I asked about reporting an attempt to access our computing system:
> An attempt was made this morning to exploit a rather well known
> bug to gain access to our business computing platform from an
> account at a remote (and unrelated) site.
>
> I have already contacted postmaster & root at the involved sites,
> but have not yet received a response.
>
> Does protocol or conventional wisdom suggest reporting this attempt
> elsewhere?
Although the vulnerability was reported by the CERT advisory CA-93:16
of November 4, 1993, and the attempt was unsuccessful, the consensus
suggests reporting the attempt back to cert@cert.org. I will.
Thanks to: sven@mpim-bonn.mpg.de
bstrawse@copper.ucs.indiana.edu
lau@nwnexus.wa.com
chris@cs.yorku.ca
stevel@skyhook.airone.claircom.com
This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:09:14 CDT