MESSAGE
DATE | 2007-04-20 |
FROM | Elfen Magix
|
SUBJECT | Re: [NYLXS - HANGOUT] Break In attempts on ssh
|
From owner-hangout-at-mrbrklyn.com Fri Apr 20 20:44:38 2007 Received: from www2.mrbrklyn.com (localhost [127.0.0.1]) by www2.mrbrklyn.com (8.13.1/8.13.1/SuSE Linux 0.7) with ESMTP id l3L0iaqC029224 for ; Fri, 20 Apr 2007 20:44:38 -0400 Received: (from majordomo-at-localhost) by www2.mrbrklyn.com (8.13.1/8.13.1/Submit) id l3L0iaJD029223 for hangout-outgoings; Fri, 20 Apr 2007 20:44:36 -0400 X-Authentication-Warning: www2.mrbrklyn.com: majordomo set sender to owner-hangout-at-nylxs.com using -f Received: from web38005.mail.mud.yahoo.com (web38005.mail.mud.yahoo.com [209.191.124.116]) by www2.mrbrklyn.com (8.13.1/8.13.1/SuSE Linux 0.7) with SMTP id l3L0iTqv029218 for ; Fri, 20 Apr 2007 20:44:31 -0400 Received: (qmail 67539 invoked by uid 60001); 21 Apr 2007 00:44:19 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=SXUaruQKuUSv/vcEgtTswxkpviCk8mKhQ3pG8J7z6YvHG9Kcpqq05vdlzqOF20Cvgk8rJaPIbarWUMCarG2yuXQQrY9cgXPwrflp/5xWSFiByVF/KVSUsQrAXIkMTyOJYYuY8SoVFwqkZ4lH/1SWLcvaAFKdFp3nlpoz9gCgElw=; X-YMail-OSG: eoiimfoVM1kOSUTCd34JmVoQHx9tpGnO8_RaJm.YnSTef2h1u0EkfbTzQsWRwgwyunyTa2TAlWnM95y43hzY48D3BNW5n220nADkDju6SREfOGqlkaKsGbW9Zw-- Received: from [66.65.90.174] by web38005.mail.mud.yahoo.com via HTTP; Fri, 20 Apr 2007 17:44:19 PDT Date: Fri, 20 Apr 2007 17:44:19 -0700 (PDT) From: Elfen Magix Subject: Re: [NYLXS - HANGOUT] Break In attempts on ssh To: Ruben Safir Cc: Ron Guerin , hangout-at-mrbrklyn.com In-Reply-To: <20070420224205.GA28039-at-www2.mrbrklyn.com> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="0-877882611-1177116259=:67206" Content-Transfer-Encoding: 8bit Message-ID: <620571.67206.qm-at-web38005.mail.mud.yahoo.com> Sender: owner-hangout-at-mrbrklyn.com Precedence: bulk X-Evolution-Source: mbox:/var/mail/ruben X-Evolution: 00001532-0000 Content-Length: 3082 Lines: 39 Status: RO X-Status: X-Keywords: X-UID: 412
--0-877882611-1177116259=:67206 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit
Ruben Safir wrote: On Fri, Apr 20, 2007 at 11:34:11AM -0700, Elfen Magix wrote: > I too have had the same problem on my Xserves I have colocated at Telx (60 Hudson). At first it was just a nuance as it occassionally happens on one machine or another. Then one day some stupid group who call themseves "the chans" and "/b/" decided to target one of my chat rooms. They tried everything to flood, root, shutdown or take over the servers. > > These were just punk kids, and as such, I dealt with it in my way- contact their ISPs, sending them copies of the logs and demanding actions against their users or else end up paying for new servers. Somehow it seems to work for most of them, since the attacks have droppped significantly. >
But comcast is completely unresponssive to ANYTHING.
Ruben --
Send them an invoice of work you needed to do to your server, include consultant's fees and purchase of new hardware and software.
I have not gotten much in terms of money doing this, but it does grab their attention and become very appologetic and more cooperative afterwards.
--------------------------------- Ahhh...imagining that irresistible "new car" smell? Check outnew cars at Yahoo! Autos. --0-877882611-1177116259=:67206 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: 8bit
Ruben Safir <ruben-at-mrbrklyn.com> wrote: On Fri, Apr 20, 2007 at 11:34:11AM -0700, Elfen Magix wrote: > I too have had the same problem on my Xserves I have colocated at Telx (60 Hudson). At first it was just a nuance as it occassionally happens on one machine or another. Then one day some stupid group who call themseves "the chans" and "/b/" decided to target one of my chat rooms. They tried everything to flood, root, shutdown or take over the servers. > > These were just punk kids, and as such, I dealt with it in my way- contact their ISPs, sending them copies of the logs and demanding actions against their users or else end up paying for new servers. Somehow it seems to work for most of them, since the attacks have droppped significantly. >
But comcast is completely unresponssive to ANYTHING.
Ruben --
Send them an invoice of work you needed to do to your server, include consultant's fees and purchase of new hardware and software.
I have not gotten much in terms of money doing this, but it does grab their attention and become very appologetic and more cooperative afterwards.
Ahhh...imagining that irresistible "new car" smell? Check out new cars at Yahoo! Autos.
--0-877882611-1177116259=:67206--
|
|