On 12 Feb 2019, at 15:04, Rupert Gallagher wrote:
Ehhh.... not available on bsd with pf, or so it was the last time I
checked.
A good 'tarpit' tool that IS available for *BSD (originating on OpenBSD)
is 'spamd' which unfortunately shares a name with the daemon aspect of
SA. There's a port for FreeBSD and pf.conf(5) documents its integration
with pf.
Good for you as you have it! It is a fantastic piece of aikido.
On Tue, Feb 12, 2019 at 18:19, John Hardin <jhar...@impsec.org> wrote:
On Tue, 12 Feb 2019, Rupert Gallagher wrote:
and we have now blocked their IP at the firewall,
A suggestion: it may hurt them more if you TCP tarpit them instead of
just
blocking them. That's what I do.
[...]
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Available For Hire: https://linkedin.com/in/billcole
