[Dshield] Whom do you trust?

Tom Laermans tom.laermans at powersource.cx
Thu Mar 6 15:03:42 GMT 2003


At 15:00 06/03/2003, you wrote:
>I got hit hard last night by rt.njabl.org; They scanned numerous ports. 
>When I looked at the mail server log, amongst all the "we do not relay" 
>messages, I see that they tried to log on with user name 
>"before-reporting-as-abuse-please-see-www.njabl.org."
>
>OK I'm a jaded New Yorker but THAT would be an interesting ruse to scan 
>sites for open relays with impunity. There's sure not much to the web 
>site. Has anyone ever heard of this group?

Yup, they maintain a dns realtime blocking list with open relays, and are 
listed in lists listing lists. Ack, that's a weird sentence.. They're on 
sites which lists dnsbl's. That's better.

The site is pretty minimalistic, true, but afaik they're legit :)

Tom 



More information about the list mailing list