> If you want to hear about abuse listen to this: I have a webserver
> running on the same machine and I noticed that a few IPs in one subnet
> were making many many connections to my webserver just getting the
> main page, without any images, over and over again. I firewalled the
> subnet out and the connection attempts got more frequent. I grepped
> my logs after a while and found they were making 198,000 connections/
> week. I found what company owned the network and sent a complaint.
> They replied and said that someone was trying to use my webserver as a
> time server! They weren't just fetching the headers (HEAD), they were
> doing a GET to pull the full webpage just to get the time out of the
> header. My email put a stop to it.
Yup. Good writeup here:
http://www.maths.tcd.ie/~dwmalone/time/
It's a hack to get past firewalls that block NTP.
If you run a web server on the same IP address as your NTP server, it's
probably worth checking for stupid things like this.
--
The suespammers.org mail server is located in California. So are all my
other mailboxes. Please do not send unsolicited bulk e-mail or unsolicited
commercial e-mail to my suespammers.org address or any of my other addresses.
These are my opinions, not necessarily my employer's. I hate spam.
_______________________________________________
timekeepers mailing list
[email protected]
https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers
