Can someone send me a list of *all* AOL netblocks? ARIN's whois only gives back a handful. I want to block _all_ AOL netblocks, but its tough to find out what they are. Thanks to a few malicious, radical antispammers (Chris Neill, Alan Brown, etc) we are getting hit with a large number of criminal mail relays. Mostly coming from AOL addresses. We have about a half dozen individual criminal complaints underway. Thanks, --Dean ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Plain Aviation, Inc dean@av8.com LAN/WAN/UNIX/NT/TCPIP http://www.av8.com ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
At 09:16 PM 11/21/99 -0500, Dean Anderson wrote:
Can someone send me a list of *all* AOL netblocks? ARIN's whois only gives back a handful.
I want to block _all_ AOL netblocks, but its tough to find out what they are.
Thanks to a few malicious, radical antispammers (Chris Neill, Alan Brown, etc) we are getting hit with a large number of criminal mail relays. Mostly coming from AOL addresses. We have about a half dozen individual criminal complaints underway.
Don't kid us, Dan. Close your fucking relays (not that any of them talk to my hosts anyhow). If this has to be drummed into your bonehead again: THEY WILL FIND YOUR RELAYS ON THEIR OWN, AND THEY WILL ABUSE THEM, NO MATTER HOW LOUD YOU SCREAM. THEY SIT IN CHINA, PAKISTAN AND KOREA, AND THERE IS NOTHING YOU CAN DO ABOUT THEM SHORT OF CALLING THE WHITEHOUSE AND GETTING THESE PLACES INVADED. Alternatively, you could come to your senses and shut the literal front door of your house now that you've finally noticed the first unsavory characters passing by. A couple years after the rest of us, no doubt. And they won't need ORBS or any other service to locate you, either. Stop complaining. No more secrets (now that's from Scott Yelich's tagline). bye,Kai -- kai@conti.nu "Just say No" to Spam Kai Schlichting Palo Alto, New York, You name it Sophisticated Technical Peon Kai's SpamShield <tm> is FREE! http://SpamShield.Conti.nu | | LeasedLines-FrameRelay-IPLs-ISDN-PPP-Cisco-Consulting-VoiceFax-Data-Muxes WorldWideWebAnything-Intranets-NetAdmin-UnixAdmin-Security-ReallyHardMath
On Sun, 21 Nov 1999, Kai Schlichting wrote:
THEY WILL FIND YOUR RELAYS ON THEIR OWN, AND THEY WILL ABUSE THEM, NO MATTER HOW LOUD YOU SCREAM.
In transition to a new mail server (with a new address), I installed a plug-gateway on the old server to redirect mail. Unfortunately, plugd hides the ip address of the sender, and since I trust my netblocks, all of the ip addresses on the old server became "spam relay entry points". It took the spammers 96 hours to find 3 of the addresses on that box and for us to be listed in orbs. I figured I would have at least had a week or two to figure out a better way. I ended up staying up all night getting transparent proxying to work right on the new server and making it work with a cisco route-map. - Forrest W. Christian (forrestc@imach.com) KD7EHZ ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ----------------------------------------------------------------------
If you plug-gw it, you can also just tcp_wrap it, and then use your hosts.allow, etc.. to stop spammers. On Sun, Nov 21, 1999 at 10:16:39PM -0700, Forrest W. Christian wrote:
On Sun, 21 Nov 1999, Kai Schlichting wrote:
THEY WILL FIND YOUR RELAYS ON THEIR OWN, AND THEY WILL ABUSE THEM, NO MATTER HOW LOUD YOU SCREAM.
In transition to a new mail server (with a new address), I installed a plug-gateway on the old server to redirect mail.
Unfortunately, plugd hides the ip address of the sender, and since I trust my netblocks, all of the ip addresses on the old server became "spam relay entry points".
It took the spammers 96 hours to find 3 of the addresses on that box and for us to be listed in orbs. I figured I would have at least had a week or two to figure out a better way.
I ended up staying up all night getting transparent proxying to work right on the new server and making it work with a cisco route-map.
-- Jared Mauch | pgp key available via finger from jared@puck.nether.net clue++; | http://puck.nether.net/~jared/ My statements are only mine. END OF LINE |
On Sun, 21 Nov 1999, Forrest W. Christian wrote:
In transition to a new mail server (with a new address), I installed a plug-gateway on the old server to redirect mail.
Unfortunately, plugd hides the ip address of the sender, and since I trust my netblocks, all of the ip addresses on the old server became "spam relay entry points".
It took the spammers 96 hours to find 3 of the addresses on that box and
I've done similar things with netcat from inetd, which makes it easy to run through tcpd. ---------------------------------------------------------------------- Jon Lewis *jlewis@lewis.org*| Spammers will be winnuked or System Administrator | nestea'd...whatever it takes Atlantic Net | to get the job done. _________http://www.lewis.org/~jlewis/pgp for PGP public key__________
participants (5)
-
Dean Anderson -
Forrest W. Christian -
Jared Mauch -
jlewis@lewis.org -
Kai Schlichting