[KLUG Members] Chasing people down.
Buist Justin
members@kalamazoolinux.org
Fri, 28 Jun 2002 14:04:54 -0400
If all you have is IP addresses why not do a 'whois' (you can use http://www.arin.net) on the addresses and find out who owns that block? You don't neccessarily need a domain name to get started tracking down addresses.
Justin
> -----Original Message-----
> From: Adam Bultman [mailto:adamb@glaven.org]
> Sent: Friday, June 28, 2002 11:54 AM
> To: members@kalamazoolinux.org
> Subject: Re: [KLUG Members] Chasing people down.
>
>
> > Your proxy is available from the Internet?! If you see log
> entries traceroute
> > back to the source address, reverse lookup on the address,
> lookup the domain
> > in whois, and contact their administrative contact.
> >
>
> No- check this out- it's an apache server that the previous
> admin enabled
> mod_proxy on. So, anyone connecting to it and requesting an
> offsite page
> got the page through that machine, so it's like an anonymizer.
>
>
>
> > If it is always the same request I doubt it is a human user.
> >
> Well, there's a lot of different pages. However, who on earth
> would set up
> a robot program to just get banner ads? That's kind of
> strange. Unless
> it's just some sort of program to flood my bandwidth.
>
>
> >
> > Screw the help desk, whois contains contact info. If no
> satisifaction have your
> > lawyer call and mention compenstation for bandwidth consumption.
> >
> I'm having a hard time getting valid hosts. Some places have
> no info for
> them, others point to companies in other languages. So, I'll
> try to chase
> down the ones I know, but for the most part, like I said,
> abuse addresses
> aren't very helpful.
>
> Oh, well.
>
>
>
> >
> >
> >
> > _______________________________________________
> > Members mailing list
> > Members@kalamazoolinux.org
> >
> >
>
> _______________________________________________
> Members mailing list
> Members@kalamazoolinux.org
>
>