Maxmind will require an account and license key to use GeoLite2 DBs
-
According to https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases/
"Starting December 30, 2019, we will be requiring users of our GeoLite2 databases to register for a MaxMind account and obtain a license key in order to download GeoLite2 databases."
How will this affect PfBlockerNG? Thanks.
-
I wonder if a ID/PW settings page similar to the Dynamic DNS settings will be required.Always helps to read the article...So a key like Snort?
-
@provels Looks likely that it will be required to implement code changes.
Another point of interest is this section "...complying with a valid request involves MaxMind removing IP addresses from the GeoLite2 data and communicating to GeoLite2 users that the IP addresses in question should (immediately) not be utilized for uses covered under the CCPA."
If I understand this correctly, we should expect that the lists will get more incomplete as MaxMind actions such IP removal requests? Country based geoblocking based on these lists might become like a Swiss cheese (full of holes).
-
https://twitter.com/BBcan177/status/1208805143535325184
-
So I have read the reddit posts, the Maxmind blog and I am still not able to find out (even on their website) where I can sign up for this type of account. Am I blind?
-
@BBcan177 mentioned they are still working on it.
-
Yeah they are suppose to have something up today (23rd) where you can create an account... But the ability to create an account and cut off time of only 7 days seems shameful..
-
https://www.maxmind.com/en/geolite2/signup
-
This doesn't seem to be geared for personal use ;)
"Please provide an email address using the domain name of your business. This will become your username. "
And non optional listings of your company name, and industry etc..
-
I would still pay the 25 a month for the download, or maybe it's one of those that don't realize that the largest attack surface for low hanging fruit is the private person.
And im really getting pissed at software companies not understanding that -
I don't see how they can block knowing what freaking country a freaking IP is in...
"The California Consumer Privacy Act (CCPA) mandates that businesses honor valid “Do Not Sell” requests from California residents. In this context, complying with a valid request involves MaxMind removing IP addresses from the GeoLite2 data and communicating to GeoLite2 users that the IP addresses in question should (immediately) not be utilized for uses covered under the CCPA."
Come ON!! your not saying this IP is billy, your saying this IP is freaking CA, or North America.. While I am all for privacy, etc. This is just a bit over the freaking top.. What about my privacy that I don't want IP from CA, or North America talking to me..
Most times the IP isn't owned by "user in ca" Its actually owned by the ISP, that might not even be HQ'd in CA, etc..
This just looks to be something else they can monetize.. F'ing hell...
-
I think maxmind owes the opensource community a public explanation as to why private non commercial users can no longer use this database.
We already have to hodgepodge a domain together, no readily affordable off the shelf server solution (for the average consumer) etc....
If you think back 10 years ago or less, most average consumers have the same investment in $$$$ that a small business once had...
I will get off the soap box for now; everyone have a safe and happy Christmas or whatever your beliefs are it doesn't matter cause we are all in this together so we must figure a way to survive. -
@laser22 said in Maxmind will require an account and license key to use GeoLite2 DBs:
I think maxmind owes the opensource community a public explanation as to why private non commercial users can no longer use this database.
Who says non commercial users can’t, I registered with my gmail email address and n/a for a company name.
Maybe they haven’t thought who uses the database.
-
@NogBadTheBad said in Maxmind will require an account and license key to use GeoLite2 DBs:
@laser22 said in Maxmind will require an account and license key to use GeoLite2 DBs:
Who says non commercial users can’t, I registered with my gmail email address and n/a for a company name.
Maybe they haven’t thought who uses the database.
Maybe you just got lucky. I tried signing up using similar information that you said you used but received message that they could not provide me an account.
Will have to wait and see if @BBcan177 works some kind of deal with them that lets users of pfBlockerNG sign up if we really need an account.
-
Just an FYI. This change by Maxmind will also kill the GeoIP feature in the Suricata package. It depends on the GeoLite2 databases.
If you are using GeoIP rules in Suricata, you will need to create your own DB update process using the instructions on the Maxmind link at the top of this thread. The automatically installed Suricata cron task will no longer work.
-
So got my account created with my gmail, just used home for company and education and internet security as uses..
-
I just registered with my personal domain, and got the welcome to maxmind email.
For use I put "other" and for company I put home.
This is concerning though.
"We currently do not have a billing location for you. Please provide one in Account Information to ensure continued access to your service."
-
Happy New Years Eve! Just tried an install of pfBlocker NG, and yup the maxmind download now bombs out due to them removing access. Is the path forward going to be a place to enter a maxmind account in the settings? Maybe go back to countryipblocks.net or one of the other geo lists?
-
I would assume @BBcan177 at some point will fix this up one way or the other.. What his schedule is like, with the holidays and since this just went live, etc.. prob going to take him a bit to figure out how best to do it, etc. etc..
-
There are PRs pending for this, should be merged soon after they are reviewed.
https://github.com/pfsense/FreeBSD-ports/pull/734
https://github.com/pfsense/FreeBSD-ports/pull/738
