Hi, Hostile and uncooperative nations probably should be filtered as they could become a haven for hackers (and probably are) for whatever reasons - I think this does reduce the threat in a way. At a minimum it would be useful to identify these networks on an IDS system, IMHO. Going out on a limb here you could argue that countries where there could be no cooperation in pursuing computer criminals should be blocked. It would be far safer for a US based person to launch a US directed attack from a machine in a foreign country that is hostile to the US. There is another side to this I suppose in that the size and fragmentation of the networks may make such a list impossible to implement except possibly in an IDS system. arkat_private wrote: > -----BEGIN PGP SIGNED MESSAGE----- > > nuqneH, > > I think the whole idea is not good at all. Poorly protected > cable tv or *dsl users, ill-behaving ISP or something else like that are no less > treat to Internet security. There is no reason to maintain a list of "hostile > national networks" if an intruder can bypass any rules by hacking into US-based > system and then go wherever he wants. > > "Bowden, Kevin" <bowden_kwat_private> said : > > > In our last NIPC Chapter meeting we asked for just such a list. We thought > > the FBI would be a good source for this information. It may be that the > > information will only be available to those who have cleared their screening > > process. That is of course assuming that the information is available and > > provided at all. Besides this, I have had no luck finding other sources for > > this data other than keeping an eye on the news and doing my own > > cyber-sleuthing. > > > > Kevin > > > > -----Original Message----- > > From: Tony Miedaner [mailto:miedanerat_private] > > Sent: Monday, May 28, 2001 2:03 PM > > To: firewall-wizardsat_private > > Subject: [fw-wiz] handy list of undesireble foreign networks > > > > Hi folks, > > > > Any body know where I can get a quick list of networks used in various > > non-friendly foriegn nations? I know it would not be perfect (because > > of provider allocation) but something that could be used as a baseline > > for screening evil and such. Any RTBL or ORBS type lists out there for > > general tcp/ip traffic? > > > > TIA > > _ _ _ _ _ _ _ > {::} {::} {::} CU in Hell _| o |_ | | _|| | / _||_| |_ |_ |_ > (##) (##) (##) /Arkan#iD |_ o _||_| _||_| / _| | o |_||_||_| > [||] [||] [||] Do i believe in Bible? Hell,man,i've seen one! > > -----BEGIN PGP SIGNATURE----- > Version: PGP 6.5.1i > > iQCVAwUBOxdu/KH/mIJW9LeBAQFMawQAj3bc8aYAZS9PS1Uwtj7sHxEMyDBsiOe4 > JWZNH/RimiYI+VVLaGzjtjcBswqqHO2PJobc9G2EU0UfMqTBiFffaP5hQ/SJnOAy > ty1Tv4XpX7PmjTBWbNGW8toc8AI9upVYEdAyqzHh+PqF2CejH04aLdcFWB8uW3LH > JatuMMn5iYs= > =PkDZ > -----END PGP SIGNATURE----- > _______________________________________________ > firewall-wizards mailing list > firewall-wizardsat_private > http://www.nfr.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizardsat_private http://www.nfr.com/mailman/listinfo/firewall-wizards
This archive was generated by hypermail 2b30 : Fri Jun 01 2001 - 16:14:10 PDT