Startseite » it security

Category: it security

Iptabels add blocklist while systemctl start

add iptables with binarydefense.com blocklist

Edit systemd iptables.service

[Unit]
Description=IPv4 Packet Filtering Framework
Before=network-pre.target
Wants=network-pre.target

[Service]
Type=oneshot
ExecStart=/usr/bin/iptables-restore /etc/iptables/iptables.rules
ExecStartPost=/etc/script/ipban.list.sh
ExecReload=/usr/bin/iptables-restore /etc/iptables/iptables.rules
ExecStop=/usr/lib/systemd/scripts/iptables-flush
RemainAfterExit=yes

[Install]
WantedBy=multi-user.target

The iptables script contains

you should modify as you need -I or -A and ‘input’ chain

#!/bin/sh
for i in `curl https://www.binarydefense.com/banlist.txt`; do
iptables -A INPUT -s $i -j DROP
done

install magisk xposed framework and xprivacy on klte sm-g900f

download xposed framework magisk unity zip

here the xda thread: https://forum.xda-developers.com/xposed/10-31-2017-xposed-framework-v88-2-t3697756

backup

new releases

Reboot in to recovery mode and install the unity zip.

Reboot the device and download xprivacy

After downloading xprivacy (xrprivacy lua is recommended) in the Xposed.app https://forum.xda-developers.com/showthread.php?t=3034811

You have to activate the module and reboot your device.

 

Have fun and block all not needed connections.