I do something similar for my ip blacklist. I have a honeypot that, if
it receives email. it adds the sender's ip to the blacklist with a
timestamp in a preceding comment. If I get another email from that
server, it just updates the comment so the expiration gets extended. I
run a nightly cron job to clear away ip addresses that have been
inactive for >= 30 days. So the entries in the file look like this:
# 2013-03-18
72.30.239.144
Gary
On 03/26/2013 10:28 AM, David wrote:
Is there a way we could get a configuration for a timer to be set on
blacklist items in any blacklist?
For instance when I configure firewall rules and use address lists I
always use a timer on these list
to be removed from the list after a certain amount of time but the
rule is always there so if the address
gets caught by the rule gets re added to the list again.
I was thinking if there was an easier way to manage these list better
and the timer came up.
If I was able to place a timer on the items in the list say for 30days
or less to be emptied out would be great.
Something else to consider is dumping them into another list to be
watched and if they show up again then re-add
them back to the current list and drop the others in the old list
after a few days.
this may help with my pain of these list growing out of control.
Thanks
Dave
_______________________________________________
spamdyke-users mailing list
spamdyke-users@spamdyke.org
http://www.spamdyke.org/mailman/listinfo/spamdyke-users
_______________________________________________
spamdyke-users mailing list
spamdyke-users@spamdyke.org
http://www.spamdyke.org/mailman/listinfo/spamdyke-users
