| [Spam] WARNING - WARNING * intruder alert ! Ok In talking to my local (Plano, Il) Comcast tech support they suggested (about 3 months ago) in response to a large amount of incoming port scans to send my router logs to abuse@comcast.net. Now I've been doing this once a week for about two months now and have requested status report on what is being done or if I should even continue sending in my logs. No return contact has been made despite several attempts by myself. If someone is pursuing this I'll continue. But if my logs get filed under "delete" then I'll not waste my time. Anyone have any idea on where I can go to get info on where my emails go and if anything is being done with the info contained there in? |
|
 EpikosSurpass The Usual Or OrdinaryPremium
join:2003-07-27
Portland, OR
1 edit | It's been rumored that Comcast never even bothers to check that e-mail address. lol. Some have even gotten server responses saying "Message failed to send. Recipients mailbox is full" which suggests they never check it, or just hit "delete all" once a week or so.
I can't really say for sure if it is worth it to forward your router logs to abuse@comcast.net because of port scans. If I were you, seeing as how I have a working router in place, I wouldn't bother. Port scans happen. You get some little 13 year old boy who watched "Hackers 2 - Operation Takedown" one too many times, and who saw how to ping stuff on TechTV and they're eventually going to go try to stir up sh*t. I wouldn't bother.
I do however forward all the spam that makes it through the Comcast filters to missed-spam@comcast.net
Haven't ever seen a decrease in the amount of spam being delivered to my inbox, but it can't hurt.
Just my two cents,
Shapeless
--
I refuse to have a battle of wits with an unarmed person! |
|
i386Unix GodPremium
join:2004-07-10
Tucson, AZ | reply to Tachyon6
Does Comcast have filters, and is missed-spam@comcast.net an actual e-mail to forward spam that's missed to?
- Eddie |
|
 NerdtalkerWorking Hard, Or Hardly Working?Premium,MVM
join:2003-02-18
Tucson, AZ | reply to Tachyon6
Shapeless is right. Comcast's abuse department is understaffed. I never even bother to send stuff there.
Are you sure you're being port-scanned, or just port probed? Originally, I was even confused about the difference, but its important to understand the difference between a port scan (all ports) and just a port probe (port 445 messenger spam, checking port 80 across a large subnet, e.t.c.). The difference is in being selected for a through vulnerability scan and part of a scan of a larger number of IP addresses for an easily exploitable vulnerability.
If you really want to do something with your logs, you could try using myNetWatchman to report your logs along with others. I use it, and frequently providers will respond to the pressure by doing ***gasp*** something about it! ***/gasp*** Let me know what type of router you have, there are various log management programs you can use to monitor for truly malicious traffic.
--
Touch a thistle timidly, and it pricks you; grasp it boldly, and its spines crumble. -William S. Halsey |
|
|
|
EpikosSurpass The Usual Or OrdinaryPremium
join:2003-07-27
Portland, OR | reply to i386
Yes, and yes.
The spam filter is configurable in your email preferences.
That missed-spam@comcast.net was found in an FAQ on the comcast.net website in regards to stopping spam delivered to a mailbox when using POP3.
»online.comcast.net/help/
They don't call it the "Help" page for nothing. 
--
I refuse to have a battle of wits with an unarmed person! |
|
i386Unix GodPremium
join:2004-07-10
Tucson, AZ | Oh, never took a look at that.
Thanks,
Eddie |
|
