nanog mailing list archives
Re: dealing with bogon spam ?
From: Suresh Ramasubramanian <ops.lists () gmail com>
Date: Wed, 28 Oct 2009 06:30:38 +0530
Having been postmastering at various places for about a decade, I have seen that too - yes. But cymru style filtering means its kind of out of fashion now. Though - a lot of the cases I've seen have been 1. Out of date whois client and the IP's been allocated after the whois client came out (with a hardcoded list of unallocated IPs) 2. Whois db is out of date - comparatively rarer but known to occur Especially if you see a mainstream carrier routing it instead of some small outfit in Eastern Europe .. chances are its stale db somewhere rather than totally unallocated block and phantom routing On Wed, Oct 28, 2009 at 6:25 AM, Jon Kibler <Jon.Kibler () aset com> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Suresh Ramasubramanian wrote:If the /20 is being routed, and announced - chances are it IS allocated.Don't bet on it. This is one of the oldest spammer tricks in the book. I worked with ISPs as far back as the late 90s trying to track down poachers who temporarily squat on an unallocated block and announce it to the world.
Current thread:
- dealing with bogon spam ? Leslie (Oct 27)
- Re: dealing with bogon spam ? Leslie (Oct 27)
- Re: dealing with bogon spam ? Suresh Ramasubramanian (Oct 27)
- Re: dealing with bogon spam ? Jon Kibler (Oct 27)
- Re: dealing with bogon spam ? Suresh Ramasubramanian (Oct 27)
- Re: dealing with bogon spam ? Nathan Ward (Oct 27)
- Re: dealing with bogon spam ? Suresh Ramasubramanian (Oct 27)
- Re: dealing with bogon spam ? Leslie (Oct 27)
- Re: dealing with bogon spam ? Jon Lewis (Oct 27)
- Re: dealing with bogon spam ? Justin Shore (Oct 28)
- Re: dealing with bogon spam ? Jason Bertoch (Oct 28)
- Re: dealing with bogon spam ? Suresh Ramasubramanian (Oct 28)
- Re: Re: dealing with bogon spam ? Michiel Klaver (Oct 29)