| From: | Csaba Nagy <nagy(at)ecircle-ag(dot)com> |
|---|---|
| To: | "Marc G(dot) Fournier" <scrappy(at)postgresql(dot)org> |
| Cc: | pgsql-core(at)postgresql(dot)org, postgres hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: [CORE] Attack against postgresql.org ... |
| Date: | 2006-07-28 15:51:11 |
| Message-ID: | 1154101871.22367.179.camel@coppola.muc.ecircle.de |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Fri, 2006-07-28 at 17:37, Tom Lane wrote:
> "Marc G. Fournier" <scrappy(at)postgresql(dot)org> writes:
> > The attacking IP, from the logs, appears to be "87.230.6.96" ...
>
> Perhaps a complaint to their ISP is in order --- RIPE suggests
> net-abuse(at)hosteurope(dot)de
That looks 1 level too high, the immediate source seems to be
http://www.ehost.pl/onas.php
They could probably act faster and more at the source... down on the
page from the link above you can find abuse(at)ehost(dot)pl for complaints.
Cheers,
Csaba.
$> nslookup 87.230.6.96
Server: 192.168.1.4
Address: 192.168.1.4#53
Non-authoritative answer:
96.6.230.87.in-addr.arpa name = vpsdws.xip.pl.
Authoritative answers can be found from:
6.230.87.in-addr.arpa nameserver = dns.hosteurope.de.
6.230.87.in-addr.arpa nameserver = dns2.hosteurope.de.
dns.hosteurope.de internet address = 80.237.128.156
dns2.hosteurope.de internet address = 80.237.129.61
$> whois xip.pl
[Querying whois.dns.pl]
[whois.dns.pl]
% This is the NASK WHOIS Server.
% This server provides information only for PL domains.
% For more info please see http://www.dns.pl/english/whois.html
Domain object:
domain: xip.pl
registrant's handle: dinz5du40 (CORPORATE)
nservers: ns1.ehost.pl.[80.237.184.22]
ns2.ehost.pl.[83.149.119.142]
created: 2003.10.06
last modified: 2005.09.19
registrar: Dinfo Systemy Internetowe
ul. Mostowa 5
43-300 Bielsko-Biala
Polska/Poland
+48.33 8225471
biuro(at)dinfo(dot)pl
option: the domain name has not option
Subscribers Contact object:
company: eHost s.c.
organization: eHost.pl
street: Cichockiego 13/6
city: 24-100 Pulawy
location: PL
handle: dinz5du40
phone: +48.502533333
last modified: 2004.11.03
registrar: Dinfo Systemy Internetowe
ul. Mostowa 5
43-300 Bielsko-Biala
Polska/Poland
+48.33 8225471
biuro(at)dinfo(dot)pl
Technical Contact:
company: eHost s.c.
organization: eHost.pl
street: Cichockiego 13/6
city: 24-100 Pulawy
location: PL
handle: dinz5du40
phone: +48.502533333
last modified: 2004.11.03
registrar: Dinfo Systemy Internetowe
ul. Mostowa 5
43-300 Bielsko-Biala
Polska/Poland
+48.33 8225471
biuro(at)dinfo(dot)pl
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2006-07-28 16:03:20 | Re: The vacuum-ignore-vacuum patch |
| Previous Message | Tom Lane | 2006-07-28 15:37:13 | Re: [CORE] Attack against postgresql.org ... |