On Fri, Sep 27, 2002 at 06:43:50PM +0800, Orlando Andico wrote: > perhaps due to my aggressive blocking of spam netblocks, we've become > a favorite whipping boy for spammers who're sending us SYN requests > and holding all our smtpd's hostage.
Oh boy. From dirty tactics to even dirtier tactics. Sheesh. :( > to alleviate this issue, i've written a script which outputs about > 2000 iptables rules (i have a database where i keep track of which > IP's are naughty and nice..) > > the problem now is.. how can i quantify the performance hit iptables > is extracting? 2000+ rules is not inconsiderable. I have absolutely no advice to give on the iptables rules, but I wonder: what do you think about something of a community database of these bad boys (and girls)? I for one would like to ally with trustable folk like you, blocking them off completely. I haven't begun to think of the technology we'd need to keep in-sync with each other and handle address additions, since I'd rather start with knowing what you (and everyone else) thinks of the concept. :) --> Jijo -- Federico Sevilla III : http://jijo.free.net.ph Network Administrator : The Leather Collection, Inc. GnuPG Key ID : 0x93B746BE _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
