paramah/ossec-blacklist
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Update blacklist.sh

Browse Source
This commit is contained in:
Alexandre Laroche 2016-03-09 18:09:51 -05:00
parent b14355ce2c
commit 5ca9873203
1 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
blacklist.sh
View File

@ -83,7 +83,6 @@ else
FORWARD=FORWARD FORWARD=FORWARD
fi fi
# create main blocklists chain # create main blocklists chain
if ! iptables -L | grep -q "Chain ${blocklist_chain_name}"; then if ! iptables -L | grep -q "Chain ${blocklist_chain_name}"; then
iptables -N ${blocklist_chain_name} iptables -N ${blocklist_chain_name}
@ -107,10 +106,13 @@ set_name="manual-blacklist"
if ! ipset list | grep -q "Name: ${set_name}"; then if ! ipset list | grep -q "Name: ${set_name}"; then
ipset create "${set_name}" hash:net ipset create "${set_name}" hash:net
fi fi
link_set("${blocklist_chain_name}", "${blocklist_chain_name}", "$3") link_set "${blocklist_chain_name}" "${set_name}" "$3"
echo $URLS
# download and process the dynamic blacklists # download and process the dynamic blacklists
for url in $urls; do for url in $URLS
do
echo $url
# initialize temp files # initialize temp files
unsorted_blocklist=$(mktemp) unsorted_blocklist=$(mktemp)
sorted_blocklist=$(mktemp) sorted_blocklist=$(mktemp)
@ -176,10 +178,8 @@ for url in $urls; do
# actually execute the set update # actually execute the set update
ipset -! -q restore < "${new_set_file}" ipset -! -q restore < "${new_set_file}"
link_set("${blocklist_chain_name}", "${blocklist_chain_name}", "$3") link_set "${blocklist_chain_name}" "${set_name}" "$3"
# clean up temp files # clean up temp files
rm "${unsorted_blocklist}" "${sorted_blocklist}" "${new_set_file}" "${headers}" rm "${unsorted_blocklist}" "${sorted_blocklist}" "${new_set_file}" "${headers}"
done done