Santiago 2d ago
Bueno, parece que los ataques de scraping estan cesando o por lo menos el bloqueo del firewall está siendo exitoso y permite más o menos respirar al servidor. Como últimas novedades, ayer terminé de migrar las listas de bloque de Alias y reglas manuales, a listas dinámicas automáticas, aparte de que agregué algunas más que estaban faltando. Las listas dinámicas corren en bajo nivel en el firewall y aprovechan el motor pf packet filter que hace famoso a pf-Sense. Eso quedó lujo y los tests que corrí muestran que el firewall ni se despeina filtrando unas 50k IPs. También en el proxy Nginx dejé corriendo CrowdSec junto con Fail2ban y ahora ambos alimentan de IPs maliciosas que detectan, al pf-Sense que las bloquea para toda la red. CrowdSec fue sugerencia de @j3j5 y luego de @ElenaMusk y valió la pena porque solo lo conocía de nombre, nunca lo había probado, muchas gracias por el apoyo y la ayuda. Pensé que era similar a Fail2ban pero se nota que es mucho más moderno y agarra IPs que Fail2ban no agarra, justamente por el análisis decomportamiento. Yo creo que estamos bastante bien ahora, con pfBlocker-NG, Suricata y DNSBL corriendo en pf-Sense y Fail2ban y CrowdSec corriendo en el proxy que a su vez retroalimenta a pf-Sense. #pfsense #crowdsec #dnsbl #suricata #seguridad #undernet #mastodon
The Spamhaus ProjectApr 14

📢 FINAL REMINDER | From tomorrow we will start to restrict access to Oracle IP addresses querying our DNSBLs. To stay protected by the data, register for Spamhaus Technology's FREE Data Query Service - changes to config take minutes.

Sign up here 👇
https://www.spamhaus.com/data-access/free-data-query-service/

#Oracle #DNSBL #DQS

The Spamhaus ProjectApr 8

📆 From next week we will start to restrict access to Oracle IP addresses querying our DNSBLs. To stay protected by the data register for Spamhaus Technology's FREE Data Query Service - it takes minutes to change config 👇
https://www.spamhaus.com/data-access/free-data-query-service/

#Oracle #DNSBL #DQS

@Dwarf :borg_logo:Mar 26
Another day, another log of @linuxfoundation's emails being blocked because they're listed in dronebl.org. I take it this account is only used as some kind of RSS to fedi thing?

#linux #linuxfoundation #email #dnsbl #dronebl
The Spamhaus ProjectMar 4

📢 Oracle users | From April 8th, we will begin restricting access to the free DNSBLs for those querying via Oracle’s network. To stay protected, sign up to access the data via Spamhaus Technology’s free Data Query Service. Read more 👇

https://www.spamhaus.org/resource-hub/email-security/querying-our-dnsbls-via-oracle

#Oracle #DNSBL #DQS #FreeProtection

HessenheldenFeb 27

Zur zeit nutze ich unter #OPNsense #UnboundDNS mit den eingebauten Blocklisten. Was mir aber auffällt dass es keine speziellen Soziale Listen existieren um z.B Facebook zu blockieren. Finde ich schade und nervt. Die Filterlisten als URL eingebunden funktionieren auch nicht wie ich es mag, kann aber auch sein das die Listen einfach nicht UnboundDNS kompatibel sind. Bin etwas genervt.

#Firewall #DNS #DNSBL

@Dwarf :borg_logo:Feb 25
what is the linux foundation doing..?

https://dronebl.org/lookup?ip=158.247.20.24

cc @linuxfoundation

#linux #linuxfoundation #dronebl #dnsbl #email
DroneBL :: Lookup :: 158.247.20.24

The Spamhaus ProjectFeb 25

📣 SERVICE UPDATE | From April 8th, access will start to be restricted to those querying our free DNSBLs via Oracle’s network. Full info here👇
https://www.spamhaus.org/resource-hub/email-security/querying-the-free-dnsbls-via-oracle/

Sign-up for Spamhaus Technology’s free DQS, to ensure there are no issues with your email filtering 👉 https://www.spamhaus.com/data-access/free-data-query-service/

#Oracle #DNSBL #EmailFiltering

I can’t believe its not @twcauJan 13

I started to suspect that both my Apple TV and Homepod Mini were being naughty children making DNS queries to servers other than my local one.

So put together a list of the bigger public IPv4 and IPv6 DNS servers, then added a firewall rule rejecting all traffic to them from all devices other than my AdGuard Home server.

And guess what I found - I was right. Unauthorised communication with Cloudflare, and avoiding my AdGuard Home server.

#DNS #DNSBL #AdGuard #AdGuardHome

Tom Oct 25, 2025

If @spamhaus incorrectly marks a mail server as a spammer, then the process is clear.

But what do you do if the mail server is incorrectly marked as an "open resolver" and you therefore cannot query DNSBLs? 😂

😶‍🌫️

I just had this case with a customer.

#Mailserver #dnsbl #spamhaus #hosting #email #server