[SATLUG] wiki hacking and a proposed countermeasure
Sean Carolan
scarolan at gmail.com
Wed Mar 21 12:40:59 CDT 2007
On 3/20/07, Richard Ward <timeslicer at gmail.com> wrote:
> Black listing of IP's would thwart only the most novice hacker if it is his
> goal to hack your site.
> 1. He could use Tor, the onion router, to get an IP address inside the
> state of Texas for instance.
> 2. He could rent space on a shared server lets say in San Antonio. Then
> using ssh from IP on his shared server he could easily launch an attack.
>
> Blacklisting is not really a solution at all.
>
We are not talking about hardcore blackhats assaulting the SATLUG web
server. The vast majority of wiki and forum spam is done by automated
bots. Why would someone use Tor or pay for a shared server in San
Antonio, simply to deface a local LUG's wiki? What financial or other
incentive would there be for going to that length?
I think blacklisting is a great solution - it effectively blocks out
most of the ip addresses where the spam/defacing bots are located.
More information about the SATLUG
mailing list