[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Connections to botnet masters



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


>> The problem is that my ISP called me that some botnet had been
>> controlled from my ip. Cert.fi had contacted my ISP when they we're
>> investigating some DDOS or something like that. I think that they
>> thought that my server is cracked.
> 
> 
> I had the same problem last week with my ISP. Also, botnet issues. I am
> blocking IRC for now in my exitpolicy, to see if this solves the problem

I had blocked exit to common IRC ports before this problem arise. When I
was allowing exit to common irc ports my server was banned in couple of
hours from irc-servers that I used myself so I had to deny exit to irc.

In this case the offending exit port was 8080 (as far as I know there
was sitting some custom irc-server behind that port).

M
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFG0/CS6fSN8IKlpYoRAqOxAJ4/B62fj1O7RCYJnRHplJa7q4qCOwCdEIqy
472t1J5vUTJqu5LcdKIcGRM=
=031q
-----END PGP SIGNATURE-----