[SLL] collaborate on a dnsbl?
Chuck Wolber
chuckw at quantumlinux.com
Thu May 12 17:06:00 EDT 2005
On Thu, 12 May 2005, Jeremy C. Reed wrote:
> I would extend this packet filter list to beyond just SSH. It would be
> very useful for when Code Red/Nimda type worms and email virus
> repeatedly attack.
Sure. We could start this out with a simple mailing list where we mail
around IP addresses. Only those in the ring of trust would be allowed to
post to the list, although anyone should be able to "listen". I would
imagine we would also have to require exact log file entries to go along
with the IP addys so others can verify and see for themselves what the
activity was.
Over time we *COULD* get more sophisticated. Such a system could be easily
abused though, so any automation would require a great deal of debate and
open discussion.
Input anyone?
..Chuck..
--
http://www.quantumlinux.com
Quantum Linux Laboratories, LLC.
ACCELERATING Business with Open Technology
"The measure of the restoration lies in the extent to which we apply
social values more noble than mere monetary profit." - FDR
More information about the linux-list
mailing list