Where are my F5 BIG IPs?

By now everyone should’ve been notified by the vendors and security people about fixing you F5 BIG IP for CVE 2020-5902.

But since the actual exploit code has been released and some bad people have started abusing it, you’re advised to do an extra check and see if you have got to all your BIG IPS. ShadowTrackr has some checks to detect them, and you can get a list by typing this command in the search bar:

website.software: "F5"

Note that you’ll see websites on which BIG IPS are detected, and some of these might be grouped behind the same device.

Updated API, including Python package

You can now also query all DNS records through the API. Details are in the API docs.

To be honest, I added this only because I wanted to check DNS records in some automated test that use the API. But who knows, some of you might find it useful :-)

Mail reports not sent this morning (solved)

This morning the ipv6 address of one of our mailservers has briefly been listed on the SpamHaus CSS list. While regular ShadowTrackr mail was still functional, this did impact all email reports sent from the website. Our logs show that about a dozen reports have not been sent, apologies for that.

The problem likely occurred when someone receiving an email from that webserver marked it as spam. The problem is fixed now, and I’ll do an extra on all accounts and webforms/reports for problems.