discuss AT lists.opennicproject.org
Subject: Discuss mailing list
List archive
- From: Simon <simon AT hacknix.net>
- To: discuss AT lists.opennicproject.org
- Subject: Re: [opennic-discuss] [SHAME] Spam Rats
- Date: Thu, 10 Jan 2013 19:48:43 +0000
On 01/10/13 19:00, Jamyn Shanley wrote:
> I actually think there would be some benefit to running an ossec client
> on the T2 nodes that reports abusive behavior to a controller, so we
> could block abusive traffic preemptively on the other nodes. That way if
> they abuse node 1, node 2 already has a dynamic filter in place when
> they switch nodes after they're ratelimited.
There is also a high potential of abuse here. This functionality could
be used as a type of DoS attack. By spoofing an attack on one Opennic
node, the atacker could get an IP or block of IPs blocked from all
Opennic nodes.
Simon
- [opennic-discuss] [SHAME] Spam Rats, Julian DeMarchi, 01/09/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Simon, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jamyn Shanley, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jeff Taylor, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jamyn Shanley, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Simon, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Julian DeMarchi, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jeff Taylor, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Simon, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jamyn Shanley, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jeff Taylor, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Jamyn Shanley, 01/10/2013
- Re: [opennic-discuss] [SHAME] Spam Rats, Simon, 01/10/2013
Archive powered by MHonArc 2.6.19.