More Botnets

About this time last year, I wrote about the frequency at which I received failed login attempts to my mail server.  Since then, I’ve upgraded my border firewall, but they still get through–a consequence of needing an exposed port.  So far, the IPs still get blacklisted:

198.12.93.218
198.23.132.250
205.234.153.210
5.39.219.214
46.166.160.153
193.189.117.88
155.133.18.178
23.95.24.162
46.105.120.50
151.80.147.113
212.129.4.178
151.80.147.144
38.87.45.116
52.22.59.41
209.95.52.130
80.11.96.236
166.176.251.239
195.154.116.169
96.43.128.14
195.154.119.141
195.154.105.115
50.116.123.186
104.238.129.26
118.193.179.177
195.154.110.230
122.224.248.250
203.171.31.60
31.170.104.245
220.244.5.154
111.204.219.197
175.100.189.174
111.68.98.136
180.250.9.52
177.39.152.250
59.127.51.128
184.74.44.51
173.189.252.21
50.252.84.9
70.15.249.139
173.164.154.100
69.199.239.200
63.223.116.37
173.13.117.142
71.10.87.50
23.246.213.202
104.238.141.153
104.168.145.83
51.255.235.154
104.168.141.86
107.179.40.46
45.76.81.226
23.254.215.249
46.218.164.132
96.255.34.171
138.197.1.145
195.154.103.205
195.154.77.202
62.210.25.5
74.113.139.17
23.254.211.205
176.183.204.200
65.245.57.3
192.86.34.108
45.32.203.111
144.217.213.132
66.194.234.110
207.118.200.111
185.81.158.149
144.217.211.219
192.64.114.145
62.210.81.151
45.63.39.109
104.168.136.60
185.81.158.16
104.168.136.70
12.50.34.218
45.76.242.13
108.160.155.101
195.154.57.6
138.68.8.2
195.154.53.245
72.51.37.205
193.251.78.73
195.154.226.17
23.254.215.188
69.132.12.136
104.168.147.83
52.43.83.218
62.210.188.15
193.70.13.238
23.254.215.31
100.33.244.74
104.168.141.146
80.209.253.238
23.254.217.28
104.254.247.223
104.168.148.204
66.109.33.252
207.54.154.127
204.228.248.100
70.191.153.186
199.36.196.28
104.168.138.191
104.236.19.164
162.245.85.163
45.58.139.117
68.65.120.48

Up 107 IPs so far, out of 4.3 Billion-ish.  A drop in the bucket, but it’s still disconcerting how many botnets are out there.

Update your security patches.

–Simon