From owner-nanog@merit.edu Sun Dec 4 17:19:43 2005
Date: Sun, 04 Dec 2005 15:18:29 -0800
From: Steve Sobol <sjsobol@JustThe.net>
To: Rich Kulawiec <rsk@gsp.org>
Cc: nanog@nanog.org
Subject: Re: Clueless anti-virus products/vendors (was Re: Sober)Rich Kulawiec wrote:
> And thus we now have blacklist entries such as:
>
> barracuda1.aus.texas.net
> barracuda.yale-wrexham.ac.uk
> barracuda.morro-bay.ca.us
> barracuda.ci.mtnview.ca.us
> barracuda.elbert.k12.ga.us
> barracuda.fort-dodge.k12.ia.us
> barracuda.ci.garner.nc.us
> barracuda.ship.k12.pa.us
>
> and many, many more.Blocking based on rDNS simply because it implies that a certain piece of
equipment is at that address is... not advisable.
_UNTIL_ the first backscatter arrives from 'that' equipment, that is.
*wry*grin*