Archive for January, 2015

Spam filtering techniques

January 30th, 2015 No comments

The most significant things I’ve done to decrease spam and phishing attempts

  • and RBLs
  • vendor RBL (barracuda)
  • blocked entire subnets of countries we don’t do business with
  • email rate control
  • attachment filters
  • virus filter
  • heuristics
  • subject line filters for cryptowall attempts and multi ip distributed campaigns
  • block some foreign countries if their reverse DNS resolves back to their country TLD (ex: cn = china), however I don’t block if reverse DNS rules don’t exist or are incorrect
  • block TLDs in header and body that are heavily abused (list below)

Heavily abused TLDs

Categories: Uncategorized Tags:

Veeam repository recommendation

January 26th, 2015 No comments

I repost this so much on reddit I decided to just create an entry here to reference:

This is what I recommend if you want cheap, without support, but with decent reliability/redundancy and excellent performance. Use RAID 6 for capacity, RAID 10 for highest reliability and performance. Deduplication will increase your available space by 25-50% or more depending on what you are storing. Increase number of disks and JBODs for more storage. This requires a dedicated server to provide NFS, however I think iSCSI is built into 2012r2 now. It has the advantage of being able to house Veeam also, though you should use at least one VM as a proxy for a hot add disk performance boost.

JBOD enclosure with space for 45 SAS drives. Use any server you have laying around that supports PCIx2 and install Server 2012r2 with deduplication enabled.

JBOD chassis (1x) – $2000 SuperMicro CSE-847E26-RJBOD1

SAS RAID controller (1x) – $689 LSI 9280-8e

RAID controller backup battery (1x) – $160 MegaRAID LSIiBBU08

SAS cables (2x) – $70ea=$140 SFF-8088(M) to SFF-8088(M)

Disks (??x) – $288ea=? Seagate ST4000NM0023 4tb Enterprise Capacity 128mb 7200rpm

Internal mini SAS cables (2x) = $60

Categories: Uncategorized Tags: