nanog mailing list archives

RE: compromized host list available

From: Todd Vierling <tv () duh org>
Date: Thu, 21 Jul 2005 13:58:12 -0400 (EDT)


On Thu, 21 Jul 2005, Hannigan, Martin wrote:

I've developed a tool to pull together a bunch of information from
DNSRBLs and mix it with a BGP feed, the result is that upon request I
can generate a report of all the compromised hosts on your network as
seen by various DNSRBLs.

What about collateral damage?


Why, are you wanting to create some?  8-)

I think such reports should be treated as they are: third party statistics
that (depending on the sources, as I don't know what they are) indicate what
those third parties think is happening with your network's hosts.

These reports are not a new blacklist.  The original poster is only offering
these to the admin of any given network -- not another third party.
Certainly, I'd *love* to see a neatly cross referenced list for a few
unnamed cesspools who refuse to police their networks, in order to ostracize
them for it in public, but that's not the purpose of these reports....

-- 
-- Todd Vierling <tv () duh org> <tv () pobox com> <todd () vierling name>

Current thread:

Re: compromized host list available, (continued)
- Re: compromized host list available Joseph S D Yao (Jul 21)
  - Re: compromized host list available Chris Kuethe (Jul 21)
  - Re: compromized host list available Joe Abley (Jul 21)
    - Re: compromized host list available Joseph S D Yao (Jul 21)
    - Re: compromized host list available John Payne (Jul 21)
    - Re: compromized host list available Joseph S D Yao (Jul 21)
    - Re: compromized host list available Randy Bush (Jul 21)
  - Re: compromized host list available Charles Cala (Jul 21)
    - Re: compromized host list available Joseph S D Yao (Jul 21)
- RE: compromized host list available Hannigan, Martin (Jul 21)
  - RE: compromized host list available Todd Vierling (Jul 21)
    - Re: compromized host list available Rick Wesson (Jul 21)