Initial code-dump!

0.1.0 - release - hello world!

 - dnsrbl-exporter
 - supports monitoring servers and if they get listed in DNBLs/RBLs

Author: till

.gitignore

@@ -0,0 +1 @@
+dist

.goreleaser.yml

@@ -0,0 +1,40 @@
+# This is an example goreleaser.yaml file with some sane defaults.
+# Make sure to check the documentation at http://goreleaser.com
+project_name: dnsbl_exporter
+
+before:
+  hooks:
+    # you may remove this if you don't use vgo
+    - go mod tidy
+    # you may remove this if you don't need go generate
+    - go generate ./...
+builds:
+- main: ./main.go
+  binary: dnsbl-exporter
+  ldflags: -s -w -X main.exporterVersion={{.Version}}
+  goos:
+  - darwin
+  - freebsd
+  - linux
+  - windows
+  env:
+  - CGO_ENABLED=0
+archives:
+- files:
+  - none*
+  replacements:
+    darwin: Darwin
+    linux: Linux
+    windows: Windows
+    386: i386
+    amd64: x86_64
+checksum:
+  name_template: 'checksums.txt'
+snapshot:
+  name_template: "{{ .Tag }}-next"
+changelog:
+  sort: asc
+  filters:
+    exclude:
+    - '^docs:'
+    - '^test:'

LICENSE

@@ -0,0 +1,13 @@
+Copyright 2019 Luzilla Capital GmbH
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.

Makefile

@@ -0,0 +1,3 @@
+.PHONY: build
+build:
+	goreleaser --snapshot --rm-dist

README.md

@@ -0,0 +1,58 @@
+# dnsbl-exporter
+
+This is a server which checks the configured hosts against various DNSBL (sometimes refered to as RBLs).
+
+The idea is to scrape `/metrics` using Prometheus to create graphs, alerts, and so on.
+
+**This is an early release. We accept all kinds of feedback - bug reports, PRs, code, docs, ... :)**
+
+## Using
+
+### Configuration
+
+See `rbls.ini` and `targets.ini` files in this repository.
+
+Otherwise:
+
+```
+$ dnsbl-exporter -h
+...
+--config.dns-resolver value  IP address of the resolver to use. (default: "127.0.0.1")
+--config.rbls value          Configuration file which contains RBLs (default: "./rbls.ini")
+--config.targets value       Configuration file which contains the targets to check. (default: "./targets.ini")
+--web.listen-address value   Address to listen on for web interface and telemetry. (default: ":9211")
+--web.telemetry-path value   Path under which to expose metrics. (default: "/metrics")
+--debug                      Enable more output (stdout)
+--help, -h                   show help
+--version, -V                Print the version information.
+```
+
+### Running
+
+ 1. Go to [release](https://github.com/Luzilla/dnsbl_exporter/releases) and grab a release for your platform.
+ 1. Get `rbls.ini` and put it next to the binary.
+ 1. Get `targets.ini`, and customize. Or use the defaults.
+ 1. `./dnsrbl-exporter`
+
+ Go to http://127.0.0.1:9211/ in your browser.
+
+### Caveat
+
+In order to use this, a _proper_ DNS resolver is needed. Proper means: not Google, not Cloudflare, OpenDNS, etc..
+Instead use a resolver like Unbound.
+
+To test on OSX, follow these steps:
+
+```
+$ brew install unbound
+...
+$ sudo unbound -d -vvvv
+```
+(And leave the Terminal open — there will be ample queries and data for you to see and learn from.)
+
+ Verify Unbound is working and resolution is working:
+
+```
+ $ dig +short @127.0.0.1 spamhaus.org
+192.42.118.104
+```

collector/collector.go

@@ -0,0 +1,125 @@
+package collector
+
+import (
+	"github.com/prometheus/client_golang/prometheus"
+	"github.com/prometheus/common/log"
+)
+
+const namespace = "luzilla"
+const subsystem = "rbls"
+
+// RblCollector object as a bridge to prometheus
+type RblCollector struct {
+	configuredMetric  *prometheus.Desc
+	blacklistedMetric *prometheus.Desc
+	errorsMetrics     *prometheus.Desc
+	listedMetric      *prometheus.Desc
+	rbls              []string
+	resolver          string
+	targets           []string
+}
+
+func buildFQName(metric string) string {
+	return prometheus.BuildFQName(namespace, subsystem, metric)
+}
+
+// NewRblCollector ... creates the collector
+func NewRblCollector(rbls []string, targets []string, resolver string) *RblCollector {
+	return &RblCollector{
+		configuredMetric: prometheus.NewDesc(
+			buildFQName("used"),
+			"The number of RBLs to check IPs against (configured via rbls.ini)",
+			nil,
+			nil,
+		),
+		blacklistedMetric: prometheus.NewDesc(
+			buildFQName("ips_blacklisted"),
+			"Blacklisted IPs",
+			[]string{"rbl", "ip", "hostname"},
+			nil,
+		),
+		errorsMetrics: prometheus.NewDesc(
+			buildFQName("errors"),
+			"The number of errors which occurred testing the RBLs",
+			[]string{"rbl"},
+			nil,
+		),
+		listedMetric: prometheus.NewDesc(
+			buildFQName("listed"),
+			"The number of listings in RBLs (this is bad)",
+			[]string{"rbl"},
+			nil,
+		),
+		rbls:     rbls,
+		resolver: resolver,
+		targets:  targets,
+	}
+}
+
+// Describe ...
+func (c *RblCollector) Describe(ch chan<- *prometheus.Desc) {
+	ch <- c.configuredMetric
+	ch <- c.blacklistedMetric
+}
+
+// Collect ...
+func (c *RblCollector) Collect(ch chan<- prometheus.Metric) {
+	// these are our targets to check
+	hosts := c.targets
+
+	ch <- prometheus.MustNewConstMetric(
+		c.configuredMetric,
+		prometheus.GaugeValue,
+		float64(len(c.rbls)),
+	)
+
+	// this should be a map of blacklist and a counter
+	listed := 0
+
+	for _, host := range hosts {
+
+		log.Debugln("Checking ...", host)
+
+		rbl := NewRbl(c.resolver)
+		rbl.Update(host, c.rbls)
+
+		for _, result := range rbl.Results {
+			// this is an "error" from the RBL
+			if result.Error {
+				log.Errorln(result.Text)
+			}
+
+			metricValue := 0
+
+			if result.Listed {
+				metricValue = 1
+				listed = +1
+			}
+
+			labelValues := []string{result.Rbl, result.Address, host}
+
+			if result.Error {
+				ch <- prometheus.MustNewConstMetric(
+					c.errorsMetrics,
+					prometheus.GaugeValue,
+					1,
+					[]string{result.Rbl}...,
+				)
+			}
+
+			ch <- prometheus.MustNewConstMetric(
+				c.blacklistedMetric,
+				prometheus.GaugeValue,
+				float64(metricValue),
+				labelValues...,
+			)
+		}
+	}
+
+	ch <- prometheus.MustNewConstMetric(
+		c.listedMetric,
+		prometheus.GaugeValue,
+		float64(listed),
+		[]string{"foo"}...,
+	)
+}