On 12/4/24 09:20, Marc wrote:
I hope nobody minds me addressing this off topic question.
I was thinking about adding ipv6, and when I got a range to try with, I was
actually surprised how many I got. This made me wonder how many ipv6 are being
used and how many ipv4.
Having these ipv6 so abundantly available made me also think about how I have
currently arranged my abuse mitigation. Currently I am having ipsets for
different subments and use a sort of honeypot approach, anything automated that
scans for vulnerabilities in wordpress or weird files and ignores the
robots.txt is getting blocked.
Such an approach will lead over years that you block most of azure, google,
amazon, digitial ocean, .cn etc.
You left out hotmail and outlook.com.
I don't think this will go well for ipv6 to be honest. If there are so many out
there, my ipsets will grow even bigger.
I was wondering how others are solving this?
I'm a long distance phone call from an ipv6 address, but ipv4 is just as
plagued. When will t-bird give us a /dev/null target to move such trash
to? And why do I have to restart it every day to make the filters it
has, actually work?
Also, we need a filter to trigger on the phone numbers in a msg.
Phishing bills for thousands of dollars purport to come from
shwab/amazon etc. but the phone numbers don't change. That would make
one heck of a filter rule.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
Cheers, Gene Heskett, CET.
--
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
- Louis D. Brandeis
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
