From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 29972 invoked from network); 31 Jan 2023 06:45:18 -0000 Received: from 9front.inri.net (168.235.81.73) by inbox.vuxu.org with ESMTPUTF8; 31 Jan 2023 06:45:18 -0000 Received: from maat.thinktankworkspaces.com ([45.79.94.76]) by 9front; Tue Jan 31 01:41:29 -0500 2023 Message-ID: <8D9D9A9B7E2B716DB457719182D5271D@thinktankworkspaces.com> To: 9front@9front.org Date: Mon, 30 Jan 2023 22:41:26 -0800 From: william@thinktankworkspaces.com In-Reply-To: <66272FA5-DDB8-4075-A8C1-ADC5C7BB1754@stanleylieber.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 8bit List-ID: <9front.9front.org> List-Help: X-Glyph: ➈ X-Bullshit: generic firewall hardware browser Subject: Re: [9front] dns tools Reply-To: 9front@9front.org Precedence: bulk ratfs seems to be working. I'm not getting the mail locally, but they still keep trying maat Jan 30 21:37:52 ehlo from 185.24.233.112 as ADMIN maat Jan 30 21:37:52 Hung up on 185.24.233.112; claimed to be ADMIN maat Jan 30 21:45:59 ehlo from 185.24.233.112 as ADMIN maat Jan 30 21:45:59 Hung up on 185.24.233.112; claimed to be ADMIN maat Jan 30 21:49:44 ehlo from 81.161.229.226 as WIN-CLJ1B0GQ6JP maat Jan 30 21:49:44 Hung up on 81.161.229.226; claimed to be WIN-CLJ1B0GQ6JP maat Jan 30 21:54:12 ehlo from 185.24.233.112 as ADMIN maat Jan 30 21:54:12 Hung up on 185.24.233.112; claimed to be ADMIN I could probably look into scanmail. I might also try blocking from linode, maybe look at some firewall features from the provider. Quoth Stanley Lieber : > On Jan 29, 2023, at 11:14 PM, william@thinktankworkspaces.com wrote: > > > > Do we have any firewall tools? I would like to block some connections. > > > > I know you can tweak routing by messing with /net/ipifc/clone > > > > Just wanted to know if we have any other ways to block conncetions? > > > > > > > > Quoth Stanley Lieber : > >> check out iwhois (documented in the tel man page). > >> > >> also: lookman dns. > >> > >> the existing tools are fairly manual and rudimentary. > >> > >> sl > > there’s no generic firewall, but upas has some filtering options. smtpd(8) reads the file /mail/blocked for blocked addresses, and has the -k flag to block ip addresses manually. the validatesender script (called by upas) checks for a spamhaus file at /mail/lib/spamhaus. there are also ratfs(4) and scanmail(8), which provide more complex filtering mechanisms. > > sl > > >