From patchwork Fri Dec 3 11:28:21 2021 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: =?utf-8?q?Peter_M=C3=BCller?= X-Patchwork-Id: 4894 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4J59Yg6kCyz3wt5 for ; Fri, 3 Dec 2021 11:28:23 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail02.haj.ipfire.org", Issuer "R3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4J59Yg562Fzdl; Fri, 3 Dec 2021 11:28:23 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4J59Yg4kksz2xbS; Fri, 3 Dec 2021 11:28:23 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4J59Yg0lcbz2xR4 for ; Fri, 3 Dec 2021 11:28:23 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384)) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4J59Yf36G2zdl for ; Fri, 3 Dec 2021 11:28:22 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1638530902; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=9TJUVih1zql7ObxZn8gR+3TJ2VK8NnryFjlbimMzRe8=; b=GiOAdp1r1vPesXudD+9rFRDD6iHm/gbUL3KEyWkUY1uwLA2J1L/u5nnBk+Pc8GxC6ebgv1 4FuTx3Yu8aZpkaBg== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1638530902; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=9TJUVih1zql7ObxZn8gR+3TJ2VK8NnryFjlbimMzRe8=; b=vZ1aOzivF8axF6pvti28aHgYXWT//E/Y7EPcM8dlvwKyvtMeGs3Z8Ve4L/P97dJ2soVhkZ c9VuqnaeSDab2f97pSQ/uVbzyHsxDtch6sfqOaycNTIP54qQw+JdqRDrfqJ+2+bKTWT/6s 3HApHHSN8sVyLJT0QTsP8koxDup7JcHrLh+C0KIzZhgDi4B7Ds4wSspYAb3R2l2oJymjx6 snntkwZdogmYC+JrAXQGGv0Lcv+Qp1NPhnsfZ94PzALYTpmQg1h0s+m6q2KweixjkQqKRM G6cTw0iGOGvSJeUNzcz4WE3OqKjl7czbUVhWJUSTUQXLMl8yPrIK+7x9uwdIYw== Subject: [PATCH 2/4] override-xd: Initial commit To: location@lists.ipfire.org References: <3541e51b-9697-1058-9997-c72e2e9bdd5b@ipfire.org> From: =?utf-8?q?Peter_M=C3=BCller?= Message-ID: Date: Fri, 3 Dec 2021 12:28:21 +0100 MIME-Version: 1.0 In-Reply-To: <3541e51b-9697-1058-9997-c72e2e9bdd5b@ipfire.org> Content-Language: en-US X-BeenThere: location@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: location-bounces@lists.ipfire.org Sender: "Location" Signed-off-by: Peter Müller --- overrides/override-xd.txt | 27 +++++++++++++++++++++++++++ 1 file changed, 27 insertions(+) create mode 100644 overrides/override-xd.txt diff --git a/overrides/override-xd.txt b/overrides/override-xd.txt new file mode 100644 index 0000000..8318b49 --- /dev/null +++ b/overrides/override-xd.txt @@ -0,0 +1,27 @@ +# +# override-xd [.txt] +# +# This file contains Autonomous Systems and IP networks strongly believed or proofed to be hostile, +# posing a _technical_ threat against libloc users in general and/or IPFire users in particular. +# +# libloc neither was intended to be an "opinionated" database, nor should it become that way. Please +# refer to commit 69b3d894fbee6e94afc2a79593f7f6b300b88c10 for the rationale of implementing a special +# flag for hostile networks. +# +# Technical threats cover publicly routable network infrastructure solely dedicated or massively abused to +# host phishing, malware, C&C servers, non-benign vulnerability scanners, or being used as a "bulletproof" +# hosting space for cybercrime infrastructure. +# +# This file should not contain short-lived threats being hosted within legitimate infrastructures, as +# libloc it neither intended nor suitable to protect against such threats in a timely manner - by default, +# clients download a new database once a week. +# +# Networks posing non-technical threats - i. e. not covered by the definition above - must not be listed +# here. +# +# Improvement suggestions are appreciated, please submit them as patches to the location mailing +# list. Refer to https://lists.ipfire.org/mailman/listinfo/location and https://wiki.ipfire.org/devel/contact +# for further information. +# +# Please keep this file sorted. +#