Path: csiph.com!usenet.pasdenom.info!gegeweb.org!de-l.enfer-du-nord.net!feeder2.enfer-du-nord.net!feeds.phibee-telecom.net!newsfeed.xs4all.nl!newsfeed2.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail
Return-Path: <rosuav@gmail.com>
X-Original-To: python-list@python.org
Delivered-To: python-list@mail.python.org
X-Spam-Status: OK 0.151
X-Spam-Level: *
X-Spam-Evidence: '*H*': 0.70; '*S*': 0.01; 'anyway.': 0.05; 'represents': 0.05; 'subject:Python': 0.06; 'upgraded': 0.07; 'python': 0.11; 'blocking': 0.16; 'blocks': 0.16; 'from:addr:rosuav': 0.16; 'from:name:chris angelico': 0.16; 'illegal.': 0.16; 'rotation': 0.16; 'undesirable': 0.16; 'wrote:': 0.18; 'starts': 0.20; 'spread': 0.22; 'gets': 0.27; 'header:In- Reply-To:1': 0.27; 'skip:- 40': 0.29; 'message- id:@mail.gmail.com': 0.30; "i'm": 0.30; 'lists': 0.32; 'totally': 0.33; 'date:': 0.34; 'could': 0.34; 'problem.': 0.35; 'but': 0.35; 'received:google.com': 0.35; 'surely': 0.36; 'behind': 0.37; 'too': 0.37; 'email addr:python.org': 0.37; 'being': 0.38; 'to:addr:python-list': 0.38; 'pm,': 0.38; 'expect': 0.39; 'subject:': 0.39; 'legitimate': 0.39; 'to:addr:python.org': 0.39; 'how': 0.40; 'even': 0.60; 'new': 0.61; 'course': 0.61; 'address': 0.63; 'email addr:gmail.com': 0.63; 'protection': 0.63; 're:': 0.63; 'happen': 0.63; 'choose': 0.64; 'become': 0.64; 'provide': 0.64; 'email name:python-list': 0.65; 'temporary': 0.65; '26,': 0.68; 'magazine': 0.68; 'internet': 0.71; 'potentially': 0.81; '3:00': 0.84; 'malicious': 0.84; '+1000': 0.91; 'carlos': 0.91; '2013': 0.98
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=FgKS+BnLe1JksigdwBNIUq1MlS5ddfUuM3kCzCZyKl8=; b=vlkdMpBHvJi1YIymvRVJWhFAKILGdl+tXTO7rG8Yswqoz+oZ69WxVhOSJyjxqpxmBk J8a+nziESYXMWlrZ0o2uz1fRrOgEKv3dKlSp7aywWuOld8vUC2dPLXBRTAP9TJjlKXLF 5T+MthsGQFDAp754XSENBCUlFAbd/Tyu2eHSVChFvLzukp04JEus1KudE5iDOGXBYMfj 46qUDHT+Pcgx6bWcNAptd5RBPInDTEtiKcIhZjDClYSfz7gRwc4UV9372zc1u4XzwHhO RrgUOHjinsfp4TjaxSrKXDzLSFBBz8KXmTa0Zu6KtvdTTKr5eMzoREgPLNSl+ct2Enng pEXQ==
MIME-Version: 1.0
X-Received: by 10.52.117.16 with SMTP id ka16mr7662452vdb.43.1369545431174; Sat, 25 May 2013 22:17:11 -0700 (PDT)
In-Reply-To: <BLU176-W14311D85344D3ED6CC31FBD7950@phx.gbl>
References: <27969350-4dd8-4afa-881a-b4a2364b3cf1@googlegroups.com> <roy-73518B.23353224052013@news.panix.com> <mailman.2102.1369453723.3114.python-list@python.org> <knpm5i$qls$1@news1.carnet.hr> <mailman.2115.1369464127.3114.python-list@python.org> <51a0caac$0$30002$c3e8da3$5496439d@news.astraweb.com> <roy-3B8F45.11301825052013@news.panix.com> <7cd17be8-d455-4db8-b8d0-ccc757db5cff@googlegroups.com> <roy-3B69E7.21544325052013@news.panix.com> <8f19e20c-4f77-43dc-a732-4169e482d2b2@googlegroups.com> <BLU176-W1954E65198FBD15D34EFCBD7950@phx.gbl> <CAPTjJmpQLO+=reaKMHLTx0YsJ5BN0iNZiyeJG6MTE1PYa_gQ6g@mail.gmail.com> <BLU176-W14311D85344D3ED6CC31FBD7950@phx.gbl>
Date: Sun, 26 May 2013 15:17:11 +1000
Subject: Re: Python Magazine
From: Chris Angelico <rosuav@gmail.com>
To: python-list@python.org
Content-Type: text/plain; charset=ISO-8859-1
X-BeenThere: python-list@python.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe: <http://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive: <http://mail.python.org/pipermail/python-list/>
List-Post: <mailto:python-list@python.org>
List-Help: <mailto:python-list-request@python.org?subject=help>
List-Subscribe: <http://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups: comp.lang.python
Message-ID: <mailman.2167.1369545433.3114.python-list@python.org>
Lines: 33
NNTP-Posting-Host: 2001:888:2000:d::a6
X-Trace: 1369545433 news.xs4all.nl 15907 [2001:888:2000:d::a6]:40380
X-Complaints-To: abuse@xs4all.nl
Xref: csiph.com comp.lang.python:46050

On Sun, May 26, 2013 at 3:00 PM, Carlos Nepomuceno
<carlosnepomuceno@outlook.com> wrote:
> ----------------------------------------
>> Date: Sun, 26 May 2013 14:31:57 +1000
>> Subject: Re: Python Magazine
>> From: rosuav@gmail.com
>> To: python-list@python.org
> [...]
>> I expect that IP blocks will be upgraded to /64 block blocks, if that
>> starts being a problem. But it often won't, and specific IP address
>> blocks will still be the norm.
>>
>> ChrisA
>
>
> Blocking a whole network (/65) is totally undesirable and may even become illegal.

Blocking a /64 is exactly the same as blocking a /32 with NAT behind
it. And how could it be illegal? I provide service to those I choose
to provide to.

> Currently it may not only happen at the target of the DDoS attack, but be spread all over the internet where block lists are enforced.
>
> I don't expect that to happen and if it happens I'm surely in favor of protection against this type of 'solution' because it will block not only malicious clients but potentially many other legitimate clients.

Banning a wide netblock is of course going to lock out legit clients.
But IP rotation means that can happen anyway. You block a single IPv4
address that right now represents an abusive user; that user
disconnects and reconnects, gets a new IP, and someone else gets the
other one. Can happen all too easily. That's why IP-banning is at best
a temporary solution anyway.

ChrisA