Re: [cobalt-security] OT But is a Cobalt/Security issue

[Martín Fiumara <martinfiumara@xxxxxxxxxxx>]

They can check, but just dont want to.


----- Original Message -----
From: "Render-Vue" <sales@xxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Wednesday, January 16, 2002 9:08 PM
Subject: [cobalt-security] OT But is a Cobalt/Security issue


> Hi Yah,
>
> Have the vast majority of security issues resolved with one of the RaQ's
we
> have someone following up on the server log reports, snort reports, port
> scans etcetera to the appropriate ISP's or sys admins.
>
> Now being still a bit wet behind the ear with Network Security I have a
> question to ask...
>
> We have been seeing daily from the main New Zealand ISP continual attacks
on
> one of the servers ranging from formmail,  /etc/password hacks to DoS
> attacks and Squid Scans. We have contacted them with the reports as they
> requested and he even converted the time of the logs to New Zealand time
so
> that they can check their logs with ours but we keep getting this from
> them...
>
> 203.96.111.202 is one of our Cache servers we use for international
traffic.
> Unfortunately its not possible for us to trace who is using it at a
> particular time.  If you are presented with a different IP please do not
> hesitate to forward us the info.  WE take our network security VERY
> seriously and endeavour to do all that's within our power to protect it.
>
> Is this true then that they can't check or are they basically saying we
> can't be bothered cause there's too much going through and it's doesn't
> justify the man hours to check it your wee problems.
>
> Curious to know
>
> Chae
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>