For the last 15 years I've been using SpamCop to report the spam I receive. I do this because
- it sometimes results in spammers and the third-party machines they compromise getting shut down, at least temporarily (as evidenced by the occasional responses I get from ISPs thanking me for my reports and confirming that they've terminated access);
- it helps build real-time blackhole lists that others can use to help filter spam; and
- it requires almost no effort on my part, since my reporting workflow is largely automated.
If there's one type of network traffic I get even more of than spam, it's password-guessing attempts on my SSH servers. Is there some SpamCop-like service I can or should be using to report attempts to break into my machines via SSH or other network services?
I already know about and employ various defences against such break-in attempts, but that's not what this question is about. What I'm asking is
- whether at least some ISPs want to be informed when their networks are being abused for break-in attempts,
- whether there are any centralized IP blocklists that people can use to help filter maliciously employed IPs from incoming network connections, and
- whether there is some software or online service that allows me to automatically submit reports for either or both of the above two purposes.