blocklist-ipsets
nginx-ultimate-bad-bot-blocker
Our great sponsors
blocklist-ipsets | nginx-ultimate-bad-bot-blocker | |
---|---|---|
39 | 11 | |
2,938 | 3,667 | |
2.3% | - | |
2.8 | 9.8 | |
6 days ago | 2 days ago | |
Shell | Shell | |
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
blocklist-ipsets
- [Opnsensefirewall] Bloquer des IP malveillants avec un pare-feu OPNSENSE
-
Firewall Rules for a recently probed newbie?
Look into FireHol and its use of IPsets: https://firehol.org/guides/ipset/ | http://iplists.firehol.org/ - you can easily do what you’re wanting with these two.
- IPlist of bots/malicious actors
- Ask HN: What are these strange random strings spamming my blog?
-
A good malware/threat filtering choice on OPNSense
Yes, unfortunately i think this also happened other times with Firehol L3 (you can see https://github.com/firehol/blocklist-ipsets/issues/188) but thanks for the lists advice.
-
Creating a cyber threat intelligence tool
It sounds like you want to jump into game development before learning how to write "Hello, world!". Try using any of the open source tools that already do this and sign up for some "free" threat intel tools and learn the lay of the land. https://www.misp-project.org/ https://github.com/OpenCTI-Platform/opencti https://iplists.firehol.org/ https://www.greynoise.io/
-
Did anyone notice an abnormal increase in banned clients? These are my daily fail2ban ban count
I believe you are running SSH over default port 22 - feel free to change that. You can also use iplists from FireHOL to block any connection from blacklisted (on way or another) IPs - https://iplists.firehol.org/
- External Dynamic lists
-
blocklist-ipsets VS Lists - a user suggested alternative
2 projects | 19 Jan 2023
-
Show HN: A Golang package and tool to detect Tor exit IP addresses
Tor exits are tracked here [1] and in a few other block-list repos. The data is built from Tor's exit node list [2]
[1] - https://github.com/firehol/blocklist-ipsets
[2] - https://check.torproject.org/exit-addresses
nginx-ultimate-bad-bot-blocker
- Nginx Bad Bot and User-Agent Blocker
-
Bad Bots Account for 73% of Internet Traffic: Analysis
I manage a network of several hundred websites. About 2 years ago we started blocking bot/crawler user-agents. Some websites see thousands of these requests every day, skewing analytics and eating bandwidth.
Tools like this help: https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blo...
-
Rack::Attack
I generally prefer to go up a level. We install ultimate bad bot blocker at the nginx level for apps running on servers or in K8S. For Heroku you can do this with foremen or docker. The advantage of this is that the ‘no’ happens faster than it does when making it all the way down to rack. RackAttack might let a door to door salesperson say “hi,I’m here to talk to you about solar” before slamming the door. Nginx let’s the same salesperson barely say “hi ..” before slamming the door in their face.
-
Are there any solid and straightforward guides on Installing Nextcloud with NGINX & PHP8.1? I could really use a hand, I've been at this for 2 days now.
the subdomain example nginx config from NextCloud with a few changes like TLSv1.3 only, geoblocking and some bot blocking from here and a few other security tweaks. The nginx file is basically a server block as an include separate from the main nginx.conf. The configuration gets an A+ in security from NextCloud's checker and others.
-
Ask HN: Any way to ban GPT-4 and others from harvesting my content and data?
Use nginx anti-bot[1] or product such as Fastly or Cloudflare anti-bot feature, which blocks content scrapping and only allows specific bots using rules or AI. Another option is to block VPN, cloud and hosting companies' ASNs. There is no benefit for you allowing someone to scrap your content apart from Bing and Google. The rest of the bots can die, or you will lose your content to scrappers. So finally, put it behind a paywall if possible. Of course, the paywall only works if you have good content or buying ads to promote it. Good luck, mate.
[1]https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blo...
-
Blocking bots? Do you bother?
If you want to go full-shield mode you can use this solution on the server https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker and/or Cloudflare rules. Keep in mind that having both of this tools at the same time will require some deep tech work from you and will not save you from all bots.
-
Videolan.org Robots.txt
I used the ultimate Nginx bad bot blocker on a couple of my side projects, and it is a pretty good project https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blo... . Apart from the Cloudflare offers UA blocking and AI driven bot management too. Most of these bots are for content scrapping and then creating search spam results. I am a one-person show, and it hurts both financial and resources wise on severs. So I block them.
-
Is this a attempt to hack my website?
I recommend https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker to block unwanted bots
-
Google Drive may restrict files identified as violating ToS
Same experience here, one spammer DOSing my site, always with similar patterns. I'm already behind Cloudflare and use https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blo... but I still have to identify and block them manually, which is annoying and a waste of time. Some IP-range blocks affected users so it's not fine grained enough. I wish I could identify, expose and sue them into oblivion.
- website with ad code?
What are some alternatives?
firehol - A firewall for humans...
Horus-Eye - Just Simple Code To Play With Android Payloads (;
crowdsec - CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.
Ultimate.Hosts.Blacklist - The Ultimate Unified Hosts file for protecting your network, computer, smartphones and Wi-Fi devices against millions of bad web sites. Protect your children and family from gaining access to bad web sites and protect your devices and pc from being infected with Malware or Ransomware.
my-pihole-blocklists - Create custom pi-hole blocklists
block - Let's make an annoyance free, better open internet, altogether!
ipsum - Daily feed of bad IPs (with blacklist hit scores)
spamscanner - Spam Scanner is a Node.js anti-spam, email filtering, and phishing prevention tool and service. Built for @ladjs, @forwardemail, @cabinjs, @breejs, and @lassjs.
spam-words - List of spam words in different languages
geoip-blocking-w-firewalld - Block unwanted countries IPv4 & IPv6 ranges with firewalld using ipdeny.com
apache-ultimate-bad-bot-blocker - Apache Block Bad Bots, (Referer) Spam Referrer Blocker, Vulnerability Scanners, Malware, Adware, Ransomware, Malicious Sites, Wordpress Theme Detectors and Fail2Ban Jail for Repeat Offenders