Ok, time for a general warning to never, ever install the fedora or epel version of clamav. Unless you really want to let half the malware traffic through.

Licence purity is all well and good, but stripping out the ability to scan .rar is gonna bite you in the ass real hard.

Not got bitten myself, but the potential for pain …

ipsetmgr v1.4.1 now released.

Bulk IP, ASN and SBL Drop load operations can now handle compressed files automatically.

ASN use now tags each entry in a used set with ASxxxx so sets can be shared with other data sets.

Live mode (yeh, yeh, I know haven’t documented it yet) has been adjusted to use select(2) for all read handles in addition to the simple timed poll.

At a concert and there’s a loud cracking noise which is in the correct rhythm but doesn’t match the tone of any instrument the three percussionists is playing…

FUCK ! Was that my knee again ?

Another week, another cut of ipsetmgr, my cli tool for managing sets of IP data feeding ipsets or (all new) nftables sets.

Managing a few short lists might be done manually, but once you accumulate say, a new set of 800000 IPs (yes, eight hundred thousand) dumb-ass AI crawler pieces of shit, you really want helpful tools for the job.

Development is fluid and ongoing but it’s already proving itself to be useful enough to use live for my bulk load and ASN blocking. There’s something immensely satisfying about being able to just type

ipsetmgr —command asnblock —asn 44477 —setname asnblock —apply

and know you’ll never see their traffic again.

And the cronjob that mirrors the ASN data updates the db and updates all live block references with a related single command.

https://code.quatermass.co.uk/toolsmith/perl-App-IPSetMgr

T