|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: auto-reporting to ISPs
From: John Nemeth (jnemeth
VICTORIA.TC.CA)Date: Tue Mar 07 2000 - 23:25:04 CST
- Next message: Przemyslaw Frasunek: "firewall abusing"
- Previous message: Eric Maiwald: "Re: ingreslock message"
- Maybe reply: John Nemeth: "Re: auto-reporting to ISPs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Jul 23, 1:59pm, wozzLUVEWE.BONCH.ORG wrote:
} On Tue, Feb 29, 2000 at 04:47:44PM -0800, Robert Graham wrote:
} > Below is an e-mail from a customer who would like to see us add an
} > auto-email feature to our product in order to notify the ISP of the
} > offending hacker. This is pretty funny because we've already seen some
} > complaints by ISPs from such a feature in other products appear on this list
} > over the past couple of days.
} >
} > Could abuseisp people please send me e-mail:
} > * what is the proper way a product like BlackICE Defender should assist the
} > user in reporting such events?
}
} [snip]
}
} Here is what I would like to see as an abuse person from BlackIce.
}
} #1) A text version of the csv data. I don't want to have to fire up a
} spreadsheet program just to read this data. It adds a little bit extra time
} to every report I have to deal with
Along this line if data were to be sent to me as an abuse person
with ANY kind of encoding (this includes MIME, HTML, etc.), I will just
toss the message without doing any kind of processing on it at all. My
preferred format would be tcpdump-like output along with a description
of the complaint. Also, timestamps must be accurate!
}-- End of excerpt from wozzLUVEWE.BONCH.ORG
- Next message: Przemyslaw Frasunek: "firewall abusing"
- Previous message: Eric Maiwald: "Re: ingreslock message"
- Maybe reply: John Nemeth: "Re: auto-reporting to ISPs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]