17 Sep
1999
17 Sep
'99
11:49
On Fri, 17 Sep 1999 you wrote:
Oh, and I forgot:
notify the Admins (can be found via whois-llokups) of the systems you suppose were the attackers. If the attacks really originated there, those systems are most likely cracked and under enemies control, too.
cya,
Stefan
Ya, I did it, but rr.com seems to be a big provider in US, so the cracker could hide his attack in the dynamic IP-Adress
Gerd
Don't they have log-files for WHO-GETS-WHICH-IPNUMBER-AT-WHAT-TIME? Greets Martin