Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Escaping the P2P-induced alert onslaught SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Escaping the P2P-induced alert onslaught
Eric Hughes was plagued with what, at first, loked like a DOS on his system. As it turns out, he was the lucky renter of an IP address that a busy P2P net believed was a willing participant. After being pounded for days and his firewall logs busting at the seams, he opted for a new DHCP-assigned IP address. Unfortunately, many ISPs aren't terribly responsive to such requests, so he took matters into his own hands & changed his MAC address. Release & renew and more nasty UDP trash-o-grams filling his logs.


3915 Posts
ISC Handler
Oct 29th 2005

Sign Up for Free or Log In to start participating in the conversation!