LOL... Ever heard of IP spoofing? Sure you need to complain about it, but the one thing they need to do is track the packets. This will only work if all paths along the way, have log capturing to traverse the mac address to get the correct IP address.
But yes start with your IP, give them as much info as they need to do their job with. It is then in their hands to contact the authorities to have the individual charged. I think this is one reason that there is not enough done when it comes to DoD, and SQL Injections. Which leaves me to something I have stated before, why the hell Coldfusion didn't build this under the hood to begin with I do not know. Then it wouldn't matter if you use cfqueryparam or not, there is nothing that this tag does that couldn't be done under the hood. However, it will not stop people from trying:-( I mean with all the filters that Coldfusion has from ajax to flex integration, one more filter for URL's would have been simple. -- Senior Coldfusion Developer Aegeon Pty. Ltd. www.aegeon.com.au Phone: +613 9015 8628 Mobile: 0404 998 273 -----Original Message----- From: Jochem van Dieten [mailto:[EMAIL PROTECTED] Sent: Saturday, 16 August 2008 7:37 PM To: CF-Talk Subject: Re: SQL injection attack on House of Fusion Mark Mandel wrote: > What I'm curious about, is that there seems to be noone you can report this to? You can report it to the abuse department of the ISP of the originating IP. Just look up the IP delegation and the abuse address is usually right there. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:311097 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
