As we all know, the Internet is a pretty wild place. You have to keep your doors locked. The locks include firewalls, enforcement of strong password policies, attention to and fast application of software and system updates. Another thing you can do is to keep an eye on activities and warn your neighbors. Please be advised that this site is doing that.
We participate in the following projects:
- Project Honeypot
Project Honeypot adds a page to the site that would only be found by automated visitors. That page includes an obscured email address. If Project Honeypot receives email at that address, it can trace it back to the IP address of the automated visitor that read it here and correlates its activities on other sites. When they have a good case that the IP address is being used by a spammer to harvest email addresses on the web, they take legal action against the spammer.
- The 404 Project
The 404 Project is a new security project from SANS that tracks the web pages commonly attacked by scanning tools. When scanners locate these pages on a site, they start a more targeted attack to gain access into the system. This is similar to SAN’s DSHIELD project, which collects firewall logs from particpating sites.
Mollom is a project from Dries Buytaert, creator of Drupal. Mollom analyzes comments posted on Drupal and WordPress sites, blocking spam posts, and creating a database of spammy content and spammer IP addresses.
What do you do to protect your sites? Do you feel that these systems unacceptably compromise your privacy? Do they make the Internet any safer?
Your comments are welcome!