# HG changeset patch
# User Kim Alvefur <zash@zash.se>
# Date 1519504974 -3600
# Node ID 589cc51209f78b4cca0e2d13eb65936a40ac6dec
# Parent  165d2877eeac82b4fbefba0211e110f5b41bd3c0
mod_register_dnsbl_firewall_mark: Another copy of DNSBL module, this time creating "user marks" for mod_firewall

diff -r 165d2877eeac -r 589cc51209f7 mod_register_dnsbl_firewall_mark/mod_register_dnsbl_firewall_mark.lua
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/mod_register_dnsbl_firewall_mark/mod_register_dnsbl_firewall_mark.lua	Sat Feb 24 21:42:54 2018 +0100
@@ -0,0 +1,29 @@
+local adns = require "net.adns";
+local rbl = module:get_option_string("registration_rbl");
+
+local function reverse(ip, suffix)
+	local a,b,c,d = ip:match("^(%d+).(%d+).(%d+).(%d+)$");
+	if not a then return end
+	return ("%d.%d.%d.%d.%s"):format(d,c,b,a, suffix);
+end
+
+module:hook("user-registered", function (event)
+	local session = event.session;
+	local ip = session and session.ip;
+	local rbl_ip = ip and reverse(ip, rbl);
+	if rbl_ip then
+		local registration_time = os.time();
+		local log = session.log;
+		adns.lookup(function (reply)
+			if reply and reply[1] then
+				log("warn", "Account %s@%s registered from IP %s found in RBL (%s)", event.username, event.host or module.host, ip, reply[1].a);
+				local user = prosody.bare_sessions[event.username .. "@" .. module.host];
+				if user and user.firewall_marks then
+					user.firewall_marks.dnsbl_hit = registration_time;
+				else
+					module:open_store("firewall_marks", "map"):set(event.username, "dnsbl_hit", registration_time);
+				end
+			end
+		end, rbl_ip);
+	end
+end);