[46306] in North American Network Operators' Group
Re: PacBell Security/Abuse contact
daemon@ATHENA.MIT.EDU (Jeremy T. Bouse)
Mon Mar 25 14:47:53 2002
From: "Jeremy T. Bouse" <Jeremy.Bouse@undergrid.net>
Date: Mon, 25 Mar 2002 11:45:54 -0800
To: nanog@merit.edu
Message-ID: <20020325194554.GA22739@UnderGrid.net>
Mail-Followup-To: nanog@merit.edu
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <5.1.0.14.2.20020325111322.0339f550@postoffice.pacbell.net>
Errors-To: owner-nanog-outgoing@merit.edu
More specifically I belive this is a Distributed Reflection DoS
like what hit GRC.COM back on Jan 11th... Basically a flood of SYN
packets to well known ports from IPs which appear to be spoofed. I've
actually been riding it out now for over 2 weeks...
The tech support is completely inept and trying to contact
security/abuse is pointless. Final realization of this was when I was
investigating another PacBell customers box which had been compromised
via another PacBell customer machine. After the forensics to get back
logs and track the intrusion I tried contacting PacBell to no avail and
then resulting it tryin to get in contact with their customer directly.
Which I managed to do and resolve the issue... I've never dealt with
such an inept company before.
Jeremy
On Mon, Mar 25, 2002 at 11:18:23AM -0800, Daniel M. Spielman wrote:
>
> At 11:11 PM 3/24/2002 -0800, you wrote:
>
> > Anyone have a telephone number that can reach a live person
> >within Pacific Bell's Security/Abuse department? PacBell's technical
> >support is completely inept with trying to help their customers when
> >under any form of network attack other than passing you to a toll-free
> >number which informs you to send email to an address that goes without
> >answer.
> >
> > Respectfully,
> > Jeremy T. Bouse
> > UnderGrid Network Services
> I've had a similar experience with their tech team. I was being
> dos'd from a college in Chicago so I contacted them to have it filtered out
> and they had no idea what I meant. They suggested I email the Admin at the
> college to get it resolved. I started screaming at them how am i going to
> email someone when I am being attacked. Then they transferred me to their
> supervisor who was even more inept then they were. Frankly i gave up and
> just waited out the dos attack which lasted 2 1/2 days.
>
