Respect tenable blacklist.

author Jakub Czajka <jakub@ekhem.eu.org>

Sun, 30 Mar 2025 10:04:33 +0000 (12:04 +0200)

committer Jakub Czajka <jakub@ekhem.eu.org>

Sun, 30 Mar 2025 10:04:53 +0000 (12:04 +0200)
author Jakub Czajka <jakub@ekhem.eu.org>
Sun, 30 Mar 2025 10:04:33 +0000 (12:04 +0200)
committer Jakub Czajka <jakub@ekhem.eu.org>
Sun, 30 Mar 2025 10:04:53 +0000 (12:04 +0200)
diff --git a/blocklist.service b/blocklist.service

index 860eda5fe60e07fe04333b225aaeaa9504f9e9df..b12d63da48ef0bae9094e301afd7d1f12a65f1c6 100644 (file)
--- a/blocklist.service
+++ b/blocklist.service
@@ -11,7 +11,7 @@ EnvironmentFile=/etc/ansible/facts.d/env.fact
  ExecStartPre=/usr/bin/git \
      --work-tree=/tmp \
      --git-dir=${git_home_dir}/config.git \
  ExecStartPre=/usr/bin/git \
      --work-tree=/tmp \
      --git-dir=${git_home_dir}/config.git \
-    checkout main --force blacklist.txt
+    checkout main --force blacklist.txt tenable-blacklist.txt
  ExecStartPre=/usr/bin/git \
      --work-tree=/tmp \
      --git-dir=${git_home_dir}/server.git \
  ExecStartPre=/usr/bin/git \
      --work-tree=/tmp \
      --git-dir=${git_home_dir}/server.git \
@@ -22,6 +22,6 @@ ExecStartPre=/usr/bin/wget \
  ExecStart=/usr/bin/python3 /tmp/generate-domains-blocklist.py \
      --allowlist '' \
      --config /tmp/dnscrypt-proxy/domains-blocklist.txt \
  ExecStart=/usr/bin/python3 /tmp/generate-domains-blocklist.py \
      --allowlist '' \
      --config /tmp/dnscrypt-proxy/domains-blocklist.txt \
-    --time-restricted '' \
+    --time-restricted '/tmp/tenable-blacklist.txt' \
      --output /etc/dns/blocked-names.txt
  
      --output /etc/dns/blocked-names.txt
author	Jakub Czajka <jakub@ekhem.eu.org>
	Sun, 30 Mar 2025 10:04:33 +0000 (12:04 +0200)
committer	Jakub Czajka <jakub@ekhem.eu.org>
	Sun, 30 Mar 2025 10:04:53 +0000 (12:04 +0200)