|
Security Incidents
mailing list archives
Re: auto-reporting to ISPs
From: jnemeth () VICTORIA TC CA (John Nemeth)
Date: Tue, 7 Mar 2000 21:25:04 -0800
On Jul 23, 1:59pm, wozz () LUVEWE BONCH ORG wrote:
} On Tue, Feb 29, 2000 at 04:47:44PM -0800, Robert Graham wrote:
} > Below is an e-mail from a customer who would like to see us add an
} > auto-email feature to our product in order to notify the ISP of the
} > offending hacker. This is pretty funny because we've already seen some
} > complaints by ISPs from such a feature in other products appear on this list
} > over the past couple of days.
} >
} > Could abuse () isp people please send me e-mail:
} > * what is the proper way a product like BlackICE Defender should assist the
} > user in reporting such events?
}
} [snip]
}
} Here is what I would like to see as an abuse@ person from BlackIce.
}
} #1) A text version of the csv data. I don't want to have to fire up a
} spreadsheet program just to read this data. It adds a little bit extra time
} to every report I have to deal with
Along this line if data were to be sent to me as an abuse@ person
with ANY kind of encoding (this includes MIME, HTML, etc.), I will just
toss the message without doing any kind of processing on it at all. My
preferred format would be tcpdump-like output along with a description
of the complaint. Also, timestamps must be accurate!
}-- End of excerpt from wozz () LUVEWE BONCH ORG
 By Date 
By Thread
Current thread:
- Re: ingreslock message, (continued)
Re: @home: Is *anyone* really home there??? Jude (Mar 03)
|
Intro
