But I'm not talking about catching the person who's initiating the attacks, which is next to impossible if the amplifiers aren't willing or able to help. I'm concerned about the FBI possibly playing a part in shutting down the amplifiers. As the FBI agent who I talked with a week ago said "We want to hear about any incident that happens because we do trend tracking." Lord knows if enough people reported large smurf attacks they'd at least do something. -- Joseph Shaw - jshaw@insync.net NetAdmin/Security - Insync Internet Services Free UNIX advocate - "I hack, therefore I am." On Thu, 14 Jan 1999, Brandon Ross wrote:
On Thu, 14 Jan 1999, Joe Shaw wrote:
My only question is do any of you who've been under attack report these incidents to the FBI and the other appropriate agencies?
We report these incidents to the FBI when there is at least a slim chance that the perpetrator might be caught. We get a lot of very short lived attacks (30 minutes or less) that just don't seem to be worth our time to report to the FBI, since there's usually no data that would give them a bit of a clue about who might have done it.
Brandon Ross Network Engineering 404-815-0770 800-719-4664 Director, Network Engineering, MindSpring Ent., Inc. info@mindspring.com ICQ: 2269442
Stop Smurf attacks! Configure your router interfaces to block directed broadcasts. See http://www.quadrunner.com/~chuegen/smurf.cgi for details.