On Mon, 19 Aug 2013, David F. Skoll wrote:
On Mon, 19 Aug 2013 08:36:14 -0700 (PDT)
John Hardin wrote:
[...]
In addition, tarpitting is at least partly intended to help *others*,
by getting the attacker stuck before it moves on to the next target.
OK; I guess it's just a difference in mind
On Mon, 19 Aug 2013 08:36:14 -0700 (PDT)
John Hardin wrote:
[...]
> In addition, tarpitting is at least partly intended to help *others*,
> by getting the attacker stuck before it moves on to the next target.
OK; I guess it's just a difference in mindset. I approach the problem
with the follow
On Mon, 19 Aug 2013, David F. Skoll wrote:
On Mon, 19 Aug 2013 07:52:15 -0700 (PDT)
John Hardin wrote:
Have you considered TCP Tarpitting instead of just blocking them?
Blocking them doesn't actually *punish* them. Getting their MTAs
*stuck* for hours or days does.
IMO, tarpitting is usele
>It seems to me that greylisting and TCP tarpitting catch both sides of the
>problem. Greylisting blocks junk from the single-attempt zombies, and TCP
>tarpitting will catch the ones who are persistent offenders.
Maybe, probably not. Modern MTAs, even the ones that are not
spambots, can run hun
On Mon, 19 Aug 2013 07:52:15 -0700 (PDT)
John Hardin wrote:
> >> Have you considered TCP Tarpitting instead of just blocking them?
> >> Blocking them doesn't actually *punish* them. Getting their MTAs
> >> *stuck* for hours or days does.
> > IMO, tarpitting is useless. When you have hundreds, t
On Mon, 19 Aug 2013, David F. Skoll wrote:
On Mon, 19 Aug 2013 07:31:33 -0700 (PDT)
John Hardin wrote:
Have you considered TCP Tarpitting instead of just blocking them?
Blocking them doesn't actually *punish* them. Getting their MTAs
*stuck* for hours or days does.
IMO, tarpitting is use
On Mon, 19 Aug 2013 07:31:33 -0700 (PDT)
John Hardin wrote:
> Have you considered TCP Tarpitting instead of just blocking them?
> Blocking them doesn't actually *punish* them. Getting their MTAs
> *stuck* for hours or days does.
IMO, tarpitting is useless. When you have hundreds, thousands or
