[122959] in North American Network Operators' Group
Re: Security Guideance
daemon@ATHENA.MIT.EDU (Laurens Vets)
Wed Feb 24 06:29:48 2010
Date: Wed, 24 Feb 2010 12:29:01 +0100
From: Laurens Vets <laurens@daemon.be>
To: Paul Stewart <pstewart@nexicomgroup.net>
In-Reply-To: <C0A98BB6DAFAAB46A78BBA2C51B98F3EF94ABC@nexus.nexicomgroup.net>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
<snip>
> The problem is that a user on this box appears to be launching high
> traffic DOS attacks from it towards other sites. These are UDP based
> floods that move around from time to time - most of these attacks only
> last a few minutes.
Maybe it's not 'malicious' at all. For instance, is there a Bittorrent
client on the box?
<snip>
