29 Sep
2014
29 Sep
'14
10:53 a.m.
Well, I realize that every sysop must make decisions they feel are best for
the security of their own systems, me included.
And as for banning an entire Italian and Russian network, it works for me.
Maybe not everyone else.
Since I can see from the gateways list on the portal, that there are no
gateways listed in those ranges, I know I'm not blocking a potential gateway.
I *might* be blocking an individual packet user that wants to telnet into
my system. But, that same user can telnet into a different system, and then
just connect to my node via the nodes list of where ever it was he/she
connected from.
As for contacting the provider...... I get so many probes and attacks that
I'd be spending all my waking time just contacting providers, with no
guarantees that they'd do anything anyway.
Having a back-end script that monitors hacking attempts and then just
automatically bans ip's and networks that allow hackers seems to be pretty
efficient for my needs. It may not be for everyone, though.
Bill
KG6BAJ
At 08:22 AM 09/29/14, you wrote:
(Please trim inclusions from previous messages)
_______________________________________________
How far this helps is not clear. You just blocked an italian and a russian
provider. Have you tried to send a mail to the "abuse" mailbox?