Hello All. I'm having trouble with Cracking Attempts and DoS attacks from a lot of places in China :) My client doesn't do any business in that region so they don't mind If I block the entire sub-continent :) Does anyone have a bad-guy list (or part of one) that I can use to get started? I'm using pf under OpenBSD 3.7 as a firewall box. E-mailing me off line is fine geoffw
You might start with blacklists. There's a lot of them out there. http://ahbl.org is one of them. Geoff White <geoffw@cybertribe.com> Sent by: owner-nanog@merit.edu 07/06/2005 02:49 PM To nanog@merit.edu cc Subject Need BOGIES list Hello All. I'm having trouble with Cracking Attempts and DoS attacks from a lot of places in China :) My client doesn't do any business in that region so they don't mind If I block the entire sub-continent :) Does anyone have a bad-guy list (or part of one) that I can use to get started? I'm using pf under OpenBSD 3.7 as a firewall box. E-mailing me off line is fine geoffw
On Wed, 6 Jul 2005, Geoff White wrote:
Hello All. I'm having trouble with Cracking Attempts and DoS attacks from a lot of places in China :) My client doesn't do any business in that region so they don't mind If I block the entire sub-continent :) Does anyone have a bad-guy list (or part of one) that I can use to get started? I'm using pf under OpenBSD 3.7 as a firewall box.
data from blackholes.us may be useful. As luck would have it, I can't load their web page at the moment. ---------------------------------------------------------------------- Jon Lewis | I route Senior Network Engineer | therefore you are Atlantic Net | _________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
On 7/6/05, Geoff White <geoffw@cybertribe.com> wrote:
Hello All. I'm having trouble with Cracking Attempts and DoS attacks from a lot of places in China :) My client doesn't do any business in that region so they don't mind If I block the entire sub-continent :) Does anyone have a bad-guy list (or part of one) that I can use to get started? I'm using pf under OpenBSD 3.7 as a firewall box. E-mailing me off line is fine
geoffw
DShield is a good one. http://www.dshield.org/block_list_info.php -- Mark Owen
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 off list. Thanks kindly. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) iD8DBQFC06pU0STXFHxUucwRArO7AJ9L3dUEs9iluwWFTUAl0EsIjNnKsQCdFcxJ 8b9r0X5LN0zMGW+Euw5PRtY= =c4xA -----END PGP SIGNATURE-----
participants (5)
-
Chip Mefford
-
Geoff White
-
Jon Lewis
-
Mark Owen
-
trainier@kalsec.com