On 8/9/20 7:13 PM, Marvin Jones via trinity-devel wrote:
Be careful about blindly blocking /8 CIDRs that way.
My US-based web host/VPS host bought a /23 block about a year ago from in the RIPE 45.8.0.0/13 allocation.
I've seen a couple of issues such as yours with my VPS.
(Blocking with pf here....) Jonesy
Amen,
I usually try and limit to /22 or /24 at most, but after my MediaWiki install was abused several years back I started tracking and individually adding IP blocks to my config -- but there were so many from the 37 block I finally said to heck with it and blocked the whole thing :)
Over the past 5 or so years, I've only had a handful of issue (this being one). I've had trimming my block list on the "get around to it" list for a while. I'll have to bump it up in priority. It's just a shame the internet has become so polluted that such steps are necessary. Before Mosiac -- all was good in the FTP world of old...