[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Connections to botnet masters
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
>> The problem is that my ISP called me that some botnet had been
>> controlled from my ip. Cert.fi had contacted my ISP when they we're
>> investigating some DDOS or something like that. I think that they
>> thought that my server is cracked.
>
>
> I had the same problem last week with my ISP. Also, botnet issues. I am
> blocking IRC for now in my exitpolicy, to see if this solves the problem
I had blocked exit to common IRC ports before this problem arise. When I
was allowing exit to common irc ports my server was banned in couple of
hours from irc-servers that I used myself so I had to deny exit to irc.
In this case the offending exit port was 8080 (as far as I know there
was sitting some custom irc-server behind that port).
M
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFG0/CS6fSN8IKlpYoRAqOxAJ4/B62fj1O7RCYJnRHplJa7q4qCOwCdEIqy
472t1J5vUTJqu5LcdKIcGRM=
=031q
-----END PGP SIGNATURE-----