nanog mailing list archives
Re: Worst Offenders/Active Attackers blacklists
From: "Patrick W. Gilmore" <patrick () ianai net>
Date: Tue, 29 Jan 2008 16:39:14 -0500
On Jan 29, 2008, at 4:23 PM, Edward B. DREGER wrote:
PWG> [Z]one transfers, while not as bad as individual lookups, are still PWG> a bad idea IMHO. For instance, are you sure you want your dynamicPWG> filters 30 or 60 minutes out of date? As opposed to infinitely out-of-date (i.e., no filters)? Don't get mewrong; I'm none too keen on using DNS to distribute IP ACLs. I just amnitpicking that one particular point.
Frequently, yes. FPs can be more dangerous than FNs. Depends on your network, clients, etc.
And that's just the first reason that came to mind. There are plenty of others.
Or maybe not. Prove me wrong! -- TTFN, patrick
Current thread:
- RE: Worst Offenders/Active Attackers blacklists, (continued)
- RE: Worst Offenders/Active Attackers blacklists Jason J. W. Williams (Jan 28)
- Re: Worst Offenders/Active Attackers blacklists Andrew D Kirch (Jan 28)
- Re: Worst Offenders/Active Attackers blacklists Patrick W. Gilmore (Jan 28)
- Re: Worst Offenders/Active Attackers blacklists Jim Popovitch (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Patrick W. Gilmore (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Joel Jaeggli (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Edward B. DREGER (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Andrew D Kirch (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Patrick W. Gilmore (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Edward B. DREGER (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Patrick W. Gilmore (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Edward B. DREGER (Jan 29)
- RE: Worst Offenders/Active Attackers blacklists Ben Butler (Jan 29)
- Re: Worst Offenders/Active Attackers blacklists Christopher Morrow (Jan 29)