Yeah, I'm well aware of the near impossibility of ever tracking IP address to anything useful, but I'm a person who likes data, for within mounds of useless data can be found trends. Most of all, I'm just curious. Also, I'd like to explore the possibility of reporting compromised people to their ISPs. Some US ISPs do have abuse policies that might cause them to pressure their users to clean themselves. A number of these attacks could have come from servers for all we know. Servers are desirable for Trojans due to their fast internet connections and 24/7 uptime.
~Brad ----- Original Message ----- From: "Andy Matthews" <[EMAIL PROTECTED]> To: "CF-Talk" <cf-talk@houseoffusion.com> Sent: Friday, August 08, 2008 3:00 PM Subject: RE: SQL injection attack on House of Fusion > blocking the IPs would probably stop the attacks, but analyzing them is > going to be useless. They're either using some hacked computer as a proxy, > or have some sort of spoofing in place. Unless you're really good at > forensics, you'll never find their real origination point. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:310569 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4