From 55d6fc8344030ef058525b2dda2c21a24d4197de Mon Sep 17 00:00:00 2001 From: Bob Mottram Date: Wed, 18 Jun 2014 23:46:23 +0100 Subject: [PATCH] Block known malware servers --- beaglebone.txt | 33 +++++++++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) diff --git a/beaglebone.txt b/beaglebone.txt index fc8d4da2..66f6b41d 100644 --- a/beaglebone.txt +++ b/beaglebone.txt @@ -1260,6 +1260,39 @@ iptables -A syn_flood -j DROP iptables -A INPUT -p icmp -j DROP #iptables -A OUTPUT -p icmp -j ACCEPT +# Block malware servers (See Der Spiegel Snowden files) +iptables -A INPUT -s 146.185.26.163 -j DROP +iptables -A INPUT -s 37.130.229.100 -j DROP +iptables -A INPUT -s 85.237.211.198 -j DROP +iptables -A INPUT -s 85.237.212.52 -j DROP +iptables -A INPUT -s 85.237.211.177 -j DROP +iptables -A INPUT -s 212.118.232.184 -j DROP +iptables -A INPUT -s 212.118.232.50 -j DROP +iptables -A INPUT -s 176.249.28.104 -j DROP +iptables -A INPUT -s 212.118.232.140 -j DROP +iptables -A INPUT -s 37.130.229.101 -j DROP +iptables -A INPUT -s 31.6.17.94 -j DROP +iptables -A INPUT -s 84.45.121.218 -j DROP +iptables -A INPUT -s 80.84.63.242 -j DROP +iptables -A INPUT -s 37.220.10.28 -j DROP +iptables -A INPUT -s 94.229.78.58 -j DROP + +iptables -A OUTPUT -s 146.185.26.163 -j DROP +iptables -A OUTPUT -s 37.130.229.100 -j DROP +iptables -A OUTPUT -s 85.237.211.198 -j DROP +iptables -A OUTPUT -s 85.237.212.52 -j DROP +iptables -A OUTPUT -s 85.237.211.177 -j DROP +iptables -A OUTPUT -s 212.118.232.184 -j DROP +iptables -A OUTPUT -s 212.118.232.50 -j DROP +iptables -A OUTPUT -s 176.249.28.104 -j DROP +iptables -A OUTPUT -s 212.118.232.140 -j DROP +iptables -A OUTPUT -s 37.130.229.101 -j DROP +iptables -A OUTPUT -s 31.6.17.94 -j DROP +iptables -A OUTPUT -s 84.45.121.218 -j DROP +iptables -A OUTPUT -s 80.84.63.242 -j DROP +iptables -A OUTPUT -s 37.220.10.28 -j DROP +iptables -A OUTPUT -s 94.229.78.58 -j DROP + # Save the settings iptables-save > /etc/firewall.conf ip6tables-save > /etc/firewall6.conf