Do any good to report break-in tries?

I am perhaps naive. I administer a relatively new dedicated web server (Win2K-based), and I take the trouble to report break-in attempts to the miscreant IPs' providers. I'm not just talking about port probes, but logged attempts to hit exploits with a series of malformed GETs, etc.

So far, these attempts seem to average about 2/day. I look up the ISPs' abuse@yadayada.com, and send them an email containing the log entries.

I never have received more than an auto-generated reply.

Does anyone actually pursue these incidents? Of course, I understand that the source IPs are probably infected hosts rather than crackers' machines, but the ISPs should be dealing with thier customers.

Am I just spitting in the wind?

 

 

 

 

Top