2.0/Modules/m dnsbl

From AnopeWiki
Jump to: navigation, search
Language

English

Section Extra_Modules
Module m_dnsbl
Author Anope


Description

Allows configurable DNS blacklists to check connecting users against. If a user is found on the blacklist they will be immediately banned.

name= 
Name of module.
check_on_connect= 
If set, Services will check clients against the DNSBLs when services connect to its uplink. NOT recommended
check_on_netburst= 
If set, Services will check clients when coming back from a netsplit. NOT recommended
add_to_akill= 
If set, OperServ will add clients found in the DNSBL to the akill list. Without it, OperServ simply sends a timed G/K-line to the IRCd and forgets about it.
blacklist {...} 
name= 
Blacklist address to check against
time= 
How long to set the ban
reason= 
Reason for kill
1-5= 
Replies to ban, and Ban reason, see default configuration below for details. (optional)

Default Configuration

/*
 * m_dnsbl
 *
 * Allows configurable DNS blacklists to check connecting users against. If a user
 * is found on the blacklist they will be immediately banned. This is a crucial module
 * to prevent bot attacks.
 */
#module
{
        name = "m_dnsbl"
 
        /*
         * If set, Services will check clients against the DNSBLs when services connect to its uplink.
         * This is not recommended, and on large networks will open a very large amount of DNS queries.
         * Whilst services are not drastically affected by this, your nameserver/DNSBL might care.
         */
        check_on_connect = no
 
        /*
         * If set, Services will check clients when coming back from a netsplit. This can cause a large number
         * of DNS queries open at once. Whilst services are not drastically affected by this, your nameserver/DNSBL
         * might care.
         */
        check_on_netburst = no
 
        /*
         * If set, OperServ will add clients found in the DNSBL to the akill list. Without it, OperServ simply sends
         * a timed G/K-line to the IRCd and forgets about it. Can be useful if your akill list is being fill up by bots.
         */
        add_to_akill = yes
 
        blacklist
        {
                /* Name of the blacklist. */
                name = "rbl.efnetrbl.org"
 
                /* How long to set the ban for. */
                time = 4h
 
                /* Reason for akill.
                 * %n is the nick of the user
                 * %u is the ident/username of the user
                 * %g is the realname of the user
                 * %h is the hostname of the user
                 * %i is the IP of the user
                 * %r is the reason (configured below). Will be nothing if not configured.
                 * %N is the network name set in networkinfo:networkname
                 */
                reason = "You are listed in the efnet RBL, visit http://rbl.efnetrbl.org/?i=%i for info"
 
                /* Replies to ban and their reason. If this is totally omitted all replies get banned. */
                1 = "Open Proxy"
                /* Don't ban for result 2 or 3 */
                #2 = "spamtrap666"
                #3 = "spamtrap50"
                4 = "TOR"
                5 = "Drones / Flooding"
        }
 
        blacklist
        {
                name = "dnsbl.dronebl.org"
                time = 4h
                reason = "You have a host listed in the DroneBL. For more information, visit http://dronebl.org/lookup_branded?ip=%i&network=%N"
        }
}