We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
desec-stack
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 671ca12b96
分支列表 标签列表
desec-stack
/
api
/
desecapi
/
management
/
commands
/
stop-abuse.py

stop-abuse.py 2.4 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. from django.core.management import BaseCommand
    2. 

  2. from django.db.models import Q
    3. 

  3. 

  4. from api import settings
    5. 

  5. from desecapi.models import RRset, Domain, User
    6. 

  6. from desecapi.pdns_change_tracker import PDNSChangeTracker
    7. 

  7. 

  8. 

  9. class Command(BaseCommand):
    10. 

  10.     help = (
    11. 

  11.         "Removes all DNS records from domains given either by name or by email address of their owner. "
    12. 

  12.         "Locks all implicated user accounts."
    13. 

  13.     )
    14. 

  14. 

  15.     def add_arguments(self, parser):
    16. 

  16.         parser.add_argument(
    17. 

  17.             "names",
    18. 

  18.             nargs="*",
    19. 

  19.             help="Domain(s) and User(s) to truncate and disable identified by name and email addresses",
    20. 

  20.         )
    21. 

  21. 

  22.     def handle(self, *args, **options):
    23. 

  23.         with PDNSChangeTracker():
    24. 

  24.             # domains to truncate: all domains given and all domains belonging to a user given
    25. 

  25.             domains = Domain.objects.filter(
    26. 

  26.                 Q(name__in=options["names"]) | Q(owner__email__in=options["names"])
    27. 

  27.             )
    28. 

  28.             domain_names = domains.distinct().values_list("name", flat=True)
    29. 

  29. 

  30.             # users to lock: all associated with any of the domains and all given
    31. 

  31.             users = User.objects.filter(
    32. 

  32.                 Q(domains__name__in=options["names"]) | Q(email__in=options["names"])
    33. 

  33.             )
    34. 

  34.             user_emails = users.distinct().values_list("email", flat=True)
    35. 

  35. 

  36.             # rrsets to delete: all belonging to (all domains given and all domains belonging to a user given)
    37. 

  37.             rrsets = RRset.objects.filter(
    38. 

  38.                 Q(domain__name__in=options["names"])
    39. 

  39.                 | Q(domain__owner__email__in=options["names"])
    40. 

  40.             )
    41. 

  41. 

  42.             # Print summary
    43. 

  43.             print(
    44. 

  44.                 f"Deleting {rrsets.distinct().count()} RRset(s) from {domains.distinct().count()} domain(s); "
    45. 

  45.                 f"disabling {users.distinct().count()} associated user account(s)."
    46. 

  46.             )
    47. 

  47. 

  48.             # Print details
    49. 

  49.             for d in domain_names:
    50. 

  50.                 print(f"Truncating domain {d}")
    51. 

  51.             for e in user_emails:
    52. 

  52.                 print(f"Locking user {e}")
    53. 

  53. 

  54.             # delete rrsets and create default NS records
    55. 

  55.             rrsets.delete()
    56. 

  56.             for d in domains:
    57. 

  57.                 RRset.objects.create(
    58. 

  58.                     domain=d,
    59. 

  59.                     subname="",
    60. 

  60.                     type="NS",
    61. 

  61.                     ttl=3600,
    62. 

  62.                     contents=settings.DEFAULT_NS,
    63. 

  63.                 )
    64. 

  64. 

  65.         # lock users
    66. 

  66.         users.update(is_active=False)
    67.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5