Think we need some solution WITHIN the Asterisk core. Roderick A. suggested something that looks nice using iptables, some others have pointed out using RBL or fail2ban, but the best would be to have some generic solution not dependant on third party programs.<br>
<br>I'm not aware of the asterisk.dev list but maybe someone can tell if they can help us here?<br><br>Alyed<br><br><br><div class="gmail_quote">2010/4/13 Randy R <span dir="ltr"><<a href="mailto:randulo2008@gmail.com">randulo2008@gmail.com</a>></span><br>
<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;"><div class="im">On Mon, Apr 12, 2010 at 7:17 PM, Darrick Hartman<br>
<<a href="mailto:dhartman@djhsolutions.com">dhartman@djhsolutions.com</a>> wrote:<br>
> That only addresses EC2 (and assumes that Amazon has any interest in<br>
> protecting their reputation). What about attacks that come from other<br>
> locations? Granted it's pretty easy to buy time on an EC2 server so<br>
> this may be the primary source for a period of time.<br>
<br>
</div>With the growth of the cloud offerings, this problem will likely grow,<br>
so yes, a generic solution is needed. What I want to see though, and<br>
no provder has done much if anything about it, is REPORTING and<br>
INVESTIGATION. It is easy to use a script to report and submit, we can<br>
all do that, even I could (if I had a box running and needed to). The<br>
hard part is them having their tech/sys people actually look at the<br>
network and see, "Oh, ya, there's some shit happening that on that<br>
instance..."<br>
<br>
If Amazon's form submit didn't even work, that's a really bad<br>
reflection on their brand in a lot of ways, including tech competence.<br>
If that is know to geeks like us, it won't hurt them which is why,<br>
like a broken record, I keep saying: put your Amazon experience out to<br>
the public. When it starts being mentioned in Wired, "Storm Cloud" or<br>
something, THEN Amazon will have to do something.<br>
<br>
I do not believe Amazon is taking reasonable measures now in doing<br>
their job, and that they should be working towards that goal,<br>
reasonable measures as opposed to NO measures.<br>
<font color="#888888"><br>
/r<br>
</font><div><div></div><div class="h5"><br>
--<br>
_____________________________________________________________________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>
New to Asterisk? Join us for a live introductory webinar every Thurs:<br>
<a href="http://www.asterisk.org/hello" target="_blank">http://www.asterisk.org/hello</a><br>
<br>
asterisk-users mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
<a href="http://lists.digium.com/mailman/listinfo/asterisk-users" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-users</a><br>
</div></div></blockquote></div><br><br>