<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=US-ASCII">
<META NAME="Generator" CONTENT="MS Exchange Server version 5.5.2653.12">
<TITLE>RE: PacBell Security/Abuse contact</TITLE>
</HEAD>
<BODY>
<BR>
<P> <FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Pacbell's Abuse/Security Depts are totally useless with regard</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">to assisting its own customers, let alone defending them. </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">For the better portion of a few months now, I've </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">emailed/called many times with regard to CodeRed boxes (On </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">their netblocks) and have yet to see them take any action. </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Anyone I talked with there indicated, after giving them the offending IPs,</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">that someone would contact the customer and get it resolved. To date</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">nothing has been done. I still see the same anonying IPs looking for</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">codered stuff on my Apache systems. I won't even get started about the</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">Caymen routers that have no password set on them, and the list of 30</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">of them I emailed to thier NOC/Abuse and a sales rep. That was over</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">3 months ago, and still they seem to be wide open, at least a few (I suspect</FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">someone changed them, probably were hacked given this amount </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">of time.) </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">I can understand their wanting to keep their customers anonymousness, </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">but if they won't followup with them to (in this case help themselves) erraticate </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">infected boxes that are on their business customer's DSL, doesn't that place </FONT>
<BR><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">them in the area of liability? Don't know, Just my 2¢s</FONT>
</P>
<P><FONT COLOR="#0000FF" SIZE=2 FACE="Arial">-Joe</FONT>
</P>
<UL>
<P><FONT SIZE=2 FACE="MS Sans Serif">----------</FONT>
<BR><B><FONT SIZE=2 FACE="MS Sans Serif">From:</FONT></B> <FONT SIZE=2 FACE="MS Sans Serif">Jeremy T. Bouse[SMTP:Jeremy.Bouse@undergrid.net]</FONT>
<BR><B><FONT SIZE=2 FACE="MS Sans Serif">Sent:</FONT></B> <FONT SIZE=2 FACE="MS Sans Serif">Sunday, March 24, 2002 11:11 PM</FONT>
<BR><B><FONT SIZE=2 FACE="MS Sans Serif">To:</FONT></B> <FONT SIZE=2 FACE="MS Sans Serif">nanog@merit.edu</FONT>
<BR><B><FONT SIZE=2 FACE="MS Sans Serif">Subject:</FONT></B> <FONT SIZE=2 FACE="MS Sans Serif">PacBell Security/Abuse contact</FONT>
</P>
<BR>
<P> <FONT SIZE=2 FACE="Arial">Anyone have a telephone number that can reach a live person</FONT>
<BR><FONT SIZE=2 FACE="Arial">within Pacific Bell's Security/Abuse department? PacBell's technical</FONT>
<BR><FONT SIZE=2 FACE="Arial">support is completely inept with trying to help their customers when</FONT>
<BR><FONT SIZE=2 FACE="Arial">under any form of network attack other than passing you to a toll-free</FONT>
<BR><FONT SIZE=2 FACE="Arial">number which informs you to send email to an address that goes without</FONT>
<BR><FONT SIZE=2 FACE="Arial">answer.</FONT>
</P>
<P> <FONT SIZE=2 FACE="Arial">Respectfully,</FONT>
<BR> <FONT SIZE=2 FACE="Arial">Jeremy T. Bouse</FONT>
<BR> <FONT SIZE=2 FACE="Arial">UnderGrid Network Services</FONT>
</P>
</UL>
</BODY>
</HTML>