endpoint-firewall-tools
文件大小: unknow
源码售价: 5 个金币 积分规则     积分充值
资源说明:End Point firewall tools
# End Point Firewall Tools
http://www.endpoint.com/

These are scripts that we have used for many years at End Point to allow
web-based temporary firewall whitelisting for users at otherwise blocked
IP addresses.

## firewall-pf-flushtables

Trivial script to purge OpenBSD pf address tables. We've used this in a cron
job to purge temporary whitelisting every day, or week, for example.

## firewall-whitelisting-failcount

This script manages the database of failed logins by user name, and lets you
clear counters.

## firewall-whitelisting-local-cgi

This is the original, simple firewall whitelisting script that runs under
suidperl. Set its permissions like this:

chown root:root $file
chmod u=srx,go= $file

It is invoked by Apache as a CGI program, and counts on you setting Apache up
with HTTP basic authentication to protect it.

## firewall-whitelisting-remote-cgi

This is a more feature-rich firewall whitelisting script that runs under
plain perl from within a sudo wrapper.

It also expects to be invoked by Apache as a CGI program, but has its own
user and group authentication. It also adds per-username login failure
counters, and can ssh to remote systems to adjust their firewall rules too.

## firewall-whitelisting-sudo-wrapper

OpenBSD does not provide suidperl, and newer versions of Perl don't provide
it any more at all, so this script is a simple sudo wrapper that will
run the CGI program with root privileges it needs (if you configure your
/etc/sudoers appropriately).

本源码包内暂不包含可直接显示的源代码文件,请下载源码包。