Re: what percent of time are there unpatched exploits against default config?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 12/31/11 2:17 PM, Ken godee wrote:
> We've been thinking of using the MaxMind GeoIP Country database with
> Apache mod_geoip API to limit certain countries visiting our websites.
>
> Has anyone used this or have any input on it's usefulness?

the virus/worm folks will just move to open relays that are not 
blocked.   I have something like 1/2 the total IP space blocked on this 
one forum I host that seems to attract a very large number of bogus 
signups, and it hasn't abated the 50-100/day of fake registrations yet.  
there's now 1700 subnets and another 1000 specific IPs blocked.   I can 
tell they are robotic assisted fake registrations because the 'Bio' 
field ('about you, why you want to join this forum') is always filled 
with one of 4 specific entries ("LO qUe eS bRaKbEaT", "Me gusta la 
guasa", "Loading...", or less often, "Robot").  initially, the vast 
majority of these fake registrations came from china, russia.  now they 
are coming from everywhere since I have almost all of china and russia 
blocked.

-- 
john r pierce                            N 37, W 122
santa cruz ca                         mid-left coast

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux