aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorGravatar Christian Hesse <mail@eworm.de>2023-06-09 16:03:36 +0200
committerGravatar Christian Hesse <mail@eworm.de>2023-06-13 20:26:55 +0200
commit53ad7b717d5e0dc4c9e40a9b24e64d5f933bf14c (patch)
tree738e859c093db5bb119540b5f6d6befc6a854c1e
parent589492621be60f736f4c66b0297f17a1d411b223 (diff)
fw-addr-lists: add lists from abuse.ch in config
-rw-r--r--doc/fw-addr-lists.md3
-rw-r--r--global-config.rsc4
2 files changed, 6 insertions, 1 deletions
diff --git a/doc/fw-addr-lists.md b/doc/fw-addr-lists.md
index 98aedcc..4328776 100644
--- a/doc/fw-addr-lists.md
+++ b/doc/fw-addr-lists.md
@@ -12,7 +12,8 @@ Description
This script downloads, imports and updates firewall address-lists. Its main
purpose is to block attacking ip addresses, spam hosts, command-and-control
servers and similar malicious entities. The default configuration contains
-a list from [dshield.org](https://dshield.org/).
+lists from [abuse.ch](https://abuse.ch/) and
+[dshield.org](https://dshield.org/).
The address-lists are updated in place, so after initial import you will not
see situation when the lists are not populated.
diff --git a/global-config.rsc b/global-config.rsc
index 901c7b3..8fe4761 100644
--- a/global-config.rsc
+++ b/global-config.rsc
@@ -89,6 +89,10 @@
"block"={
# { url="https://eworm.de/ros/fw-addr-lists/block";
# cert="R3" };
+ { url="https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt";
+ cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" };
+ { url="https://sslbl.abuse.ch/blacklist/sslipblacklist.txt";
+ cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" };
{ url="https://www.dshield.org/block.txt"; cidr="/24";
cert="R3" };
};