Thanks Steve,
I have a zero tolerance for probing. One person pointed out to me that
because this guy has a fixed IP address and would therefore have to be a
moron to try cracking into other computers from his IP address, it is likely
that the computer with this address has been cracked and is being used by
the "Dark Side."
Anyway, I didn't have any luck with whois, so I have no way of turning him
in or warning him.
-----Original Message-----
From: Steve Philp <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Thursday, October 07, 1999 8:07 PM
Subject: Re: [newbie] How do I turn in a hacker?
>"Eric L. Damron" wrote:
>>
>> My secure log showed the following entries:
>>
>> Oct 6 16:45:12 C287853-A ipop3d[11229]: connect from 193.137.8.223
>> Oct 6 16:45:12 C287853-A ipop3d[11229]: error: cannot execute
>> /usr/sbin/ipop3d: No such file or directory
>>
>> nslookup 193.137.8.223
>> Name: oboe.dsi.uminho.pt
>> Address: 193.137.8.223
>>
>> He's running an apache webserver and his name is Jorge Figueiredo .
>>
>> Even with all of this information I'm not sure how to contact his ISP.
>>
>> Any suggestions?
>>
>> Thanks
>
>Unless this is happening frequently, I'd cool my jets on the "hacker"
>(BTW, the term is cracker, not hacker).
>
>One probe does not a hack make.
>
>As for contacting his ISP, use whois to lookup InterNIC information on
>the domain, find out who his providers are, then contact them.
>
>--
>Steve Philp
>Network Administrator
>Advance Packaging Corporation
>[EMAIL PROTECTED]
