From owner-freebsd-stable@FreeBSD.ORG Thu Oct 16 13:28:36 2003 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C2C3516A4B3 for ; Thu, 16 Oct 2003 13:28:36 -0700 (PDT) Received: from kanga.honeypot.net (kanga.honeypot.net [208.162.254.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6CC9143FE5 for ; Thu, 16 Oct 2003 13:28:35 -0700 (PDT) (envelope-from kirk@strauser.com) Received: from pooh.strauser.com (pooh.honeypot.net [10.0.5.128]) by kanga.honeypot.net (8.12.10/8.12.10) with ESMTP id h9GKSXjO085309 for ; Thu, 16 Oct 2003 15:28:33 -0500 (CDT) (envelope-from kirk@strauser.com) To: freebsd-stable@freebsd.org From: Kirk Strauser Date: Thu, 16 Oct 2003 15:28:32 -0500 Message-ID: <874qy93p1r.fsf@strauser.com> Lines: 27 X-Mailer: Gnus/5.1003 (Gnus v5.10.3) Emacs/21.3 (gnu/linux) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" Subject: Now available: the NewTrino DNS blackhole list system X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Oct 2003 20:28:36 -0000 --=-=-= Content-Transfer-Encoding: quoted-printable I released the first public version of my DNS blackhole list management system today; it's available at: http://subwiki.honeypot.net/cgi-bin/view/Freebsd/NewTrino Basically, it's a set of utilities for keeping track of hosts that have send virus- or worm-infected email to you by making appropriate entries in a nameserver with Dynamic DNS enabled. An example application would be to configure your MTA to reject email from hosts listed in the blacklist. There are other groups that offer such services. However, I believe that this is the only public distribution of software specifically designed to administer a DNS blackhole. Although it was designed to meet the goal of blocking infected email, it could be trivially adapted to other uses. I wrote about this last month when the Swen epidemic was peaking, and surprised even myself by actually following through. =2D-=20 Kirk Strauser "94 outdated ports on the box, 94 outdated ports. Portupgrade one, an hour 'til done, 82 outdated ports on the box." --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQA/jv9w5sRg+Y0CpvERAqhPAJ9TcgH0D2Bg2qFS43Mj/QIUKv1vPQCeIVoy fTm1oq9AkvYl/sp5jcqGPdM= =F8Xj -----END PGP SIGNATURE----- --=-=-=--