Great Tech Resources!

20, Jul 2022
Get familiar with Whitelisting and Blacklisting

In this article, we will focus on one really interesting topic, which is Whitelisting and Blacklisting. First, we will explain what Whitelisting is and then what Blacklisting is. Finally, we will make a comparison between them. So, let’s start.

Whitelisting: Definition

Whitelisting is compiling a list of dependable programs or websites that are authorized to run and function on the network. When whitelisting, the default behavior is to either deny access to all other apps or to infer that any applications not on the list pose a security risk. Those apps that aren’t on the list need to gain your trust before they can access the network.

Some network managers prefer allowlisting because it offers a high level of protection by default. However, it can also be quite simple and quick just to grant access to a small selection of reliable applications while blocking all others.

What is Blacklisting?

The reverse of whitelisting is blacklisting. A denylist notifies the server that a particular website or email is hazardous in the eyes of the healthcare expert. On a denylist, any website or email address is not retrieved or received. Never is the existence of an email on a blacklist disclosed to the email sender or website host.

Additionally, Blacklisting is a technique for limiting the access that denies those entities that were added to the denylist access to a network or system based on their distinctive identifier, which is typically their distinct IP addresses.

Blacklisting is the process of denying access to an object to ALL entities that have been put on the BLACKLIST.

Whitelisting and Blacklisting – Main differences

  • While Allowlisting is focused on building trust, Denylisting is threat-focused.
  • While Whitelisting allows access to individuals on its list, Blacklisting restricts access for those on its list.
  • While the default is forbidden when using Allowlisting, it is permitted when using Denylisting.
  • If we are talking about a massive network with several variables, denylisting and safelisting may be challenging to maintain.

What are Whitelisting and Blacklisting across devices?

  • In routers

Through your Black List or your White List under Access Control, you can prevent or let a particular client device from connecting to your network (wired or wirelessly).

  • In Firewalls

Choose Firewall from the menu bar to stop unauthorized users from using your computer. Ensure that Access Control is active. IP addresses can be blocked by adding them to a whitelist or blacklist. Enter the IP address you want to allow access to or restrict access to in the Address New text box after choosing the IP address.

  • In websites

By editing the .htaccess file on your server, you can whitelist or blacklist any IP addresses you want.

If you want to allowlist IP: 

order deny,allow
deny from all
allow from <your ip>

If you want to blacklist an IP address:

Deny from <your ip>

If you blacklist an IP address with .htaccess, the blocked IP will receive a 403 Forbidden HTTP status code when visiting your website.

Recommended article: Monitoring service: Why is it important?

Conclusion

If you are particular about the identity of your bad actor, Blacklisting is a good strategy. It can be included on the list, keeping you safe until a new one appears. Although whitelisting is more drastic, its default practice of refusing access is frequently safer.