30 Apr
2017
30 Apr
'17
10:51 a.m.
Very true indeed Ruben.
I think all OPs should look at http://shodan.io/ for their IP addresses,
hostnames, Gateway IPs, etc.
I see a lot of our devices on this search engine, giving brand, firmware
type, ports accessible, etc.
- KB3VWG
On 04/30/2017 10:48 AM, Ruben ON3RVH wrote:
I agree it's best not to run it on AMPRNet.
I do have one running on another subnet and once everything is set up and I have my API
ready and stable, that data could be used by AMPRNet operators interrested in it to
block/nullroute those hosts on their border
Ruben - ON3RVH
> On 30 Apr 2017, at 16:39, lleachii--- via 44Net <44net(a)hamradio.ucsd.edu>
wrote:
>
> (Please trim inclusions from previous messages)
> _______________________________________________
> Ruben,
>
> I understand consensus amongst the operators (and from Brian, since he runs AMPRGW),
that we not run honeypots. Since any traffic engaging with the remote host generates
unnecessary bandwidth at AMPRGW.
>
> This is why I simply block and keep detailed stats on all IP hits.
>
>
>
> - KB3VWG
> _________________________________________
> 44Net mailing list
> 44Net(a)hamradio.ucsd.edu
> http://hamradio.ucsd.edu/mailman/listinfo/44net