资源说明:End Point firewall tools
# End Point Firewall Tools http://www.endpoint.com/ These are scripts that we have used for many years at End Point to allow web-based temporary firewall whitelisting for users at otherwise blocked IP addresses. ## firewall-pf-flushtables Trivial script to purge OpenBSD pf address tables. We've used this in a cron job to purge temporary whitelisting every day, or week, for example. ## firewall-whitelisting-failcount This script manages the database of failed logins by user name, and lets you clear counters. ## firewall-whitelisting-local-cgi This is the original, simple firewall whitelisting script that runs under suidperl. Set its permissions like this: chown root:root $file chmod u=srx,go= $file It is invoked by Apache as a CGI program, and counts on you setting Apache up with HTTP basic authentication to protect it. ## firewall-whitelisting-remote-cgi This is a more feature-rich firewall whitelisting script that runs under plain perl from within a sudo wrapper. It also expects to be invoked by Apache as a CGI program, but has its own user and group authentication. It also adds per-username login failure counters, and can ssh to remote systems to adjust their firewall rules too. ## firewall-whitelisting-sudo-wrapper OpenBSD does not provide suidperl, and newer versions of Perl don't provide it any more at all, so this script is a simple sudo wrapper that will run the CGI program with root privileges it needs (if you configure your /etc/sudoers appropriately).
本源码包内暂不包含可直接显示的源代码文件,请下载源码包。