to their abuse contact listed in their ARIN information.
No, please don't: users who don't know how to read firewall logs put an awful burden on abuse departments.
Much better is to use the myNetWatchman service, where your firewall logs are submitted to a central server, and summarized logs are sent to the ISPs. This makes it much easier on the ISP because they get everything in one deliverable.
It's free and easy.
Steve
--
Stephen J. Friedl * Security Consultant * Tustin, California USA * my web site |
|
disorder
Useful Idiot
Premium
join:2003-04-16
Alexandria, VA
clubs:
1 edit | Thanks steve I will surely check it out. |
|
nevertheless
Premium,VIP
join:2002-03-08
Burlington, ON
·Cogeco Cable
| reply to Steve
said by Steve :
Much better is to use the myNetWatchman service, where your firewall logs are submitted to a central server, and summarized logs are sent to the ISPs. This makes it much easier on the ISP because they get everything in one deliverable.
I wsa going to get to that, but I find it's easier to make them see how annoying and how much of a hassle it is to do this whole thing the first time. 
--
Some people think I'm an idiot. I disagree, but idiocy is subjective--so they may well be right. With this in mind, take everything I post with a grain of salt, eh? |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| said by nevertheless :
I was going to get to that, but I find it's easier to make them see how annoying and how much of a hassle it is to do this whole thing the first time.
So to make your point you sic him on a poor, defenseless abuse desk?
Maybe we should start sending stuff to you at abuse@cogeco.ca? 
--
Stephen J. Friedl * Security Consultant * Tustin, California USA * my web site |
|
nevertheless
Premium,VIP
join:2002-03-08
Burlington, ON
·Cogeco Cable
| said by Steve :
Maybe we should start sending stuff to you at abuse@cogeco.ca?
Many of the people in this forum already do--via Mynetwatchman!
--
Some people think I'm an idiot. I disagree, but idiocy is subjective--so they may well be right. With this in mind, take everything I post with a grain of salt, eh? |
|
