I am trying to collect some statistics on the frequency of Evil Acts occurring
on the Internet over the past 3 years or so.
If you keep logs of such things and would be willing to share them with me,
or summarized them for me, please let me know.
I am also interested in what sorts of Evil you log. Fetches of your
FTP /etc/passwd file? Attempted root logins? Daemon dialing of your
We have plenty of information about our own gateway, but that information
probably has little relation to the Evil attacks on, say, a department
workstation at a college.
I plan to summarize this information for a chapter in our Gateways book,
and perhaps for a paper. Specific names and places will be excluded.
I am prepared to absorb and process gigabytes of data, if you are willing to