We found ftp sessions connected to a radio that we couldn't operate correctly. The IPs were originating from France. In the radio's directory we found the first several minutes of a French movie (someone was obviously amusing themselves trying to see how large a file they could FTP into the radio). This was way back when the first Motorola radios shipped without any password protection at all on Telnet and FTP!
What did we do? Put all the radios on privates inside our firewall. What should you do? Figure out a way to block whatever way you're being attacked. What difference does it make whether you know the culprit or not? The point is to learn to block it. Whatever a known culprit can do you're better served changing things so that the same exploit cannot be attacked again by the known culprit ... or anyone else. Rich ----- Original Message ----- From: "Victoria" <[EMAIL PROTECTED]> To: "'WISPA General List'" <[email protected]> Sent: Thursday, January 12, 2006 9:48 PM Subject: [WISPA] Attempted hack, what would you do? Theoretically, if someone attempted to hack into your network via your router, say at least ten times, what would you do? If you could identify this culprit via logs and IP addresses, where you had them dead to rights, what would you do? ~V~ -- WISPA Wireless List: [email protected] Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ -- WISPA Wireless List: [email protected] Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
