nanog mailing list archives

Re: Automatic abuse reports

From: Brandon Galbraith <brandon.galbraith () gmail com>
Date: Tue, 12 Nov 2013 23:16:14 -0600

On Tue, Nov 12, 2013 at 10:03 PM, William Herrin <bill () herrin us> wrote:

Now it would be trivial to setup syslog and sshd to give only the sessions
that complete the handshake, however I'm also not sure how responsive some
of the abuse contacts may be. I'll keep my restrictive network settings for
the time being.


That's the main problem: you can generate the report but if it's about
some doofus in Dubai what are the odds of it doing any good?


And then we're right back to sending the offending packets to a black
hole. *sigh*

Current thread:

Automatic abuse reports Jonas Björklund (Nov 12)
- Re: Automatic abuse reports Sam Moats (Nov 12)
  - Re: Automatic abuse reports Daniël W . Crompton (Nov 12)
  - Re: Automatic abuse reports William Herrin (Nov 12)
    - Re: Automatic abuse reports Sam Moats (Nov 12)
    - Re: Automatic abuse reports William Herrin (Nov 12)
    - Re: Automatic abuse reports Brandon Galbraith (Nov 12)
    - Re: Automatic abuse reports joel jaeggli (Nov 12)
- Re: Automatic abuse reports Jeroen Massar (Nov 12)
- Re: Automatic abuse reports Randy Bush (Nov 12)
- Re: Automatic abuse reports Curtis, Bruce (Nov 13)
- <Possible follow-ups>
- Re: Automatic abuse reports Hal Murray (Nov 12)
  - Re: Automatic abuse reports Sam Moats (Nov 13)
    - Re: Automatic abuse reports Paul Bennett (Nov 13)
    - Re: Automatic abuse reports Sam Moats (Nov 13)
    - Re: Automatic abuse reports Jimmy Hess (Nov 13)
    - Re: Automatic abuse reports Sam Moats (Nov 13)

(Thread continues...)