From fc@all.netThu Mar 14 01:54:07 1996
Date: Wed, 13 Mar 96 07:30:46 EST
From: Fred Cohen <fc@all.net>

Dear postmaster/systems administrator:

	This is an update on that attack launched against all.net that
should help you resolve any issues at your end - in most cases favorably.

We have detected a malicious attempt to cause numerous telnets into our
site, apparently by someone at c2.org.  The URL of the malicious code is:

	http://www.c2.org/inet/ppp.phtml

If you got one of our automatic responses in the last 24 hours, changes
are this is the cause.  We would appreciate it if you would register
your distate with this practice with those at c2.org.  This incident
involved about 250 sites and over 1,000 attempted telnets in the last 8
hours.  We hope to have it resolved soon. 

Thank you for your assistance and concern.