Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?
Back for a limited time - Get 15% off sitewide on Slashdot Deals with coupon code "BLACKFRIDAY" (some exclusions apply)". ×

Submission + - Ask slashdot: what to do when spotting a network intruder IP address? 1

phr4nck writes: I am in charge of a small website security. Everyday the FW logs show the IP address of people trying to get access to the system. This morning, I routinely was checking the file and a class A IP address trying to get root access held me up. It was coming from a big well known college on the US east coast. I contacted the IT security person and his first answer was:
"What are the timestamps on your logs? We located the machine a few hours ago and it should no longer be on our network."
I replied in sending a time stamped log file for which I received this answer:
"This host has been taken offline.
Thanks for reporting it."
It is not the first time I am reporting abusing access to my network and I have no idea if things are then taken seriously. What really to do? What would you do?
By the way the host is really currently offline.
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Ask slashdot: what to do when spotting a network intruder IP address?

Comments Filter:

Intel CPUs are not defective, they just act that way. -- Henry Spencer