On Thu, 14 Jan 1999, Brandon Ross wrote:
My only question is do any of you who've been under attack report these incidents to the FBI and the other appropriate agencies? We report these incidents to the FBI when there is at least a slim chance
On Thu, 14 Jan 1999, Joe Shaw wrote: that the perpetrator might be caught. We get a lot of very short lived attacks (30 minutes or less) that just don't seem to be worth our time to report to the FBI, since there's usually no data that would give them a bit of a clue about who might have done it.
There needs to be a better communication infrastructure set up between backbones and providers, so we can trace the perpetrators to the source and shut them off. Having to spend 20 minutes on hold with a *multibillion dollar telco* while they try to find a security admin, is simply unacceptable. Or how about multibillion dollar telcos who cant keep the email and phone numbers on their noc pages/internic/arin current. (eg bouncing email and disconnected phone numbers). Or how about networks with the facilities to deal with perpetrators but are simply unwilling to do so. Eg spending several hours being smurfed, and the backbones outright refuse to trace or filter. All of this is simply unacceptable. -Dan