New and interesting network abuse.
My apologies if this strays off topic, but I wanted to share my recent experience. We had a collocation customer come in and request a t1 of pots lines for their servers, then complaints that their "security" software wasn't working because of our RPF checks. As it turns out they were dialing up to a local isp, and sending bulk email using our bandwidth, but the dial-up's ip.... And receiving the TCP ack on the dial up. Very ingenious imho, but I'm not sorry it didn't work out. Anyone else seen this before? -Ejay
Thread that I just started yesterday about port 25 blocking and if more ISPs werent doing this bidirectionally. Which is what your local ISP, and other ISPs that have dialup pools, must do. --srs On Tue, 11 Jan 2005 01:33:00 -0600, Ejay Hire <ejay.hire@isdn.net> wrote:
My apologies if this strays off topic, but I wanted to share my recent experience.
We had a collocation customer come in and request a t1 of pots lines for their servers, then complaints that their "security" software wasn't working because of our RPF checks. As it turns out they were dialing up to a local isp, and sending bulk email using our bandwidth, but the dial-up's ip.... And receiving the TCP ack on the dial up.
On Tue, Jan 11, 2005, Ejay Hire wrote:
My apologies if this strays off topic, but I wanted to share my recent experience.
We had a collocation customer come in and request a t1 of pots lines for their servers, then complaints that their "security" software wasn't working because of our RPF checks. As it turns out they were dialing up to a local isp, and sending bulk email using our bandwidth, but the dial-up's ip.... And receiving the TCP ack on the dial up.
Its not new. In fact, its so not new, I think those involved could quite happily believe its very clever. :) Adrian -- Adrian Chadd "You don't have a TV? Then what's <adrian@creative.net.au> all your furniture pointing at?"
participants (3)
-
Adrian Chadd
-
Ejay Hire
-
Suresh Ramasubramanian