For security, it seems valuable to be running blocklistd on all public facing hosts. Consequently, to monitor blocks, it would be helpful to include blocklistctl dump as a regular action for /etc/daily. I propose the following patch to do so. This sets the default to YES, but if people feel differently it can be set to NO. Note that blocklistctl dump creates an empty report if blocklistd is not running, which is the same behavior as for no blocks. Thoughts? Cheers, Brook
Attachment:
blocklist.patch
Description: Binary data