Hey all, It took me longer than expected but I have finished adding persistence to dfd_keeper. This means that firewall rules which can be turned on or off now maintain their state across reboots. Similarly, other commands which maintain state will do so across reboots without any additional work.
If anyone is interested in playing with DFD, now is a good chance to get in early. One exciting opportunity that hasn't been exploited yet is to use a logwatching program to invoke DFD commands to block IPs trying to brute-force SSH passwords or block IPs trying to exploit web vulnerabilities (by parsing the web server error log). Expect a release of the code to my homepage within a few days. Scripts which use dfd_keeper will need to add one line and make slight changes to take full advantage of the persistence features. -- http://www.lightconsulting.com/~travis/ -><- P=NP if (P=0 or N=1) "My love for mathematics is unto 1/x as x approaches 0." GPG fingerprint: 50A1 15C5 A9DE 23B9 ED98 C93E 38E9 204A 94C2 641B
