Fritz Mesedilla wrote:
> Our junior sysad was able to trace this to a Drivenet company. Local siya.
> Mukhang naka-pre-paid card yung mokong.
>
> Anyway, sana mabigyan niyo ako ng tracing program. Something that can give
> me an idea who is trying to enter our servers.
Kung prepaid account yan malabong ma-trace yan, lalo na kung wala pa siyang
POP3 email doon sa ISP niya. Pero prepaid nabiktima ng Code Red... maliit
lang ang chance na ma-infect 'yon dahil hindi naman 'yon laging on-line e.
Maaring sira-ulo script kidde ang loko na nagbabaka-sakaling naka-IIS kayo
na wala pang patch. Siguro ang magandang gawin diyan ay makipag-coordinate
na lang kayo doon sa ISP ng nandiyan sa ISP na 'yan at kung may Caller-ID
logging sila at maima-match natin yung IP address sa logged na caller ID sa
ekasktong oras na naka lagay diyan sa logs niyo ay maaring mahuli 'yan kung
isang script kiddie nga 'yan.
--
========================================================
Gideon N. Guillen
Internet: [EMAIL PROTECTED]
========================================================
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
