rosa-luxemburgstiftung-berlin / ansible-role-unbound Goto Github PK
View Code? Open in Web Editor NEWInstall [unbound](https://github.com/NLnetLabs/unbound) on debian based systems incl. dnsbl
License: GNU General Public License v3.0
Install [unbound](https://github.com/NLnetLabs/unbound) on debian based systems incl. dnsbl
License: GNU General Public License v3.0
Implement a option for overrides for the dnsbl in form of one or more allow - lists.
see https://unbound.docs.nlnetlabs.nl/en/latest/manpages/unbound.conf.html
instead of using 2 lines per domain using the redirect zone type
local-zone: "gremlin.ur" redirect
local-data: "gremlin.ur A 0.0.0.0"
we can shorten this to one line using always_null zone type
local-zone: "gremlin.ur" always_null
would be nice if unbound-dnsbl-updater.py
logs some stats per list:
lines, domains found, dupes etc.
... in order to minimize changes
pr #31 ...
TASK [rls.unbound : run /etc/unbound/unbound-dnsbl-updater.py] *****************
226
fatal: [debianbullseye]: FAILED! => {"changed": true, "cmd": ["/etc/unbound/unbound-dnsbl-updater.py", "-s", "-l", "INFO"], "delta": "0:01:10.077358", "end": "2023-07-12 03:48:06.919751", "msg": "non-zero return code", "rc": 1, "start": "2023-07-12 03:46:56.842393", "stderr": "", "stderr_lines": [], "stdout": "WARNING\t[root] validatednsbl: unbound-checkconf /tmp/unbound-dnsblldl7ov04 : ecode 1 \"b'[1689133620] unbound-checkconf[3171:0] error: cannot parse name .co.uk\\n[1689133620] unbound-checkconf[3171:0] error: bad zone name .co.uk always_null\\n[1689133620] unbound-checkconf[3171:0] fatal error: failed local-zone, local-data configuration\\n'\"\nWARNING\t[root] main: validation of /tmp/unbound-dnsblldl7ov04 failed with 1\nWARNING\t[root] main: b'[1689133620] unbound-checkconf[3171:0] error: cannot parse name .co.uk\\n[1689133620] unbound-checkconf[3171:0] error: bad zone name .co.uk always_null\\n[1689133620] unbound-checkconf[3171:0] fatal error: failed local-zone, local-data configuration\\n'", "stdout_lines": ["WARNING\t[root] validatednsbl: unbound-checkconf /tmp/unbound-dnsblldl7ov04 : ecode 1 \"b'[1689133620] unbound-checkconf[3171:0] error: cannot parse name .co.uk\\n[1689133620] unbound-checkconf[3171:0] error: bad zone name .co.uk always_null\\n[1689133620] unbound-checkconf[3171:0] fatal error: failed local-zone, local-data configuration\\n'\"", "WARNING\t[root] main: validation of /tmp/unbound-dnsblldl7ov04 failed with 1", "WARNING\t[root] main: b'[1689133620] unbound-checkconf[3171:0] error: cannot parse name .co.uk\\n[1689133620] unbound-checkconf[3171:0] error: bad zone name .co.uk always_null\\n[1689133620] unbound-checkconf[3171:0] fatal error: failed local-zone, local-data configuration\\n'"]}
error:
main: failed to fetched https://raw.githubusercontent.com/sjhgvr/oisd/main/dbl_full.txt : http code: 404
new possible list to use:
undbound_config server var values not defined as string are ignored and not used in the config
+cache-max-negative-ttl: "60" # works as expected, resulting in 'cache-max-negative-ttl: 60'
-cache-max-negative-ttl: 60 # will be ignored
document playbook better
seems that esp. huge lists like
https://blocklistproject.github.io/Lists/alt-version/ads-nl.txt
https://blocklistproject.github.io/Lists/alt-version/abuse-nl.txt
https://blocklistproject.github.io/Lists/alt-version/fraud-nl.txt
slow unbound-dnsbl-updater.py
down
https://big.oisd.nl/domainswild
optionally remove the wildcard *.
at the start of domains
Error connecting: Error while fetching server API version: Not supported URL scheme http+docker
warning: duplicate local-zone ....
avoid unnecessary reload/restarts, as these can be quite time consuming if the dnsbl file is large
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.