I just saw a reply from IAEA posted at another board.
Quote:
Here is the reply from the International Atomic Energy Agency:
Avishai,
we certainly don't have links referring to your site. The records in your
logfiles are caused most likely by an application called "Atomic Harvester
2000". This particular software scans web pages for mailto: links, collects
the mail addresses and prepares lists for bulk mail. By doing that the
program writes into the access logfile as referral www.iaea.org. This
approach hides the original referral address and unfortunately damages the
reputation of the International Atomic Energy Agency.
You can proof this by downloading the free demo software from the Net and
run it against your server. Monitor the logfile and you'll see the spoofed
referral IP address or DNS name coming up.
I have tried to complain to the developers of the software but, as you may
suppose, no reply. Who cares? They even sell a full version for 179$!!!
So, since the attack doesn't come from us there is nothing I can do. You can
spot the original referral source with some network monitoring tools like
nmap, ethereal or alike and complain to the originator of the scanning. Good
luck ;o)
I deeply regret the inconvenience caused although IAEA is not to blame in
that case.
If you need further assistance please don't hesitate to contact me.
Best regards,
-------------------------------------------------------
Nikolay (deleted)
Data Centre Unit/Computer Services Centre
International Atomic Energy Agency
|
Some stuff about it in Google:
http://www.google.com/search?num=30&...vester%22+iaea
2004-11-02, 05:50 PM
Threaded Mode