Well, I realize that every sysop must make decisions they feel are best for the security of their own systems, me included.
And as for banning an entire Italian and Russian network, it works for me. Maybe not everyone else.
Since I can see from the gateways list on the portal, that there are no gateways listed in those ranges, I know I'm not blocking a potential gateway.
I *might* be blocking an individual packet user that wants to telnet into my system. But, that same user can telnet into a different system, and then just connect to my node via the nodes list of where ever it was he/she connected from.
As for contacting the provider...... I get so many probes and attacks that I'd be spending all my waking time just contacting providers, with no guarantees that they'd do anything anyway.
Having a back-end script that monitors hacking attempts and then just automatically bans ip's and networks that allow hackers seems to be pretty efficient for my needs. It may not be for everyone, though.
Bill KG6BAJ
At 08:22 AM 09/29/14, you wrote:
(Please trim inclusions from previous messages) _______________________________________________ How far this helps is not clear. You just blocked an italian and a russian provider. Have you tried to send a mail to the "abuse" mailbox?