Luis Daniel Lucio Quiroz a écrit : > Hi all, > > Again me, Well, in the security scope i use a principle that states that you > souldnt use a lower layer solution to fix a higher one. So SPAM is a Layer 7 > problem that is used to fixed with a Layer 3 solution (RBL). > > I'd like a brainstorm to convince that a RBL solution is not the best stoping > SPAM, and we should look for L7 solution such as Bayes. >
If someone tries to guess a working login:pass on your server and does this a thousand times in a short period, you will still let him continue because passwords are L7 and the IP address is at L3? if you want talking about principles, then "defence in depth" suggests using all your levels to block attacks. In short, segment your zones, your diagrams, your reports, but do not segment your defences. When you hear "divide and conquer", divide the problem, not your army. you still want to coordinate your defences so as to increase their efficiency. Besides, spam is at Layer PI (3.1415....) ;-p
