Author: lidl
Date: Thu Oct 13 03:08:32 2016
New Revision: 307172
URL: https://svnweb.freebsd.org/changeset/base/307172
Log:
MFC r306696: Make 502.pfdenied find blacklistd/* filter names dynamically
This change is needed to make the 520.pfdenied script find the new
blacklistd/* anchor points for reporting blocked traffic.
Sponsored by: The FreeBSD Foundation
Modified:
stable/11/etc/periodic/security/520.pfdenied
Directory Properties:
stable/11/ (props changed)
Modified: stable/11/etc/periodic/security/520.pfdenied
==============================================================================
--- stable/11/etc/periodic/security/520.pfdenied Thu Oct 13 03:06:23
2016 (r307171)
+++ stable/11/etc/periodic/security/520.pfdenied Thu Oct 13 03:08:32
2016 (r307172)
@@ -44,8 +44,7 @@ rc=0
if check_yesno_period security_status_pfdenied_enable
then
TMP=`mktemp -t security`
- touch ${TMP}
- for _a in "" blacklistd
+ for _a in "" $(pfctl -a "blacklistd" -sA 2>/dev/null)
do
pfctl -a ${_a} -sr -v -z 2>/dev/null | \
nawk '{if (/^block/) {buf=$0; getline; gsub(" +"," ",$0); if
($5 > 0) print buf$0;} }' >> ${TMP}
_______________________________________________
svn-src-all@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/svn-src-all
To unsubscribe, send any mail to "svn-src-all-unsubscr...@freebsd.org"
