On Fri, 14 Mar 2003 11:40:25 -0900 civileme <[EMAIL PROTECTED]> wrote:
> Pierre Fortin has some dandy answers, concerned with automnated email to > > sysadmins followed by action to keep them from bothering you or others. > I think you will find them at his site. > > http://pfortin.com/Linux/ > > Civileme Actually... the countermeasures were only partially successful... those times where I've been able to inject an e-mail into the attacking system, I suspect they were never read... OK... I did get ONE reply to which I responded; but nothing back... I've been down with the flu for a couple of days, so been using the time to address some issues (postfix anti-spam & Nimda/CodeRed "crud")... For a while, my daily reports showed no activity on Nimda/CodeRed scene; then on March 10th, the flood gates started opening again... On the _passive_ side, I have some ideas for short-circuiting Nimda attacks with iptables. On the _active_ (aka "hackback"), if anyone has time and a Windows(YUCK!) system available for trying out stuff, contact me offline... M$ and their cronies have not been able to put a stop to the proliferation of these infections, so I'm game to give it a try if someone wants to help... The purpose of a Windows machine is to be the attacker/spankee... actual virus/worm optional... :^) Pierre
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
