[90044] in North American Network Operators' Group
Tools for LARTing large nets of compromised boxen?
daemon@ATHENA.MIT.EDU (Michael Loftis)
Thu Apr 20 02:52:34 2006
Date: Thu, 20 Apr 2006 00:51:35 -0600
From: Michael Loftis <mloftis@wgops.com>
To: nanog@merit.edu
X-MailScanner-From: mloftis@wgops.com
Errors-To: owner-nanog@merit.edu
One of our customers is (has been) under concerted attempt at a DDoS attack
against their web server off and on for a while. I've lists of IPs, lots
of them, many hundreds. I'd like to know if anyone has a tool that will
take and match these lists of IPs into abuse contacts and fire off a LART
to the appropriate RP for the IP, but only one per full set, IE if RP-A has
IP A.B.C.D and A.B.C.C he should get one mail clue-batting him for both IPs.
Any help? TIA!
--
"Genius might be described as a supreme capacity for getting its possessors
into trouble of all kinds."
-- Samuel Butler
