<br><br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">Robert Huddleston</b> <span dir="ltr"><<a href="mailto:rhuddleston@gmail.com">rhuddleston@gmail.com</a>></span><br>
Date: Thu, Sep 22, 2011 at 11:10 AM<br>Subject: Re: [asterisk-users] VoIP Abuse to Twitter (real time VoIP Abuse)<br>To: Asterisk Users Mailing List - Non-Commercial Discussion <<a href="mailto:asterisk-users@lists.digium.com">asterisk-users@lists.digium.com</a>><br>
<br><br><div lang="EN-US" link="blue" vlink="purple"><div><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">Sounds like a great idea.. Hopefully the page/account never gets hacked and bad IP’s published.. I could see a great hack of <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">127.0.0.1 <u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"><a href="http://192.168.0.0/16" target="_blank">192.168.0.0/16</a> <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"><a href="http://10.0.0.0/8" target="_blank">10.0.0.0/8</a> <u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">getting up there somehow and next thing you know – BAM!<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">But I haven’t RTFM – I’m guessing there is probably a white list that supersedes the naughty list.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"><u></u> <u></u></span></p><div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:10.0pt">From:</span></b><span style="font-size:10.0pt"> <a href="mailto:asterisk-users-bounces@lists.digium.com" target="_blank">asterisk-users-bounces@lists.digium.com</a> [mailto:<a href="mailto:asterisk-users-bounces@lists.digium.com" target="_blank">asterisk-users-bounces@lists.digium.com</a>] <b>On Behalf Of </b>vip killa<br>
<b>Sent:</b> Thursday, September 22, 2011 11:06 AM<br><b>To:</b> Asterisk Users Mailing List - Non-Commercial Discussion<br><b>Subject:</b> Re: [asterisk-users] VoIP Abuse to Twitter (real time VoIP Abuse)<u></u><u></u></span></p>
</div><div><div></div><div class="h5"><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal" style="margin-bottom:12.0pt">very cool!<u></u><u></u></p><div><p class="MsoNormal">On Thu, Sep 22, 2011 at 10:37 AM, J. Oquendo <<a href="mailto:asterisk@tormenting.net" target="_blank">asterisk@tormenting.net</a>> wrote:<u></u><u></u></p>
<p class="MsoNormal"><br>Apologies for cross posting but some of us aren't on the other list<br>(vice/versa) and thought both groups would benefit.<br><br>For those familiar with the VoIP Abuse Project, no need to explain the<br>
gist of this. I got tired of parsing through the alerts (lists) I<br>receive via email daily. They're long and sometimes I don't have the<br>time to post them all. So for now, posting VoIP Abuse addresses straight<br>
to Twitter.<br><br>So, anyone trying to compromise a pbx, is now autoposted on an hourly<br>basis to Twitter. Still working on pulling, have about 4 machines linked<br>up now, will mop em up during the week.<br><br><a href="http://twitter.com/#!/voipabuse" target="_blank">http://twitter.com/#!/voipabuse</a><br>
<br>Now, you can concoct a quick script off of it, e.g.:<br><br>links -dump "<a href="http://twitter.com/voipabuse" target="_blank">http://twitter.com/voipabuse</a>"|awk '/attacker/{print<br>"iptables -A INPUT -s "$2" -j DROP"| "sort -u"}'<br>
<br>Will get a quickie soon from my Acme's, nCites, etc. when I have time.<br><br>For those NOT familiar with it, please Google it as I don't feel like<br>typing anymore ;) (sorry)<br><br><br><br>--<br><br>=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+<br>
J. Oquendo<br>SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT, RWSP, GREM<br><br>"It takes 20 years to build a reputation and five minutes to<br>ruin it. If you think about that, you'll do things<br>differently." - Warren Buffett<br>
<br>42B0 5A53 6505 6638 44BB 3943 2BF7 D83F 210A 95AF<br><a href="http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x2BF7D83F210A95AF" target="_blank">http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x2BF7D83F210A95AF</a><br>
<br><br>--<br>_____________________________________________________________________<br>-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>New to Asterisk? Join us for a live introductory webinar every Thurs:<br>
<a href="http://www.asterisk.org/hello" target="_blank">http://www.asterisk.org/hello</a><br><br>asterisk-users mailing list<br>To UNSUBSCRIBE or update options visit:<br> <a href="http://lists.digium.com/mailman/listinfo/asterisk-users" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-users</a><u></u><u></u></p>
</div><p class="MsoNormal"><u></u> <u></u></p></div></div></div></div><br>--<br>
_____________________________________________________________________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>
New to Asterisk? Join us for a live introductory webinar every Thurs:<br>
<a href="http://www.asterisk.org/hello" target="_blank">http://www.asterisk.org/hello</a><br>
<br>
asterisk-users mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
<a href="http://lists.digium.com/mailman/listinfo/asterisk-users" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-users</a><br></div><br>