- 25 Feb, 2022 1 commit
-
-
Stefan Schantl authored
Signed-off-by:
Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by:
Michael Tremer <michael.tremer@ipfire.org>
-
- 16 Feb, 2022 1 commit
-
-
Michael Tremer authored
Signed-off-by:
-
- 11 Feb, 2022 3 commits
-
-
Michael Tremer authored
This change allows to "restore" a file multiple times without problems. If the set already exists, the create command will skip it and we will flush any existing content to load the new one. Signed-off-by:
-
Peter Müller authored
Suggested-by:
Peter Müller <peter.mueller@ipfire.org> Reviewed-by:
-
Peter Müller authored
Reported-by:
-
- 02 Jan, 2022 4 commits
-
-
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
This isn't pretty but makes substitution rules easier and working correctly. Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by:
-
- 13 Dec, 2021 4 commits
-
-
Peter Müller authored
Apparently, LACNIC does not to proper input validation on supplied country codes, so people can use "UK", while they probably mean "GB" instead. Signed-off-by:
-
Peter Müller authored
This silences a bunch of warnings due to allocations at APNIC having country code set to "ZZ", which are completely irrelevant to us. Signed-off-by:
-
Peter Müller authored
This improves country code accurarcy for suballocations within IP space managed by LACNIC, as the delegated-extended-latest file only provides country code information at the top level of an allocated network. Sadly, lacnic.db.gz does not contain descriptions or names of Autonomous Systems within the space maintained by LACNIC. Signed-off-by:
-
Peter Müller authored
Previously, any present override for a given network or ASN would have caused the SQL statement not to conduct anything at all. Since "is_drop" is the only flag being actually set here, it makes sense to do so in case of already present overrides as well. The effect of this is limited: Our own override files are always considered at last, so in case of conflicts they will be the ultima ratio. This is an intended behaviour, but slipped my mind when I filed bug #12728, so this patch can only be seen as a partial solution - the rest is not a bug, but a feature. :-) Partially fixes: #12728 Signed-off-by:
-
- 23 Nov, 2021 3 commits
-
-
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
This reverts commit 2ca0603f. Signed-off-by:
-
- 20 Nov, 2021 4 commits
-
-
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
This does not seem to be necessary any more since the build works fine without the switch. Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by:
-
- 02 Nov, 2021 2 commits
-
-
Peter Müller authored
A while ago, it was discussed whether or not libloc should become an "opinionated database", i. e. including any information on a network's reputation. In general, this idea was dismissed as libloc is neither intended nor suitable for such tasks, and we do not want to make (political?) decisions like these for various reasons. All we do is to provide a useful location database in a neutral way, and leave it up to our users on how to react on certain results. However, there is a problematic area. Take AS55303 as an example: We _know_ this is to be a dirty network, tampering with RIR data and hijacking IP space, and strongly recommend against processing any connection originating from or directed to it. Since it appears to be loaded with proxies used by miscreants for abusive purposes, all we can do at the time of writing is to flag it as "anonymous proxy", but we lack possibility of telling our users something like "this is not a safe area". The very same goes for known bulletproof ISPs, IP hijackers, and so forth. This patch therefore suggests to populate the "is_drop" flag introduced in libloc 0.9.8 (albeit currently unused in production) with the contents of Spamhaus' DROP lists (https://www.spamhaus.org/drop/), to have at least the baddest of the bad covered. The very same lists are, in fact, included in popular IPS rulesets as well - a decent amount of IPFire users is therefore likely to have them already enabled, but in a very costly way. It is not planned to go further, partly because there is no other feed publicly available, which would come with the same intention, volatility, and FP rate. The third version of this patch makes use of an auxiliary function to sanitise ASNs, hence avoiding boilerplate code, and treats any line starting with a semicolon as a comment, which should be sufficient. Further, extracting ASNs from the ASN-DROP feed is done in a more clear way, avoiding code snippets hard to read. Signed-off-by:
-
Peter Müller authored
The third version of this patch does this in an even more Pythonic way. Signed-off-by:
-
- 25 Oct, 2021 1 commit
-
-
Peter Müller authored
This adds names for - at the time of writing - 421 ASNs which were missing before, as JPNIC does not mirror (all) information back to APNIC. Signed-off-by:
-
- 11 Oct, 2021 1 commit
-
-
Peter Müller authored
* Document "location version" feature. * Improve section for reporting bugs in order to make bug reporting easier. Fixes: #12698 Signed-off-by:
-
- 30 Sep, 2021 13 commits
-
-
Michael Tremer authored
Gramatically, this makes more sense. Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
According to ISO3166, they are only allowed for "private use". Signed-off-by: -
Michael Tremer authored
This allows for libloc to be better integrated into third-party software. If we would add extra flags, we would be able to extend it in libloc without touching any third-party software. Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
There is loc_network_has_flag which does exactly the same Signed-off-by: -
Michael Tremer authored
Signed-off-by: -
Michael Tremer authored
Signed-off-by:
-
- 23 Sep, 2021 1 commit
-
-
Valters Jansons authored
UNRELEASED should not be left as-is when actually releasing. The latest changelog entry now point at unstable instead. The simple d/genchangelog.sh now does `dch -r ''` automatically to ensure this distribution update doesn't get lost along the way on future invocations. Signed-off-by:
-
- 21 Sep, 2021 1 commit
-
-
Michael Tremer authored
Signed-off-by:
-
- 04 Sep, 2021 1 commit
-
-
Michael Tremer authored
There was a discrepancy between the paths in the build environment and the installed headers which could not be included in any third-party software. Signed-off-by:
-
