Dynamic IP log retention = 0?

The real problem is that Covad claim (second hand) that they can't
identify the perpetrator(s).

  I've been nudging an operator at Covad about a handful of
  hosts from his DHCP pool that have been attacking -
  relentlessly port scanning - our assets. I've been informed
  by this individual that there's "no way" to determine which
  customer had that address at the times I list in my logs -
  even though these logs are sent within 48 hours of the

One shouldn't need to have to get the indentities of the perpetrators
to get AUP enforced. Port scanning is against 99.9% of AUP's.


Whether Covad chooses to enforce their AUP against port scanning is a
business decision up to them. Again, why worry about things out of your
control, especially when we are talking about port scanning. I would think
people have more pressing issues, guess not.