[Cerowrt-devel] router hardening

Mon Jan 18 13:35:36 EST 2016

One of my issues with blindly applying techniques to block certain IPs
is trusting the sources of the data - many people have ended up on a
blocklist that shouldn't have.

That said, ipset is so effective and so scalable, that perhaps deploying
this by default

http://www.linuxjournal.com/content/server-hardening?page=0,1

would be a good idea.

Are there any more ipv6 specific blocklists out there?