Ian Dunkin wrote:
>
>
> > There seems to be a large interest in this issue (15 responses in less
> > than 24 hours). I assume that represents a larger group of people
> > who would like to see such a list [...]
>
> > A site gets put on the list once it is reported to the list maintainer by root
> > at a site. (This at least gives us a little bit of verification.)
> >
> > A site, once on the list, stays on the list until that site is off the net.
>
> This sounds as if it would offer great scope for malicious reports and
> thus deliberate denial of service. And any such loss of service, mediated
> by the list coordinator, would be great fun for the lawyers..
Yes, but this is only results from the uses proposed by follow-on messages.
The person who originally asked for this was looking for something to tell
him if an otherwise innocent looking probe attempt might be something
which would warrant further investigation, not for a list of hosts, networks,
or organizations to deny service to.
Something like host x.y.z tried to telnet to me 3 times, if it's on the hackers
list I should take action A, if not I should take action B.
One of the big problems is the old "do you trust the source of the list"?
--
William A. Gianopoulos; Raytheon Missile Systems Division
wag @
swl .
msd .
ray .
com
--------------------------------------------------------------------
Any opinions expressed above are my own and not that of my employer.
Follow-Ups:
References:
|
|
