A question of due diligence....
Owen Blacker
owen.blacker at wheel.co.uk
Fri, 8 Mar 2002 11:30:31 -0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
David_Biggins@usermgmt.com:
>
> "2) do a reverse DNS lookup and bounce anyone from eg .iq Unless
> they don't have reverse DNS or use anonymisers (curse the pesky
> evil-doers!)
>
> "Neither of these are what I'd call due diligence. Anyone got
> any ideas/experience in this area?
I believe this* is all that MIT use to prevent felonious downloads of PGP
(which is, of course, similarly embargoed), if that helps?
O x
* I've a feeling they actually whois the requesting IP and see
to what country it's assigned, or something.
- --
Owen Blacker
Senior Software Developer, InfoSecurity Consultant Wheel:Kensington
See http://www.owens-place.org.uk/pgp.html -- more about my PGP keys
Sig 0xb48e805e | 0e31 ac2a 4ff2 62a0 89da ddef 4223 99a6 b48e 805e
-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0
Comment: Pls see http://www.owens-place.org.uk/pgp.html about my keys
iQA/AwUBPIif9EIjmaa0joBeEQKxIQCg/s0XCQL+2JVl0xAX47nehCwZS1cAnA4e
YRae8JgigKfyBQCZXpcW0pRB
=Cbwp
-----END PGP SIGNATURE-----
_____________________________________________________________________
This message has been checked for all known viruses by UUNET delivered
through the MessageLabs Virus Control Centre. For further information visit
http://www.uk.uu.net/products/security/virus/