diff options
author | Christian Hesse <mail@eworm.de> | 2023-06-09 16:03:36 +0200 |
---|---|---|
committer | Christian Hesse <mail@eworm.de> | 2023-06-13 20:26:55 +0200 |
commit | 53ad7b717d5e0dc4c9e40a9b24e64d5f933bf14c (patch) | |
tree | 738e859c093db5bb119540b5f6d6befc6a854c1e | |
parent | 589492621be60f736f4c66b0297f17a1d411b223 (diff) |
fw-addr-lists: add lists from abuse.ch in config
-rw-r--r-- | doc/fw-addr-lists.md | 3 | ||||
-rw-r--r-- | global-config.rsc | 4 |
2 files changed, 6 insertions, 1 deletions
diff --git a/doc/fw-addr-lists.md b/doc/fw-addr-lists.md index 98aedcc..4328776 100644 --- a/doc/fw-addr-lists.md +++ b/doc/fw-addr-lists.md @@ -12,7 +12,8 @@ Description This script downloads, imports and updates firewall address-lists. Its main purpose is to block attacking ip addresses, spam hosts, command-and-control servers and similar malicious entities. The default configuration contains -a list from [dshield.org](https://dshield.org/). +lists from [abuse.ch](https://abuse.ch/) and +[dshield.org](https://dshield.org/). The address-lists are updated in place, so after initial import you will not see situation when the lists are not populated. diff --git a/global-config.rsc b/global-config.rsc index 901c7b3..8fe4761 100644 --- a/global-config.rsc +++ b/global-config.rsc @@ -89,6 +89,10 @@ "block"={ # { url="https://eworm.de/ros/fw-addr-lists/block"; # cert="R3" }; + { url="https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt"; + cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" }; + { url="https://sslbl.abuse.ch/blacklist/sslipblacklist.txt"; + cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" }; { url="https://www.dshield.org/block.txt"; cidr="/24"; cert="R3" }; }; |