[Mod-security-developers] [JIRA] Resolved: (MODSEC-151) Enhanced @rbl support
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[Mod-security-developers] [JIRA] Resolved: (MODSEC-151) Enhanced @rbl support
|
From: Breno S. P. (JIRA) <no...@mo...> - 2011-03-31 19:56:14
|
[ https://www.modsecurity.org/tracker/browse/MODSEC-151?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Breno Silva Pinto resolved MODSEC-151.
--------------------------------------
Resolution: Fixed
I added return code checks for URIBL and SpamHaus. Also using capture keyword the match msg will be into tx.0
> Enhanced @rbl support
> ---------------------
>
> Key: MODSEC-151
> URL: https://www.modsecurity.org/tracker/browse/MODSEC-151
> Project: ModSecurity
> Issue Type: Improvement
> Security Level: Normal
> Components: Operators
> Reporter: Brian Rectanus
> Assignee: Breno Silva Pinto
> Fix For: 2.6.0
>
>
> Need to enhance @rbl so that we can check the values returned in the last octet. Maybe just place the value in RBL var? Or maybe make "capture" save it to TX.0?
> Problem is that we really need bitwise operators to check the values ;)
> For example:
> multi.uribl.com list contains all of the list data, and is the list that we recommend you query to produce your results instead of making seperate requests to each list. If a domain is found on multi, it will return a IP address of 127.0.0.X where X is the value for what list it is on. See the following reference..
> X Binary On List
> ------------------------------------------------------
> 2 00000010 black
> 4 00000100 grey
> 8 00001000 red
> 14 00001110 black,grey,red (for testpoints)
> 255 11111111 your DNS is blocked from querying URIBL
> ------------------------------------------------------
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://www.modsecurity.org/tracker/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
|
