At 8:58 AM 11/7/95 -0500, Benoit Dicaire wrote: >I'm presently working on security policies for a customer, >they're asking me what to do with intruder ;) Well, I say if the guy ran off with some heavy info, call the lawers. *warn him*, and then if he dosn't reply, sue him to hell. If the guy just connected to the mail server to send anon mail, contact his service peovider, and the guy, and tell them that the guy shoulden't be 'hacking' thier computers. Let them take care of it from there. Don't ban that server from the node you are working for, these people can have address at seven different servers, and it just agravetes people on the unlucky server. If the guy keeps doing it (and if you see him do it, he's not really a very good hacker, likly to accedently cause a mess) then you should break out the lawers. If you can gergraphly find him. Note: this is just off the top of my head. Just suggestions. I don't wana trun this into a rimm job... PkCp -------- My mis-spelling ability knows no bounds, sorry. (umm, yaa, aie cn spel) I am Pentium of Borg. Division is futile. You will be approximated. Use PGP if at all possable. You can find my key at almost any keyserver, or Email me, and soon to come: Public Key by finger! Porkchop@nic.com