[145922] in North American Network Operators' Group
RE: XSServer / Taking down a spam friendly provider
daemon@ATHENA.MIT.EDU (Gavin Pearce)
Wed Oct 26 16:12:17 2011
Date: Wed, 26 Oct 2011 21:10:41 +0100
In-Reply-To: <CAPF5age_9ia8NHV_COp4pZB1ZBX2iwbZVpsjb9xyve0tC2zYuQ@mail.gmail.com>
From: "Gavin Pearce" <Gavin.Pearce@3seven9.com>
To: "Chris" <caldcv@gmail.com>,
"NANOG list" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Wed, Oct 26, 2011 at 10:12:33AM -0400, Chris wrote:
> Does anyone have any recommendations of where to go next because I'm
> just limited to doing a whois on the IP address, emailing the abuse
> contact and tracerouting.
Chris,
Can't help much - but can say we find ourselves in a similar boat.
As a rule of thumb, we systematically block, log, and report *every*
spam, virus & brute force etc attempt we receive against any of our
devices.
In the past three years, only one company has ever responded to an abuse
request (CampaignMonitor to name & honour them), though there are
definitely some other good guys out there (a large number of them on
this list)!
[We don't apply the above logic for spam sent to email destinations, for
obvious reasons]
G
