Country of Origin for Malicious Attacks

• Previous message (by thread): Country of Origin for Malicious Attacks
• Next message (by thread): Live attackers or blind worms? (was Re: Country of Origin for Malicious Attacks)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've found that country of origin is less relevant than route/subnet and ASN, as there
is a link between the address and the people in a position to actually respond to the problem. 

I'd be interested in knowing how linking aggregated attack information to country of 
origin is actually valuable relative to our ability to respond to it. 

Cheers, 

-j



--
Jamie.Reid, CISSP, jamie.reid at mbs.gov.on.ca
Senior Security Specialist, Information Protection Centre 
Corporate Security, MBS  
416 327 2324 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: TEXT.htm
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20030626/47c91ab8/attachment.ksh>

• Previous message (by thread): Country of Origin for Malicious Attacks
• Next message (by thread): Live attackers or blind worms? (was Re: Country of Origin for Malicious Attacks)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]