And er, >thanks again<

Post #340,670 by Ashton 3/20/11 7:23:49 PM 3/20/11 7:34:31 PM Reply	And er, >thanks again< Even we dilettantes comprehend the number of intense (nee wasted) hours invested in such a contretemps.. And, btw -- would love some dirt on the perps at 66.212.21.135, after you've expunged their tracks. Necktie Party, anyone? DDOS --> same addy via Nadir's Raiders? Ed: opTy plus: isn't there a Honey Pot thingie? ever more sinister than mere digital brute-force vengeance? ;^> Edited by Ashton March 20, 2011, 07:34:31 PM EDT Expand All History
Post #340,673 by drook 3/20/11 9:10:51 PM 3/20/11 9:11:21 PM Reply	You think that can do more than annoy someone? The odds that you'd even be fighting back against the true attacker are vanishingly small. These guys always have access to compromised systems, which they use to launch attacks. You're never going to see a connection from their "real" IP. At best you'd drop one of their bots. And maybe alert its owner that it was compromised. Of course then he'd have your IP as the one that knocked him down. Feh ... I'm going to go work on something less depressing. PS: Thanks for the hard work, Mike. -- Drew Edited by drook March 20, 2011, 09:11:21 PM EDT Expand All History
Post #340,676 by static 3/20/11 9:44:44 PM Reply	Sometimes it will get someone into trouble. But that's merely the admin you annoyed laying into whoever let that machine get compromised. :-/ At best, a whole subnet of machines would be re-assesed, security improved and perhaps a few compromised bots removed. But you'd almost never know if that's what happened or not. Wade. Q:Is it proper to eat cheeseburgers with your fingers? A:No, the fingers should be eaten separately.
Post #340,677 by mvitale 3/20/11 9:47:54 PM Reply	They were reported. I spoke with a techie at the controlling network for that IP address yesterday morning. I submitted an abuse report with the pertinent information. He informed me that yes, in fact, that was one of their IP addresses. In a colocation facility in China. Regardless, the administrator of that server had 24 hours to fix the problem or their ethernet cable would get yanked. That's about the best I could do. We'll see if I ever hear back from 'em. -Mike "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." - Benjamin Franklin, 1759 Historical Review of Pennsylvania
Post #340,681 by folkert 3/20/11 10:37:45 PM Reply	Back years ago... I was able to track the person back through 4 machines and the trail went dry... and this was in the late 90s. Do you honestly think its gotten easier? My honest guess is AT LEAST 10 machines between... each compromised to not have trackable logs or anything usable to get to them. its just not doable anymore. Plus, more than likely its all scripted. machines going to machines to machines to machines to machines to machines to machines, all coordinated through IRC Chatrooms that have ZERO LOGS.
Post #340,687 by Ashton 3/21/11 1:07:00 AM Reply	{sigh) Pure anonymity has arrived on little pussy-cat feet ..not so colorful a picture as that line about 'the fog' coming in. :-/

Welcome to IWETHEY!