Show threadTelH901h ago

@corbet @lwn From my work experience I can say that the only remediation at that scale is #Blackholing traffic at #IX-level from all malicious ASNs used for said #DDoS and sending angry #AbuseReport mails every originator and their Upstreams.

- Make it THEIR PROBLEM!

Also let us know of the IP ranges so everyone else can block them as well!

Łukasz Bromirski May 23
Long time ago, I made an announcement about a system that will make life of spammers and brute-force abusers harder by pulling them in and not letting go. Here's a teaser of the report from such activity - gathered today mostly during testing, but already looks very good - by using nothing I wasted combined 550 minutes. I hope to share code to run your own tarpit like this AND join live exchange that shares info in real time. #tarpit #bgp #blackholing #sinkholing #security
Hacker NewsApr 7

Blackholing My Email

https://www.johnsto.co.uk/blog/blackholing-my-email/

#HackerNews #Blackholing #My #Email #EmailManagement #DigitalDetox #Productivity #HackerNews

Blackholing My Email

How Counter-Strike map credits led to my email address being harvested by worms, and why I had to ask my ISP to blackhole it.

johnsto.co.uk
Łukasz Bromirski Oct 5, 2025
BGP Blackholing PL Project update - we have new route servers (IPv4+IPv6), I also added new configuration for pf and BSD systems. There's also Looking Glass! Check out more at https://lukasz.bromirski.net/bgp-blackholing/ #bgp #blackholing
BGP Blackholing PL project

what it’s all about? on the internet, not all IPv4 and IPv6 prefixes will be sources or destinations of traffic you’d like to have anything to do with. some of them will be used or controlled by bad actors who may try to compromise your network (you have likely been selected at random; do not flatter yourself) or pursue other evil goals. why would you want to receive that traffic, or send traffic to them?

lukasz.bromirski.net
Łukasz Bromirski Jan 19, 2025
@lns you may be doing something right, but bots these days are targeting everything, everywhere - all the time. Doing some rough filtering at the edge helps to reduce the noise: https://lukasz.bromirski.net/bgp-blackholing/ & https://lukasz.bromirski.net/bgp-geo-blackholing/ #bgp #blackholing
BGP Blackholing PL project

what it’s all about? on the internet, not all IPv4 and IPv6 prefixes will be sources or destinations of traffic you’d like to have anything to do with. some of them will be used or controlled by bad actors who may try to compromise your network (you have likely been selected at random; do not flatter yourself) or pursue other evil goals. why would you want to receive that traffic, or send traffic to them?

lukasz.bromirski.net
Show threadKevin Karhan Sep 15, 2023

@7331 @torproject not to mention #DDoS over #Tor is lusy in comparison to #NTP-AMP-DDoS or just using a #Botnet instead.

It's not as if #Blackholing exist...

Łukasz Bromirski Aug 2, 2023
If You want to experiment with BGP FlowSpec on your router, there's alpha version of my BGP Blackholing FlowSpec server at 85.232.240.180 & 2001:1a68:2c:2::180. You'll get 1345 IPv4 FlowSpec AF prefixes and 45 in IPv6 FlowSpec AF. The rest of configuration is the same as in main project: https://lukasz.bromirski.net/bgp-blackholing/ Please ping me directly and share your feedback (with your platform details if possible - thanks!) #iosxr #pushdastuff #bgp #blackholing
BGP Blackholing PL project

what it’s all about? on the internet, not all IPv4 and IPv6 prefixes will be sources or destinations of traffic you’d like to have anything to do with. some of them will be used or controlled by bad actors who may try to compromise your network (you have likely been selected at random; do not flatter yourself) or pursue other evil goals. why would you want to receive that traffic, or send traffic to them?

lukasz.bromirski.net
Show threadKevin Karhan May 29, 2023
@andreasdotorg if I were @internetarchive I'd limit the amount of traffic and connections #AWS can make to 1 per IPv4 & 1 per IPv6 @ 64kbit/s and automatically abuse-report and temporarily soft-block the source IPs via #blackholing [like any #DDoS] if not the entire #AWS #AS!
Kevin Karhan Apr 22, 2023

@mayu OFC they don't talk about anything disruptive.

#Blackholing #protests and literally covering them up in #Mainstream #MassMedia is so rampant, "#Revolution won't be Televised!" applies wholeheartedly.

And those journos that don't flee by illegal #Intimidation from #Police get jailed.

https://www.youtube.com/watch?v=NN8ISwuiX68
https://www.youtube.com/watch?v=ftLzQefpBvM

This is literally how facism works...

Minneapolis police shoot at, threaten to arrest DW reporter | DW News

YouTube
Show threadKevin Karhan Jan 27, 2023

@hackdefendr I hope #DECIX and #ISP's have taken preventive measures and started #blackholing the attacks.

If not, @bsi & @BNetzA should get them to do it - now!