Say I "caught" a cracker...
Posted: Wed Oct 01, 2008 5:46 pm
I'm looking at PHPIDS, which is beyond sweet, and I'm wondering what I could do if I recognize the attack, and log the IP address of the attacker. I mean, could I report it to the authorities? Or just ban his account, add cookies that wouldn't let him back, block his IP for a bit of time, and hope that something bad happens to him?
All I can think of is the IP address. But cant' anyone with even a free proxy get around that? Is there ANYTHING else we can do against crackers that attack? Or just try to fill every chink in our web applications' armor? Heck, out of sheer curiosity, what's the law regarding going all "virtual vigilante," and "counter-cracking?"
All I can think of is the IP address. But cant' anyone with even a free proxy get around that? Is there ANYTHING else we can do against crackers that attack? Or just try to fill every chink in our web applications' armor? Heck, out of sheer curiosity, what's the law regarding going all "virtual vigilante," and "counter-cracking?"