As an industry, we’re still fighting amongst ourselves about whether or not we should hack back when a zombie machine starts brute forcing our web server. As a group, we’re all in agreement that pwned servers need to be removed from the net immediately and the admins server license revoked. While the legalities of hackback are being fought out, we’re left with no real recourse outside of firewall rules and IPS filters.
I’m attempting something slightly different. Using open source tools, tiny shell scripts and peer pressure I’m attempting to shame server admins around the world into stepping up their game.