From 23308bc7ba0bf94dfef1ab67f3e624ff4024736f Mon Sep 17 00:00:00 2001 From: michael Date: Mon, 22 Dec 2014 16:21:24 +0000 Subject: [PATCH] - Update reference.conf git-svn-id: svn://svn.ircd-hybrid.org/svnroot/hopm/trunk@5074 82007160-df01-0410-b94d-b575c5fd34c7 --- doc/reference.conf | 173 +++++++++++++++++++++------------------------ 1 file changed, 81 insertions(+), 92 deletions(-) diff --git a/doc/reference.conf b/doc/reference.conf index 06ba868..8ebc3d4 100644 --- a/doc/reference.conf +++ b/doc/reference.conf @@ -229,107 +229,96 @@ OPM { * scanned. The use of at least one open proxy DNSBL is recommended * however. * - * Please check the policies of each blacklist you use to check you + * Please check the policies of each blacklist you use to check you * are comfortable with using them to block access to your server * (and that you are allowed to use them). */ - /* DroneBL - http://dronebl.org */ + + /* dnsbl.dronebl.org - http://dronebl.org */ +# blacklist { + /* The DNS name of the blacklist */ +# name = "dnsbl.dronebl.org"; + + /* + * There are only two values that are valid for this + * "A record bitmask" and "A record reply" + * These options affect how the values specified to reply + * below will be interpreted, a bitmask is where the reply + * values are 2^n and more than one is added up, a reply is + * simply where the last octet of the IP is that number. + * If you are not sure then the values set for dnsbl.dronebl.org + * will work without any changes. + */ +# type = "A record reply"; + + /* + * Kline types not listed in the reply list below. + * + * For DNSBLs that are not IRC specific and you just wish to kline + * certain types this can be enabled/disabled. + */ +# ban_unknown = no; + + /* + * The actual values returned by the dnsbl.dronebl.org blacklist as + * documented at http://dronebl.org/docs/howtouse + */ +# reply { +# 2 = "Sample"; +# 3 = "IRC Drone"; +# 5 = "Bottler"; +# 6 = "Unknown spambot or drone"; +# 7 = "DDOS Drone"; +# 8 = "SOCKS Proxy"; +# 9 = "HTTP Proxy"; +# 10 = "ProxyChain"; +# 13 = "Brute force attackers"; +# 14 = "Open Wingate Proxy"; +# 15 = "Compromised router / gateway"; +# 17 = "Automatically determined botnet IPs (experimental)"; +# 255 = "Unknown"; +# }; + + /* + * The kline message sent for this specific blacklist, remember to put + * the removal method in this. + */ +# kline = "KLINE *@%h :You have a host listed in the DroneBL. For more information, visit http://dronebl.org/lookup_branded?ip=%i&network=Network"; +# } + + + /* tor.dnsbl.sectoor.de - http://www.sectoor.de/tor.php */ # blacklist { -# /* The DNS name of the blacklist */ -# name = "dnsbl.dronebl.org"; -# -# /* -# * There are only two values that are valid for this -# * "A record bitmask" and "A record reply" -# * These options affect how the values specified to reply -# * below will be interpreted, a bitmask is where the reply -# * values are 2^n and more than one is added up, a reply is -# * simply where the last octet of the IP is that number. -# * If you are not sure then the values set for dnsbl.dronebl.org -# * will work without any changes. -# */ -# type = "A record reply"; -# -# /* Kline types not listed in the reply list below. -# * -# * For DNSBLs that are not IRC specific and you just wish to kline -# * certain types this can be disabled. -# */ -# ban_unknown = yes; -# -# /* The actual values returned by the dnsbl.dronebl.org blacklist -# * As documented at http://www.dronebl.org/howtouse.do */ -# reply { -# 2 = "Sample"; -# 3 = "IRC Drone"; -# 4 = "Tor"; -# 5 = "Bottler"; -# 6 = "Unknown spambot or drone"; -# 7 = "DDOS Drone"; -# 8 = "SOCKS Proxy"; -# 9 = "HTTP Proxy"; -# 10 = "ProxyChain"; -# 255 = "Unknown"; -# }; -# -# /* The kline message sent for this specific blacklist, remember to put -# * the removal method in this. -# */ -# kline = "KLINE *@%h :You have a host listed in the DroneBL. For more information, visit http://dronebl.org/lookup_branded.do?ip=%i&network=Network"; +# name = "tor.dnsbl.sectoor.de"; +# type = "A record reply"; +# ban_unknown = no; + +# reply { +# 1 = "Tor exit server"; +# }; + +# kline = "KLINE *@%h :Tor exit server detected. For more information, visit http://www.sectoor.de/tor.php?ip=%i"; # }; -# /* ircbl.ahbl.org - see http://ahbl.org/docs/ircbl -# * http://oldwww.temp.ahbl.org/docs/ircbl.php */ -# blacklist { -# name = "ircbl.ahbl.org"; -# type = "A record reply"; -# ban_unknown = no; -# reply { -# 2 = "Open proxy"; -# }; -# kline = "KLINE *@%h :Listed in ircbl.ahbl.org. See http://ahbl.org/removals"; -# }; - - /* tor.dnsbl.sectoor.de - http://www.sectoor.de/tor.php */ -# blacklist { -# name = "tor.dnsbl.sectoor.de"; -# type = "A record reply"; -# reply { -# 1 = "Tor exit server"; -# }; -# ban_unknown = no; -# kline = "KLINE *@%h :Tor exit server detected. See www.sectoor.de/tor.php?ip=%i"; -# }; - - /* rbl.efnet.org - http://rbl.efnet.org/ */ -# blacklist { -# name = "rbl.efnet.org"; -# type = "A record reply"; -# reply { -# 1 = "Open proxy"; -# 2 = "Trojan spreader"; -# 3 = "Trojan infected client"; -# 4 = "TOR exit server"; -# 5 = "Drones / Flooding"; -# }; -# ban_unknown = yes; -# kline = "KLINE *@%h :Listed in rbl.efnet.org. See rbl.efnet.org/?i=%i"; -# }; - - - /* example: NJABL - please read http://www.njabl.org/use.html before - * uncommenting */ -# blacklist { -# name = "dnsbl.njabl.org"; -# type = "A record reply"; -# reply { -# 9 = "Open proxy"; -# }; -# ban_unknown = no; -# kline = "KLINE *@%h :Open proxy found on your host, please visit www.njabl.org/cgi-bin/lookup.cgi?query=%i"; + /* rbl.efnetrbl.org - http://rbl.efnetrbl.org/ */ +# blacklist { +# name = "rbl.efnetrbl.org"; +# type = "A record reply"; +# ban_unknown = no; + +# reply { +# 1 = "Open proxy"; +# 2 = "spamtrap666"; +# 3 = "spamtrap50"; +# 4 = "TOR"; +# 5 = "Drones / Flooding"; +# }; + +# kline = "KLINE *@%h :Blacklisted proxy found. For more information, visit http://rbl.efnetrbl.org/?i=%i"; # }; + /* * You can report the insecure proxies you find to a DNSBL also! * The remaining directives in this section are only needed if you -- 2.30.2