logo       
<prev   next>

Re: Log Parsing: msg#00420

Subject: Re: Log Parsing 
Paula Campbell wrote:
> 
> Recently we had a company start surfing our DNS for every IP we own.  The 
> company 
> called me after we reported them to the abuse line for DNS discovery traffic. 
>  
> The guy told me that they sell the reverse entries to marketing companys so 
> they 
> can tweek their web pages for their audience.  We found the traffic the old 
> fashion way, by looking at the logs.  The guy also told me that several 
> University's have parsing software that caught him right away.  Can anyone 
> tell 
> me what they are using?

Probably something related to intrusion detection.  There are numerous log 
analysis
tools.  You might poke through the list at:

        http://www.counterpane.com/log-analysis.html

...for hints, or ask on their e-mail list.  It's possible they had their 
nameservers 
behind a firewall and something was triggered there too.

-Robert
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Auth ns's in different TLD and no glue, David Botham
Next by Date:  Re: Auth ns's in different TLD and no glue, Robert Lowe
Previous by Thread:  Log Parsing, Paula Campbell
Next by Thread:  locked myself out of my own domain., Matt Darcy
Indexes:  [Date] [Thread] [Top] [All Lists]

Google Custom Search
Recently Viewed:
linux.arklinux....    user-groups.lin...    kde.usability/2...    ietf.ipp/2002-0...    mail.spam.spamc...    os.netbsd.devel...    audio.cd-record...    text.unicode.de...    php.documentati...    games.fps.halfl...    window-managers...    suse.oracle.gen...    bug-tracking.gn...    video.dvdrip.us...    xfree86.cvs/200...    java.netbeans.m...    network.argus/2...    culture.sf.kill...    debian.ports.al...    freebsd.questio...    qplus.devel/200...    handhelds.palm....   
Home | blog view | USPTO Patent Archive | advertise | OSDir is an inevitable website. super tiny logo

Free Magazines

Cisco News
Receive a free quarterly e-newsletter with exclusive articles on how Cisco IT uses its own products and solutions to enable the business.
subscribe

Systems Management News, the newspaper for IT systems administration and data center managers! Each issue of Systems Management News is chock-full of news and analysis to help you understand what's happening in your field.
subscribe

The Enterprise Newsweekly eWeek is the essential technology information source for builders of e-business.
subscribe

Oracle Magazine Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Oracle (NASDAQ: ORCL) is the world's largest enterprise software company.
subscribe

Total Telecom Total Telecom is "The Economist of the communications industry".
subscribe