Hacker News new | ask | show | jobs
by marginalia_nu 1723 days ago
VPS and VPN providers should be very mindful of their reputation in this regard. If they get a reputation as a "black hole" where complaints vanish and nothing ever happens, the effect may be that other customers start to find themselves blocked or throttled on a subnet level.
3 comments
eli 1723 days ago
I don’t know of any provider that would take action on reports of ssh scanning.
link
sleepybrett 1722 days ago
I report them from time to time. I'm not sure why people don't take them seriously. If 500 people a day came up to your front door and tried the knob, hell maybe even tried a couple of keys in the lock... I'm pretty sure you'd be calling the cops.
link
eli 1722 days ago
An ssh server isn’t really like a front door though. I don’t necessarily think attempting a random ssh server should be a crime.

I used to spend time on custom iptables scripts but came to the conclusion it’s much better to just architect things in a way where the bots and scanners can’t plausibly create a problem and then ignoring them.

link
TechBro8615 1723 days ago
A little bird told me a story that AWS will forward abuse reports to customers performing outbound nmap scans.
link
sleepybrett 1722 days ago
https://twitter.com/IamRageSparkle/status/128089153745134387...
link
TechBro8615 1723 days ago
I don’t think anyone is about to block or throttle traffic from Cloudflare IP ranges.
link
marginalia_nu 1723 days ago
Incoming connections? Why not. I have at times, it's pretty great.
link