[61471] in North American Network Operators' Group
DShield reports by AS for 'Blaster' and other issues
daemon@ATHENA.MIT.EDU (Johannes B. Ullrich)
Fri Aug 29 08:52:53 2003
From: "Johannes B. Ullrich" <jullrich@sans.org>
Reply-To: jullrich@sans.org
To: nanog@merit.edu
Date: Fri, 29 Aug 2003 08:49:31 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--=-jJ3eKK6NajzL8Gc4A6IG
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
I setup a 'real time' report by AS to assist networks
in finding infected systems. The URL:
http://www.dshield.org/asreport.php
This report is intended for automated parsing, so it comes as a simple
tab delimited table with brief 'usage' header. You can filter by target
port, protocol and AS. The AS number is required.
The AS lookup is somewhat experimental. So feedback is appreciated.
--=20
SANS - Internet Storm Center
http://isc.sans.org
PGP Key: http://isc.sans.org/jullrich.txt
--=-jJ3eKK6NajzL8Gc4A6IG
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQA/T0vbR1p7hYJvB/wRAia0AJ9B3G+bhTAyAq/ywRZiJVmg2hJ5mwCgkE/4
ee5p0TXeJkU0NDQ36pBxXOk=
=00YT
-----END PGP SIGNATURE-----
--=-jJ3eKK6NajzL8Gc4A6IG--
