[lug] What do you do about hackers (in the current sense of uninvited obnoxious intruders)
Daniel Webb
webb at robust.colorado.edu
Sun Apr 14 02:20:11 MDT 2002
> > Send log copies, along with some note on your time zone settings and IP
> address at the time of attack, to the d.kaufmann at t-online.net.
>
> Dan,
>
> Good advice. I sent logs, IP, time zone to the domain administrator. I
> hope they act on the info. It's not unusual for me to see
> winnt/system32/cmd.exe probes but this attacker ran 89 probes in the minute
> or two that he was coming at me from that IP.
Sounds like nessus or something similar. I haven't had to time do it
yet, but I plan on using it on the machines I admin soon.
More information about the LUG
mailing list