[Dshield] Need some help testing

Tomas L. Byrnes tomb at byrneit.net
Wed Jul 11 18:17:26 GMT 2007 

I can tell you, from having been a business subscriber to Pacbell DSL,
that they propagate inaccurate netblock information. 

I had business DSL that was specifically allowed to run servers, and
they had me listed as dynamic, and were blocking mail to/from my servers
to their OWN MTAs. It took 3 months to get fixed, during which period of
time I had to use a buddy's MTA and do dial-up Dequeue until I managed
to get switched over to Cox.

You are making a big assumption: that bigtelco xxxx isn't treating all
their customers as badly as the $12.95 guy who isn't profitable enough
to quarantine because he's a botnet.


> -----Original Message-----
> From: list-bounces at lists.dshield.org 
> [mailto:list-bounces at lists.dshield.org] On Behalf Of Mar 
> Matthias Darin
> Sent: Tuesday, July 10, 2007 11:52 PM
> To: General DShield Discussion List
> Subject: Re: [Dshield] Need some help testing
> 
> Hello, 
> 
> Tomas L. Byrnes writes: 
> 
> > If I am to sum up the attitudes of those who like blocking static 
> > "dynamic" addresses it is:
> > 
> > Only businesses (or people willing to pay for business 
> service) should 
> > have their own mail relays.
> 
> The approach I perfer is to block only IP addresses that are 
> stated in the provider's TOS/AUP as not allowed to  run 
> private servers.  AOL, Cox, PacBell, and many others fall in 
> this area.  The user agreed to it when they signed up, I see 
> no valid reason not to enforce what the provider in question 
> has stated as policy. 
> 
> > It's also pretty high-handed on anyone's part to call an IP address 
> > that they know may well actually be static, "dynamic".
> 
> If the provider allows it in their TOS/AUP, the there is no 
> justification to treat it as dynamic.
> 
> I am not going to speak for other methods, my method is to 
> enforce what a provider devlares as dynamic and investigate 
> questionable ones. 
> 
>  --- 
> 
> DynaStop: Stopping spam one dynamic IP address at a time.
> http://tanaya.net/DynaStop/
> _________________________________________
> SANSFIRE 2007 July 25-August 2 in Washington, DC.  56 
> courses, SANS top instructors, and a great tools and 
> solutions expo. Register today!
> http://www.sans.org/info/4651 (brochure code ISC)
>

More information about the list mailing list