alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity

Compare commits

base: alanorth:0ffb1b1a36450314d7fe54f36163c2fa4d3c9558
Branches Tags
alanorth:master
alanorth:alpine
..
compare: alanorth:4d74f76b3c12b53ae1ce8ae59b93cea5edd115df
Branches Tags
alanorth:master
alanorth:alpine

2 Commits
0ffb1b1a36 ... 4d74f76b3c

Author SHA1 Message Date
Alan Orth
4d74f76b3c
Pipfile.lock: run pipenv update 2022-02-04 21:47:53 +03:00
Alan Orth
9e737466c5
roles/common: Update list of abusive IP addresses 
This comes from the AbuseIPDB with a confidence level of 95%. I use
the following command to download and sort the IPs:

  $ curl -G https://api.abuseipdb.com/api/v2/blacklist -d \
    confidenceMinimum=95 -H "Key: $ABUSEIPDB_API_KEY" \
    -H "Accept: text/plain" | sort | sed -e '/:/w /tmp/ipv6.txt' \
    -e '/:/d' > /tmp/ipv4.txt

I manually add the XML formatting to each file and run them through
tidy:

  $ tidy -xml -utf8 -m -iq -w 0 roles/common/files/abusers-ipv4.xml
  $ tidy -xml -utf8 -m -iq -w 0 roles/common/files/abusers-ipv6.xml

Then I formatted the nftables files manually. Meh...
 2022-02-04 21:47:37 +03:00
5 changed files with 18013 additions and 18012 deletions
Show Stats Expand all files Collapse all files

14
Pipfile.lock generated
View File

@ -18,17 +18,17 @@
"default": {
"ansible": {
"hashes": [
"sha256:7604f264f9bdf31442ea152fa4eb77fe700100ff5e54103822d284551b7524bc"
"sha256:50020dab43f6c59debdeb57f45c90ec6db78d4fa574edc6d75bc52e05cbd3639"
],
"index": "pypi",
"version": "==5.1.0"
"version": "==5.3.0"
},
"ansible-core": {
"hashes": [
"sha256:a4508707262be11bb4dd98a006f1b14817879a055e6b6c46ad9fca8894fb3073"
"sha256:bc79e1723a5a92cbc105d581b25b66840d15bb5f4c98925c936ef5a71f92e7c3"
],
"markers": "python_version >= '3.8'",
"version": "==2.12.1"
"version": "==2.12.2"
},
"cffi": {
"hashes": [
@ -212,11 +212,11 @@
},
"pyparsing": {
"hashes": [
"sha256:04ff808a5b90911829c55c4e26f75fa5ca8a2f5f36aa3a51f68e27033341d3e4",
"sha256:d9bdec0013ef1eb5a84ab39a3b3868911598afa494f5faa038647101504e2b81"
"sha256:18ee9022775d270c55187733956460083db60b37d0d0fb357445f3094eed3eea",
"sha256:a6c06a88f252e6c322f65faf8f418b16213b51bdfaece0524c1c1bc30c63c484"
],
"markers": "python_version >= '3.6'",
"version": "==3.0.6"
"version": "==3.0.7"
},
"pyyaml": {
"hashes": [

15995
roles/common/files/abuseipdb-ipv4.nft
View File

File diff suppressed because it is too large Load Diff

11
roles/common/files/abuseipdb-ipv6.nft
View File

@ -1,13 +1,6 @@
#!/usr/sbin/nft -f
define ABUSEIPDB_IPV6 = {
2001:470:1:332::7,
2001:470:1:c84::15,
2001:470:1:c84::22,
2001:470:1:c84::23,
2001:470:1:c84::25,
2a00:d680:20:50::3292,
2a00:d680:20:50::4a10,
2a02:c206:2062:6450::1,
2a03:b0c0:2:f0::34d:c001
2001:41d0:a:1ac3::,
2604:2dc0:200:1378::
}

19994
roles/common/files/abusers-ipv4.xml
View File

File diff suppressed because it is too large Load Diff

11
roles/common/files/abusers-ipv6.xml
View File

@ -3,13 +3,6 @@
<option name="family" value="inet6" />
<short>abusers-ipv6</short>
<description>A list of abusive IPv6 addresses.</description>
<entry>2001:470:1:332::7</entry>
<entry>2001:470:1:c84::15</entry>
<entry>2001:470:1:c84::22</entry>
<entry>2001:470:1:c84::23</entry>
<entry>2001:470:1:c84::25</entry>
<entry>2a00:d680:20:50::3292</entry>
<entry>2a00:d680:20:50::4a10</entry>
<entry>2a02:c206:2062:6450::1</entry>
<entry>2a03:b0c0:2:f0::34d:c001</entry>
<entry>2001:41d0:a:1ac3::</entry>
<entry>2604:2dc0:200:1378::</entry>
</ipset>