roles/common: Update list of abusive IP addresses

This comes from the AbuseIPDB with a confidence level of 95%. I use the following command to download and sort the IPs: $ curl -G https://api.abuseipdb.com/api/v2/blacklist -d \ confidenceMinimum=95 -H "Key: $ABUSEIPDB_API_KEY" \ -H "Accept: text/plain" | sort | sed -e '/:/w /tmp/ipv6.txt' \ -e '/:/d' > /tmp/ipv4.txt I manually add the XML formatting to each file and run them through tidy: $ tidy -xml -utf8 -m -iq -w 0 roles/common/files/abusers-ipv4.xml $ tidy -xml -utf8 -m -iq -w 0 roles/common/files/abusers-ipv6.xml Note: there were no IPv6 addresses in the top 10,000 this time so I used a dummy address for the nftables set so the syntax was valid.
2021-09-28 10:28:02 +03:00 · 2021-09-28 10:28:02 +03:00 · d92151b8a6
parent b13ead0657
commit d92151b8a6
4 changed files with 13597 additions and 13596 deletions
--- a/roles/common/files/abuseipdb-ipv4.nft
+++ b/roles/common/files/abuseipdb-ipv4.nft
--- a/roles/common/files/abuseipdb-ipv6.nft
+++ b/roles/common/files/abuseipdb-ipv6.nft
@ -1,7 +1,5 @@
 #!/usr/sbin/nft -f

 define ABUSEIPDB_IPV6 = {
-2400:6180:0:d1::4ce:d001,
-2607:5300:60:232d::,
-2607:f298:6:a066::1bf:e80e,
+fe80::bca2:37fa:fe58:414e
 }
--- a/roles/common/files/abusers-ipv4.xml
+++ b/roles/common/files/abusers-ipv4.xml
--- a/roles/common/files/abusers-ipv6.xml
+++ b/roles/common/files/abusers-ipv6.xml
@ -3,7 +3,4 @@
  <option name="family" value="inet6" />
  <short>abusers-ipv6</short>
  <description>A list of abusive IPv6 addresses.</description>
-  <entry>2400:6180:0:d1::4ce:d001</entry>
-  <entry>2607:5300:60:232d::</entry>
-  <entry>2607:f298:6:a066::1bf:e80e</entry>
 </ipset>