Re: [SLUG] Verisign Annoyance?

From: Eben King (
Date: Fri Sep 26 2003 - 08:17:59 EDT

On Thu, 25 Sep 2003, Paul M Foster wrote:

> I decided to see if I could do something about blocking this at my
> network. So I inserted a rule in my iptables to block incoming traffic
> from their sitefinder IP address. In other words, if you misspelled a
> domain name (what they're counting on), you'd get a packet burst back
> from their sitefinder IP, which would get dropped at the firewall.

I'm toying with the idea of adding a null route to
( I think that would give a different error ("no
route to host" or some such) than a typo would ("host not found" or some
such). Problem 1, would that work? and problem 2, how would I do that?
The first guess for the method would be to add it using a "route" command
in rc.local . But would that route stay if I brought interfaces down and

My second guess is to trawl /etc for the word "route" and see where that
leads. Ideas?

-eben    ebQenW1@EtaRmpTabYayU.rIr.OcoPm
ARIES:  The look on your face will be priceless when you find that 40lb
watermelon in your colon.  Trade toothbrushes with an albino dwarf, then
give a hickey to Meryl Streep.  -- Weird Al, _Your Horoscope for Today_

----------------------------------------------------------------------- This list is provided as an unmoderated internet service by Networked Knowledge Systems (NKS). Views and opinions expressed in messages posted are those of the author and do not necessarily reflect the official policy or position of NKS or any of its employees.

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 19:01:40 EDT