When fighting service abusers you need at some point to prevent abusers to connect to your server. The most effective approach is to share a central blacklist among all XMPP server admins so that when an abuser is found and reporter by several XMPP server admin, it can be blocked on the complete network.

Availability of the blacklist

The Client to Server blacklist file can be downloaded from: http://xaai.process-one.net/bl_c2s.txt

You can download it freely and use it with any XMPP server.

Adding an IP to the list

We are maintaining a list of blacklisted IP. If you would like a new IP to be added to this list, please send us an email (xaai.blacklist A T gmail.com) with evidences and description of the abuse.

Asking for removal from the list

If you have been blacklisted but are a legitimate user, please contact us by email (xaai.blacklist A T gmail.com) to ask to be remove from the list.

Implementations

ejabberd

ejabberd supports this central blacklist mechanism. This mecanism is a standard in the upcoming ejabberd 2.0.1. We also provide a patch for ejabberd 2.0.0 users:

• Patch for ejabberd 2.0.0 source: mod_ip_blacklist-ejabberd-2.0.0.patch
• Modules compiled for ejabberd 2.0.0 and Erlang R11: mod_ip_blacklist-ejabberd-2.0.0_R11.tgz

Deploy this module as usual and add the following module in your config file:

{mod_ip_blacklist, []}

Next steps

Abuse in-band reporting