[173836] in North American Network Operators' Group
Dealing with abuse complaints to non-existent contacts
daemon@ATHENA.MIT.EDU (Gabriel Marais)
Sun Aug 10 11:19:57 2014
X-Original-To: nanog@nanog.org
Date: Sun, 10 Aug 2014 17:19:49 +0200
From: Gabriel Marais <gabriel.j.marais@gmail.com>
To: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
Hi Nanog
I'm curious.
I have been receiving some major ssh brute-force attacks coming from random
hosts in the 116.8.0.0 - 116.11.255.255 network. I have sent a complaint to
the e-mail addresses obtained from a whois query on one of the IP Addresses.
My e-mail bounced back from both recipients. Once being rejected by filter
and the other because the e-mail address doesn't exist. I would have
thought that contact details are rather important to be up to date, or not?
Besides just blocking the IP range on my firewall, I was wondering what
others would do in this case?
Regards, Gabriel
