Free Republic
Browse · Search 		News/Activism
Topics · Post Article

To: KoRn

There was a particular eastern European country that was giving me problems. I went back through the logs 18 months and couldn’t find a single legitimate connection so I decided to deny every IP address block assigned to that country. After a while, I took a look at the percentage of assigned blocks that had sent port scans, bot probes, etc and it was just under 70%.


7 posted on 05/04/2009 10:05:12 PM PDT by james500
[ Post Reply | Private Reply | To 3 | View Replies ]

To: james500
"After a while, I took a look at the percentage of assigned blocks that had sent port scans, bot probes, etc and it was just under 70%"

I wonder what % of rejects on email gateways originate from 'owned' Windows machines. I'd say easily 60%. I can do a 'tail -f' on our mail gateway at any time of the day and watch all of the rejected connections that are obviously from home computers on an ISP's network. I'd say all of them are bots.

10 posted on 05/04/2009 10:12:23 PM PDT by KoRn (Department of Homeland Security, Certified - "Right Wing Extremist")
[ Post Reply | Private Reply | To 7 | View Replies ]
To: james500
"I can do a 'tail -f' on our mail gateway"

PS: That would be a 'tail -f' on the maillog file on the email gateway'. :p (it's getting late)

11 posted on 05/04/2009 10:14:11 PM PDT by KoRn (Department of Homeland Security, Certified - "Right Wing Extremist")
[ Post Reply | Private Reply | To 7 | View Replies ]

Free Republic
Browse · Search 		News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson