On Fri, 18 Feb 2000, J. T. B. wrote:
>
> Wind(bl)ows doesn't have a "whois" is there an equivalent command?
>
My mistake, I forget that folks stuck with nothing but a drain brammaged
OS under their control are forced to get real tools to do their work from
third parties and the freeware/shareware realm. Of course, fancy little
point and click toys are all the rage, so, why actually go grab some
commandline and unix like tools that will work from a dos prompt when
point and click works so well to slow one down, right? Nevermind that
those commandline tools will actually do things in a manner consistant
with the tools one has come to know and understand on the other systems
they have been working with for years more then the desktop OS they have
been relegated to, yes? Hell, these intel boxes are all just over powered
anyways, so, nevermind the resources that are sucked up with new fancy
tools, we've got megs o ram to let leak from our control with each and
every new 'window' we chose to open, forget the fact that the only way to
recover those resources is a reboot. Nevermind the fact that URL's
pointing to a tool is alot easier then actually giving others a clue as to
what information can actually be found where in a nice, sweet, precise
manner <what did it take, two of neary the same keystrokes, the second
under most shells a simple up arrow and a few backspaces and reedits?>,
and from a simple tool that can be found on most every unix system. Is
it time now to forget what goes on under the GUI and to just let the
cool little toys play it out for you? Has samspade been recently
updated to deal with the way whois is now worked on the net? Or is it
still broked for internic/networksolutions queries? Is the new rage to
not give the down deep and dirty info and rather smother it with URL's
to sweet little GUI tolls so no one needs to really know what goes on
under the hood? Do not most folks adminning these systems actually have
telnet or ssh windows to their servers open? Would you folks rather try
and bring up a neat little toy when yer systems are under assault and hope
it does not crash yer desktop as you fire it up, or does it make more
sense to actually issue a few quick keystrokes into one of those
terminals? Do we need to only be refering to windows GUI sweet toys here?
Naw, even nmap has a GUI now days, I seldom see anyone telling others
which screen tab to point and click settings into for nmap scans and
stuffs, how many folks out here are answering fw-1 questions with replies
about what sreen tabs one should point and click in in it's GUI for the
proper settings for blocking real audio multicasts? Yep why give real
clues and thoughtful answers that will enlighten folks beyond the limits
of their desktop OS when flashing a quick URL is oh so much easier...
Thanks,
Ron DuFresne
>
> >From: Ron DuFresne <[EMAIL PROTECTED]>
> >To: "Michael E. Cummins" <[EMAIL PROTECTED]>
> >CC: Firewalls Mailing List <[EMAIL PROTECTED]>
> >Subject: Re: Someone is scanning me right now
> >Date: Thu, 17 Feb 2000 19:14:48 -0600 (CST)
> >
> >
> >
> >All these comments to use neotrace and other little tools like samspade
> >are silly. Nice little point and click toys for those folks that are
> >stuck in windows and do not understand how to do a simple whois from a
> >commandline to the proper authority in question. sheesh folks, the man
> >had the IP address in question already in his logs, so a simple:
> >
> >whois [EMAIL PROTECTED]
> >
> >Points you to the whois server at ripe.net, so:
> >
> >whois [EMAIL PROTECTED]
> >
> >and the man has all the info needed to know whom to contact about the
> >probes.
> >
> >Thanks,
> >
> >Ron DuFresne
> >
> >
> >
> >On Thu, 17 Feb 2000, Michael E. Cummins wrote:
> >
> > > Just curious.
> > >
> > > Someone is gently scanning me right now from 195.158.132.218 ; out of
> > > curiosity, I tried connecting to this IP on 21; 80; 119; etc. just to
> >see if
> > > I would get any return info but was forcefully rejected on each attempt.
> > > They were initially scanning for (according to my firewall logs) Net-Bus
> >PRO
> > > and backdoor G-1 connections. Now that I have his IP and time of
> > > connection, what other information can I get about him so I can submit
> >him
> > > to.. who?
> > >
> > > His ISP would be the most likely source to complain to, but how do I get
> > > that? What other information can I acquire to help nail him down?
> > >
> > > Any advice on what step to take next? Probably too late to help me
> >catch
> > > this one but I suppose there will always be a "next" one!
> > >
> > > Thank you!
> > >
> > > ,_,
> > > (O,O)
> > > ( )
> > > -"-"---------------------------------------------------------------
> > > | From the Desk of Michael E. Cummins |
> > > |
> |
> > > | WEBSITE: http://www.i-magery.com |
> > > | E-MAIL: mailto:[EMAIL PROTECTED] |
> > > |
> |
> > > | "The main thing is to keep the main thing, the main thing" |
> > > | - Albert Einstein
> |
> > > |
> |
> > > | "Si hoc legere scis numium eruditionis habes" |
> > > -------------------------------------------------------------------
> > >
> > >
> > > ====================================================
> > > And for you automated email spammers out there,
> > > here are the email addresses of the current board of
> > > the Federal Communications Commission:
> > > Chairman William Kennard: [EMAIL PROTECTED]
> > > Commissioner Susan Ness: [EMAIL PROTECTED]
> > > Commissioner Harold Furchtgott-Roth: [EMAIL PROTECTED]
> > > Commissioner Michael Powell: [EMAIL PROTECTED]
> > > Commissioner Gloria Tristani: [EMAIL PROTECTED]
> > > And let's help you send some spam to the USPS, too:
> > > [EMAIL PROTECTED]
> > > ====================================================
> > >
> > > -
> > > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > > "unsubscribe firewalls" in the body of the message.]
> > >
> >
> >~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> >"Cutting the space budget really restores my faith in humanity. It
> >eliminates dreams, goals, and ideals and lets us get straight to the
> >business of hate, debauchery, and self-annihilation." -- Johnny Hart
> > ***testing, only testing, and damn good at it too!***
> >
> >OK, so you're a Ph.D. Just don't touch anything.
> >
> >-
> >[To unsubscribe, send mail to [EMAIL PROTECTED] with
> >"unsubscribe firewalls" in the body of the message.]
>
> ______________________________________________________
> Get Your Private, Free Email at http://www.hotmail.com
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
***testing, only testing, and damn good at it too!***
OK, so you're a Ph.D. Just don't touch anything.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
