Asshat

Asshat list

I am just dropping this page here as a reminder to myself.. I run a lot of different servers on my domain, and I really should publish a list of AssHats who should be banned and why. If it is something that supports age-out and updates from remote servers I believe this would be very useful. I am thinking something along the lines of if it makes it to fail2ban, then it gets logged into a flat file with the IP address, and reason for ban with a timestamp and counter. Other servers can consume this and update iptables on a regular basis. If a user gets their machine cleaned out then the age-out policy will have them drop off. However, the counter here is the interesting part. If a bunch of people report getting hammered by an IP address, then the counter increases the timer based on the counts received. This can allow different servers to increase or decrease as they please but still be aware of a given IP address being an asshat.

I am also thinking of a living document of IPV4 blocks if annoying countries are being asshats and need to be blocked. I know there are a few lists out there, but I would kinda like to have my own and actually log WHY they are being asshats and what they are attempting. I think everyone can agree that there are certain well known countries that act like asshats, but being able to tell them knock off behavior XYZ and you will be unblocked would be rather nice. I know professional companies do this, but charging money to let people know who the bad actors are will not stop the bad behavior. I think a free list that gets regular updates is a much better way to go.

It is unfortunate that Google or one of the other biggies do not provide a bad actors list with regular updates. I realize the list would be very large, but I cant see it being too complex for them to maintain with a roll-off timer of some kind..