| From: | "Marc G(dot) Fournier" <scrappy(at)postgresql(dot)org> |
|---|---|
| To: | Csaba Nagy <nagy(at)ecircle-ag(dot)com> |
| Cc: | "Marc G(dot) Fournier" <scrappy(at)postgresql(dot)org>, pgsql-core(at)postgresql(dot)org, postgres hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: [CORE] Attack against postgresql.org ... |
| Date: | 2006-07-28 16:50:46 |
| Message-ID: | 20060728135025.W1188@ganymede.hub.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
I have email'd both, thanks ...
On Fri, 28 Jul 2006, Csaba Nagy wrote:
> On Fri, 2006-07-28 at 17:37, Tom Lane wrote:
>> "Marc G. Fournier" <scrappy(at)postgresql(dot)org> writes:
>>> The attacking IP, from the logs, appears to be "87.230.6.96" ...
>>
>> Perhaps a complaint to their ISP is in order --- RIPE suggests
>> net-abuse(at)hosteurope(dot)de
>
> That looks 1 level too high, the immediate source seems to be
> http://www.ehost.pl/onas.php
>
> They could probably act faster and more at the source... down on the
> page from the link above you can find abuse(at)ehost(dot)pl for complaints.
>
> Cheers,
> Csaba.
>
>
> $> nslookup 87.230.6.96
> Server: 192.168.1.4
> Address: 192.168.1.4#53
>
> Non-authoritative answer:
> 96.6.230.87.in-addr.arpa name = vpsdws.xip.pl.
>
> Authoritative answers can be found from:
> 6.230.87.in-addr.arpa nameserver = dns.hosteurope.de.
> 6.230.87.in-addr.arpa nameserver = dns2.hosteurope.de.
> dns.hosteurope.de internet address = 80.237.128.156
> dns2.hosteurope.de internet address = 80.237.129.61
>
>
>
> $> whois xip.pl
> [Querying whois.dns.pl]
> [whois.dns.pl]
> % This is the NASK WHOIS Server.
> % This server provides information only for PL domains.
> % For more info please see http://www.dns.pl/english/whois.html
>
> Domain object:
> domain: xip.pl
> registrant's handle: dinz5du40 (CORPORATE)
> nservers: ns1.ehost.pl.[80.237.184.22]
> ns2.ehost.pl.[83.149.119.142]
> created: 2003.10.06
> last modified: 2005.09.19
> registrar: Dinfo Systemy Internetowe
> ul. Mostowa 5
> 43-300 Bielsko-Biala
> Polska/Poland
> +48.33 8225471
> biuro(at)dinfo(dot)pl
>
> option: the domain name has not option
>
> Subscribers Contact object:
> company: eHost s.c.
> organization: eHost.pl
> street: Cichockiego 13/6
> city: 24-100 Pulawy
> location: PL
> handle: dinz5du40
> phone: +48.502533333
> last modified: 2004.11.03
> registrar: Dinfo Systemy Internetowe
> ul. Mostowa 5
> 43-300 Bielsko-Biala
> Polska/Poland
> +48.33 8225471
> biuro(at)dinfo(dot)pl
>
> Technical Contact:
> company: eHost s.c.
> organization: eHost.pl
> street: Cichockiego 13/6
> city: 24-100 Pulawy
> location: PL
> handle: dinz5du40
> phone: +48.502533333
> last modified: 2004.11.03
> registrar: Dinfo Systemy Internetowe
> ul. Mostowa 5
> 43-300 Bielsko-Biala
> Polska/Poland
> +48.33 8225471
> biuro(at)dinfo(dot)pl
>
>
>
>
----
Marc G. Fournier Hub.Org Networking Services (http://www.hub.org)
Email . scrappy(at)hub(dot)org MSN . scrappy(at)hub(dot)org
Yahoo . yscrappy Skype: hub.org ICQ . 7615664
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jim C. Nasby | 2006-07-28 16:59:57 | Re: GUC with units, details |
| Previous Message | D'Arcy J.M. Cain | 2006-07-28 16:38:12 | Re: [CORE] Attack against postgresql.org ... |