Home

A site dedicated to Firewall management and Blacklist Techniques

An important note. This Daily Blacklist is going to be more useful to Network Administrators that mange servers that are not on large cloud services and is more geared toward companies smaller that Amazon Web Services, Google Cloud and Microsoft Azure.

Daily Blacklist is focused on making available the necessary information to setup a Firewall with Rocky Linux using iptables or firewalld and Bash. For Microsoft using the Windows Firewall with Advanced Security using Powershell.

In addition to this Daily Blacklist is providing at present a free RBL specifically for protecting servers hosting WordPress sites. This is more engineered towards Network Admins that are not on cloud based systems like AWS, Azure Cloud and Google Cloud services as many of these are sources of nefarious activities. The IP blocks (CIDR) on these lists you see have an IP address that has tried to login to WordPress sites multiple times within the last six months. We rotate out the IP at present in six month intervals for this RBL if the following condition: There has not been any login activity or attempts to access POP3, IMAP or any login page via HTTP, HTTPS or FTP the IP CIDR gets dropped after six months.
We have noticed an improvement to our SEO on Google, DuckDuckGo and Bing once this actually started working in a dynamic way.

The backend software that builds the RBL’s is built using Python and Bash. In addition to providing the free RBL for http we are woring on specific RBLs for SSH and POP3/IMAP/SMTP. After having managed servers for over 15 years on the Internet backbone it became clear that many of the same IP Blocks trying to comprise the webservers are also trying to comprimse FTP as well as Email servers. In the coming days we will have a new RBL for those that we identify trying to hit all three and making that information available for free.