Mercurial > prosody-modules
annotate mod_firewall/scripts/jabberspam-simple-blocklist.pfw @ 5787:e79f9dec35c0
mod_c2s_conn_throttle: Reduce log level from error->info
Our general policy is that "error" should never be triggerable by remote
entities, and that it is always about something that requires admin
intervention. This satisfies neither condition.
The "warn" level can be used for unexpected events/behaviour triggered by
remote entities, and this could qualify. However I don't think failed auth
attempts are unexpected enough.
I selected "info" because it is what is also used for other notable session
lifecycle events.
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Thu, 07 Dec 2023 15:46:50 +0000 |
| parents | bebc5740fc16 |
| children |
| rev | line source |
|---|---|
|
4146
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
1 # This is a simple ruleset to block all traffic from servers |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
2 # on the JabberSPAM blocklist. Even traffic from existing user |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
3 # contacts will be blocked. |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
4 # |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
5 # Example config (make sure "firewall" is in modules_enabled): |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
6 # |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
7 # firewall_scripts = { "module:scripts/jabberspam-simple-blocklist.pfw" } |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
8 # |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
9 # For a more advanced ruleset, consider using spam-blocking.pfw |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
10 # and spam-blocklists.pfw. |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
11 |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
12 %LIST blocklist: https://cdn.jsdelivr.net/gh/jabberspam/blacklist/blacklist.txt |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
13 |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
14 ::deliver |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
15 |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
16 CHECK LIST: blocklist contains $<@from|host> |
|
bebc5740fc16
mod_firewall: Add jabberspam-simple-blocklist.pfw and spam-blocklists.pfw
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
17 BOUNCE=policy-violation (Your server is blocked due to spam) |