[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

SORBS and TOR



Okay, I flummoxed the dnsbl .. forgot that you had to reverse the octets.

This is more like it ..

grep router cached-routers |grep -v signature |awk -F " " '{print $3}' |awk -F \. '{print "host "$4"."$3"."$2"."$1".dnsbl.sorbs.net"}' |sh

(yes, I know I probably could have done that easier with perl, just didn't want to think on it long)

Total queries : 892
573  NXDOMAIN
0    http.dnsbl.sorbs.net
0    socks.dnsbl.sorbs.net
0    misc.dnsbl.sorbs.net
0    smtp.dnsbl.sorbs.net
4    *.spam.dnsbl.sorbs.net
68   web.dnsbl.sorbs.net
0    block.dnsbl.sorbs.net
0    zombie.dnsbl.sorbs.net
247  dul.dnsbl.sorbs.net
0    badconf.rhsbl.sorbs.net
0    nomail.rhsbl.sorbs.net

(so yes, they still block most because they're in dynamic address ranges, but they block a bunch as web proxies too).

I didn't test as to which ones were exits or not, so I assume most of the middlemen didn't get listed.

Sorry about the earlier screw-up. Mea culpa.

Michael Holstein CISSP GCIA
Cleveland State University