Updating Blacklists For RouterOS From Squidblacklist.org

Content filtering using domain name blacklists on Mikrotik RouterOS devices.

To automatically download or update your blacklists from Squidblacklist.org onto your RouterOS devices, there are several methods, but the most straightforward is going to likely be using winbox and the system scheduler.

To update your blacklists we can use the following example to fetch tik-ads.rsc:


/tool fetch address=www.squidblacklist.org host=www.squidblacklist.org mode=http src-path=/downloads/squidblacklists/tik/dns/tik-dns-ads.rsc user=some-username password=some-password

Scheduled Automatic Blacklist Download.
Scheduled Automatic Blacklist Download.

Now that we have scheduled a task to download the blacklists, we need to also add a task to actually import the blacklists. Its a good idea to schedule this to run a few minutes later.

Scheduled RouterOS Blacklist Import
Scheduled RouterOS Blacklist Import

:log warning "Disabling system Logging";
import tik-dns-ads.rsc
/system logging enable 0


Also see our other RouterOS related materials. Mikrotik RouterOS Malicious IP Blacklist – Firewall Import Script – Gratis
Mikrotik RouterOS Blacklist Validation Testing & Compatibility Chart Update Posted.
Mikrotik RouterOS Blacklists


Get a username and password – Subscribe now.

Flat rate subscription. Select a membership option & subscribe.



Select Payment Option



  • You will be issued a username and password.
  • You will be granted access to our member area.
  • 5 Year Membership Option now available.
  • For lifetime membership options click here.clipart
  • Contact us if you would like a pre order invoice.

Disclaimer: All sales are final, we do not issue refunds. Cancel your subscription anytime.


Squid Proxy: Creating custom error pages for each ACL

I have been asked several times how to do create custom error pages for each acl in squid proxy, so Im going to write a small blog entry on the subject in the hopes that somebody will find it useful. It isnt rocket science and it is not complicated.

This is the result a user might see using a custom squid error page..
This is the result a user might see using a custom squid error page..

When using many different acls to control traffic, one may choose to have some different error pages to indicate which specific ACL is was that blocked traffic. This is crude and gets the job done without complicated cgi scripts. The reasons for doing this are simple, sometimes its nice to know which blacklist is blocking your content, specifically in the case of a false entry or a domain that you would like to add an exception for.

In the following excerpt from a squid.conf you can see the required entries are made to allow for custom error pages for porn, malicious and ads. This is all that is required as far as the conf is concerned to get this done.

deny_info ERR_PORN_ACCESS_DENIED porn
http_access deny malicious
deny_info ERR_MALICIOUS_ACCESS_DENIED malicious
#http_access deny dating
#http_access deny gaming
#http_access deny gambling
#http_access deny piracy
#http_access deny proxies
#http_access deny pharma-rx
#http_access deny blasphemy
http_access deny ads
deny_info ERR_ADS_ACCESS_DENIED ads

Locating Squid default error pages in a terminal.
Locating Squid default error pages in a terminal.

Of course, you will need to create these files and put them in your default error page templates directory located on your Squid Proxy machine. The file ( ERR_ADS_ACCESS_DENIED ) in this case, is not simply a copy of the default file that ships with the precompiled version of Squid we installed on a Debian box, but rather one of our custom error pages available from www.Squidblacklist.org ( ERR_ACCESS_DENIED ) was copied and the text “CATEGORY MALICIOUS” was added.

If you are unable to find these files or are lost and cannnot find the directories where these files are stored on your squid proxy server, simply run a locate command to see if you can find them as shown in the following image.

Locate squid default error pages from a terminal session.
Locate squid default error pages from a terminal session.

If you are interested in some default error pages, we do have some available for download here.


Get a username and password – Subscribe now.

Flat rate subscription. Select a membership option & subscribe.



Select Payment Option



  • You will be issued a username and password.
  • You will be granted access to our member area.
  • 5 Year Membership Option now available.
  • For lifetime membership options click here.clipart
  • Contact us if you would like a pre order invoice.

Disclaimer: All sales are final, we do not issue refunds. Cancel your subscription anytime.


Also see:
Page Free blacklists suck , and heres why.

WPA Wordlist Created fom our Master Domain Database.

FILE NO LONGER AVAILABLE FOR DOWNLOAD, SORRY FOLKS!

13043338_10201884285744369_9022510362039297071_n

I was feeling nostalgic tonight and converted our master domain db into a HUGE wordlist for WPA cracking purposes, all lines less than 9 characters or greater than 32 removed. Should be a nice addition to any wireless crackers wpa wordlist collection.

WPA Wordlist contains 144,203,232 lines.
Filesize – 548MB compressed. 2.24GB decompressed.

We give you. SBL-WPA

It can be downloaded gratis from the following link. Please link to us or feel free to redistribute this file as you wish.

http://www.squidblacklist.org/downloads/SBL-WPA.tar.gz

Signed,

Benjamin E. Nichols
http://www.squidblacklist.org

Master Domain Database Now Available For Download

Today we are announcing the immediate availability of our master domain database, it is a huge domain list we are making available for download. The current total domain count which is currently above 200 Million top level domains is increasing every day with every daily update.

We do charge a small fee for access to this file, but at $29.99, we are confident that you will agree, it is a bargain compared to the other options out there, websites who charge $199-$499 for comparable databases.

Our Master Domain-DB can be purchased NOW!

Links to other sources for big domain lists are as follows.

Our rate smashes the competitions offerings. And it would be our pleasure to serve you.

domains-index.com
www.whoisxmlapi.com
www.yougetsignal.com
http://www.whythink.co.uk
viewdns.info