I released the first public version of my DNS blackhole list management system today; it's available at: http://subwiki.honeypot.net/cgi-bin/view/Freebsd/NewTrino Basically, it's a set of utilities for keeping track of hosts that have send virus- or worm-infected email to you by making appropriate entries in a nameserver with Dynamic DNS enabled. An example application would be to configure your MTA to reject email from hosts listed in the blacklist. There are other groups that offer such services. However, I believe that this is the only public distribution of software specifically designed to administer a DNS blackhole. Although it was designed to meet the goal of blocking infected email, it could be trivially adapted to other uses. I wrote about this last month when the Swen epidemic was peaking, and surprised even myself by actually following through. -- Kirk Strauser "94 outdated ports on the box, 94 outdated ports. Portupgrade one, an hour 'til done, 82 outdated ports on the box." -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 188 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20031016/adf117db/attachment.bin