I work, in my free time, for a charity (see sig) and one of the websites we host is a blog for local politics. A former volunteer was caught surfing porn and was escorted from the premisis, he now has a vendeta for the charity.
At first he posted huge posts with hundreds of disgusting links (dog this and grama that, gay bondage etc...) -- we have caught his IP address on log the first couple of times. (He hosts a website so it is pretty easy to confirm his IP) This happens about 40x per day (likely an automated script)
We sent an email to his ISP with copies of log files. He was given a warning. Now we get the same (or almost identical posts) that trace to an out of country anon proxy. The FBI told us unless we can prove he is trying to hack (crack for those who must be PC) there is nothing they can do.
I will probably soon inherit the admin of these servers-- they would like to keep the political site uncensored. So for now the posts go through moderation before making it to the site, this really a pain in the butt.
Any suggestions would be greatly appreciated. How to use the law and/or IT.
On the IT side the servers are Redhat on alfa.
Anyone have experience with honeypots? (We have fract t1 with several IP's-- so we could bait the hook and see what we catch -- give logs to the FBI....)
Thanks
dan
(Oh if you have suggestions that violate techimo rules please dont post them-- email them to me
fj40dan -AT- yahoo.com or PM)
hardware
prices 
