[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Connections to botnet masters

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Connections to botnet masters
From: "Nils Vogels" <bacardicoke@xxxxxxxxx>
Date: Tue, 28 Aug 2007 08:48:42 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 28 Aug 2007 02:48:51 -0400
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=cD+OmJAZIzN/zr6pAqmJ2QYjq7LbnksRYL03qf2bjH5SqHbu1b98jo7o0vVOVCuMD0/mlgf3F0iXp1G8tvuOIHV63C/R3YrKMZaDZzuflEdKaeK1pLDnmYjlkeGEa9kjPLUrINrBFS37CmrnwmFtbL5xEHe39KUb05SLl2bLmUI=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=dnlIPLzJOmqKDABPOo0CAiMjFcTffxr0h7+tLAGZzCihDdcMT5BLl2G/5/s5MTuzdsnEN9tarCQX7nG1OWMSfbuQLMsxIvZIoxQovMjlWa7S8FDvfJRznhJA2tZ7EUy1CdBgm05jNMc6idOuShiNqVup7PWvk8p7g6Ufz6T+ASw=
In-reply-to: <46D34A07.1070905@xxxxxxxxxxxx>
References: <46CD2683.9060209@xxxxxxxxx> <46CD89B6.9000705@xxxxxxxxxxxx> <46D2A19C.4090504@xxxxxxxxxxxx> <46D2C69C.8080604@xxxxxxxxxxxxxxxxxxxxxxxxx> <46D34A07.1070905@xxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On 8/28/07, M <maillist@xxxxxxxxxxxx> wrote:

The problem is that my ISP called me that some botnet had been
controlled from my ip. Cert.fi had contacted my ISP when they we're
investigating some DDOS or something like that. I think that they
thought that my server is cracked.

I had the same problem last week with my ISP. Also, botnet issues. I am blocking IRC for now in my exitpolicy, to see if this solves the problem

I changed my exit nodes policy, now I only allow traffic to http(s),
imap(s) and pop(s) =(.

If blocking IRC using Bill's example doesnt solve the issue, I'm tempted to go that way as well. Offcourse, I would rather have an exit policy that is as wide as possible, but I would also prefer not to be kicked off the internet by my ISP :)

Greets,

Nils
--
Simple guidelines to happiness:
Work like you don't need the money,
Love like your heart has never been broken and
Dance like no one can see you.

Follow-Ups:
- Re: Connections to botnet masters
  - From: M

References:
- Configuring DNSPort 9999
  - From: Steven Colbert
- Re: Configuring DNSPort 9999
  - From: M
- Connections to botnet masters
  - From: M
- Re: Connections to botnet masters
  - From: K.N.
- Re: Connections to botnet masters
  - From: M

Prev by Author: Re: Attn TorStatus folks! We are about to break your bandwidth measures!
Next by Author: Directory servers for a subset of Tor routers
Previous by thread: Re: Connections to botnet masters
Next by thread: Re: Connections to botnet masters
Index(es):
- Author
- Thread