- Fixed Issue #66 documentation issue
-
Fixed Issue #55 documentation issue for obsolete malwaredomains example
-
Fixed Issue #56 removed large source StevenBlack/hosts as it prevented dnsmasq from starting on ER-X routers
-
It can be installed using
set service dns forwarding blacklist hosts source githubSteveBlack url 'https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts'
set service dns forwarding blacklist hosts source githubSteveBlack description '"Blacklists adware and malware websites"'
set service dns forwarding blacklist hosts source githubSteveBlack prefix '0.0.0.0 '
Change recommended by amoeba00
- Remove extinct source malwaredomains.com
Change recommended by amoeba00, because of updated source
Original:
set service dns forwarding blacklist domains source OISD description "OISD (Hosts) Light"
set service dns forwarding blacklist domains source OISD url https://dblw.oisd.nl/light/
set service dns forwarding blacklist domains source OISD prefix *.
Current:
set service dns forwarding blacklist domains source OISD description 'OISD Domains Basic'
set service dns forwarding blacklist domains source OISD url 'https://dbl.oisd.nl/basic/'
- Fix bug preventing update-dnsmasq loading failover config file when -safe switch is used
- Update documentation to state the /config/user-data/blacklist.failover.cfg must first be created
- Move debian repository to
https://raw.githubusercontent.com/britannic/debian-repo/master/blacklist/public/
- Resolve issue with repository not including v1.2.4.1
- Switch to OISD domain wildcard list - reduces memory usage for ER-X series routers
- Implement a workaround to conserve memory on the ER-X routers
-
Fixes dnsmasq restart
error: fork/exec /bin/bash: cannot allocate memory
-
- Remove sysctl.org source as list is no longer maintained
- Move "OISD Domains Light" to hosts source (per amoeba00)
- Add -safe switch for fail-over mode
- Remove hosts "OSID Mobile Blocklist"
- Add "OISD Domains Light" (per amoeba00)
- Code refactor: remove obsolete functions and tests
- Fix bug when in level edit mode that caused update-dnsmasq not loading active config
- i.e. edit service dns forwarding blacklist
- Only load failover /config/user-data/blacklist.failover.cfg if API config fails
- Add source OSID Mobile Blocklist
- Update documentation
- Check for internet connectivity before running an update
- Check and load /config/user-data/blacklist.cfg in preference to config.boot
- Fix bug in configure preventing use of the latest commit
- Remove obsolete source Youtube Ad-Block-List for PiHole by HenningVanRaeumle
- Update documentation
- Update blacklist.cfg example file with the latest configuration
- Refactor code to conserve RAM in small memory systems (e.g. ER-X)
- 11Mb less RAM consumption with default lists
- Fix issues with fpm running under Ruby 2.6.5 and aws repos
- Removed dormant source: "abuse.ch ZeuS domain blocklist"
- Removed dormant source: "YoutubeAdsBlacklist"
- Debian repository fix
- Added support for EdgeOS 2.0.1
- Fixed config session detection bug
- Ensure all dnsmasq blacklist configuration files are removed for blacklist config delete and package removal
- Force dnsmasq restart after blacklist config delete
- Fix for issue #8, /etc/dnsmasq.d/*blacklist.conf files aren't deleted after uninstallation
- Removed "try set service dns forwarding blacklist disabled false" from the installation setup to prevent false positive issue in EdgeOS 2.0
- Forced update_dnsmasq to run after installation, to resolve non-detection of a new configuration in EdgeOS 2.0
- Added adjust.com to domain exclusions as this domain is being used by Microsoft for guiding users through a two-factor authentication setup process.
- Removed "set service dns forwarding blacklist disabled false" as it is broken in EdgeOS 2.0.0
- Removed hostfile.org as it is too agressive and causes a lot of false positive entries
- Removed domain source Malc0de as it is posting false positives with no means to notify the maintainer
- Added log message for sources that have no records extracted
[Source]: no records processed - check source and/or configuration
- Any source without records extracted, will still have a file written, but it will contain a message
# NO DATA WRITTEN - CHECK WHITELIST EXCLUSIONS
- Code refactor
- Global whitelist and blacklist configuration files now have their own prefix: "roots" i.e.
roots.global-blacklisted-domains.blacklist.conf
- Suppress log messages for predefined includes (blacklists) and excludes (whitelists)
- Changed Debian pre-remove and post-install script algorithm to detect an existing installation and reinstall a default configuration if none exists
- Add build architecture and OS information to "-version" argument
- Code refactor and parsing algorithm updates
- Performance enhancements for source entry processing
- Improved data counter metrics for found, extracted and dropped records
- Document updates
- Fixed bug that overwrote user configured blacklist settings during an upgrade
- Fixed bug that prevented pre-configured included hosts being correctly blacklisted
- Fixed minor log message bug to insert space between progname and "starting up"
- Renamed blacklist-cronjob.sh to update-dnsmasq-cronjob.sh to be consistent with update-dnsmasq
- Fixed a bug when scripted configure session isn't detected, resulting in wrong showconfig mode being used
- Fixed a bug in blacklist-cronjob.sh that inhibited the cron job delay
- Changed http error handling from fatal to error notification, so that update-dnsmasq can continue processing for sources that don't have problems and complete the update
- Added code to support dnsmasq configuration file whitelisting for domains and hosts (servers) using hash syntax (the "#" force dnsmasq to forward the DNS request to the configured nameservers)
- i.e. servers (hosts)
server=/www.bing.com/#
- i.e. domains
address=/bing.com/#
- Added functions to ensure all blacklist configuration files are removed from /etc/dnsmasq.d/ when uninstalling using
dpkg -P edgeos-dnsmasq-blacklist
- Or
apt-get remove --purge edgeos-dnsmasq-blacklist
- dnsmasq will be automatically restarted to remove stale redirects
- Added logic to not run the post installation script after an upgrade
- Algorithm to trap out of range cronjob arguments
- Adjust task-scheduler argument
- Fix bug in task-scheduler stanza to insert missing key work "system
- Nightly update-dnsmasq cron job now has a configurable argument to set how many seconds of random delay before starting
set system task-scheduler task update_blacklists executable arguments 60
set system task-scheduler task update_blacklists executable path /config/scripts/blacklist-cronjob.sh
set system task-scheduler task update_blacklists interval 1d
- Implemented starting nightly update-dnsmasq cron job at random times to prevent a datastorm if a lot of users are in the same time zone
- Suggested by EdgeMax Community User @sorvani
- Switching to debian respository installation using apt-get
- Updated sources
- Changed hosts source https://github.com/StevenBlack/hosts/ to version that only blacklists ads and malware
- Updated sources
- Changed hosts source https://github.com/StevenBlack/hosts/ to version that doesn't blacklist social networks
- Updated sources
- Added hosts source https://github.com/StevenBlack/hosts/
- Removed Yoyo and raw.github.com, since the new sources make them redundant
- Fixed bug where "domains" was reported as "hosts" source type
- Extended vyattacfg change group to include /opt/vyatta/config/tmp and /opt/vyatta/config/active
- Release candidate #4 v1.0.0
- Fixed bug to ensure pre-configured includes are processed first, so that pre-configured excludes won't drop them
- Release candidate #3 v1.0.0
- Added domains exclude nsatc.net as it was blocking MS Office logins
- Release candidate #2 v1.0.0
- New source added: http://www.hostsfile.org/Downloads/hosts.txt
- Added global exclude googleads.g.doubleclick.net to fix Google search results
- Release candidate #1 v1.0.0
- Includes pre-remove.sh back up routine
- Added global exclude "evernote.com" as it is being false flagged by some sources
- Reformatted update-dnsmasq.log output
- README Updates
- Added FAQ
- Refactored layout
- Improved counters for statistics logging
- Increased test coverage of code
- Additional documentation
- Added config.boot file loader
- Added logging for download errors and warnings for empty content
- Change HTTP user agent to emulate curl, to stop web servers from offering complex content
- Removed embedded tabs in source prefixes that were interpreted by the EdgeOS configure shell as a completion request, preventing correct prefix matches
- Removes redundant references to blacklist.t and perl modules
- Replace "▶" with ":" in log messages
- Debian package release for ease of installation, maintenance and updating. See README for instructions and general release notes.
- Debian package script rough in
- Major code refactor
- Ground up rewrite to create self contained packages and simplify code base
- Alpha code release
- Learning Go, rudimentary coding