shallalist back online

aligator638

Re: shalla list off

It seems the list is back online now:

http://dsi.ut-capitole.fr/blacklists/download/

However I could not get it to work again with the latest (v3.2.0_3 ) version of pf, I removed the list from dnsbl, added it again and it still does not download

UPDATE PROCESS START [ v3.2.0_3 ] [ 03/16/23 23:58:43 ]

===[  DNSBL Process  ]================================================

 Loading DNSBL Statistics... completed
 Loading DNSBL SafeSearch... enabled
 Loading DNSBL Whitelist... completed
 Loading TOP1M Whitelist... completed

Downloading Blacklist Database(s) [ shallalist (~10MB) ] ... Please wait ...

 Failed	Shallalist ... Failed

Gertjan

@aligator638 said in shallalist back online:

http://dsi.ut-capitole.fr/blacklists/download/

That's :

Shallalist :

[23.01-RELEASE][admin@pfSense.the-answers-are.here]/usr/local/pkg: grep -R 'shallalist' *
pfblockerng/pfblockerng.inc:                                                                    '/var/db/pfblockerng/shallalist/',
pfblockerng/shallalist_global_usage:# shallalist_global_usage
pfblockerng/shallalist_global_usage:XML:        shallalist
pfblockerng/shallalist_global_usage:FEED:       http://www.shallalist.de/Downloads/shallalist.tar.gz
pfblockerng/shallalist_global_usage:WEBSITE:http://www.shallalist.de/cgi-bin/stat.cgi
pfblockerng/shallalist_global_usage:LICENSE:http://www.shallalist.de/licence.html

And www.shallalist.de isn't a Internet domain name anymore.

and no one wants to buy that domain name, as he will get slammed by billions of hits

aligator638

@gertjan said in shallalist back online:

Oups....sorry I got mistaken between the two. So case closed.

jc1976

Hey all,

I was just signing in to ask some other pfblockerng questions and i saw this..

So what is the deal with Shallalist and UT1?
When Shallalist went offline, i removed it and UT1 completely because... well, what's the point?

did they bring it back? I tried UT1 back in the day. it seemed to not work nearly as well as shallalist.

Is it worth it for BBcan to even incorporate these into pfblockerng? it almost seems not worth it if the blacklist maintainers can simply take down the site.. As if he doesn't already do enough as it is for us..

smolka_J

This post is deleted!

smolka_J

The last known tar.gz published is still online on waybackmachine at web (dot) archive (dot) org if you want to upload it to your box a local file to /var/db/pfblockerng/shallalist.tar.gz, then edit your /conf/config.xml to change the shallalist feed url to that local directory /var/db/pfblockerng/shallalist.tar.gz, save config.xml, next run shell command:
rm /tmp/config.cache
then go back to pfblocker and force a cron. Shallalist then can still work as a decent category filtering base and worth maintaining adding in your own static list if desired instead of numerous local file DNSBL feeds added of other Adguard/AdBlock/pihole blacklists converted over from original formats as I was accumulating, have my current tweaked shallalist.tar.gz beefed up to 41.8MB up for grabs if its worth/allowed to be hosted anywhere until if/when the original developer re-opens Shalla Secure Services, as mentioned before its domain went down, in another country one day.

smolka_J

@smolka_j Both might better function their original purposes though, Shallalist/UT1 both built originally toward SquidGuard, if maybe for these category options to have a "whitelist" "deny/block" and "allow if not blocked/disable" selections/toggles added as SquidGuard has because certain categories listed I would think would better work as whitelists for some to make sure other general feeds don't block all

luisenrique

@Gertjan shalla list should be removed from list options

smolka_J

@luisenrique I can agree to one degree of extent but otherwise dis-agree. The internal download link pointing to the .tar.gz list file itself that leaves download failure errors as well as any IP addresses that remain in these files if used (squidguard uses them but not sure pfBlocker does though) these all should be removed to eliminate errors and false-positives if they were rendered.
As to remove ShallaList's contributions altogether would basically be literally the same thing as to say "when Bill Gates dies, lets just simply delete Microsoft Windows entirely worldwide and FORGET the project ever existed." The download link yes is dead, and ANY ip address list will become deprecated in time if not updated as individual IP addresses become to be re-purposed. The domain lists on the other-hand of millions of categorized bad domains is still 99% valid world-wide, regardless if in ShallaList or other DNS blacklists, whether its a "static" list or update-able as an "online" feed, and IF and when any of these are found to be outdated domain names or ones that are found to be needed/non-malicious by Network Admin managing their OWN networks, any and each can easily be whitelisted at the Admin level to allow access for their own network users.
If we dis-own any/all open-source community contributors contributions in the endlessly growing IT world at that point of a contributor simply "moving on with their life" or when one passes away, we as a whole worldwide would be in fact still be sitting in the IT industry and Internet itself of 1980 with literally one ISP, your government, and with literally one PC manufacturer also, your government.