Unsure if this will make it through to the list but I feel it is
relevant. I wrote a program called Sharpener which is an SSH brute force
blocking tool. However, this tool also reports back the offenders'
addresses and I have begun posting the information on them as well as
sending out messages (whenever possible) to the admins of these domains.
Think of it as an RBL for SSH attackers. The goal is to identify these
machines in order for others to implement safeguards against these
hosts. Feel free to comment/complain.
http://www.infiltrated.net/sharpener (tool)
http://www.infiltrated.net/bruteforcers
--
====================================================
J. Oquendo
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x1383A743
sil . infiltrated @ net http://www.infiltrated.net
The happiness of society is the end of government.
John Adams
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
|