Go to goldenfrog.com

Please tell us your feature request....

Auto include blocklist.de IPTables via daily crontab

Blocklist.de is a service I add in addition to fail2ban to reduce malicious attackers chances of getting in.
www.blocklist.de is a free and voluntary service provided by a Fraud/Abuse-specialist, whose servers are often attacked on SSH-, Mail-Login-, FTP-, Webserver- and other services.
The mission is to report all attacks to the abuse deparments of the infected PCs/servers to ensure that the responsible provider can inform the customer about the infection and disable them.
Add as part of the installation to autoreport the abusers to blocklist.de and include the script for IPTables daily.

In the meantime others can add at least the IPtables automatically updating this way
sudo -i

Then download the script to cron.daily and make it executable
curl -s https://gist.githubusercontent.com/klepsydra/ecf975984b32b1c8291a/raw > /etc/cron.daily/sync-fail2ban

chmod a+x /etc/cron.daily/sync-fail2ban

Optional but Recommended, Initial run manually:
time /etc/cron.daily/sync-fail2ban

3 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Alon Ganon shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    1 comment

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • MB commented  ·   ·  Flag as inappropriate

        Initially it runs several days to include the IPs in the firewall. Additionally fail2ban is delayed by this that it cannot add any more any additional ips...

      Feedback and Knowledge Base