nanog mailing list archives

Re: RBL-type BGP service for known rogue networks?

From: jlewis () lewis org
Date: Thu, 6 Jul 2000 17:35:04 -0400 (EDT)


On Thu, 6 Jul 2000, Dan Hollis wrote:

1) Someone sets up server X on company Y network and starts rooting sites.
2) company Y, once notified, refuses to shut down server X, even when its
   been CONFIRMED server X is indeed rooting sites.
3) company Y has a HISTORY of such attacks and refuses to take any action.

tin.it obviously fits all 3 criteria and thus would be blackholed. it
might not get them to change their behaviour, but at least people who
subscribe to the blackhole list wouldnt be rooted by tin.it customers


Except that any good script kid has root on numerous boxes.  Just blocking
a well known site full of rooted boxes probably won't do much good since
they crack and scan from random boxes all over the world as they root
them.

----------------------------------------------------------------------
 Jon Lewis *jlewis () lewis org*|  I route
 System Administrator        |  therefore you are
 Atlantic Net                |  
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________

Current thread:

Re: RBL-type BGP service for known rogue networks?, (continued)
- - - Re: RBL-type BGP service for known rogue networks? Christopher Palmer (Jul 07)
    - Re: RBL-type BGP service for known rogue networks? Ben Beuchler (Jul 07)
    - Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 07)
    - Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
    - Re: RBL-type BGP service for known rogue networks? John Payne (Jul 06)
    - Re: RBL-type BGP service for known rogue networks? Joe Shaw (Jul 06)
  - RE: RBL-type BGP service for known rogue networks? Mark Mentovai (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Richard A. Steenbergen (Jul 06)
  - Re: RBL-type BGP service for known rogue networks? Valdis . Kletnieks (Jul 06)
  - Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
    - Re: RBL-type BGP service for known rogue networks? jlewis (Jul 06)
    - Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
- RE: RBL-type BGP service for known rogue networks? Karyn Ulriksen (Jul 06)
- RE: RBL-type BGP service for known rogue networks? Karyn Ulriksen (Jul 06)
- RE: RBL-type BGP service for known rogue networks? Karyn Ulriksen (Jul 06)
  - Re: RBL-type BGP service for known rogue networks? Steve Sobol (Jul 06)
  - RE: RBL-type BGP service for known rogue networks? Christian Nielsen (Jul 06)
- Re: RBL-type BGP service for known rogue networks? Dan Hollis (Jul 06)
  - Re: RBL-type BGP service for known rogue networks? Steve Sobol (Jul 06)
    - Re: RBL-type BGP service for known rogue networks? Chris Cappuccio (Jul 06)

(Thread continues...)