On Thu, 07 Feb 2008 12:51:51 +0100, you wrote:
>Michael W Cocke wrote:
>
>>
>> They use DHCP. Netops has to trace it, and I seem to be about 5Kth on
>> the list.Ironic as hell, considering the effort I put into
>> avoiding MIT netops about 20 years ago.
>
>But you should be able to run tcpdu
Michael W Cocke wrote:
>
> They use DHCP. Netops has to trace it, and I seem to be about 5Kth on
> the list.Ironic as hell, considering the effort I put into
> avoiding MIT netops about 20 years ago.
But you should be able to run tcpdump locally on your own machine?
Unless the addresse cha
--On Tuesday, February 5, 2008 1:58 PM -0500 Vlad Mazek <[EMAIL PROTECTED]>
wrote:
Has anyone else noticed a similar pattern or does someone out there hate
me? :) The top 100 SPAM senders on my network (1 minute snapshot below)
are all forgeries starting with jr- or jq-
24 [EMAIL PROTE
Yes, I do have a lot more detail. It's all been reported to MIT per
their procedure. Unfortunately it comes down to "whatever is
happening is happening in the MIT network, we'll take it from here,
have a nice day" (Without a pause for breath even)
Up to a large point I have sympathy for them - i
the inline snort station should show some more detail. do you have access to
your routers and switches ?
Regards,
--
--[ UxBoD ]--
// PGP Key: "curl -s http://www.splatnix.net/uxbod.asc | gpg --import"
// Fingerprint: F57A 0CBD DD19 79E9 1FCC A612 CB36 D89D 2C5A 3A84
// Keyserver: www.keyserver
They use DHCP. Netops has to trace it, and I seem to be about 5Kth on
the list.Ironic as hell, considering the effort I put into
avoiding MIT netops about 20 years ago.
Mike-
On Tue, 05 Feb 2008 21:01:04 +0100, you wrote:
>Michael W Cocke wrote:
>
>> I'll trade you - somewhere in MIT (20K
Michael W Cocke wrote:
> I'll trade you - somewhere in MIT (20K+ computers) is hitting me twice
> per second with ICMP packets, and netops can't find who
tcpdump ?
/Per Jessen, Zürich
Dunno, but after this message those addresses certainly will get another boost
for us all, and as targets to spam...
> Has anyone else noticed a similar pattern or does someone
> out there hate me? :) The top 100 SPAM senders on my
> network (1 minute snapshot below) are all forgeries
> starti
I'll trade you - somewhere in MIT (20K+ computers) is hitting me twice
per second with ICMP packets, and netops can't find who
I had to degrade the logging on my snort-inline because the system was
drowning.
Mike-
On Tue, 5 Feb 2008 13:58:30 -0500, you wrote:
>Has anyone else noticed a sim
Has anyone else noticed a similar pattern or does someone out there hate me?
:) The top 100 SPAM senders on my network (1 minute snapshot below) are all
forgeries starting with jr- or jq-
24 [EMAIL PROTECTED]
22 [EMAIL PROTECTED]
22 [EMAIL PROTECTED]
22 [EMAIL PROTECTED]
21
10 matches
Mail list logo
