Just as a temporary hint: those using linux could try this firewall rule if (and only if) they also feel that something suspicious is going on here:
sudo iptables -I INPUT -m iprange --src-range 46.105.0.0-46.105.255.255 -j DROP
sudo iptables -I OUTPUT -m iprange --dst-range 46.105.0.0-46.105.255.255 -j DROP
OpenBSD and Mac users should enable the pf firewall using "
sudo pfctl -e" and do this:
Add this to /etc/pf.conf:
table <blockedips> persist file "/etc/pf.blocked.ip.conf"
ext_if="em1" # interface connected to internet, CHANGE TO MATCH YOUR ETHERNET CARD DEVICE IDENTIFIER
block drop in log (all) quick on $ext_if from <blockedips> to any
(Note, last two additional lines must be repeated for a possible WLAN adapter)
Create file /etc/pf.blocked.ip.conf with the content:
46.105.0.0/16
Type the following to update changes
sudo pfctl -nf /etc/pf.conf
sudo pfctl -f /etc/pf.conf
Now you can check the live stats, how many connection to those (malicious??) nodes have been prevented using:
sudo pfctl -t blockedips -T show -v
you may want to check and see if the numbers of the IPs to block need to be changed (expanded), due to this:
"Barclays partnering with Chainalysis in October and Coinalytics raising a $1.1m seed round in September. In August, Elliptic won "Security Project of the Year" after launching a blockchain visualization tool for the bitcoin blockchain.
Currently, Coinalytics is allowing several companies to use and test its API (...) developing machine learning systems to analyze any blockchain as the industry expands to include public, permissioned and private ledgers (...) Coinalytics is focusing on its AML compliance product targeted at any companies processing bitcoin transactions today, it sees its analytics platform used in many verticals, including capital markets, the Internet of Things and law enforcement."
Yep, time to check those IPs again
see
http://www.coindesk.com/juan-llanos-blockchain-analytics-coinalytics/ for further details.
I am kick-starting this thread again even though it hasn't been posted in awhile, because Elliptic (who I mentioned here a very long time ago - see my quoted post above) and LexisNexis (see Aug. 3 2016 story at
https://news.bitcoin.com/elliptic-bitcoin-aml-platform/ ) are developing a way to curb what they consider "illegal cryptocurrency transactions." In other words, AML, and attempts at financial censorship, folks.
I propose for those of us still reading this that we look into these companies closely and revise the IP tables (see above post) as an interim measure. Make sure these AML idiots are blocked to the max extent possible as they probe the network.
