Is it worth the effort to block IP addresses?

Everyday I look at my log file and find IP addresses that have tried to hack into the users admin, root, test, and demo. I search them out on whois, and most of them are unallocated. The ones that aren't, I send a note to the abuse department of the ISP. I then ban them all in APF.

I'm wondering if this is a total waste of time. It seems that these guys probably aren't using the same IP address everyday, and so I'm just potentially banning future users from my server. This takes a lot of time to do, and seems like a waste.

Is what I'm doing necessary, or a waste of time? What do you do to protect yourself from this kind of thing?

 

 

 

 

Top