Hi Yuri (and other ISP workers) I need a little advice if that is ok.
My client got hit by a distributed DOS / mail bomb attack. It was very sophisitacted involving every header spoofed and none of them routed from a site in NZ or Australia. The spammer sent mails pretending to be from my client to fictitious people in overseas companies and of course we got hit with thousands of bounced postmaster type messages on our server. Unfortunately we couldn't block them as they were all from legit companies and could only filter about 50% of them by content. We contacted some of the sites who had been used trying to get some server logs of the spammers mail server connection and never got any replies. Is there an international agreement between ISP's regard sharing of help in situations like this? The NZ police, Internal Affairs etc couldn't help and there is no mail gateway watcher in NZ that we could access to trace the messages leaving the country. Just a question for future reference. TIA Shane -- Shane Hollis Notes Unlimited New Zealand Ph: 021 465 547 Email: [EMAIL PROTECTED]
