-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathfltr-martian-v6.py
executable file
·121 lines (102 loc) · 3.33 KB
/
fltr-martian-v6.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
#!/usr/bin/python
# IPv6 bogons RPSL object updater
# Written by Job Snijders <[email protected]> in June 2012
import sys
import time, datetime, pytz
import ipaddr
import gnupg
import smtplib
from email.mime.text import MIMEText
# todo:
# - do whois on current object and compare how much it differs from new one
# whois code: http://code.activestate.com/recipes/577364-whois-client/
print "+--------------------------------------------------------------------------+"
print "+ IPv6 Martian updater:"
print "+--------------------------------------------------------------------------+"
raw_prefixes = []
try:
print 'progress: opening list...'
with open('fltr-martian-v6.list', 'r') as f:
for line in f:
raw_prefixes.append(line.strip())
except:
print 'error: file could not be opened'
sys.exit(1)
utc = pytz.timezone("UTC")
unixtimestamp = str(int(time.time()))
timestamp = str(datetime.datetime.now(tz=utc))
timestamp = unixtimestamp + ' - ' + timestamp
print 'timestamp: ' + timestamp
# check if is valid:
# - contains at least 10 entries
amount = len(raw_prefixes)
if amount < 10:
print "error: we expect more then 10 prefixes"
sys.exit(1)
else:
print "pass: seems we have enough prefixes"
# check for some prefixes
for line in raw_prefixes:
try:
if '2001:db8::/32' in line:
print "pass: 2001:db8::/32 is in the list"
break
except:
print "error: the list seems corrupt, 2001:db8::/32 is missing"
sys.exit(1)
# - are valid ipv6 prefixes and copy them to new list
valid_prefixes = []
for line in raw_prefixes:
try:
prefix = line.split("^")[0]
if ipaddr.IPv6Network(prefix):
valid_prefixes.append(line)
except ValueError:
print 'entry is not valid: %s' % prefix
pass
# get last entry and remove the comma
formatted_prefixes = '\n '.join(valid_prefixes)
# construct object
# RPSL object:
header = """filter-set: fltr-martian-v6
descr: Current IPv6 martians
mp-filter: {
"""
footer = """
}
remarks: timestamp: """ + timestamp + """
remarks: the following sources have been used:
www.iana.org/assignments/ipv6-address-space/ipv6-address-space.xml
www.iana.org/assignments/ipv6-unicast-address-assignments/ipv6-unicast-address-assignments.xml
remarks: this object is manually maintained
org: ORG-SNIJ1-RIPE
tech-c: JWJS1-RIPE
admin-c: JWJS1-RIPE
mnt-by: SNIJDERS-MNT
mnt-by: SNIJDERS-ROBOT-MNT
changed: [email protected]
source: RIPE"""
rpslobject = header + formatted_prefixes + footer
# sign with PGPKEY-C46D1B1C on irime
gpg = gnupg.GPG(gnupghome='/home/job/.gnupg')
try:
signed_rpslobject = str(gpg.sign(rpslobject,keyid='C46D1B1C',clearsign=True))
print "pass: signed the new object"
except:
print "error: something went wrong with signing"
sys.exit(1)
# email to [email protected]
msg = MIMEText(signed_rpslobject, 'plain')
msg['Subject'] = 'IPv6 Bogons: %s' % timestamp
msg['From'] = '[email protected]'
msg['To'] = '[email protected]'
s = smtplib.SMTP('localhost')
try:
print signed_rpslobject
s.sendmail('[email protected]', '[email protected]', msg.as_string())
s.quit()
print "pass: sent the email succesfully to the MTA"
print "done: a new version has been uploaded"
except:
print "error: Unable to send email. Error: %s" % str(e)
sys.exit(1)