I have been tracking
those activities for quite a long time and have been
growing myself a pretty large hosts.deny file qust
because i got pretty annoyed with those kiddies.
I see there is a lot of fuss about wanadoo.fr and t-dialin.net
but there are a few other popular isp's
Following is the ftp problem makers part of my hosts.deny
I hope it may be useful for someone on the list.
#The following section contains mostly FTP problem makers
ALL: .wanadoo.fr,\
.retevision.es,\
.wiwiss.fu-berlin.de,\
.ewetel.net,\
172.188.82.22,\
.nombres.ttd.es,\
131.204.203.45,\
134.184.28.169,\
.estpak.ee,\
.kuban.ru,\
.tin.it,\
.cybercable.tm.fr,\
.pixelhouse.de,\
212.199.28.108,\
62.98.228.73,\
213.237.24.20,\
213.97.98.62,\
213.82.103.67,\
212.199.187.214,\
.nykredit.dk,\
195.101.176.125,\
195.70.202.,\
192.118.6.32,\
ip87-226.adsl.wplus.ru,\
.o-tel-o.net,\
.dip.t-dialin.net,\
.evc.net,\
213.96.224.5,\
.home.com,\
.phoenix-t.navipath.net,\
.nyc.cccnetsys.com,\
.bezeqint.net,\
.chello.nl,\
.chello.fr,\
.cccnetsys.com,\
.quicknet.nl,\
.nordnet.fr,\
217.81.85.58,\
217.225.12.3,\
.linix.co.uk,\
.hombres.ttd.es,\
24.25.251.149,\
24.226.198.25,\
24.252.140.221,\
.sympatico.ca,\
.isis.de,\
.net.mx,\
.brutele.be,\
.skynet.be,\
.club-internet.fr,\
.reimari.net,\
.stuwo-steinweg.de,\
.superonlinecorporate.com,\
.adsl.hansenet.de,\
.worldonline.dk,\
.ipt.aol.com,\
.net24.it
Sorry for the mixture of domains and IP's, some day I'll
sort this
Have Phun
Emo
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Thu Dec 20 2001 - 08:19:50 PST