Tue Dec 3 16:22:22 2024
EVENTS
 FREE
SOFTWARE
INSTITUTE

POLITICS
JOBS
MEMBERS'
CORNER

MAILING
LIST

NYLXS Mailing Lists and Archives
NYLXS Members have a lot to say and share but we don't keep many secrets. Join the Hangout Mailing List and say your peice.

DATE 2021-08-01

HANGOUT

2024-12-03 | 2024-11-03 | 2024-10-03 | 2024-09-03 | 2024-08-03 | 2024-07-03 | 2024-06-03 | 2024-05-03 | 2024-04-03 | 2024-03-03 | 2024-02-03 | 2024-01-03 | 2023-12-03 | 2023-11-03 | 2023-10-03 | 2023-09-03 | 2023-08-03 | 2023-07-03 | 2023-06-03 | 2023-05-03 | 2023-04-03 | 2023-03-03 | 2023-02-03 | 2023-01-03 | 2022-12-03 | 2022-11-03 | 2022-10-03 | 2022-09-03 | 2022-08-03 | 2022-07-03 | 2022-06-03 | 2022-05-03 | 2022-04-03 | 2022-03-03 | 2022-02-03 | 2022-01-03 | 2021-12-03 | 2021-11-03 | 2021-10-03 | 2021-09-03 | 2021-08-03 | 2021-07-03 | 2021-06-03 | 2021-05-03 | 2021-04-03 | 2021-03-03 | 2021-02-03 | 2021-01-03 | 2020-12-03 | 2020-11-03 | 2020-10-03 | 2020-09-03 | 2020-08-03 | 2020-07-03 | 2020-06-03 | 2020-05-03 | 2020-04-03 | 2020-03-03 | 2020-02-03 | 2020-01-03 | 2019-12-03 | 2019-11-03 | 2019-10-03 | 2019-09-03 | 2019-08-03 | 2019-07-03 | 2019-06-03 | 2019-05-03 | 2019-04-03 | 2019-03-03 | 2019-02-03 | 2019-01-03 | 2018-12-03 | 2018-11-03 | 2018-10-03 | 2018-09-03 | 2018-08-03 | 2018-07-03 | 2018-06-03 | 2018-05-03 | 2018-04-03 | 2018-03-03 | 2018-02-03 | 2018-01-03 | 2017-12-03 | 2017-11-03 | 2017-10-03 | 2017-09-03 | 2017-08-03 | 2017-07-03 | 2017-06-03 | 2017-05-03 | 2017-04-03 | 2017-03-03 | 2017-02-03 | 2017-01-03 | 2016-12-03 | 2016-11-03 | 2016-10-03 | 2016-09-03 | 2016-08-03 | 2016-07-03 | 2016-06-03 | 2016-05-03 | 2016-04-03 | 2016-03-03 | 2016-02-03 | 2016-01-03 | 2015-12-03 | 2015-11-03 | 2015-10-03 | 2015-09-03 | 2015-08-03 | 2015-07-03 | 2015-06-03 | 2015-05-03 | 2015-04-03 | 2015-03-03 | 2015-02-03 | 2015-01-03 | 2014-12-03 | 2014-11-03 | 2014-10-03 | 2014-09-03 | 2014-08-03 | 2014-07-03 | 2014-06-03 | 2014-05-03 | 2014-04-03 | 2014-03-03 | 2014-02-03 | 2014-01-03 | 2013-12-03 | 2013-11-03 | 2013-10-03 | 2013-09-03 | 2013-08-03 | 2013-07-03 | 2013-06-03 | 2013-05-03 | 2013-04-03 | 2013-03-03 | 2013-02-03 | 2013-01-03 | 2012-12-03 | 2012-11-03 | 2012-10-03 | 2012-09-03 | 2012-08-03 | 2012-07-03 | 2012-06-03 | 2012-05-03 | 2012-04-03 | 2012-03-03 | 2012-02-03 | 2012-01-03 | 2011-12-03 | 2011-11-03 | 2011-10-03 | 2011-09-03 | 2011-08-03 | 2011-07-03 | 2011-06-03 | 2011-05-03 | 2011-04-03 | 2011-03-03 | 2011-02-03 | 2011-01-03 | 2010-12-03 | 2010-11-03 | 2010-10-03 | 2010-09-03 | 2010-08-03 | 2010-07-03 | 2010-06-03 | 2010-05-03 | 2010-04-03 | 2010-03-03 | 2010-02-03 | 2010-01-03 | 2009-12-03 | 2009-11-03 | 2009-10-03 | 2009-09-03 | 2009-08-03 | 2009-07-03 | 2009-06-03 | 2009-05-03 | 2009-04-03 | 2009-03-03 | 2009-02-03 | 2009-01-03 | 2008-12-03 | 2008-11-03 | 2008-10-03 | 2008-09-03 | 2008-08-03 | 2008-07-03 | 2008-06-03 | 2008-05-03 | 2008-04-03 | 2008-03-03 | 2008-02-03 | 2008-01-03 | 2007-12-03 | 2007-11-03 | 2007-10-03 | 2007-09-03 | 2007-08-03 | 2007-07-03 | 2007-06-03 | 2007-05-03 | 2007-04-03 | 2007-03-03 | 2007-02-03 | 2007-01-03 | 2006-12-03 | 2006-11-03 | 2006-10-03 | 2006-09-03 | 2006-08-03 | 2006-07-03 | 2006-06-03 | 2006-05-03 | 2006-04-03 | 2006-03-03 | 2006-02-03 | 2006-01-03 | 2005-12-03 | 2005-11-03 | 2005-10-03 | 2005-09-03 | 2005-08-03 | 2005-07-03 | 2005-06-03 | 2005-05-03 | 2005-04-03 | 2005-03-03 | 2005-02-03 | 2005-01-03 | 2004-12-03 | 2004-11-03 | 2004-10-03 | 2004-09-03 | 2004-08-03 | 2004-07-03 | 2004-06-03 | 2004-05-03 | 2004-04-03 | 2004-03-03 | 2004-02-03 | 2004-01-03 | 2003-12-03 | 2003-11-03 | 2003-10-03 | 2003-09-03 | 2003-08-03 | 2003-07-03 | 2003-06-03 | 2003-05-03 | 2003-04-03 | 2003-03-03 | 2003-02-03 | 2003-01-03 | 2002-12-03 | 2002-11-03 | 2002-10-03 | 2002-09-03 | 2002-08-03 | 2002-07-03 | 2002-06-03 | 2002-05-03 | 2002-04-03 | 2002-03-03 | 2002-02-03 | 2002-01-03 | 2001-12-03 | 2001-11-03 | 2001-10-03 | 2001-09-03 | 2001-08-03 | 2001-07-03 | 2001-06-03 | 2001-05-03 | 2001-04-03 | 2001-03-03 | 2001-02-03 | 2001-01-03 | 2000-12-03 | 2000-11-03 | 2000-10-03 | 2000-09-03 | 2000-08-03 | 2000-07-03 | 2000-06-03 | 2000-05-03 | 2000-04-03 | 2000-03-03 | 2000-02-03 | 2000-01-03 | 1999-12-03

Key: Value:

Key: Value:

MESSAGE
DATE 2021-08-21
FROM Rick Moen
SUBJECT Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
Quoting Ruben Safir (ruben-at-mrbrklyn.com):

> On Fri, Aug 20, 2021 at 04:42:05AM +0000, Qontinuum wrote:
> > On Thu, Aug 19, 2021 at 10:42:42PM -0400, Ruben Safir wrote:
> > > anyone know a solution to this that works
> > >
> > > /sbin/iptables -I INPUT -p udp --dport 53 -m string –hex-string
> > > '|03|www|08|pizzaseo|03|com|' –algo bm -j DROP
> > > iptables v1.8.7 (legacy): unknown option "--dport"
> > > Try `iptables -h' or 'iptables --help' for more information.
> > >
> > > No docs I read dislike -dport or --dport
> > >
> > > the objective here is to drop remote inquiries for pizzaseo.com which
> > > seems to be an attach
> >
> > The solution is to use the iptables-legacy binary instead of the iptables one.
> >
> > I would like to encourage you to use nftables instead of iptables
> > which is deprecated for years now and you will gain benefit in
> > performance and ease of maintenance.
> >
>
> It does the same thing with legacy. I tried that before posting.
>
> nft doesn't have a string matching capacity.
>
>
> > Also, since it is an input rule I guess that you are hosting a DNS on
> > this machine. Isn't your DNS capable of using Response Policy Zones or
> > even rules hard-coded in your configuration?
>
> That would be ideal. I am using bind9 and I have in the config
>
> options {
> directory "/usr/local/namedb/";
> version "BMT - Brighton Line";
> pid-file "/run/named.pid";
> allow-query { any; };
> allow-recursion {"localnets";};
> // ban everyone by default
> allow-transfer {"none";};
> };
>
> I thought that left recursions to only my local network and would block
> foriegn external inquiries. Evidently it doesn't stop this exploit.

Being not clear on what "exploit" you're trying to block, I'll note that
I have:

options {
[snip]
version "Shirley, you're joking";
hostname "ns1.linuxmafia.com";
[snip]

allow-recursion {
127.0.0.0/8;
192.168.0.0/24;
10.0.0.0/8;
96.95.217.102/32;
96.95.217.96/29;
};
allow-query {
127.0.0.0/8;
192.168.0.0/24;
10.0.0.0/8;
96.95.217.102/32;
96.95.217.96/29;
};
[snip]
//For Rick Moen
zone "linuxmafia.com" {
type master;
file "/etc/bind/linuxmafia.com.zone";
allow-query { any; };
allow-transfer {
//Drew Bertola or ,
//[redacted tel. #]
//ns6.linuxmafia.com aka ns1.thecoop.net is:
209.205.200.166;
//Aaron T. Porter , [redacted tel. #]
//http://www.lbl.gov/cgi-bin/ds/ds.cgi?include=n&peopleName=atporter
//ns.primate.net is:
198.144.194.12;
//Aaron T. Porter , [redacted tel. #]
//http://www.lbl.gov/cgi-bin/ds/ds.cgi?include=n&peopleName=atporter
//ns.tx.primate.net is:
72.249.38.88;
//David Wolfskill , [redacted tel. #]
//ns3.linuxmafia.com aka ns.catwhisker.org is:
107.204.234.170;
[...]


Please note allow-query and allow-recursion ACLs. I'm really not
sure where you wish to block _all_ queries, and where you wish to
block _recursive_ queries. Above meets my use-case's needs,

Full prototype /etc/bind files (in Debian/Devuan garb) can be found at
http://linuxmafia.com/pub/linux/network/bind9-examples-linuxmafia.tar.gz
, in case you want to see a complete working example.

For a more-thorough and professional set of BIND9 prototyping
suggestions, please see the Zytrax book "DNS for Rocket Scientists",
http://zytrax.com/books/dns/ .

--
Cheers, Grammarian's bar joke #26: A gerund and an
Rick Moen infinitive walk into a bar, drinking to forget.
rick-at-linuxmafia.com
McQ! (4x80)
--
artix-general mailing list
artix-general-at-artixlinux.org
https://lists.artixlinux.org/listinfo/artix-general
_______________________________________________
Hangout mailing list
Hangout-at-nylxs.com
http://lists.mrbrklyn.com/mailman/listinfo/hangout

  1. 2021-08-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Wykoof like
  2. 2021-08-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Chaim Deutsch
  3. 2021-08-02 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #523 - How to improve your Perl?
  4. 2021-08-07 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout - NYLXS] New Tee Shirts
  5. 2021-08-08 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] pgadmin4
  6. 2021-08-08 Axel Braun <axel.braun-at-gmx.de> Re: [Hangout - NYLXS] [Health] pgadmin4
  7. 2021-08-08 From: "Schanzenbach, Martin" <mschanzenbach-at-posteo.de> Subject: [Hangout - NYLXS] GNUnet 0.15.0 released
  8. 2021-08-09 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #524 - Object::Pad
  9. 2021-08-11 IEEE Engineering in Medicine and Biology Society <noreply-at-embs.org> Subject: [Hangout - NYLXS] IEEE EMBS Public Forum on Healthcare Tech
  10. 2021-08-16 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #525 - Vacation time?
  11. 2021-08-17 NYOUG <execdir-at-nyoug.org> Subject: [Hangout - NYLXS] Upcoming Events for Oracle Professionals
  12. 2021-08-19 IEEE Engineering in Medicine and Biology Society <noreply-at-embs.org> Subject: [Hangout - NYLXS] IEEE EMBS Public Forum on Healthcare Tech
  13. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  14. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  15. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  16. 2021-08-20 Jeff Pohlmeyer <yetanothergeek-at-gmail.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  17. 2021-08-20 Jeff Pohlmeyer <yetanothergeek-at-gmail.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  18. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  19. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  20. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  21. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  22. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  23. 2021-08-19 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  24. 2021-08-10 Dudemanguy <dudemanguy-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non
  25. 2021-08-09 Javier <je-vv-at-e.email> Re: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non
  26. 2021-08-09 Dudemanguy <dudemanguy-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non
  27. 2021-08-09 Javier <je-vv-at-e.email> Subject: [Hangout - NYLXS] [artix-general] [s6] starting oneshots as non root
  28. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  29. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  30. 2021-08-20 Qontinuum <qontinuum-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  31. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  32. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] [artix-general] mirror dns issues with orion
  33. 2021-08-20 winfried szukalski <szukw000-at-arcor.de> Subject: [Hangout - NYLXS] [png-mng-implement] Reading single MNG image
  34. 2021-08-19 IEEE Engineering in Medicine and Biology Society <noreply-at-embs.org> Subject: [Hangout - NYLXS] IEEE EMBS Public Forum on Healthcare Tech
  35. 2021-08-20 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  36. 2021-08-20 From: "Donald Robertson, III, FSF" <info-at-fsf.org> Subject: [Hangout - NYLXS] Meeting every Friday: Help us update the Free
  37. 2021-08-21 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
  38. 2021-08-21 Javier <je-vv-at-e.email> Subject: [Hangout - NYLXS] [artix-general] [thunderbird-artix] TB calendar
  39. 2021-08-23 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #526 - Politics in Programming?
  40. 2021-08-22 artist <artist-at-artixlinux.org> Re: [Hangout - NYLXS] [artix-general] [thunderbird-artix] TB
  41. 2021-08-23 mayer ilovitz <pmamayeri-at-gmail.com> Subject: [Hangout - NYLXS] JP 8/20/21: Yes,
  42. 2021-08-23 G?bor Szab? <gabor-at-szabgab.com> Subject: [Hangout - NYLXS] [Perlweekly] #526 - Politics in Programming?
  43. 2021-08-23 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] genes Genes Jeans
  44. 2021-08-24 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] [artix-general] squashed initramfs.img
  45. 2021-08-24 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Actually - it is a bug with xfs root file systems
  46. 2021-08-25 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout - NYLXS] [artix-general] Actually - it is a bug with
  47. 2021-08-26 From: "Pat Schloss" <pschloss-at-umich.edu> Subject: [Hangout - NYLXS] [mothur] mothur v.1.46.0 release and other
  48. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  49. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  50. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  51. 2021-08-28 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  52. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  53. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  54. 2021-08-27 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  55. 2021-08-27 Kevin Cole <dc.loco-at-gmail.com> Subject: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  56. 2021-08-30 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Future of Fashion - today..
  57. 2021-08-30 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Really we are reaching the end of humanity...
  58. 2021-08-30 Lee Shallis <gb2985-at-gmail.com> Subject: [Hangout - NYLXS] [png-mng-implement] Own implementation
  59. 2021-08-29 Luis Falcon <falcon-at-gnuhealth.org> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  60. 2021-08-28 Kevin Cole <dc.loco-at-gmail.com> Re: [Hangout - NYLXS] [Health] My GNU Health merely crashes...
  61. 2021-08-31 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout - NYLXS] Fwd: Control your computer with code,
  62. 2021-08-30 From: "Free Software Foundation" <info-at-fsf.org> Subject: [Hangout - NYLXS] FSF copyright handling: A basis for distribution,
  63. 2021-08-25 David Booth <david-at-dbooth.org> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  64. 2021-08-25 Jacques Deguest <jack-at-deguest.jp> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  65. 2021-08-25 James Smith <js5-at-sanger.ac.uk> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  66. 2021-08-25 Brad Van Sickle <bvs7085-at-gmail.com> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  67. 2021-08-24 David Booth <david-at-dbooth.org> Subject: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  68. 2021-08-10 From: "Tammer, Rainer" <Rainer.Tammer-at-schulergroup.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  69. 2021-08-11 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  70. 2021-08-10 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  71. 2021-08-28 Alexandre Prokoudine via gimp-user-list <gimp-user-list-at-gnome.org> Re: [Hangout - NYLXS] [Gimp-user] screen interface too small to use
  72. 2021-08-28 Kerry Jones via gimp-user-list <gimp-user-list-at-gnome.org> Subject: [Hangout - NYLXS] [Gimp-user] screen interface too small to use
  73. 2021-08-25 Liam R E Quin <liam-at-holoweb.net> Re: [Hangout - NYLXS] [Gimp-user] language
  74. 2021-08-25 Fons de Wit <fons.de.wit-at-orange.fr> Subject: [Hangout - NYLXS] [Gimp-user] language
  75. 2021-08-25 James Smith <js5-at-sanger.ac.uk> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  76. 2021-08-25 David Booth <david-at-dbooth.org> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads? [EXT]
  77. 2021-08-25 Jacques Deguest <jack-at-deguest.jp> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  78. 2021-08-25 Brad Van Sickle <bvs7085-at-gmail.com> Re: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  79. 2021-08-24 David Booth <david-at-dbooth.org> Subject: [Hangout - NYLXS] Sharing read/WRITE data between threads?
  80. 2021-08-10 From: "Tammer, Rainer" <Rainer.Tammer-at-schulergroup.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  81. 2021-08-11 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX
  82. 2021-08-10 Steve Hay <steve.m.hay-at-googlemail.com> Re: [Hangout - NYLXS] Problem compiling mod_perl on AIX

NYLXS are Do'ers and the first step of Doing is Joining! Join NYLXS and make a difference in your community today!