Netgate SG-1000 microFirewall

Author Topic: Any chance of adding support for this open-source blocklist project?  (Read 534 times)

0 Members and 1 Guest are viewing this topic.

Offline stilez

  • Full Member
  • ***
  • Posts: 104
  • Karma: +4/-2
    • View Profile
https://github.com/crazy-max/WindowsSpyBlocker

It's a project to detect and block Windows telemetry privacy breaches, and optionally others, which automatically detects in-use privacy breaching IPs and domains, updates its IP list, and makes it available free in a number of formats for various IP block platforms.

It looks popular, well supported, and ideal for a pfBlockerNG option or list. I'm in chaotic busy mode or I'd do a PR myself, but I just won't have spare capacity for ages.

Any chance of it being added  anyway, by someone who likes the idea :)

« Last Edit: October 17, 2017, 06:12:17 am by stilez »

Offline BBcan177

  • Moderator
  • Hero Member
  • *****
  • Posts: 2554
  • Karma: +797/-5
    • View Profile
    • Click for Support
Re: Any chance of adding support for this open-source blocklist project?
« Reply #1 on: October 24, 2017, 09:35:00 pm »
Hi Stilez,

They already have feeds for the various Windows telemetry here:
    https://github.com/crazy-max/WindowsSpyBlocker/tree/master/data/firewall

They are also formatted correctly for DNSBL to use as-is...

Not sure if you are talking about adding functionality to find the IPs automatically? Which is probably a lot more involved? and maybe unnecessary if they already have provided a regularly updated list of feeds?

Quote
which automatically detects in-use privacy breaching IPs and domains, updates its IP list, and makes it available free in a number of formats for various IP block platforms
"Experience is something you don't get until just after you need it."

 | http://pfblockerng.com | Twitter @BBcan177  | #pfBlockerNG |

Offline stilez

  • Full Member
  • ***
  • Posts: 104
  • Karma: +4/-2
    • View Profile
Re: Any chance of adding support for this open-source blocklist project?
« Reply #2 on: October 30, 2017, 06:46:00 pm »
I mean, a "one click option" to automatically import and use (and periodically update) the anti-telemetry IP lists which this project collates.

Offline BBcan177

  • Moderator
  • Hero Member
  • *****
  • Posts: 2554
  • Karma: +797/-5
    • View Profile
    • Click for Support
Re: Any chance of adding support for this open-source blocklist project?
« Reply #3 on: November 02, 2017, 10:52:12 pm »
The next version of the pkg will have a Feeds Management tab which will allow predefined Alias/Groups to be easily imported into the configuration.

I have no issue in adding these to the new Feeds Management Tab, but I haven't tested these feeds myself, so it would be great if others can chime in on how well these feeds are working before I add them.

Windows telemetry:
https://github.com/crazy-max/WindowsSpyBlocker/tree/master/data/firewall
"Experience is something you don't get until just after you need it."

 | http://pfblockerng.com | Twitter @BBcan177  | #pfBlockerNG |

Offline motific

  • Jr. Member
  • **
  • Posts: 33
  • Karma: +3/-0
    • View Profile
Re: Any chance of adding support for this open-source blocklist project?
« Reply #4 on: November 16, 2017, 11:53:36 am »
I have had a look at this feed a while back. It is pretty poor IMHO and I wouldnít recommend it, if they included the suggested changes it would be even worse.  One of the worst things is that it just arbitrarily blocks random chunks of Microsoft services (including ones you may have whitelisted) by blocking some of the intermediate CNAME domains (like a-msedge.net)  Not to mention that some of them are not tracking servers but provide other services (like the weather for the live tile.)

Quite a lot of the lists blocking Microsoft tracking are similarly bad,  I have to assume that they donít test very well if at all.  Recently Iíve had to pull the Phishtank feed (supposedly a list of phishing domains), the last straw was when they added login.live.com (which is quite a useful one if you actually use pretty much any Microsoft services at all!)

Iím not bad at tracking down the DNS responses to find the issues but for a relative novice to find a whitelisted domain suddenly blocked and showing as whitelisted in pfB it would be infuriating.

Offline BBcan177

  • Moderator
  • Hero Member
  • *****
  • Posts: 2554
  • Karma: +797/-5
    • View Profile
    • Click for Support
Re: Any chance of adding support for this open-source blocklist project?
« Reply #5 on: November 25, 2017, 10:59:27 pm »
I have had a look at this feed a while back. It is pretty poor IMHO and I wouldnít recommend it, if they included the suggested changes it would be even worse.  One of the worst things is that it just arbitrarily blocks random chunks of Microsoft services (including ones you may have whitelisted) by blocking some of the intermediate CNAME domains (like a-msedge.net)  Not to mention that some of them are not tracking servers but provide other services (like the weather for the live tile.)

Quite a lot of the lists blocking Microsoft tracking are similarly bad,  I have to assume that they donít test very well if at all.  Recently Iíve had to pull the Phishtank feed (supposedly a list of phishing domains), the last straw was when they added login.live.com (which is quite a useful one if you actually use pretty much any Microsoft services at all!)

Iím not bad at tracking down the DNS responses to find the issues but for a relative novice to find a whitelisted domain suddenly blocked and showing as whitelisted in pfB it would be infuriating.

I have always been hesitant to recommend these types of Feeds... So unless there is more feedback, I will just hold until more people chime in....
"Experience is something you don't get until just after you need it."

 | http://pfblockerng.com | Twitter @BBcan177  | #pfBlockerNG |