Kory, Are you using RR or is the hacker? Do a whois on the hacker's IP address and see what ISP owns that range. They usually have an [EMAIL PROTECTED] address. I have used this method and stopped many hackers from continually port scanning my boxes, though I'm sure they just grab another IP from a different vendor.
-Scott -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kory Krofft Sent: Friday, February 22, 2002 2:46 PM To: [EMAIL PROTECTED] Subject: [Leaf-user] Angry and venting... Hi all, Has anyone else been successful with stopping a hacker once identified? I mean I have log entries that show denied attempts to scan my ports. The party involved did not spoof his IP so I checked it out and found that he has a private web site where he is distributing pirated software and movies. I reported his activity to Road Runner and they have all but ignored me. I have recieved to automatic responses in 4 days time. Meanwhile this individual continues to operate his website and most assuredly to scan for vulnerable machines to hack. I am reasnable comfortable that my network is secure since all of the machines on it aside from the lrp box are M$ Win boxes and have no shares using TCP/IP. Even so I would like to feel that my concerns as a paying customer are considered as important by RR. Anyone have suggestions on ways to get their attention? Thanks for listening, Kory Krofft _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
