On 11 February 2010 16:17, Michael Holstein <[email protected]>wrote: > > Let's not debate the stupidity of authenticating a network by IP address > .. but the above problem is ultimately what forced us to do the same > thing (although we just prohibit the operation of an exit). I should > note that the original effort to run an exit was conducted by myself, > and I do network security here .. but it was the complaints from the > library folks that got us into hot water .. there simply wasn't an easy > way to block access to all of them without an overly-complex exit > policy, and all of our IP space is within a single /16.
Why couldn't your exit policy just block the IPs of the journal sites?
