IP blocking. Why and how.
Wanting to continue on the geographic mapping experience of Cartographic live web visitors overview, however this time I wanted to see how many hack attempts were coming from which country as source, using various intrusion detection and intrusion prevention systems.
The hunt for a country outline source led me to thematicmapping.org, besides the fact that some borders are disputed (probably always will be), an excellent high definition country border shape file source. Thanks to Bjorn Sandvik for providing this.
Another challenge was the fact that these files were shape files and very high resolution many MB in size not good for fast web transfer. Leaflet can work really well with Geo-JSON data and not with shape files at all, so the need to simplify the outlines for a small data footprint and thus faster loading, as well converting it from shape file to Geo-JSON was on. This led me to GDAL and from here I was able to produce a low resolution Geo-JSON file of world country outlines
Avoiding the 'try your luck scripting kiddies', I'm looking at Internet conduct unbecoming as a bigger (definitely organized) picture. This entails brute force access attempts, exploits, spy-ware, exploited and plundered social media accounts (this is thriving business at present) and a LOAD more, also taking into account the frequency of the attempts and the ISP/ASN's involved What is missing in this picture are complete ASN blocks, at present only one 'Digital Ocean AS14061' as their very affordable short term VPS solutions have drawn many unsavory clients, that when reported they do nothing about (just like Amazon in the old days).