From owner-freebsd-security Sat May 22 16:24:38 1999 Delivered-To: freebsd-security@freebsd.org Received: from lariat.lariat.org (lariat.lariat.org [206.100.185.2]) by hub.freebsd.org (Postfix) with ESMTP id C0E2614FEA for ; Sat, 22 May 1999 16:24:35 -0700 (PDT) (envelope-from brett@lariat.org) Received: from mustang.lariat.org (IDENT:ppp0.lariat.org@lariat.lariat.org [206.100.185.2]) by lariat.lariat.org (8.9.3/8.9.3) with ESMTP id RAA20388; Sat, 22 May 1999 17:24:22 -0600 (MDT) Message-Id: <4.2.0.37.19990522171752.04638eb0@localhost> X-Sender: brett@localhost X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.0.37 (Beta) Date: Sat, 22 May 1999 17:24:16 -0600 To: "Rodney W. Grimes" From: Brett Glass Subject: Re: Denial of service attack from "imagelock.com" Cc: dillon@apollo.backplane.com (Matthew Dillon), security@FreeBSD.ORG In-Reply-To: <199905221829.LAA04096@gndrsh.aac.dev.com> References: <4.2.0.37.19990522112658.0466ec90@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 11:29 AM 5/22/99 -0700, Rodney W. Grimes wrote: >Did you even try the simple way: Yes, I did. Unfortunately, there's no way of telling whether the company is what it says it is or why it would have attempted to hit the server with so many rapid-fire requests from multiple IP addresses. I've been trying to contact the company and hopefully we will know soon. However, in the meantime, I'd STRONGLY recommend that people firewall its IPs -- 209.133.111/24. At best, they're terribly misguided; at worse, they're outright malicious. --Brett Glass To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message