On 12/4/24 09:20, Marc wrote:
I hope nobody minds me addressing this off topic question. I was thinking about adding ipv6, and when I got a range to try with, I was actually surprised how many I got. This made me wonder how many ipv6 are being used and how many ipv4. Having these ipv6 so abundantly available made me also think about how I have currently arranged my abuse mitigation. Currently I am having ipsets for different subments and use a sort of honeypot approach, anything automated that scans for vulnerabilities in wordpress or weird files and ignores the robots.txt is getting blocked. Such an approach will lead over years that you block most of azure, google, amazon, digitial ocean, .cn etc.
You left out hotmail and outlook.com.
I don't think this will go well for ipv6 to be honest. If there are so many out there, my ipsets will grow even bigger. I was wondering how others are solving this?
I'm a long distance phone call from an ipv6 address, but ipv4 is just as plagued. When will t-bird give us a /dev/null target to move such trash to? And why do I have to restart it every day to make the filters it has, actually work?
Also, we need a filter to trigger on the phone numbers in a msg. Phishing bills for thousands of dollars purport to come from shwab/amazon etc. but the phone numbers don't change. That would make one heck of a filter rule.
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
Cheers, Gene Heskett, CET. -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author, 1940) If we desire respect for the law, we must first make the law respectable. - Louis D. Brandeis --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx