0218478986.20020422101243@userfriendly.com">
Monday, Monday, April 22, 2002, 9:41:14 AM, William S. Lovell wrote:
I'm replying to this email simply because it's the latest I received,
just to make a point.
With all the distraction over whether or not the Forums were locked out,
which has
been the subject of 17 emails, if my count is correct, I've not seen a
single one that
has addressed the issue of seeking to track down who did the hacking.
Would that
not be the first issue on the agenda? That is, except for those who
seek to pursue
political agenda? The icannatlarge.com logs should show an address from
which the
hacking code originated --
Because chances are it is not going to lead to the hacker anyway.
Most likely they would have used one of the many thousands of
unsecured proxy servers out on the net to do what they did.
It is even possible for them to chain through multiple proxies
depending on how misconfigured the unsecured proxies are, so even if
you could get logs from the operator of the proxy server whose IP
shows up in the web server logs, chances are it would also not lead
the hacker.
And say you did track down the actual originating IP address, it would
probably dead end into a throw away dialup account.