Re: [blfs-dev] Sick to death of spammers and their illegal activities.

[Claus Regelmann]

On 10/02/2014 08:50 PM, Kenneth Harrison wrote:

On 10/1/14, Jasmine Iwanek <jasm...@iwanek.co.uk> wrote:

On 2014-10-01 04:15, Christopher Gregory wrote:

Hello,

I have now blocked the following ip ranges from accessing my website as
they can not be trusted due to the fact that they compromised a phpbb
board that I had set up on my previous host to send their spam, and
they
are STILL bloody well trying on my new host:

120.    120.0.0.0       -       120.255.255.255   (includes china telecom)
76.     76.0.0.0        -       76.255.255.255
193.    193.0.0.0       -       193.255.255.255
91.     91.0.0.0        -       91.255.255.255
200.    200.0.0.0       -       200.255.255.255
180.    180.0.0.0       -       180.255.255.255
63.     63.0.0.0        -       63.255.255.255
37.     37.0.0.0        -       37.255.255.255

I have also been sending emails to the abuse departments of the ip
blocks.

Some of the ranges may be inocent, but I am not going to trust them.
The
whole 120 block is probably china, so I really do not care.

Its about time that the countries who have these incessant spammers are
actually firewalled off from accessing the internet.  Let those
countries
only be allowed to spam locally.

Quite possibly if the internet was made R21 world wide, a lot of this
crap
would go away.

Christopher.

That's great, what does it have to do with the development of BLFS?

It's kinda ironic you just spammed about spam.

--
Jasmine Iwanek
--
http://lists.linuxfromscratch.org/listinfo/blfs-dev
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Just an idea stemming from Spybot Search and Destroy from
Safer-Networking, but it may be a useful idea in the future to create
a BLFS community sponsored block-list of known malicious URLs and IP
addresses in the BLFS or CBLFS book(s) at some time in the future that
can be added into the /etc/hosts file optionally in the Chapter 4 -
Security section.

Hello,

There are already many spammer-/malware-block-lists on the internet, like
- http://www.spamhaus.org
- http://www.abuse.ch
- http://www.malwaredomains.com
- ...
Many of these lists are integrated into IDS/IPS-rules of SNORT or SURICATA.
I propose a new BLFS-chapter "Safer-Networking" describing/discussing technics
and programs for firewalling beyond IPTABLES, e.g.:
-- SNORT (SURICATA)
-- BARNYARD2
-- BASE
-- SQUID
-- SQUID-GUARD
-- SQUID-ANALYSER
-- (Open)VPN
-- PMACCT
-- RRD
-- ...

I have an LFS-6.6-based Firewall (Intel-Atom) with the listed packages 
installed.
I'll contribute my knowledge. Who wants the build-scripts?

Claus



--
http://lists.linuxfromscratch.org/listinfo/blfs-dev
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page