Hello community,
here is the log from the commit of package firehol for openSUSE:Factory checked
in at 2017-09-20 17:07:14
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/firehol (Old)
and /work/SRC/openSUSE:Factory/.firehol.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "firehol"
Wed Sep 20 17:07:14 2017 rev:2 rq:526763 version:3.1.5
Changes:
--------
--- /work/SRC/openSUSE:Factory/firehol/firehol.changes 2017-08-28
15:12:28.176324614 +0200
+++ /work/SRC/openSUSE:Factory/.firehol.new/firehol.changes 2017-09-20
17:07:23.198356449 +0200
@@ -1,0 +2,18 @@
+Sun Sep 17 13:21:49 UTC 2017 - 9@cirno.systems
+
+firehol (3.1.5) - 2017-09-17
+
+ * FireHOL
+
+ - Fix some links in documentation
+
+ * FireQOS
+
+ - Insert a rawmark mask if none specified
+
+ * Update-Ipsets
+
+ - Support serving ipset files from local web server
+ - Lower pressure on github
+
+-------------------------------------------------------------------
Old:
----
firehol-3.1.4.tar.xz
New:
----
firehol-3.1.5.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ firehol.spec ++++++
--- /var/tmp/diff_new_pack.VSkpT5/_old 2017-09-20 17:07:23.878260739 +0200
+++ /var/tmp/diff_new_pack.VSkpT5/_new 2017-09-20 17:07:23.886259613 +0200
@@ -17,7 +17,7 @@
Name: firehol
-Version: 3.1.4
+Version: 3.1.5
Release: 0
Summary: Tools to build stateful firewalls and traffic shaping
License: GPL-2.0
++++++ firehol-3.1.4.tar.xz -> firehol-3.1.5.tar.xz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/ChangeLog new/firehol-3.1.5/ChangeLog
--- old/firehol-3.1.4/ChangeLog 2017-08-20 12:37:37.000000000 +0200
+++ new/firehol-3.1.5/ChangeLog 2017-09-17 14:58:37.000000000 +0200
@@ -1,3 +1,18 @@
+firehol (3.1.5) - 2017-09-17
+
+ * FireHOL
+
+ - Fix some links in documentation
+
+ * FireQOS
+
+ - Insert a rawmark mask if none specified
+
+ * Update-Ipsets
+
+ - Support serving ipset files from local web server
+ - Lower pressure on github
+
firehol (3.1.4) - 2017-08-20
* FireHOL
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/configure new/firehol-3.1.5/configure
--- old/firehol-3.1.4/configure 2017-08-20 12:39:21.000000000 +0200
+++ new/firehol-3.1.5/configure 2017-09-17 15:00:14.000000000 +0200
@@ -1,6 +1,6 @@
#! /bin/sh
# Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for firehol 3.1.4.
+# Generated by GNU Autoconf 2.69 for firehol 3.1.5.
#
# Report bugs to <firehol-d...@lists.firehol.org>.
#
@@ -580,8 +580,8 @@
# Identity of this package.
PACKAGE_NAME='firehol'
PACKAGE_TARNAME='firehol'
-PACKAGE_VERSION='3.1.4'
-PACKAGE_STRING='firehol 3.1.4'
+PACKAGE_VERSION='3.1.5'
+PACKAGE_STRING='firehol 3.1.5'
PACKAGE_BUGREPORT='firehol-d...@lists.firehol.org'
PACKAGE_URL=''
@@ -1345,7 +1345,7 @@
# Omit some internal or obsolete options to make the list less imposing.
# This message is too long to be a string in the A/UX 3.1 sh.
cat <<_ACEOF
-\`configure' configures firehol 3.1.4 to adapt to many kinds of systems.
+\`configure' configures firehol 3.1.5 to adapt to many kinds of systems.
Usage: $0 [OPTION]... [VAR=VALUE]...
@@ -1411,7 +1411,7 @@
if test -n "$ac_init_help"; then
case $ac_init_help in
- short | recursive ) echo "Configuration of firehol 3.1.4:";;
+ short | recursive ) echo "Configuration of firehol 3.1.5:";;
esac
cat <<\_ACEOF
@@ -1534,7 +1534,7 @@
test -n "$ac_init_help" && exit $ac_status
if $ac_init_version; then
cat <<\_ACEOF
-firehol configure 3.1.4
+firehol configure 3.1.5
generated by GNU Autoconf 2.69
Copyright (C) 2012 Free Software Foundation, Inc.
@@ -1551,7 +1551,7 @@
This file contains any messages produced by compilers while
running configure, to aid debugging if configure makes a mistake.
-It was created by firehol $as_me 3.1.4, which was
+It was created by firehol $as_me 3.1.5, which was
generated by GNU Autoconf 2.69. Invocation command line was
$ $0 $@
@@ -2417,7 +2417,7 @@
# Define the identity of the package.
PACKAGE='firehol'
- VERSION='3.1.4'
+ VERSION='3.1.5'
cat >>confdefs.h <<_ACEOF
@@ -15660,7 +15660,7 @@
# report actual input values of CONFIG_FILES etc. instead of their
# values after options handling.
ac_log="
-This file was extended by firehol $as_me 3.1.4, which was
+This file was extended by firehol $as_me 3.1.5, which was
generated by GNU Autoconf 2.69. Invocation command line was
CONFIG_FILES = $CONFIG_FILES
@@ -15713,7 +15713,7 @@
cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //;
s/[\\""\`\$]/\\\\&/g'`"
ac_cs_version="\\
-firehol config.status 3.1.4
+firehol config.status 3.1.5
configured by $0, generated by GNU Autoconf 2.69,
with options \\"\$ac_cs_config\\"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/configure.ac
new/firehol-3.1.5/configure.ac
--- old/firehol-3.1.4/configure.ac 2017-08-20 12:37:37.000000000 +0200
+++ new/firehol-3.1.5/configure.ac 2017-09-17 14:58:37.000000000 +0200
@@ -5,7 +5,7 @@
dnl Package version
define([VERSION_MAJOR], [3])
define([VERSION_MINOR], [1])
-define([VERSION_FIX], [4])
+define([VERSION_FIX], [5])
define([VERSION_SUFFIX], [])
dnl Required program versions
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/contents.md
new/firehol-3.1.5/doc/firehol/contents.md
--- old/firehol-3.1.4/doc/firehol/contents.md 2017-08-20 12:39:23.000000000
+0200
+++ new/firehol-3.1.5/doc/firehol/contents.md 2017-09-17 15:00:16.000000000
+0200
@@ -96,7 +96,7 @@
[classify][keyword-firehol-classify] Y
- Put matching traffic into the
specified traffic shaping class.
-[connmark][keyword-firehol-connmark-helper] Y
- Set a stateful mark from the
`connmark` group.
+[connmark][keyword-firehol-connmark] Y
- Set a stateful mark from the
`connmark` group.
[cthelper][keyword-firehol-cthelper] 4/6
- Control connection tracking
helpers.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/firehol-connmark.5.md
new/firehol-3.1.5/doc/firehol/firehol-connmark.5.md
--- old/firehol-3.1.4/doc/firehol/firehol-connmark.5.md 2017-08-20
12:37:37.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/firehol-connmark.5.md 2017-09-17
14:58:37.000000000 +0200
@@ -15,7 +15,7 @@
connmark6 *value* *chain* *rule-params*
<!--
-contents-table:helper:connmark:keyword-firehol-connmark-helper:Y:-:Set a
stateful mark from the `connmark` group.
+contents-table:helper:connmark:keyword-firehol-connmark:Y:-:Set a stateful
mark from the `connmark` group.
extra-manpage: firehol-connmark46.5
extra-manpage: firehol-connmark4.5
extra-manpage: firehol-connmark6.5
@@ -83,7 +83,7 @@
* [firehol(1)][] - FireHOL program
* [firehol.conf(5)][] - FireHOL configuration
* [firehol-params(5)][] - optional rule parameters
-* [firehol-mark(5)][keyword-firehol-connmark] - set a stateful mark from the
usermark group
+* [firehol-mark(5)][keyword-firehol-mark] - set a stateful mark from the
usermark group
* [iptables(8)](http://ipset.netfilter.org/iptables.man.html) - administration
tool for IPv4 firewalls
* [ip6tables(8)](http://ipset.netfilter.org/ip6tables.man.html) -
administration tool for IPv6 firewalls
* ip(8) - show / manipulate routing, devices, policy routing and tunnels
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/firehol-manual.html
new/firehol-3.1.5/doc/firehol/firehol-manual.html
--- old/firehol-3.1.4/doc/firehol/firehol-manual.html 2017-08-20
12:39:26.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/firehol-manual.html 2017-09-17
15:00:19.000000000 +0200
@@ -16,7 +16,7 @@
<h1 class="title">FireHOL Reference</h1>
<h2 class="author">Copyright (c) 2002-2017 Costa Tsaousis <a
href="mailto:co...@firehol.org";>co...@firehol.org</a></h2>
<h2 class="author">Copyright (c) 2012-2017 Phil Whineray <a
href="mailto:p...@firehol.org";>p...@firehol.org</a></h2>
- <h3 class="date">Version 3.1.4 (Built 20 Aug 2017)</h3>
+ <h3 class="date">Version 3.1.5 (Built 17 Sep 2017)</h3>
</div>
<div id="TOC">
<ul>
@@ -985,7 +985,9 @@
<td align="left">Put matching traffic into the specified traffic
shaping class.</td>
</tr>
<tr class="even">
- <td align="left">[connmark][keyword-firehol-connmark-helper]</td>
+ <td align="left">
+ <a href="#firehol-connmark5">connmark</a>
+ </td>
<td align="center">Y</td>
<td align="left">-</td>
<td align="left">Set a stateful mark from the <code>connmark</code>
group.</td>
@@ -2136,7 +2138,7 @@
<p>connmark4 <em>value</em> <em>chain</em> <em>rule-params</em></p>
<p>connmark6 <em>value</em> <em>chain</em> <em>rule-params</em></p>
<!--
-contents-table:helper:connmark:keyword-firehol-connmark-helper:Y:-:Set a
stateful mark from the `connmark` group.
+contents-table:helper:connmark:keyword-firehol-connmark:Y:-:Set a stateful
mark from the `connmark` group.
extra-manpage: firehol-connmark46.5
extra-manpage: firehol-connmark4.5
extra-manpage: firehol-connmark6.5
@@ -2179,7 +2181,7 @@
<li><a href="#firehol1">firehol(1)</a> - FireHOL program</li>
<li><a href="#firehol.conf5">firehol.conf(5)</a> - FireHOL
configuration</li>
<li><a href="#firehol-params5">firehol-params(5)</a> - optional rule
parameters</li>
- <li><a href="#firehol-connmark5">firehol-mark(5)</a> - set a stateful
mark from the usermark group</li>
+ <li>[firehol-mark(5)][keyword-firehol-mark] - set a stateful mark from
the usermark group</li>
<li><a
href="http://ipset.netfilter.org/iptables.man.html";>iptables(8)</a> -
administration tool for IPv4 firewalls</li>
<li><a
href="http://ipset.netfilter.org/ip6tables.man.html";>ip6tables(8)</a> -
administration tool for IPv6 firewalls</li>
<li>ip(8) - show / manipulate routing, devices, policy routing and
tunnels</li>
Binary files old/firehol-3.1.4/doc/firehol/firehol-manual.pdf and
new/firehol-3.1.5/doc/firehol/firehol-manual.pdf differ
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man1/firehol.1
new/firehol-3.1.5/doc/firehol/man/man1/firehol.1
--- old/firehol-3.1.4/doc/firehol/man/man1/firehol.1 2017-08-20
12:39:30.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man1/firehol.1 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol" "1" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol" "1" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-action.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-action.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-action.5 2017-08-20
12:39:30.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-action.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-action" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-action" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-actions.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-actions.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-actions.5 2017-08-20
12:39:30.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-actions.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-actions" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-actions" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-blacklist.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-blacklist.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-blacklist.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-blacklist.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-blacklist" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-blacklist" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-classify.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-classify.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-classify.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-classify.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-classify" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-classify" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-client.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-client.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-client.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-client.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-client" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-client" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-conf.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-conf.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-conf.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-conf.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol.conf" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol.conf" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-connmark.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-connmark.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-connmark.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-connmark.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-connmark" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-connmark" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
@@ -85,8 +85,8 @@
.IP \[bu] 2
firehol\-params(5) \- optional rule parameters
.IP \[bu] 2
-firehol\-mark(5) \- set a stateful mark from the
-usermark group
+[firehol\-mark(5)][keyword\-firehol\-mark] \- set a stateful mark from
+the usermark group
.IP \[bu] 2
iptables(8) (http://ipset.netfilter.org/iptables.man.html) \-
administration tool for IPv4 firewalls
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-cthelper.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-cthelper.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-cthelper.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-cthelper.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-cthelper" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-cthelper" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-defaults-conf.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-defaults-conf.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-defaults-conf.5
2017-08-20 12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-defaults-conf.5
2017-09-17 15:00:26.000000000 +0200
@@ -1,6 +1,6 @@
.\"t
.nh
-.TH "firehol\-defaults.conf" "5" "Built 20 Aug 2017" "FireHOL Reference"
"3.1.4"
+.TH "firehol\-defaults.conf" "5" "Built 17 Sep 2017" "FireHOL Reference"
"3.1.5"
.SH NAME
.PP
firehol\-defaults.conf \- control variables for FireHOL
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-dscp.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-dscp.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-dscp.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-dscp.5 2017-09-17
15:00:23.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-dscp" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-dscp" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-group.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-group.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-group.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-group.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-group" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-group" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-interface.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-interface.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-interface.5 2017-08-20
12:39:31.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-interface.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-interface" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-interface" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-ipset.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-ipset.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-ipset.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-ipset.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-ipset" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-ipset" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-iptables.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-iptables.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-iptables.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-iptables.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-iptables" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-iptables" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-iptrap.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-iptrap.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-iptrap.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-iptrap.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-iptrap" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-iptrap" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-mac.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-mac.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-mac.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-mac.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-mac" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-mac" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-mark.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-mark.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-mark.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-mark.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-mark" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-mark" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-masquerade.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-masquerade.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-masquerade.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-masquerade.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-masquerade" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-masquerade" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-modifiers.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-modifiers.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-modifiers.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-modifiers.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-modifiers" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-modifiers" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-nat.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-nat.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-nat.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-nat.5 2017-09-17
15:00:24.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-nat" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-nat" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-params.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-params.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-params.5 2017-08-20
12:39:32.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-params.5 2017-09-17
15:00:25.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-params" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-params" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-policy.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-policy.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-policy.5 2017-08-20
12:39:33.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-policy.5 2017-09-17
15:00:25.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-policy" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-policy" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-protection.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-protection.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-protection.5 2017-08-20
12:39:33.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-protection.5 2017-09-17
15:00:25.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-protection" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-protection" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-proxy.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-proxy.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-proxy.5 2017-08-20
12:39:33.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-proxy.5 2017-09-17
15:00:25.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-proxy" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-proxy" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-router.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-router.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-router.5 2017-08-20
12:39:33.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-router.5 2017-09-17
15:00:25.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-router" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-router" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-server.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-server.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-server.5 2017-08-20
12:39:33.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-server.5 2017-09-17
15:00:25.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-server" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-server" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-services.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-services.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-services.5 2017-08-20
12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-services.5 2017-09-17
15:00:26.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-services" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-services" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/firehol/man/man5/firehol-synproxy.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-synproxy.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-synproxy.5 2017-08-20
12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-synproxy.5 2017-09-17
15:00:26.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-synproxy" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-synproxy" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-tcpmss.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-tcpmss.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-tcpmss.5 2017-08-20
12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-tcpmss.5 2017-09-17
15:00:26.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-tcpmss" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-tcpmss" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-tos.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-tos.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-tos.5 2017-08-20
12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-tos.5 2017-09-17
15:00:26.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-tos" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-tos" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-tosfix.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-tosfix.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-tosfix.5 2017-08-20
12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-tosfix.5 2017-09-17
15:00:26.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-tosfix" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-tosfix" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/firehol/man/man5/firehol-version.5
new/firehol-3.1.5/doc/firehol/man/man5/firehol-version.5
--- old/firehol-3.1.4/doc/firehol/man/man5/firehol-version.5 2017-08-20
12:39:34.000000000 +0200
+++ new/firehol-3.1.5/doc/firehol/man/man5/firehol-version.5 2017-09-17
15:00:26.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "firehol\-version" "5" "Built 20 Aug 2017" "FireHOL Reference" "3.1.4"
+.TH "firehol\-version" "5" "Built 17 Sep 2017" "FireHOL Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/fireqos/fireqos-manual.html
new/firehol-3.1.5/doc/fireqos/fireqos-manual.html
--- old/firehol-3.1.4/doc/fireqos/fireqos-manual.html 2017-08-20
12:39:35.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/fireqos-manual.html 2017-09-17
15:00:27.000000000 +0200
@@ -16,7 +16,7 @@
<h1 class="title">FireQOS Reference</h1>
<h2 class="author">Copyright (c) 2013-2017 Costa Tsaousis <a
href="mailto:co...@firehol.org";>co...@firehol.org</a></h2>
<h2 class="author">Copyright (c) 2013-2017 Phil Whineray <a
href="mailto:p...@firehol.org";>p...@firehol.org</a></h2>
- <h3 class="date">Version 3.1.4 (Built 20 Aug 2017)</h3>
+ <h3 class="date">Version 3.1.5 (Built 17 Sep 2017)</h3>
</div>
<div id="TOC">
<ul>
Binary files old/firehol-3.1.4/doc/fireqos/fireqos-manual.pdf and
new/firehol-3.1.5/doc/fireqos/fireqos-manual.pdf differ
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/fireqos/man/man1/fireqos.1
new/firehol-3.1.5/doc/fireqos/man/man1/fireqos.1
--- old/firehol-3.1.4/doc/fireqos/man/man1/fireqos.1 2017-08-20
12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man1/fireqos.1 2017-09-17
15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos" "1" "Built 20 Aug 2017" "FireQOS Reference" "3.1.4"
+.TH "fireqos" "1" "Built 17 Sep 2017" "FireQOS Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-class.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-class.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-class.5 2017-08-20
12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-class.5 2017-09-17
15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos\-class" "5" "Built 20 Aug 2017" "FireQOS Reference" "3.1.4"
+.TH "fireqos\-class" "5" "Built 17 Sep 2017" "FireQOS Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-conf.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-conf.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-conf.5 2017-08-20
12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-conf.5 2017-09-17
15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos.conf" "5" "Built 20 Aug 2017" "FireQOS Reference" "3.1.4"
+.TH "fireqos.conf" "5" "Built 17 Sep 2017" "FireQOS Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-interface.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-interface.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-interface.5 2017-08-20
12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-interface.5 2017-09-17
15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos\-interface" "5" "Built 20 Aug 2017" "FireQOS Reference" "3.1.4"
+.TH "fireqos\-interface" "5" "Built 17 Sep 2017" "FireQOS Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-match.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-match.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-match.5 2017-08-20
12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-match.5 2017-09-17
15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos\-match" "5" "Built 20 Aug 2017" "FireQOS Reference" "3.1.4"
+.TH "fireqos\-match" "5" "Built 17 Sep 2017" "FireQOS Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-params-class.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-params-class.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-params-class.5
2017-08-20 12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-params-class.5
2017-09-17 15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos\-params\-class" "5" "Built 20 Aug 2017" "FireQOS Reference"
"3.1.4"
+.TH "fireqos\-params\-class" "5" "Built 17 Sep 2017" "FireQOS Reference"
"3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-params-match.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-params-match.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-params-match.5
2017-08-20 12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-params-match.5
2017-09-17 15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos\-params\-match" "5" "Built 20 Aug 2017" "FireQOS Reference"
"3.1.4"
+.TH "fireqos\-params\-match" "5" "Built 17 Sep 2017" "FireQOS Reference"
"3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-params.5
new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-params.5
--- old/firehol-3.1.4/doc/fireqos/man/man5/fireqos-params.5 2017-08-20
12:39:37.000000000 +0200
+++ new/firehol-3.1.5/doc/fireqos/man/man5/fireqos-params.5 2017-09-17
15:00:29.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "fireqos\-params" "5" "Built 20 Aug 2017" "FireQOS Reference" "3.1.4"
+.TH "fireqos\-params" "5" "Built 17 Sep 2017" "FireQOS Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/vnetbuild/man/man1/vnetbuild.1
new/firehol-3.1.5/doc/vnetbuild/man/man1/vnetbuild.1
--- old/firehol-3.1.4/doc/vnetbuild/man/man1/vnetbuild.1 2017-08-20
12:39:39.000000000 +0200
+++ new/firehol-3.1.5/doc/vnetbuild/man/man1/vnetbuild.1 2017-09-17
15:00:30.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "vnetbuild" "1" "Built 20 Aug 2017" "VNetBuild Reference" "3.1.4"
+.TH "vnetbuild" "1" "Built 17 Sep 2017" "VNetBuild Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/firehol-3.1.4/doc/vnetbuild/man/man5/vnetbuild-conf.5
new/firehol-3.1.5/doc/vnetbuild/man/man5/vnetbuild-conf.5
--- old/firehol-3.1.4/doc/vnetbuild/man/man5/vnetbuild-conf.5 2017-08-20
12:39:39.000000000 +0200
+++ new/firehol-3.1.5/doc/vnetbuild/man/man5/vnetbuild-conf.5 2017-09-17
15:00:30.000000000 +0200
@@ -1,4 +1,4 @@
-.TH "vnetbuild.conf" "5" "Built 20 Aug 2017" "VNetBuild Reference" "3.1.4"
+.TH "vnetbuild.conf" "5" "Built 17 Sep 2017" "VNetBuild Reference" "3.1.5"
.nh
.SH NAME
.PP
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/doc/vnetbuild/vnetbuild-manual.html
new/firehol-3.1.5/doc/vnetbuild/vnetbuild-manual.html
--- old/firehol-3.1.4/doc/vnetbuild/vnetbuild-manual.html 2017-08-20
12:39:38.000000000 +0200
+++ new/firehol-3.1.5/doc/vnetbuild/vnetbuild-manual.html 2017-09-17
15:00:29.000000000 +0200
@@ -16,7 +16,7 @@
<h1 class="title">VNetBuild Reference</h1>
<h2 class="author">Copyright (c) Copyright (c) 2015-2017 Phil Whineray
<a href="mailto:p...@firehol.org";>p...@firehol.org</a></h2>
<h2 class="author">2015-2017 Costa Tsaousis <a
href="mailto:co...@firehol.org";>co...@firehol.org</a></h2>
- <h3 class="date">Version 3.1.4 (Built 20 Aug 2017)</h3>
+ <h3 class="date">Version 3.1.5 (Built 17 Sep 2017)</h3>
</div>
<div id="TOC">
<ul>
Binary files old/firehol-3.1.4/doc/vnetbuild/vnetbuild-manual.pdf and
new/firehol-3.1.5/doc/vnetbuild/vnetbuild-manual.pdf differ
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/html/ipsets/index.html
new/firehol-3.1.5/html/ipsets/index.html
--- old/firehol-3.1.4/html/ipsets/index.html 2017-08-20 12:37:37.000000000
+0200
+++ new/firehol-3.1.5/html/ipsets/index.html 2017-09-17 14:58:37.000000000
+0200
@@ -603,7 +603,7 @@
<div class="row clearfix">
<div class="col-md-12 column">
<div id="site_last_updated" class="pull-right"
align="right"></div><br/> <br/>
- <span class="glyphicon glyphicon-copyright-mark"
aria-hidden="true"></span> 2015-2017 <a
href="/cdn-cgi/l/email-protection#83e0ecf0f7e2c3f7f0e2ecf6f0eaf0ade4f1">Costa
Tsaousis</a>, for <a href="http://firehol.org";>FireHOL</a> <i>a firewall for
humans!</i>.
+ <span class="glyphicon glyphicon-copyright-mark"
aria-hidden="true"></span> 2015-2017 <a href="mailto:co...@tsaousis.gr";>Costa
Tsaousis</a>, for <a href="http://firehol.org";>FireHOL</a> <i>a firewall for
humans!</i>.
<br/>
The data on this page are automatically generated using
FireHOL's <a
href="https://github.com/firehol/firehol/blob/master/sbin/update-ipsets";>update-ipsets.sh</a>
(for downloading the lists from their sources and generating the data for this
site), which utilizes <a
href="https://github.com/firehol/firehol/wiki/iprange:-optimizing-ipsets-for-iptables";>iprange</a>
(for comparing and manipulating IP lists). Both are part of <a
href="http://firehol.org";>FireHOL</a>, which is provided under GPL v2, so you
are free to get, use, adapt and re-distribute.
<br/>
@@ -666,7 +666,7 @@
</div>
</div>
</div>
-<script>/* <![CDATA[
*/(function(d,s,a,i,j,r,l,m,t){try{l=d.getElementsByTagName('a');t=d.createElement('textarea');for(i=0;l.length-i;i++){try{a=l[i].href;s=a.indexOf('/cdn-cgi/l/email-protection');m=a.length;if(a&&s>-1&&m>28){j=28+s;s='';if(j<m){r='0x'+a.substr(j,2)|0;for(j+=2;j<m&&a.charAt(j)!='X';j+=2)s+='%'+('0'+('0x'+a.substr(j,2)^r).toString(16)).slice(-2);j++;s=decodeURIComponent(s)+a.substr(j,m-j)}t.innerHTML=s.replace(/</g,'<').replace(/\>/g,'>');l[i].href='mailto:'+t.value}}catch(e){}}}catch(e){}})(document);/*
]]> */</script></body>
+</body>
</html>
<script type="text/javascript"
src="//cdnjs.cloudflare.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script>
@@ -1458,7 +1458,7 @@
$('#facts_average_update').html(millisecondsToStr(data.average_update * 60 *
1000));
if(data.file_local)
- $('#file_local').html('<a href="' + data.file_local +
'" target="_blank">download from github</a>');
+ $('#file_local').html('<a href="' + data.file_local +
'" target="_blank">download local copy</a>');
else
$('#file_local').html('(not available)');
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/sbin/fireqos
new/firehol-3.1.5/sbin/fireqos
--- old/firehol-3.1.4/sbin/fireqos 2017-08-20 12:37:37.000000000 +0200
+++ new/firehol-3.1.5/sbin/fireqos 2017-09-17 14:58:37.000000000 +0200
@@ -2278,7 +2278,12 @@
;;
rawmark|rawmarks)
- mark="${mark} ${2//,/ }"
+ local m
+ for m in ${2//,/ }
+ do
+ [[ ! ${m} =~ '/' ]] &&
m="${m}/0xffffffff"
+ mark="${mark} ${m}"
+ done
shift
;;
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/sbin/install.config.in
new/firehol-3.1.5/sbin/install.config.in
--- old/firehol-3.1.4/sbin/install.config.in 2017-08-20 12:39:23.000000000
+0200
+++ new/firehol-3.1.5/sbin/install.config.in 2017-09-17 15:00:16.000000000
+0200
@@ -1,4 +1,4 @@
-VERSION=3.1.4
+VERSION=3.1.5
DATAROOTDIR="@datarootdir_POST@"
SYSCONFDIR="@sysconfdir_POST@"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/firehol-3.1.4/sbin/update-ipsets
new/firehol-3.1.5/sbin/update-ipsets
--- old/firehol-3.1.4/sbin/update-ipsets 2017-08-20 12:37:37.000000000
+0200
+++ new/firehol-3.1.5/sbin/update-ipsets 2017-09-17 14:58:37.000000000
+0200
@@ -333,6 +333,14 @@
# if the .git directory is present, push it also
PUSH_TO_GIT=${PUSH_TO_GIT-0}
+# when PUSH_TO_GIT is enabled, this controls if each
+# ipset will get its own commit, or all files will be
+# committed together
+PUSH_TO_GIT_MERGED=${PUSH_TO_GIT_MERGED-1}
+
+# if we will also push github gh-pages
+PUSH_TO_GIT_WEB=${PUSH_TO_GIT_WEB-${PUSH_TO_GIT}}
+
# the maximum time in seconds, to connect to the remote web server
MAX_CONNECT_TIME=${MAX_CONNECT_TIME-10}
@@ -365,9 +373,13 @@
# the ipset name is appended to it
WEB_URL="http://iplists.firehol.org/?ipset=";
+# the path to copy downloaded files to, using ${WEB_OWNER} permissions
+# if empty, do not copy them
+WEB_DIR_FOR_IPSETS=""
+
# options for the web site
# the ipset name will be appended
-GITHUB_LOCAL_COPY_URL="https://raw.githubusercontent.com/firehol/blocklist-ipsets/master/";
+LOCAL_COPY_URL="https://iplists.firehol.org/files/";
GITHUB_CHANGES_URL="https://github.com/firehol/blocklist-ipsets/commits/master/";
GITHUB_SETINFO="https://github.com/firehol/blocklist-ipsets/tree/master/";
@@ -457,6 +469,8 @@
need to trigger a full refresh of the generated
metadata (it only affects the web site).
+ --cleanup Will cleanup obsolete ipsets that are not
+ available anymore.
run ipset1 ipset2 ...
Will only process the given ipsets.
@@ -829,12 +843,19 @@
echo >&2
info "Committing ${to_be_pushed[@]} to git repository"
local date="$($DATE_CMD -u)"
- # we commit each file alone, to have a clear history per file
in github
- for d in "${to_be_pushed[@]}" set_file_timestamps.sh
- do
- echo "${d}..."
- $GIT_CMD commit "${d}" -m "${date} update"
- done
+
+ if [ ${PUSH_TO_GIT_MERGED} -eq 0 ]
+ then
+ # we commit each file alone, to have a clear history
per file in github
+ for d in "${to_be_pushed[@]}" set_file_timestamps.sh
+ do
+ echo "${d}..."
+ $GIT_CMD commit "${d}" -m "${date} update"
+ done
+ else
+ # we commit all files together
+ $GIT_CMD commit "${to_be_pushed[@]}"
set_file_timestamps.sh -m "${date} update"
+ fi
if [ ${PUSH_TO_GIT} -ne 0 ]
then
@@ -845,6 +866,34 @@
fi
}
+copy_ipsets_to_web() {
+ [ -z "${WEB_DIR_FOR_IPSETS}" -o ! -d "${WEB_DIR_FOR_IPSETS}" ] &&
return 0
+
+ local ipset= f= d=
+ for ipset in "${!UPDATED_SETS[@]}"
+ do
+ [ ! -z "${IPSET_TMP_DO_NOT_REDISTRIBUTE[${ipset}]}" ] &&
continue
+ [ ! -f "${UPDATED_SETS[${ipset}]}" ] && continue
+
+ # relative filename - may include a dir
+ f="${UPDATED_SETS[${ipset}]}"
+ d="${f/\/*/}"
+ [ "${d}" = "${f}" ] && d=
+
+ if [ ! -z "${d}" ]
+ then
+ echo >&2 "Creating directory ${WEB_DIR_FOR_IPSETS}/${d}"
+ ${MKDIR_CMD} -p "${WEB_DIR_FOR_IPSETS}/${d}"
+ [ ! -z "${WEB_OWNER}" ] && ${CHOWN_CMD} "${WEB_OWNER}"
"${WEB_DIR_FOR_IPSETS}/${d}"
+ fi
+
+ echo >&2 "Copying ${f} to ${WEB_DIR_FOR_IPSETS}/${f}"
+ ${CP_CMD} "${f}" "${WEB_DIR_FOR_IPSETS}/${f}.new"
+ [ ! -z "${WEB_OWNER}" ] && ${CHOWN_CMD} "${WEB_OWNER}"
"${WEB_DIR_FOR_IPSETS}/${f}.new"
+ ${MV_CMD} "${WEB_DIR_FOR_IPSETS}/${f}.new"
"${WEB_DIR_FOR_IPSETS}/${f}"
+ done
+}
+
# touch a file to a relative date in the past
touch_in_the_past() {
local mins_ago="${1}" file="${2}"
@@ -1391,7 +1440,7 @@
local commit_history=
if [ -z "${IPSET_TMP_DO_NOT_REDISTRIBUTE[${ipset}]}" ]
then
- file_local="${GITHUB_LOCAL_COPY_URL}${IPSET_FILE[${ipset}]}"
+ file_local="${LOCAL_COPY_URL}${IPSET_FILE[${ipset}]}"
commit_history="${GITHUB_CHANGES_URL}${IPSET_FILE[${ipset}]}"
fi
@@ -2230,17 +2279,23 @@
$MV_CMD -f "${RUN_DIR}"/*.{json,csv,xml} "${WEB_DIR}/"
[ ! -z "${WEB_OWNER}" ] && $CHOWN_CMD ${WEB_OWNER}
"${WEB_DIR}"/*.{json,csv,xml}
- if [ ${PUSH_TO_GIT} -eq 1 ]
+ if [ -d "${WEB_DIR}/.git" ]
then
print_ipset_reset
echo >&2
"-------------------------------------------------------------------------------"
- echo >&2 "Pushing generated web files to git..."
+ echo >&2 "Adding generated web files to git..."
cd "${WEB_DIR}" || return 1
$GIT_CMD add *.json *.csv *.xml
$GIT_CMD commit -a -m "$($DATE_CMD -u) update"
- $GIT_CMD push origin gh-pages
+
+ if [ ${PUSH_TO_GIT_WEB} -eq 1 ]
+ then
+ echo >&2 "Pushing generated web files to git..."
+ $GIT_CMD push origin gh-pages
+ fi
+
cd "${BASE_DIR}" || exit 1
echo >&2
@@ -4331,37 +4386,42 @@
# -----------------------------------------------------------------------------
# atlas.arbor.net
-atlas_parser() { ${EGREP_CMD} "^${IP4_MATCH}, \"" | ${CUT_CMD} -d ',' -f 1; }
+#atlas_parser() { ${EGREP_CMD} "^${IP4_MATCH}, \"" | ${CUT_CMD} -d ',' -f 1; }
-update atlas_attacks $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
- "https://atlas.arbor.net/summary/attacks.csv"; \
- atlas_parser \
- "attacks" "[ATLAS Attacks](https://atlas.arbor.net/summary/attacks) -
ATLAS uses lightweight honeypot sensors to detect and fingerprint the attacks
launched by malicious sources on the Internet. In most cases the attacker is
trying to take control of the target via a published exploit for a known
vulnerability. A variety of exploit tools exist and are usually written
specifically for each attack vector. Exploit attempts and attacks are most
often launched from bots (hosts under an attacker's control), which will
automatically try to exploit any possible host on the Internet. Attack origins
are usually not spoofed, although the source host may be compromised or
infected with malware." \
- "Arbor Networks" "https://atlas.arbor.net/";
-
-update atlas_botnets $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
- "https://atlas.arbor.net/summary/botnets.csv"; \
- atlas_parser \
- "attacks" "[ATLAS Botnets](https://atlas.arbor.net/summary/botnets) -
Botnets are collections of compromised hosts that attackers remotely control
for their own nefarious purposes. Once installed and running, a malicious bot
will attempt to connect to a remote server to receive instructions on what
actions to take. The most common command and control (C&C) protocol used for
this is Internet Relay Chat (IRC). While a legitimate protocol for online chat,
IRC is often used by attackers due to the relative simplicity of the protocol
along with the ready availability of bot software written to use it. After
connecting, a bot-controlled host can be controlled by an attacker and
commanded to conduct malicious actions such as sending spam, scanning the
Internet for other potentially controllable hosts, or launching DoS attacks.
ATLAS maintains a real-time database of malicious botnet command and control
servers that is continuously updated. This information comes from malware
analysis, botnet infiltration, and other sources of data." \
- "Arbor Networks" "https://atlas.arbor.net/";
-
-update atlas_fastflux $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
- "https://atlas.arbor.net/summary/fastflux.csv"; \
- atlas_parser \
- "attacks" "[ATLAS Fastflux](https://atlas.arbor.net/summary/fastflux) -
Fast flux hosting is a technique where the nodes in a botnet are used as the
endpoints in a website hosting scheme. The DNS records change frequently, often
every few minutes, to point to new bots. The actual nodes themselves simply
proxy the request back to the central hosting location. This gives the botnet a
robust hosting infrastructure. Many different kinds of botnets use fastflux DNS
techniques, for malware hosting, for illegal content hosting, for phishing site
hosting, and other such activities. These hosts are likely to be infected with
some form of malware." \
- "Arbor Networks" "https://atlas.arbor.net/";
-
-update atlas_phishing $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
- "https://atlas.arbor.net/summary/phishing.csv"; \
- atlas_parser \
- "attacks" "[ATLAS Phishing](https://atlas.arbor.net/summary/fastflux) -
Phishing servers host content that is designed to socially engineer
unsuspecting users into surrendering private information used for identity
theft. These servers are installed on compromised web servers or botnets, at
times. Phishing Web sites mimic legitimate Web sites, often of a financial
institution, in order to steal logins, passwords, and personal information.
Attackers trick users into using the fake Web site by sending the intended
victim an e-mail claiming to be a legitimate institution requesting the
information for valid reasons, such as account verification. They may then use
the stolen credentials to withdraw large amounts of money from the victim's
account or commit other fraudulent acts. Most targeted brands are usually in
the financial sector, including banks and online commerce sites." \
- "Arbor Networks" "https://atlas.arbor.net/";
-
-update atlas_scans $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
- "https://atlas.arbor.net/summary/scans.csv"; \
- atlas_parser \
- "attacks" "[ATLAS Scans](https://atlas.arbor.net/summary/scans) - Host
scanning is a process whereby automated network sweeps are initiated in search
of hosts running a particular service. This may be indicative of either
legitimate host scanners (including network management systems and authorized
vulnerability scanners) or an attacker (or automated malicious code, such as a
worm) trying to enumerate potential hosts for subsequent compromise. Scans are
often the prelude to an attack, and services scanned by attackers usually
indicate known vulnerabilities for those services. Types of port scans include
connect() scans, SYN scans, stealth scans, bounce scans, XMAS and Null scans.
All reveal to the attacker which services on what hosts are listening for
connections. Scans may be launched from compromised hosts, and their sources
may be forged." \
- "Arbor Networks" "https://atlas.arbor.net/";
+delete_ipset atlas_attacks
+#update atlas_attacks $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
+# "https://atlas.arbor.net/summary/attacks.csv"; \
+# atlas_parser \
+# "attacks" "[ATLAS Attacks](https://atlas.arbor.net/summary/attacks) -
ATLAS uses lightweight honeypot sensors to detect and fingerprint the attacks
launched by malicious sources on the Internet. In most cases the attacker is
trying to take control of the target via a published exploit for a known
vulnerability. A variety of exploit tools exist and are usually written
specifically for each attack vector. Exploit attempts and attacks are most
often launched from bots (hosts under an attacker's control), which will
automatically try to exploit any possible host on the Internet. Attack origins
are usually not spoofed, although the source host may be compromised or
infected with malware." \
+# "Arbor Networks" "https://atlas.arbor.net/";
+
+delete_ipset atlas_botnets
+#update atlas_botnets $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
+# "https://atlas.arbor.net/summary/botnets.csv"; \
+# atlas_parser \
+# "attacks" "[ATLAS Botnets](https://atlas.arbor.net/summary/botnets) -
Botnets are collections of compromised hosts that attackers remotely control
for their own nefarious purposes. Once installed and running, a malicious bot
will attempt to connect to a remote server to receive instructions on what
actions to take. The most common command and control (C&C) protocol used for
this is Internet Relay Chat (IRC). While a legitimate protocol for online chat,
IRC is often used by attackers due to the relative simplicity of the protocol
along with the ready availability of bot software written to use it. After
connecting, a bot-controlled host can be controlled by an attacker and
commanded to conduct malicious actions such as sending spam, scanning the
Internet for other potentially controllable hosts, or launching DoS attacks.
ATLAS maintains a real-time database of malicious botnet command and control
servers that is continuously updated. This information comes from malware
analysis, botnet infiltration, and other sources of data." \
+# "Arbor Networks" "https://atlas.arbor.net/";
+
+delete_ipset atlas_fastflux
+#update atlas_fastflux $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
+# "https://atlas.arbor.net/summary/fastflux.csv"; \
+# atlas_parser \
+# "attacks" "[ATLAS Fastflux](https://atlas.arbor.net/summary/fastflux) -
Fast flux hosting is a technique where the nodes in a botnet are used as the
endpoints in a website hosting scheme. The DNS records change frequently, often
every few minutes, to point to new bots. The actual nodes themselves simply
proxy the request back to the central hosting location. This gives the botnet a
robust hosting infrastructure. Many different kinds of botnets use fastflux DNS
techniques, for malware hosting, for illegal content hosting, for phishing site
hosting, and other such activities. These hosts are likely to be infected with
some form of malware." \
+# "Arbor Networks" "https://atlas.arbor.net/";
+
+delete_ipset atlas_phishing
+#update atlas_phishing $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
+# "https://atlas.arbor.net/summary/phishing.csv"; \
+# atlas_parser \
+# "attacks" "[ATLAS Phishing](https://atlas.arbor.net/summary/fastflux) -
Phishing servers host content that is designed to socially engineer
unsuspecting users into surrendering private information used for identity
theft. These servers are installed on compromised web servers or botnets, at
times. Phishing Web sites mimic legitimate Web sites, often of a financial
institution, in order to steal logins, passwords, and personal information.
Attackers trick users into using the fake Web site by sending the intended
victim an e-mail claiming to be a legitimate institution requesting the
information for valid reasons, such as account verification. They may then use
the stolen credentials to withdraw large amounts of money from the victim's
account or commit other fraudulent acts. Most targeted brands are usually in
the financial sector, including banks and online commerce sites." \
+# "Arbor Networks" "https://atlas.arbor.net/";
+
+delete_ipset atlas_scans
+#update atlas_scans $[24 * 60] "$[48*60] $[7*24*60] $[30*24*60]" ipv4 ip \
+# "https://atlas.arbor.net/summary/scans.csv"; \
+# atlas_parser \
+# "attacks" "[ATLAS Scans](https://atlas.arbor.net/summary/scans) - Host
scanning is a process whereby automated network sweeps are initiated in search
of hosts running a particular service. This may be indicative of either
legitimate host scanners (including network management systems and authorized
vulnerability scanners) or an attacker (or automated malicious code, such as a
worm) trying to enumerate potential hosts for subsequent compromise. Scans are
often the prelude to an attack, and services scanned by attackers usually
indicate known vulnerabilities for those services. Types of port scans include
connect() scans, SYN scans, stealth scans, bounce scans, XMAS and Null scans.
All reveal to the attacker which services on what hosts are listening for
connections. Scans may be launched from compromised hosts, and their sources
may be forged." \
+# "Arbor Networks" "https://atlas.arbor.net/";
# -----------------------------------------------------------------------------
@@ -5449,12 +5509,13 @@
"[PacketMail.net](https://www.packetmail.net/) IP addresses that have
been detected performing TCP SYN to 81.4.103.251 to a non-listening service or
daemon. No assertion is made, nor implied, that any of the below listed IP
addresses are accurate, malicious, hostile, or engaged in nefarious acts. Use
this list at your own risk." \
"PacketMail.net" "https://www.packetmail.net/";
-update packetmail_carisirt $[4*60] 0 ipv4 ip \
- "https://www.packetmail.net/iprep_CARISIRT.txt"; \
- parse_packetmail \
- "reputation" \
- "[PacketMail.net](https://www.packetmail.net/) IP addresses that have
been detected performing TCP SYN to 66.240.206.5 to a non-listening service or
daemon. No assertion is made, nor implied, that any of the below listed IP
addresses are accurate, malicious, hostile, or engaged in nefarious acts. Use
this list at your own risk." \
- "PacketMail.net" "https://www.packetmail.net/";
+delete_ipset packetmail_carisirt
+#update packetmail_carisirt $[4*60] 0 ipv4 ip \
+# "https://www.packetmail.net/iprep_CARISIRT.txt"; \
+# parse_packetmail \
+# "reputation" \
+# "[PacketMail.net](https://www.packetmail.net/) IP addresses that have
been detected performing TCP SYN to 66.240.206.5 to a non-listening service or
daemon. No assertion is made, nor implied, that any of the below listed IP
addresses are accurate, malicious, hostile, or engaged in nefarious acts. Use
this list at your own risk." \
+# "PacketMail.net" "https://www.packetmail.net/";
update packetmail_mail $[4*60] 0 ipv4 ip \
"https://www.packetmail.net/iprep_mail.txt"; \
@@ -6056,19 +6117,21 @@
# -----------------------------------------------------------------------------
# http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx
-update jigsaw_attacks $[24*60] 0 ipv4 ip \
- "http://www.slcsecurity.com/feedspublic/IP/malicious-ip-src.txt"; \
- remove_comments \
- "attacks" \
- "[Jigsaw Security
Enterprise](http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx) IP
Address Sources of Attack. Information on this blacklist is low fidelity
meaning we do not update these indicators that often and there is no validation
of the data. These are raw feeds that have not been processed. In order to get
the most up to date data and to remove false positives you should consider
subscribing to our Jigsaw Enterprise Solution." \
- "Jigsaw Security Enterprise"
"http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx";
+delete_ipset jigsaw_attacks
+#update jigsaw_attacks $[24*60] 0 ipv4 ip \
+# "http://www.slcsecurity.com/feedspublic/IP/malicious-ip-src.txt"; \
+# remove_comments \
+# "attacks" \
+# "[Jigsaw Security
Enterprise](http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx) IP
Address Sources of Attack. Information on this blacklist is low fidelity
meaning we do not update these indicators that often and there is no validation
of the data. These are raw feeds that have not been processed. In order to get
the most up to date data and to remove false positives you should consider
subscribing to our Jigsaw Enterprise Solution." \
+# "Jigsaw Security Enterprise"
"http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx";
-update jigsaw_malware $[24*60] 0 ipv4 ip \
- "http://www.slcsecurity.com/feedspublic/IP/malicious-ip-dst.txt"; \
- remove_comments \
- "malware" \
- "[Jigsaw Security
Enterprise](http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx)
Malicious IP Destinations usually C2 or botnet activity or malicious payloads.
Information on this blacklist is low fidelity meaning we do not update these
indicators that often and there is no validation of the data. These are raw
feeds that have not been processed. In order to get the most up to date data
and to remove false positives you should consider subscribing to our Jigsaw
Enterprise Solution." \
- "Jigsaw Security Enterprise"
"http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx";
+delete_ipset jigsaw_malware
+#update jigsaw_malware $[24*60] 0 ipv4 ip \
+# "http://www.slcsecurity.com/feedspublic/IP/malicious-ip-dst.txt"; \
+# remove_comments \
+# "malware" \
+# "[Jigsaw Security
Enterprise](http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx)
Malicious IP Destinations usually C2 or botnet activity or malicious payloads.
Information on this blacklist is low fidelity meaning we do not update these
indicators that often and there is no validation of the data. These are raw
feeds that have not been processed. In order to get the most up to date data
and to remove false positives you should consider subscribing to our Jigsaw
Enterprise Solution." \
+# "Jigsaw Security Enterprise"
"http://www.jigsawsecurityenterprise.com/#!open-blacklist/kafsx";
# -----------------------------------------------------------------------------
@@ -7417,6 +7480,9 @@
# update the web site, if we have to (does nothing if not enabled)
update_web
+# copy the ipset files to web dir (does nothing if not enabled)
+copy_ipsets_to_web
+
# commit changes to git (does nothing if not enabled)
commit_to_git
