Every day we get scanned by various entities and some are more persistent
than others. I'm looking for input on when most of you decide to send an
e-mail or make contact with the person listed as abuse contact or
responsible party according to whois for the source address. Since most are
coming from overseas I haven't bothered figuring I wouldn't get a response
anyway and was also concerned that initiating contact may make things worse.
Scans seem fairly commonplace so I generally don't get alarmed. I'd love to
hear about your practices for incident handling.
N
_________________________________________________________________
Add photos to your messages with MSN 8. Get 2 months FREE*.
http://join.msn.com/?page=features/featuredemail
- Re: Incident Response netsec novice
- Re: Incident Response netsec novice
- Re: Incident Response H C
- Re: Incident Response Chris Berry
- Re: Incident Response Byrne Ghavalas
- Re: Incident Response Meritt James
