nanog mailing list archives
Re: RBL-type BGP service for known rogue networks?
From: Dan Hollis <goemon () sasami anime net>
Date: Thu, 6 Jul 2000 13:46:00 -0700 (PDT)
On Thu, 6 Jul 2000, Richard A. Steenbergen wrote:
DoS attacks with possible spoofed source addresses would obviously not be a good criteria to blackhole by... Unauthorized mass vunerability scans on the other hand, COULD be.
The criteria for the blackhole list: 1) Someone sets up server X on company Y network and starts rooting sites. 2) company Y, once notified, refuses to shut down server X, even when its been CONFIRMED server X is indeed rooting sites. 3) company Y has a HISTORY of such attacks and refuses to take any action. tin.it obviously fits all 3 criteria and thus would be blackholed. it might not get them to change their behaviour, but at least people who subscribe to the blackhole list wouldnt be rooted by tin.it customers -Dan
Current thread:
- Re: RBL-type BGP service for known rogue networks?, (continued)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Christopher Palmer (Jul 07)
- Re: RBL-type BGP service for known rogue networks? Ben Beuchler (Jul 07)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 07)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
- Re: RBL-type BGP service for known rogue networks? John Payne (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Joe Shaw (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Valdis . Kletnieks (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
- Re: RBL-type BGP service for known rogue networks? jlewis (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Steve Sobol (Jul 06)
- RE: RBL-type BGP service for known rogue networks? Christian Nielsen (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Steve Sobol (Jul 06)