Third vote of support for bashbash
Not using iptables like he does but pf, rest is similar. Blanket-blocked in firewall China, Russia, Ukraine, Belarus, South America, bunch of Africa and 95% of malicious incoming attempts went away. It's pretty easy to check the difference when rules are enabled and when they are disabled.
Bad guys in West may not want to be caught and take up the trouble of spoofing but in East governments don't give a shit as long as they keep their actions oriented towards West, thus they've got no real reason to waste effort on spoofing.
Not using iptables like he does but pf, rest is similar. Blanket-blocked in firewall China, Russia, Ukraine, Belarus, South America, bunch of Africa and 95% of malicious incoming attempts went away. It's pretty easy to check the difference when rules are enabled and when they are disabled.
Bad guys in West may not want to be caught and take up the trouble of spoofing but in East governments don't give a shit as long as they keep their actions oriented towards West, thus they've got no real reason to waste effort on spoofing.
Comment