North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: PacBell Security/Abuse contact

  • From: Cheung, Rick
  • Date: Mon Mar 25 15:08:44 2002

Title: RE: PacBell Security/Abuse contact

        Does anyone have an opinion on a decent ISP out there that's proven to work with the customer during a DDOS storm?


Rick Cheung

-----Original Message-----
From: Jeremy T. Bouse [mailto:[email protected]]
Sent: Monday, March 25, 2002 2:46 PM
To: [email protected]
Subject: Re: PacBell Security/Abuse contact



        More specifically I belive this is a Distributed Reflection DoS
like what hit GRC.COM back on Jan 11th... Basically a flood of SYN
packets to well known ports from IPs which appear to be spoofed. I've
actually been riding it out now for over 2 weeks...

        The tech support is completely inept and trying to contact
security/abuse is pointless. Final realization of this was when I was
investigating another PacBell customers box which had been compromised
via another PacBell customer machine. After the forensics to get back
logs and track the intrusion I tried contacting PacBell to no avail and
then resulting it tryin to get in contact with their customer directly.
Which I managed to do and resolve the issue... I've never dealt with
such an inept company before.

        Jeremy

On Mon, Mar 25, 2002 at 11:18:23AM -0800, Daniel M. Spielman wrote:
>
> At 11:11 PM 3/24/2002 -0800, you wrote:
>
> >        Anyone have a telephone number that can reach a live person
> >within Pacific Bell's Security/Abuse department? PacBell's technical
> >support is completely inept with trying to help their customers when
> >under any form of network attack other than passing you to a toll-free
> >number which informs you to send email to an address that goes without
> >answer.
> >
> >        Respectfully,
> >        Jeremy T. Bouse
> >        UnderGrid Network Services
>         I've had a similar experience with their tech team. I was being
> dos'd from a college in Chicago so I contacted them to have it filtered out
> and they had no idea what I meant. They suggested I email the Admin at the
> college to get it resolved. I started screaming at them how am i going to
> email someone when I am being  attacked. Then they transferred me to their
> supervisor who was even more inept then they were. Frankly i gave up and
> just waited out the dos attack which lasted 2 1/2 days.
>