Jump to content
Sign in to follow this  
Master_Scythe

Which contries have the most cyber crime

Recommended Posts

just setting up peerblock on all the local PC's here since my firewall logs a lot of port scans and what not coming from completely unrelated... well countries.

 

Im not blocking HTTP, so it shouldnt interfere with web browsing, or even standard downloading. As such, do you think I should just block all non-english speaking countries? Is there any reason I'd need to connect to said people in a normal environment? I cant think of one (english speaking contries, however will have game servers and what not).

 

Oppinions?

Share this post


Link to post
Share on other sites

smakme7757, looking at the txt version, its basically all adservers, tracking cookie sites, and a few data miners. Nothing too 'serious'.

 

Im more concerned about blocking people trying to probe my UDP ports with worms, flooding a TCP port to try and overwhelm my firewall, and so on.

 

As such, so far, Ive had 4 chinese addresses hit my UDP ports overnight; all 4 being common trojan ports (not that im infected, but I'd prefer to not respond)

 

and 48'000 firewall blocks; but thats mainly my modem\router multicasting and being blocked (i cant allow that through in commodo ><)

 

 

Basically im being OVERLY security concious because I have housemates who are NOT. once I have this worked out, we install said apps on all systems, and away we go.

Share this post


Link to post
Share on other sites

everything passes shields up these days (also i dont trust GRC); im also interested in OUTBOUND threats too.

 

OK; peerblock blocking a huge ammount of stuff; updated HOSTS file, Commodo Firewall, Avira Antivirus. Win.

 

Just gotta keep looking for a better firewall.

 

China and Russia I assume are the main countries to outright block? I may block their IP ranges at the router level.

Share this post


Link to post
Share on other sites

It could work, but many of these cyber crime units have lots of zombie computers in different countries around the world not to mention big Bot-Net servers. Just blocking China and Russia would only be the tip of the ice berg. Normally i would have said as long as your behind a NAT router and have a software firewall monitoring outbound connections you should be pretty safe, but your a bit more concerned that most people.

 

After resolving the IP's of many spam messages recently it seem alot of crap is coming out of latvia and brazil tremendouse amounts actually. Although there is no denying that blocking China and Russia would increase your security!

 

It could be worthwhile noting you could always install a switch between your PC and the router so that way you can be sure that no unsolicited packets can reach your PC? Of course if your connected over wireless it might not be so easy!

Edited by smakme7757

Share this post


Link to post
Share on other sites

im allowing HTTP from everywhere; so thats not an issue.

 

Thus far my blocklist contains:

 

Default Bluetak lists: Spyware\Adware, Government, P2P, Educational.

 

http://list.iblocklist.com/?list=cn

China

http://list.iblocklist.com/?list=ru

Russia

http://list.iblocklist.com/?list=tw

Taiwan

http://list.iblocklist.com/?list=de

Germany

http://list.iblocklist.com/?list=mx

Mexico

http://list.iblocklist.com/?list=br

(and now) Brazil

 

http://list.iblocklist.com/?list=tbnuqfclfkemqivekikv

Hikacked IPs (bots etc)

http://list.iblocklist.com/?list=ijfqtofzixtwayqovmxn

Primary Threats (anyone who monitors shit)

 

http://list.iblocklist.com/?list=sh_drop

Netblocks CONFIRMED to be spammer or zombie only.

 

http://list.iblocklist.com/?list=bt_templist

p2p baddies; poisoners etc.

http://list.iblocklist.com/?list=bt_rangetest

Suspicious IP's that are under investigation.

http://list.iblocklist.com/?list=bt_dshield

Confirmed Hackers and what not.

http://list.iblocklist.com/?list=bt_spider

I get scanned by a lot of Index spiders caus our IP is static *shrug*

 

http://list.iblocklist.com/?list=dcha_faker

People faking inthe p2p community. (fake files etc)

http://list.iblocklist.com/?list=dcha_pedophiles

People who like kids to much

 

 

 

I love PeerBlock; I dont even p2p but it still blocks shit, and thus far no system slowdown even with millions of IPs added. Im pretty happy.

Share this post


Link to post
Share on other sites

Looks like a good list of crap to block i might even have a look at installing it when i get home. If you say there is no impact on performance i think i might give it a go actually.

 

Now all you have to do is setup a private VPN in ubuntu so you can connect to it when your not at home :). I have mine on a dualboot system it works wonders (when i remember to turn it on) when i need to use the internet while travelling or when i know ill be away for a few days! If peerguardian works in linux you could get the benifit while out and about. Fucking fantastic =D

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×