BlackIce should suffice, it will actually warn you and log smtp relay
attempts. At which point you can block the ip.
jon
- Original Message -
From: "CF-Talk" [EMAIL PROTECTED]
To: "CF-Talk" [EMAIL PROTECTED]
Sent: Sunday, November 12, 2000 4:43 AM
Subject: OT: Blocking s.o. from utilize open SMTP-Ports ( was Blocking IPs )
Speaking of blocking.
Does s.o. know of a blocking SW which blocks one IP (or several IPs)
to prevent that s.o. uses the open SMTP-Mail-Server ?
My Mail-server doesn't provide this feature or only on a domain-basis.
But I want to use it for a static server IP.
Uwe
- Original Message -
From: "Mike Sullivan" [EMAIL PROTECTED]
To: "CF-Talk" [EMAIL PROTECTED]
Sent: Montag, 6. November 2000 23:54
Subject: RE: Blocking IPs
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juan,
You could block an intruder at your web server with the facilities of
the httpd software, the server's tcp/ip features, you can also do it
from CF (but you would have to wait for the intruder to request a Cf
template... maybe you don't want to wait that long!). There are a
lot of inetd sorts of security that depend on the platform you are
using.
The best (fastest, most robust and a goodie that is designed for it)
would be at your firewall/router.
You will shortly find that you need to see your site in the context
of a greater security policy. Balance that with why you have a web
site and what you keep there }:/. Formulate a real security policy
and put it to work.
Is your abuser always from the same IP address? Then report it to
the upstream ISP and help protect the field. OTOH, a dial up account
is easy to setup and abusive nut cases are very fond of them as it
costs them nothing.
Do you want to catch this black hat in the act? Put up a honey pot
and attract all kinds of critters.
But really, think about what you do with your server and get a
working policy, firewall, router, etc. Get some books, investigate a
DMZ, encryption etc. Visit CERT, Security Focus, l0pth and others.
Enjoy, but remember, your not in Kansas any more.
Mike
- -Original Message-
From: Juan Andres Alvarez Valenzuela [SMTP:[EMAIL PROTECTED]]
Sent: Monday, November 06, 2000 8:30 AM
To: CF-Talk
Subject: Blocking IPs
Hello everyone,
Someone has experience in blocking the access to some IP number in CF
?
We have a potential information robber and we are trying to block
him.
ideas?
~Juandres
- --
- --
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or
send a message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.5.3 for non-commercial use http://www.pgp.com
iQA/AwUBOgc2K3YFmKomMlANEQJTLQCeJuiwku1xHTP+c3vCtLOaa72ZUnMAn1Y0
3QkmOUPy9j9RmrwsCSdAMzTS
=Qopx
-END PGP SIGNATURE-
--
--
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or send
a
message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
--
--
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or send
a message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or send a message
with 'unsubscribe' in the body to [EMAIL PROTECTED]
