* Simon Lyall ([EMAIL PROTECTED]) [050912 09:12] wrote: >>> I dont see any problem with launching dns based blacklist listing >>> IP addresses of abusive ntp clients. >> >> Okay, that's a little different. Running a blacklist of this >> sort is quite an undertaking, however. A lot of work goes on behind >> the scenes that most people who are otherwise knowledgeable with >> regards to DNS wouldn't understand, much less anyone else. > I don't think using DNS is the best idea here, I would suggest something > more simple.
Just to be noted: DNS is simple. Most of the blacklists use it. I meant to use DNS as technical mean to share the data. It can be textfile to be wget'ted or mysql with bunch of scripts - it doesn't matter. You sticked to the word 'DNS' instead review the idea. I propose to create a database containing addresses of abusive clients. Whether one would like to use the data from it for drawing graphs or use it for defense - is up to him. The main purpose of such lists would be the defence, of course, but hell - noone HAS to use it. Of course everyone can fight for their own server, launching their own scripts, restarting their firewalls. In global look - you have bunch of people with bunch of servers, each of them working on their own. Dont you think an abusive ntp clients database, with couple example scripts for ntp servers' admins ( usable by ANY ntp servers BTW ), - how to use the list, with a lookup tool ( "check if you're on the blacklist" ), appropiate faq note on pool.ntp.org webpage ( "i don't get the answer from ntp pool servers" ) and "personalized" webpage ( "IP address X.X.X.X is on ntp pool's blacklist. It was listed on Y, because of Z" ) for those who not only detect abusive clients and filter them, but also like to contact them. Such list would decrease the burden of current self-protection each of ntp pool admins spend and distribute the load of abuse detection among all of those who decide to be list feeders. Regards MJ -- [EMAIL PROTECTED] ( Psyborg ) MJ102-RIPE GTS Polska sp. z o.o. Servers Administration Department Manager "I may look like I'm doing nothing, but at the cellular level I'm quite busy." _______________________________________________ timekeepers mailing list [email protected] https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
