Does it really help to report hacking attempts to the abuse@ email addresses

Toggle sidebar Toggle sidebar
Chunkee

Chunkee

Lifer
Jul 28, 2002
10,391
1
81
I looked up the IP and found it was from RoadRunner and sent them an emal regarding the attempts. Is there really any attention paid to these?

JCoria
 
S

sswingle

Diamond Member
Mar 2, 2000
7,183
45
91
When I worked for Cox, I know they took complaints at the abuse address rather seriously. We would get the people calling in wondering why their internet was "broken" with a note on the account to call the security department :)
 
sao123

sao123

Lifer
May 27, 2002
12,653
205
106
Originally posted by: Chunkee
I looked up the IP and found it was from RoadRunner and sent them an emal regarding the attempts. Is there really any attention paid to these?

JCoria
Click to expand...

exactly what type of hacking attempt was it?
most firewall logs are full of port probing scripts & trojans, which do not necessarily mean there was a hack attempt.
 
Chunkee

Chunkee

Lifer
Jul 28, 2002
10,391
1
81
Originally posted by: sao123
Originally posted by: Chunkee
I looked up the IP and found it was from RoadRunner and sent them an emal regarding the attempts. Is there really any attention paid to these?

JCoria
Click to expand...

exactly what type of hacking attempt was it?
most firewall logs are full of port probing scripts & trojans, which do not necessarily mean there was a hack attempt.
Click to expand...

It is a small business server...i am sure they found port 3389 and 4125 and 443 open...they tried logging in using the administrator login... each time it has been over 50 times.



jC
 
Chunkee

Chunkee

Lifer
Jul 28, 2002
10,391
1
81
Originally posted by: sourceninja
sounds like you need a firewall and a free vpn.
Click to expand...

there is a firwall, well not the greatest, the server is behind a linksys wrtg

jC
 
sourceninja

sourceninja

Diamond Member
Mar 8, 2005
8,805
65
91
I'm saying I personally wouldn't have terminal services/remote desktop avalaible on a public IP. I would setup a nice secure VPN (openvpn works well) or ssh server, and use that to connect securely into my network, then access my remote desktop from there. With key authenication you are much more secure than user/pass. This could all be setup for free on a small old pc or server or even on the current server itself (not recommended)
 
sao123

sao123

Lifer
May 27, 2002
12,653
205
106
Originally posted by: Chunkee
Originally posted by: sao123
Originally posted by: Chunkee
I looked up the IP and found it was from RoadRunner and sent them an emal regarding the attempts. Is there really any attention paid to these?

JCoria
Click to expand...

exactly what type of hacking attempt was it?
most firewall logs are full of port probing scripts & trojans, which do not necessarily mean there was a hack attempt.
Click to expand...

It is a small business server...i am sure they found port 3389 and 4125 and 443 open...they tried logging in using the administrator login... each time it has been over 50 times.



jC
Click to expand...



3389 is the remote desktop port... no network operator worth a penny is going to leave that open.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom