Author

Topic: AT&T sends botnet warning for 92.243.23.21 (Read 2393 times)

newbie
Activity: 37
Merit: 0
January 19, 2012, 03:58:23 PM
#12
A-lot of Time & Trouble usually lives up to its name.  Unfortunately their scanning for botnets is most likely completely automated, and I doubt that they are competent enough to have the ability to enter exceptions.  Don't get too mad at them though, they are, at least, _trying_ to protect you from having your accounts hacked.  Even if they are failing miserably.
newbie
Activity: 44
Merit: 0
November 05, 2011, 07:07:13 PM
#11
With the reputation that IRC in general has gotten over the years, I wouldn't be surprised if any IRC-like communication is declared malicious...
They can declare what the fuck they want, it won't change the fact it is legit and we will use it

Not saying it isn't legit (and if the problems get too bad it can be disabled as mentioned above or we can use DHT or something) but I've seen a couple AUPs that explicitly mention IRC as something Not To Be Done.  Quick google search shows a thread from 2003 about a datacenter that banned it.

Get as mad as you want at this, a lot of people don't even know what TELNET is these days (recently went to a meeting where someone tried to explain the concept and how it differs from the web).

[Edit] Will "excessive twitter activity" be soon seen as suspicion of a botnet?  What about putting the two concepts together and getting a Bitcoin Twitter botnet?
legendary
Activity: 1148
Merit: 1008
If you want to walk on water, get out of the boat
November 05, 2011, 12:44:45 PM
#10
With the reputation that IRC in general has gotten over the years, I wouldn't be surprised if any IRC-like communication is declared malicious...
They can declare what the fuck they want, it won't change the fact it is legit and we will use it
full member
Activity: 189
Merit: 101
October 29, 2011, 04:57:40 AM
#9

You can also have the client skip the IRC bootstrapping by adding:

noirc=1

in your bitcoin.conf file.

You could also use the command line option: add -noirc after the bitcoin launch for example: "bitcoin.exe -noirc"





hero member
Activity: 504
Merit: 500
October 27, 2011, 04:02:33 PM
#8
I agree with the above poster.

Also tell them that it's not a botnet and the connection is intended and they better stop sending those letters as not to make a fool of themselves and lose some customers because of it...

   Agree, but they don't care.  My production machine now includes the -noirc option since my last post about this same topic. However, any time I hook up a new client that I want to connect in that manner they send me the email. I have of course responded, kindly informing them of their ignorance and requesting them to stop spamming me. My replies have gone completely ignored to date.

Well, that's clearly a case where you just do to their letters the exact same thing they do to your emails, you ignore them Wink

  Shortly after I typed that up I setup a copy/paste auto response to any emails from [email protected] informing them that spamming email on their own network is still spam and to kindly leave me the F*&k alone.

  OT; I love receiving phishing emails from people not smart enough to set character limits, etc for the http post form data. ;p I noticed one from 'Western Union' today in the spam folder of a sub acct and figured they could probably use a few gigs worth of bogus usernames and passwords to weed through. ;p
legendary
Activity: 1358
Merit: 1002
October 27, 2011, 02:37:11 PM
#7
I agree with the above poster.

Also tell them that it's not a botnet and the connection is intended and they better stop sending those letters as not to make a fool of themselves and lose some customers because of it...

   Agree, but they don't care.  My production machine now includes the -noirc option since my last post about this same topic. However, any time I hook up a new client that I want to connect in that manner they send me the email. I have of course responded, kindly informing them of their ignorance and requesting them to stop spamming me. My replies have gone completely ignored to date.

Well, that's clearly a case where you just do to their letters the exact same thing they do to your emails, you ignore them Wink
newbie
Activity: 44
Merit: 0
October 27, 2011, 10:52:04 AM
#6
With the reputation that IRC in general has gotten over the years, I wouldn't be surprised if any IRC-like communication is declared malicious...
hero member
Activity: 504
Merit: 500
October 27, 2011, 10:19:25 AM
#5
I agree with the above poster.

Also tell them that it's not a botnet and the connection is intended and they better stop sending those letters as not to make a fool of themselves and lose some customers because of it...

   Agree, but they don't care.  My production machine now includes the -noirc option since my last post about this same topic. However, any time I hook up a new client that I want to connect in that manner they send me the email. I have of course responded, kindly informing them of their ignorance and requesting them to stop spamming me. My replies have gone completely ignored to date.
newbie
Activity: 12
Merit: 0
October 24, 2011, 10:07:49 PM
#4
Thanks!
legendary
Activity: 1358
Merit: 1002
October 24, 2011, 09:57:34 PM
#3
I agree with the above poster.

Also tell them that it's not a botnet and the connection is intended and they better stop sending those letters as not to make a fool of themselves and lose some customers because of it...
hero member
Activity: 588
Merit: 500
October 24, 2011, 09:55:46 PM
#2
You can tell AT&T to piss off. You can also use the -noirc command line option for the client, but telling AT&T to piss off is more effective.
newbie
Activity: 12
Merit: 0
October 24, 2011, 09:54:26 PM
#1

My ISP (AT&T) sends warnings from time to time about connections from my IP to a botnet. These seem to all be related to operating the Bitcoin client. This latest warning includes the target IP which is  92.243.23.21. I understand that the connection to that host is used to boot up the bitcoin client. Is it safe for me to block that IP in my firewall? And, has anyone else seen similar warnings from their ISP about this, or other IP used with the Bitcoin client?

Thanks!
BlueWall
Jump to: