Re: Apache Log Files

To: debian-security@lists.debian.org
Cc: debian-security@lists.debian.org
Subject: Re: Apache Log Files
From: thing <thing@katrina.thing.dyndns.org>
Date: Thu, 15 Aug 2002 18:41:34 +1200
Message-id: <[🔎] 3D5B4D1E.548DD50@thing.dyndns.org>
References: <[🔎] 20020814213151.GE1318@scrote>

dont bother, ive been through this, I found i wasted ny time,  25% of the admin
addresses in the /whois bounce, trying to talk to asia whois database about
inaccurate admin contacts for the domains gets me no reply.

While my main problem is korea, yours will be more "local" and while i suppose
many admins in korea wont read english I suspect many wont even look, care or be
able to fix the problem(s)

regards

Thing

Matthew Sackman wrote:

> Hi All,
>
> In apache log files I'm seeing a lot of bogus attacks. Using various
> software I can easily sort out which are Nimda, which are Code Red 1,
> Code Red 2 etc etc, and extract the IPs. That's all fine.
>
> What I then want to do is to do a whois on the IP, extract the name of
> the person who ownes the IP and their email address and send them a
> suitable email.
>
> I've cobbled together various scripts and they kinda work, but the
> problem is that the whois record for IPs can be in about a dozen
> different formats, some of which are *very* unhelpful.
>
> Does anyone know of a simple program that will return info on whois IP
> lookup in a set format?
>
> Thanks,
>
> Matthew
>
> --
>
> Matthew Sackman
> Nottingham
> England
>
> BOFH Excuse Board:
> Someone was smoking in the computer room and set off the halon systems.
>
> --
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Apache Log Files
  - From: matthew@sackman.co.uk (Matthew Sackman)

Prev by Date: Re: Apache Log Files
Next by Date: unsubscribe
Previous by thread: Re: Apache Log Files
Next by thread: Re: Apache Log Files
Index(es):
- Date
- Thread