[66146] in North American Network Operators' Group
Re: Automated Network Abuse Reporting
daemon@ATHENA.MIT.EDU (Joel Jaeggli)
Mon Dec 29 11:37:18 2003
Date: Mon, 29 Dec 2003 08:24:16 -0800 (PST)
From: Joel Jaeggli <joelja@darkwing.uoregon.edu>
To: Jason Lixfeld <jason@lixfeld.ca>
Cc: nanog@nanog.org
In-Reply-To: <AD225440-3A18-11D8-BBC5-000A95989E4A@lixfeld.ca>
Errors-To: owner-nanog-outgoing@merit.edu
if you automate abuse reporting you can basically assume that the reciver
will automate abuse handling. since that has in fact happened as far as i
can tell the probably of you automated asbuse replaies ever reaching a
human who cares or can do something about it is effecetivly zero.
joelja
On Mon, 29 Dec 2003, Jason Lixfeld wrote:
>
> We're a small company but none the less are inundated with firewall
> logs reporting numerous attempts to find holes in our network; c'est la
> vie. Seeing as how we are small, we don't have the resources to go
> through and send emails off to the abuse departments of each network
> sourcing the probes. Question is: Has there been development of some
> sort of intelligent unix land app that can understand Cisco syslog
> output, find the abuse departments of the sourcing networks and send
> them off a nice little FYI?
>
--
--------------------------------------------------------------------------
Joel Jaeggli Unix Consulting joelja@darkwing.uoregon.edu
GPG Key Fingerprint: 5C6E 0104 BAF0 40B0 5BD3 C38B F000 35AB B67F 56B2
