That is what i have received in pm from a user
---------------
hello again!
no answer?
we use a special firmware with block check !
next is that we have more than 10000 miners all over the world and we would check your ltc pool but the last weeks we found blocks with miners and your pool does not show this !?Huh
it was a test of trust your pool - so my xxxxxx partners are not so happy with the result - please check your pool again and search for the blocks we find.
i hope you can find the problem otherwise we have to publish the test and what the XXXXX do I can not say yet.
It is not a threat but only a normal process which asserts itself in the mining industry. should you find the block or meanwhile the blocks so are all happy and we can turn more miner on it.
You must understand me too, because I am exactly in between
-------------
There were times when my pool was 20-30% of the network because of a big miner which came in. They hashed here for 1-2 years. I have not heard anything from them they come from nowhere and disappeared mysteriously. The important part is that they made 80 000+ LTC and i do not know how many millions in doge.
Maybe that is a good reference? I can only hope that they are going to read this, because as i said they never contacted me before. But if they happen to read this i will be glad if they drop a line here
To make it clear for everyone.
I DO NOT CARE WHAT FW AND WHAT TYPE OF CHECK YOU DO.
THE ONLY WAY TO CHECK IF I "STEAL" BLOCKS FROM YOU IS FOLLOWING POOL HOME PAGE:
All you need to confirm you are mining to your own address is to examine the coinbase and template sent to you over stratum.
Written in simple language that means that you need to HACK ( examine the coinbase and template) cgminer,cpuminer or sgminer. Fire it and connect to my pool. You do not need to mine at all. You need some programming skills with PC that is all you need.
For those who KNOW how to do it please do it. For those who !DO! not know how to do it, and DO NOT TRUST ME, please go somewhere else or better if you are big miner it will be very easy instead of using "we use a special firmware with block check !" just to make your own PRIVATE pool.
Best
Loshia
PS: For all with or without special FW do following:
1. install tcpdump of the next hop (gateway of your miner)
2. Fire it and dump packets
3. The results should be something LIKE: UDP - for NTP and DNS. TCP for DNS at rare occasions. TCP ONLY TO CONFIGURED POOL IP. It doesn't have to be my pool. The important part is that TCP must go to your pool only otherwise you are fucked folks....I am positive that you might get surprised by the result
unfortunately 
in case you see tcp for other destinations even though they seem like DNS please examine packet contents also
FINALY IF YOU DO REALY WANT YOUR MINER TO HASH FOR YOU ONLY MAKE A FIREWALL OF YOUR ROUTER ALLOWING TCP ORIGINATED FROM YOUR MINER TO RECH ONLY YOUR POOL IP ADDRESS (ES). DISABLE UDP AND ENTER YOUR POOL WITH IP ADDRESS THAT IS ALL SIMPLE AS THAT
There will be no more howtos or reports concerning this topic.
https://mikrotik.com/product/RB750r2
Nice little toy which has it all originating from Latvia:
1. Connect your miners to LAN ports - use switch if you need more interfaces
2. Connect WAN to your internet
3. FIREWALL - IN forward chain of the box enable src or dst to your pool(s) ip
4. Drop all of the rest in forward chain
5. Done:)
6. Read and examine packets if you want - there is tcpdump build inside
