Security Basics mailing list archives
Re: Incident Response
From: H C <keydet89 () yahoo com>
Date: Mon, 9 Dec 2002 06:27:35 -0800 (PST)
My general question is just when do I need to do something other than just check my firewall logs for
the
source address and verify they weren't successful in
gaining access anywhere vs. actually reporting an incident.
Why do anything? The general sense is that the return doesn't really justify the time required to report such things. So, if the scans are unsuccessful, why bother with them at all? Seems like a colossal waste of time... __________________________________________________ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com
Current thread:
- Incident Response netsec novice (Dec 05)
- <Possible follow-ups>
- Re: Incident Response netsec novice (Dec 06)
- Re: Incident Response H C (Dec 09)
- Re: Incident Response Chris Berry (Dec 10)
- Re: Incident Response Byrne Ghavalas (Dec 10)
- Re: Incident Response Meritt James (Dec 11)
- Re: Incident Response Byrne Ghavalas (Dec 10)