Sun, 23 Jan 2005, by rhugga@yahoo.com:
I have talked with engineers in the past that like to block all IP addresses from countries such as China for example in an effort to quall spam and other malicious activities. Where can these listings be found? I would like to block entire networks at our border router for countries we don't do any business with or have a need for them contacting us.
Your network, your rules, but how do you know that none of your regular customers has some sort of network connectivity in one of the countries you'd like to block, a webhost, dns or whatever? If everyone choses to follow Verizon's example then I think it's safe to predict the return of Telex- and telegram services for enterprises pretty soon.
We have been seeing an increase of malicious activity lately and about 90% of it comes directly from China and the other 10% likely originates there as well. Most of it has been low-level script-kiddy stuff, probing for open relays, trying default user accounts, and other amateur stuff but can't be to cautious.
You do know that 75% of break-ins and "hacks" come from the inside do you? Theo -- Theo v. Werkhoven Registered Linux user# 99872 http://counter.li.org ICBM 52 13 26N , 4 29 47E. + ICQ: 277217131 SUSE 9.2 + Jabber: muadib@jabber.xs4all.nl Kernel 2.6.8 + MSN: twe-msn@ferrets4me.xs4all.nl See headers for PGP/GPG info. +