194.25.219.13

Vernon Schryver vjs@calcite.rhyolite.com
Mon May 9 19:33:29 UTC 2005 

After almost 2 months, and a resumption of log entries like:
    iflod close status fail=1,ok=0 to 194.25.219.13,1064: bad ID unauthorized ID
 1000
I've lost patience and added the following to the blacklist of abusive
clients of the public DCC servers.  Since they seem to be trying to
guess usernames and passwords for the server-to- server protocol, this
entry may not have much direct effect.

    # beit.de
    #       Sven-Christian Jordan and Gunter Sander demand a DCC server-ID
    #       since March 14, 2005, a DCC at 194.25.219.13 has tried to start
    #           peering with public DCC servers without knowing the necessary 
    #           passwords and probably by guessing them
    #       make false claims about firewalls at beit.de,
    #       refuse to answer questions about what they are doing or want to do
    #       say they are using software called iQSuite from Group Technologies
    #       as far as I can tell, Group Technologies runs no DCC servers of
    #           its own but expects to take and resell the services of the
    #           public DCC servers
    194.25.219.0/25

It's probably time to change the server-to-server user names and passwords,
at least for the public DCC servers and their direct peers.


Vernon Schryver    vjs@rhyolite.com

More information about the DCC mailing list

Contact vjs@rhyolite.com by mail or use the form.