ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

CSF & Blocklists setup

https://mail.forum.configserver.com/viewtopic.php?t=6758

Page 1 of 1

CSF & Blocklists setup

Posted: 13 Jul 2013, 08:48
by P4D-830
Hello,
1.) i get here some errors to get following blocklists :

Code: Select all

Jul 13 07:18:47 bf2-gs lfd[20708]: Unable to retrieve blocklist MAXMIND - Unable to download: 599 - IO::Socket::SSL 1.42 must be installed for https support

Jul 13 07:18:48 bf2-gs lfd[20708]: Unable to retrieve blocklist HONEYPOT - Unable to download: 599 - Malformed Status-Line: HTTP/1.1 303\r\n

Jul 13 07:18:48 bf2-gs lfd[20708]: Unable to retrieve blocklist TOR - Unable to download: 599 - IO::Socket::SSL 1.42 must be installed for https support

Jul 13 07:48:48 bf2-gs lfd[24205]: Unable to retrieve blocklist MAXMIND - Unable to download: 599 - IO::Socket::SSL 1.42 must be installed for https support

Jul 13 07:48:49 bf2-gs lfd[24205]: Unable to retrieve blocklist HONEYPOT - Unable to download: 599 - Malformed Status-Line: HTTP/1.1 303\r\n

Jul 13 07:48:49 bf2-gs lfd[24205]: Unable to retrieve blocklist TOR - Unable to download: 599 - IO::Socket::SSL 1.42 must be installed for https support


Ok i get this lists except CIArmy (is complete down ???) and Honeypot (shows yet it is at maintance now), if i use here "http" against "https".


2.) is there an way to implement an sort function for the ips listed on this whole blocklists in csf ?
That should be nice to reduce the double ips listed in some blocklists.


3.) i use here also normal blocklists from "blocklist"(.de) - but this has as "+" sorted and real actual entrys (see the minimal get time for this lists is here 3600), but as "-" it blows up the blocklists with double entrys if i use this entrys and the entrys that comes normal with CSF Blocklist. So an sort function in CSF to filter the doubels out is very desirable....
Any change to implement that in CSF in the future ?

Btw. i see the last days - that the "File2ban" tool use an user writed .py script that can do this...
Any suggestions ?

Tia
P4D-830

Re: CSF & Blocklists setup

Posted: 13 Jul 2013, 15:56
by kdean
Revise your TOR line to read: (remove the space after torproject and TorBulkExitList - forum won't let me post links)

TOR|86400|0|http://check.torproject .org/cgi-bin/TorBulkExitList .py?ip=1.1.1.1

The recent csf update was supposed to change this but it hasn't for some. See the other thread about it.

MAXMIND is working for me with: (remove the space after maxmind)

MAXMIND|86400|0|http://www.maxmind .com/en/anonymous_proxies

Re: CSF & Blocklists setup

Posted: 14 Jul 2013, 22:16
by P4D-830
@kdean
yeah...all post links do not bypass this forum.

This works on "TOR" now perfect - but i gets yet updates every 1 hour (changed to 3600) .

All other - except "CIARMY & Honeypot" (with greater update time =1 day) - works also now (after an change of the HTTPS to HTTP protocol).

And yes - the last update of CSF(6.22) crippel the cfs.blocklists (special if you use there before extra handmade entrys).

Tia P4D-830
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited