[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] /sbin/route and troublesome IP's
- Subject: [cobalt-users] /sbin/route and troublesome IP's
- From: "Dan Kriwitsky" <list1@xxxxxxxxxxxxxxxxxxxx>
- Date: Fri Jul 12 10:10:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
Just wanted to be clear on something before I try it. Saw in an old
post, although couldn't tell if it referred to a RaQ4 or not, that to
block a troublesome IP:
/sbin/route add -host 211.162.79.21 reject
Is that correct, and would
/sbin/route add -host 211.162.79 reject
block that entire /24 from accessing my server in any way? The reason is
hundreds of lines in this AM's maillog like:
Jul 12 10:20:29 admin in.qpopper[14019]: EOF from at 211.162.79.21
(211.162.79.21): [0] 29 (Illegal seek); 0 (Success)
Jul 12 10:20:29 admin in.qpopper[14019]: (null) at 211.162.79.21
(211.162.79.21): -ERR POP EOF or I/O Error: 29 (Illegal seek); 0
(Success)
and
Jul 12 10:37:55 admin in.qpopper[16149]: user at 211.162.79.21
(211.162.79.21): -ERR [AUTH] Password supplied for "user" is incorrect.
Jul 12 10:37:56 admin in.qpopper[16150]: data at 211.162.79.21
(211.162.79.21): -ERR [AUTH] Password supplied for "data" is incorrect.
Jul 12 10:37:40 admin in.qpopper[16128]: data at 211.162.79.30
(211.162.79.30): -ERR [AUTH] Password supplied for "data" is incorrect.
Information about those IP's can be found at
http://www.spews.org/html/S1109.html
--
Dan Kriwitsky