Wed Dec 11 19:37:39 2024
EVENTS
 FREE
SOFTWARE
INSTITUTE

POLITICS
JOBS
MEMBERS'
CORNER

MAILING
LIST

NYLXS Mailing Lists and Archives
NYLXS Members have a lot to say and share but we don't keep many secrets. Join the Hangout Mailing List and say your peice.

DATE 2021-08-01

HANGOUT

2024-12-11 | 2024-11-11 | 2024-10-11 | 2024-09-11 | 2024-08-11 | 2024-07-11 | 2024-06-11 | 2024-05-11 | 2024-04-11 | 2024-03-11 | 2024-02-11 | 2024-01-11 | 2023-12-11 | 2023-11-11 | 2023-10-11 | 2023-09-11 | 2023-08-11 | 2023-07-11 | 2023-06-11 | 2023-05-11 | 2023-04-11 | 2023-03-11 | 2023-02-11 | 2023-01-11 | 2022-12-11 | 2022-11-11 | 2022-10-11 | 2022-09-11 | 2022-08-11 | 2022-07-11 | 2022-06-11 | 2022-05-11 | 2022-04-11 | 2022-03-11 | 2022-02-11 | 2022-01-11 | 2021-12-11 | 2021-11-11 | 2021-10-11 | 2021-09-11 | 2021-08-11 | 2021-07-11 | 2021-06-11 | 2021-05-11 | 2021-04-11 | 2021-03-11 | 2021-02-11 | 2021-01-11 | 2020-12-11 | 2020-11-11 | 2020-10-11 | 2020-09-11 | 2020-08-11 | 2020-07-11 | 2020-06-11 | 2020-05-11 | 2020-04-11 | 2020-03-11 | 2020-02-11 | 2020-01-11 | 2019-12-11 | 2019-11-11 | 2019-10-11 | 2019-09-11 | 2019-08-11 | 2019-07-11 | 2019-06-11 | 2019-05-11 | 2019-04-11 | 2019-03-11 | 2019-02-11 | 2019-01-11 | 2018-12-11 | 2018-11-11 | 2018-10-11 | 2018-09-11 | 2018-08-11 | 2018-07-11 | 2018-06-11 | 2018-05-11 | 2018-04-11 | 2018-03-11 | 2018-02-11 | 2018-01-11 | 2017-12-11 | 2017-11-11 | 2017-10-11 | 2017-09-11 | 2017-08-11 | 2017-07-11 | 2017-06-11 | 2017-05-11 | 2017-04-11 | 2017-03-11 | 2017-02-11 | 2017-01-11 | 2016-12-11 | 2016-11-11 | 2016-10-11 | 2016-09-11 | 2016-08-11 | 2016-07-11 | 2016-06-11 | 2016-05-11 | 2016-04-11 | 2016-03-11 | 2016-02-11 | 2016-01-11 | 2015-12-11 | 2015-11-11 | 2015-10-11 | 2015-09-11 | 2015-08-11 | 2015-07-11 | 2015-06-11 | 2015-05-11 | 2015-04-11 | 2015-03-11 | 2015-02-11 | 2015-01-11 | 2014-12-11 | 2014-11-11 | 2014-10-11 | 2014-09-11 | 2014-08-11 | 2014-07-11 | 2014-06-11 | 2014-05-11 | 2014-04-11 | 2014-03-11 | 2014-02-11 | 2014-01-11 | 2013-12-11 | 2013-11-11 | 2013-10-11 | 2013-09-11 | 2013-08-11 | 2013-07-11 | 2013-06-11 | 2013-05-11 | 2013-04-11 | 2013-03-11 | 2013-02-11 | 2013-01-11 | 2012-12-11 | 2012-11-11 | 2012-10-11 | 2012-09-11 | 2012-08-11 | 2012-07-11 | 2012-06-11 | 2012-05-11 | 2012-04-11 | 2012-03-11 | 2012-02-11 | 2012-01-11 | 2011-12-11 | 2011-11-11 | 2011-10-11 | 2011-09-11 | 2011-08-11 | 2011-07-11 | 2011-06-11 | 2011-05-11 | 2011-04-11 | 2011-03-11 | 2011-02-11 | 2011-01-11 | 2010-12-11 | 2010-11-11 | 2010-10-11 | 2010-09-11 | 2010-08-11 | 2010-07-11 | 2010-06-11 | 2010-05-11 | 2010-04-11 | 2010-03-11 | 2010-02-11 | 2010-01-11 | 2009-12-11 | 2009-11-11 | 2009-10-11 | 2009-09-11 | 2009-08-11 | 2009-07-11 | 2009-06-11 | 2009-05-11 | 2009-04-11 | 2009-03-11 | 2009-02-11 | 2009-01-11 | 2008-12-11 | 2008-11-11 | 2008-10-11 | 2008-09-11 | 2008-08-11 | 2008-07-11 | 2008-06-11 | 2008-05-11 | 2008-04-11 | 2008-03-11 | 2008-02-11 | 2008-01-11 | 2007-12-11 | 2007-11-11 | 2007-10-11 | 2007-09-11 | 2007-08-11 | 2007-07-11 | 2007-06-11 | 2007-05-11 | 2007-04-11 | 2007-03-11 | 2007-02-11 | 2007-01-11 | 2006-12-11 | 2006-11-11 | 2006-10-11 | 2006-09-11 | 2006-08-11 | 2006-07-11 | 2006-06-11 | 2006-05-11 | 2006-04-11 | 2006-03-11 | 2006-02-11 | 2006-01-11 | 2005-12-11 | 2005-11-11 | 2005-10-11 | 2005-09-11 | 2005-08-11 | 2005-07-11 | 2005-06-11 | 2005-05-11 | 2005-04-11 | 2005-03-11 | 2005-02-11 | 2005-01-11 | 2004-12-11 | 2004-11-11 | 2004-10-11 | 2004-09-11 | 2004-08-11 | 2004-07-11 | 2004-06-11 | 2004-05-11 | 2004-04-11 | 2004-03-11 | 2004-02-11 | 2004-01-11 | 2003-12-11 | 2003-11-11 | 2003-10-11 | 2003-09-11 | 2003-08-11 | 2003-07-11 | 2003-06-11 | 2003-05-11 | 2003-04-11 | 2003-03-11 | 2003-02-11 | 2003-01-11 | 2002-12-11 | 2002-11-11 | 2002-10-11 | 2002-09-11 | 2002-08-11 | 2002-07-11 | 2002-06-11 | 2002-05-11 | 2002-04-11 | 2002-03-11 | 2002-02-11 | 2002-01-11 | 2001-12-11 | 2001-11-11 | 2001-10-11 | 2001-09-11 | 2001-08-11 | 2001-07-11 | 2001-06-11 | 2001-05-11 | 2001-04-11 | 2001-03-11 | 2001-02-11 | 2001-01-11 | 2000-12-11 | 2000-11-11 | 2000-10-11 | 2000-09-11 | 2000-08-11 | 2000-07-11 | 2000-06-11 | 2000-05-11 | 2000-04-11 | 2000-03-11 | 2000-02-11 | 2000-01-11 | 1999-12-11

Key: Value:

Key: Value:

MESSAGE
DATE 2021-08-20
FROM Ruben Safir
SUBJECT Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
On Fri, Aug 20, 2021 at 04:42:05AM +0000, Qontinuum wrote:
> On Thu, Aug 19, 2021 at 10:42:42PM -0400, Ruben Safir wrote:
> > anyone know a solution to this that works
> >
> > /sbin/iptables -I INPUT -p udp --dport 53 -m string –hex-string
> > '|03|www|08|pizzaseo|03|com|' –algo bm -j DROP
> > iptables v1.8.7 (legacy): unknown option "--dport"
> > Try `iptables -h' or 'iptables --help' for more information.
> >
> > No docs I read dislike -dport or --dport
> >
> > the objective here is to drop remote inquiries for pizzaseo.com which
> > seems to be an attach
>
> The solution is to use the iptables-legacy binary instead of the iptables one.
>
> I would like to encourage you to use nftables instead of iptables
> which is deprecated for years now and you will gain benefit in
> performance and ease of maintenance.
>

It does the same thing with legacy. I tried that before posting.

nft doesn't have a string matching capacity.


> Also, since it is an input rule I guess that you are hosting a DNS on
> this machine. Isn't your DNS capable of using Response Policy Zones or
> even rules hard-coded in your configuration?

That would be ideal. I am using bind9 and I have in the config

options {
directory "/usr/local/namedb/";
version "BMT - Brighton Line";
pid-file "/run/named.pid";
allow-query { any; };
allow-recursion {"localnets";};
// ban everyone by default
allow-transfer {"none";};
};

I thought that left recursions to only my local network and would block
foriegn external inquiries. Evidently it doesn't stop this exploit.

> --
> qontinuum



> --
> artix-general mailing list
> artix-general-at-artixlinux.org
> https://lists.artixlinux.org/listinfo/artix-general


--
So many immigrant groups have swept through our town
that Brooklyn, like Atlantis, reaches mythological
proportions in the mind of the world - RI Safir 1998
http://www.mrbrklyn.com

DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002
http://www.nylxs.com - Leadership Development in Free Software
http://www2.mrbrklyn.com/resources - Unpublished Archive
http://www.coinhangout.com - coins!
http://www.brooklyn-living.com

Being so tracked is for FARM ANIMALS and extermination camps,
but incompatible with living as a free human being. -RI Safir 2013

--
artix-general mailing list
artix-general-at-artixlinux.org
https://lists.artixlinux.org/listinfo/artix-general
_______________________________________________
Hangout mailing list
Hangout-at-nylxs.com
http://lists.mrbrklyn.com/mailman/listinfo/hangout

  1. 2021-08-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Wykoof like
  2. 2021-08-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Chaim Deutsch
  3. 2021-08-02 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #523 - How to improve your Perl?
  4. 2021-08-07 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout - NYLXS] New Tee Shirts
  5. 2021-08-08 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] pgadmin4
  6. 2021-08-08 Axel Braun <axel.braun-at-gmx.de> Re: [Hangout - NYLXS] [Health] pgadmin4
  7. 2021-08-08 From: "Schanzenbach, Martin" <mschanzenbach-at-posteo.de> Subject: [Hangout - NYLXS] GNUnet 0.15.0 released
  8. 2021-08-09 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #524 - Object::Pad
  9. 2021-08-11 IEEE Engineering in Medicine and Biology Society <noreply-at-embs.org> Subject: [Hangout - NYLXS] IEEE EMBS Public Forum on Healthcare Tech
  10. 2021-08-16 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #525 - Vacation time?
  11. 2021-08-17 NYOUG <execdir-at-nyoug.org> Subject: [Hangout - NYLXS] Upcoming Events for Oracle Professionals
  12. 2021-08-19 IEEE Engineering in Medicine and Biology Society <noreply-at-embs.org> Subject: [Hangout - NYLXS] IEEE EMBS Public Forum on Healthcare Tech
  13. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  14. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  15. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  16. 2021-08-20 Jeff Pohlmeyer <yetanothergeek-at-gmail.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  17. 2021-08-20 Jeff Pohlmeyer <yetanothergeek-at-gmail.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  18. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  19. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  20. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  21. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  22. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  23. 2021-08-19 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  24. 2021-08-10 Dudemanguy <dudemanguy-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non
  25. 2021-08-09 Javier <je-vv-at-e.email> Re: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non
  26. 2021-08-09 Dudemanguy <dudemanguy-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non
  27. 2021-08-09 Javier <je-vv-at-e.email> Subject: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non root
  28. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  29. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  30. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  31. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  32. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] [artix-general] mirror dns issues with orion
  33. 2021-08-20 winfried szukalski <szukw000-at-arcor.de> Subject: [Hangout - NYLXS] [png-mng-implement] Reading single MNG image
  34. 2021-08-19 IEEE Engineering in Medicine and Biology Society <noreply-at-embs.org> Subject: [Hangout - NYLXS] IEEE EMBS Public Forum on Healthcare Tech
  35. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  36. 2021-08-20 From: "Donald Robertson, III, FSF" <info-at-fsf.org> Subject: [Hangout - NYLXS] Meeting every Friday: Help us update the Free
  37. 2021-08-21 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  38. 2021-08-21 Javier <je-vv-at-e.email> Subject: [Hangout - NYLXS] [artix-general] [thunderbird-artix] TB calendar
  39. 2021-08-23 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #526 - Politics in Programming?
  40. 2021-08-22 artist <artist-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] [thunderbird-artix] TB
  41. 2021-08-23 mayer ilovitz <pmamayeri-at-gmail.com> Subject: [Hangout - NYLXS] JP 8/20/21: Yes,
  42. 2021-08-23 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #526 - Politics in Programming?
  43. 2021-08-23 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] genes Genes Jeans
  44. 2021-08-24 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] [artix-general] squashed initramfs.img
  45. 2021-08-24 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Actually - it is a bug with xfs root file systems
  46. 2021-08-25 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] Actually - it is a bug with
  47. 2021-08-26 From: "Pat Schloss" <pschloss-at-umich.edu> Subject: [Hangout - NYLXS] [mothur] mothur v.1.46.0 release and other
  48. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  49. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  50. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  51. 2021-08-28 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  52. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  53. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  54. 2021-08-27 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  55. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  56. 2021-08-30 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Future of Fashion - today..
  57. 2021-08-30 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Really we are reaching the end of humanity...
  58. 2021-08-30 Lee Shallis <gb2985-at-gmail.com> Subject: [Hangout - NYLXS] [png-mng-implement] Own implementation
  59. 2021-08-29 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  60. 2021-08-28 Kevin Cole <dc.loco-at-gmail.com> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  61. 2021-08-31 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Fwd: Control your computer with code,
  62. 2021-08-30 From: "Free Software Foundation" <info-at-fsf.org> Subject: [Hangout - NYLXS] FSF copyright handling: A basis for distribution,
  63. 2021-08-25 David Booth <david-at-dbooth.org> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  64. 2021-08-25 Jacques Deguest <jack-at-deguest.jp> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  65. 2021-08-25 James Smith <js5-at-sanger.ac.uk> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  66. 2021-08-25 Brad Van Sickle <bvs7085-at-gmail.com> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  67. 2021-08-24 David Booth <david-at-dbooth.org> Subject: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  68. 2021-08-10 From: "Tammer, Rainer" <Rainer.Tammer-at-schulergroup.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  69. 2021-08-11 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  70. 2021-08-10 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  71. 2021-08-28 Alexandre Prokoudine via gimp-user-list <gimp-user-list-at-gnome.org> Re: [Hangout - NYLXS] [Gimp-user] screen interface too small to use
  72. 2021-08-28 Kerry Jones via gimp-user-list <gimp-user-list-at-gnome.org> Subject: [Hangout - NYLXS] [Gimp-user] screen interface too small to use
  73. 2021-08-25 Liam R E Quin <liam-at-holoweb.net> Re: [Hangout - NYLXS] [Gimp-user] language
  74. 2021-08-25 Fons de Wit <fons.de.wit-at-orange.fr> Subject: [Hangout - NYLXS] [Gimp-user] language
  75. 2021-08-25 James Smith <js5-at-sanger.ac.uk> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  76. 2021-08-25 David Booth <david-at-dbooth.org> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  77. 2021-08-25 Jacques Deguest <jack-at-deguest.jp> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  78. 2021-08-25 Brad Van Sickle <bvs7085-at-gmail.com> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  79. 2021-08-24 David Booth <david-at-dbooth.org> Subject: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  80. 2021-08-10 From: "Tammer, Rainer" <Rainer.Tammer-at-schulergroup.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  81. 2021-08-11 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  82. 2021-08-10 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX

NYLXS are Do'ers and the first step of Doing is Joining! Join NYLXS and make a difference in your community today!