RBL based reputation database prevents website hacking, DDOS and brute force attacks with ModSecurity rules.
RBL Database server: rbl.malware.expert
RBL Database to ModSecurity – USAGE:
Add below text to ex. /etc/modsecurity.d/rbl.conf
SecRule REQUEST_METHOD "POST" "id:'400010',phase:1,chain,drop,log,msg:'Malware host detected by rbl.malware.expert'" SecRule REMOTE_ADDR "@rbl rbl.malware.expert"
Optimize / tuning
If you want to minimize dns response times, you can use local DNS resolver.
We are seeking contribution from Hosts whom are offering Shared/Reseller/Managed hosting providers for the RBL Database project. To improve the reliability and integrity of the data provided from the list, we need to collect a large amount of data from servers and process them. This helps to build a better and free defensive system and you can block attacks against even before reaching your applications.
What all data you can provide us? :- We need to collect the source IP addresses from each domain’s access logs which are trying to access, example:
1. WordPress Login Page
2. Joomla Login Page
The information provided will be purely used to build the RBL list. Please note that we collect only the source IP addresses and no other information will be processed including the domain name.
If you are interested to contribute to this project, please CONTACT US so that we can keep up and running this free RBL database with the best possible result.
We are also seeking contribution from hosting companies to host the RBL in their network(s). We are ideally looking free VPS to host and the RBL requests. Please CONTACT US if you can offer VPS to host RBL Database project or other project’s.