Re: What to do with attackers?
On Fri, Nov 04, 2005 at 09:30:30AM -0500, Gene Heskett wrote:
> Sorry, I don't agree. Rejecting the attackers packets just confirms
> that you are indeed there.
Unless you are rejecting all traffic on all ports (so that rules out any
server then) they'll know you are there anyway.
> 2 of those got past iptabes because they came from a verizon dns
> server I was using but had been kitted. I send vz a nastygram, and
> they re-image the box till the next time.
I remember you writing this in a previous message. Quite an interesting
entry-vector!
--
Jon Dowland
http://jon.dowland.name/
Reply to: