[lug] Reporting an Intrusion

Bill Thoen bthoen at gisnet.com
Tue Sep 13 09:59:28 MDT 2005

I discovered another hack on my old RH9 system last night but this time I
learned how they got in and where they came from (via an ISP in
Scottsdale, AZ.) With some help, I think I got the damage fixed and the
holes patched, so I think I'm OK for now. Apparently there are some dumb
things you can do with an otherwise perfectly good installation of PHP,
and I'm pretty convinced that the last hack I experienced was done the
same way.

Anyway, now I'm pissed off. I can report the intrusion with evidence from 
my logs to the ISP, but I'd like to use a little more force. Since 
breaking into a computer is a federal crime, is there a law enforcement 
agency I should report this to, like maybe the FBI? Before I go off 
half-cocked, what's the proper procedure in terms of reporting and 
collecting evidence so that there's a chance of getting a conviction 
should I be able to get any authority to do anything about this?

- Bill Thoen

More information about the LUG mailing list