500.ipfwdenied (102398) | 500.ipfwdenied (105936) |
---|---|
1#!/bin/sh - 2# 3# Copyright (c) 2001 The FreeBSD Project 4# All rights reserved. 5# 6# Redistribution and use in source and binary forms, with or without 7# modification, are permitted provided that the following conditions 8# are met: --- 10 unchanged lines hidden (view full) --- 19# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 20# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 21# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 22# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 23# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 24# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 25# SUCH DAMAGE. 26# | 1#!/bin/sh - 2# 3# Copyright (c) 2001 The FreeBSD Project 4# All rights reserved. 5# 6# Redistribution and use in source and binary forms, with or without 7# modification, are permitted provided that the following conditions 8# are met: --- 10 unchanged lines hidden (view full) --- 19# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 20# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 21# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 22# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 23# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 24# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 25# SUCH DAMAGE. 26# |
27# $FreeBSD: head/etc/periodic/security/500.ipfwdenied 102398 2002-08-25 04:09:17Z cjc $ | 27# $FreeBSD: head/etc/periodic/security/500.ipfwdenied 105936 2002-10-25 15:14:16Z thomas $ |
28# 29 | 28# 29 |
30# Show denied packets 31# 32 33 | |
34# If there is a global system configuration file, suck it in. 35# 36if [ -r /etc/defaults/periodic.conf ] 37then 38 . /etc/defaults/periodic.conf 39 source_periodic_confs 40fi 41 | 30# If there is a global system configuration file, suck it in. 31# 32if [ -r /etc/defaults/periodic.conf ] 33then 34 . /etc/defaults/periodic.conf 35 source_periodic_confs 36fi 37 |
42LOG="${daily_status_security_logdir}" | 38. /etc/periodic/security/security.functions 39 |
43rc=0 44 45case "$daily_status_security_ipfwdenied_enable" in 46 [Yy][Ee][Ss]) 47 TMP=`mktemp ${TMPDIR:-/tmp}/security.XXXXXXXXXX` 48 if ipfw -a l 2>/dev/null | egrep "deny|reset|unreach" > ${TMP}; then | 40rc=0 41 42case "$daily_status_security_ipfwdenied_enable" in 43 [Yy][Ee][Ss]) 44 TMP=`mktemp ${TMPDIR:-/tmp}/security.XXXXXXXXXX` 45 if ipfw -a l 2>/dev/null | egrep "deny|reset|unreach" > ${TMP}; then |
49 if [ ! -f ${LOG}/ipfw.today ]; then 50 rc=1 51 echo "" 52 echo "No ${LOG}/ipfw.today" 53 cp ${TMP} ${LOG}/ipfw.today || rc=3 54 fi 55 56 if ! cmp ${LOG}/ipfw.today ${TMP} >/dev/null; then 57 [ $rc -lt 1 ] && rc=1 58 echo "" 59 echo "${host} denied packets:" 60 diff -b ${LOG}/ipfw.today ${TMP} | egrep "^>" 61 mv ${LOG}/ipfw.today ${LOG}/ipfw.yesterday || rc=3 62 mv ${TMP} ${LOG}/ipfw.today || rc=3 63 fi | 46 check_diff new_only ipfw ${TMP} "${host} ipfw denied packets:" |
64 fi | 47 fi |
48 rc=$? |
|
65 rm -f ${TMP};; 66 *) rc=0;; 67esac 68 69exit $rc | 49 rm -f ${TMP};; 50 *) rc=0;; 51esac 52 53exit $rc |