Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Bret S. Lambert
On Mon, Jun 29, 2009 at 09:23:47AM +0200, M. Feenstra wrote: Hi List, I'm getting a bit tired of all those web vulnerability scanners. I generate a list of 404 requests to find errors in my websites but this list is mainly filled with these scanners. I have added a table to pf that

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Cristiano Deana
On Mon, Jun 29, 2009 at 9:23 AM, M. Feenstraopen...@itmon.nl wrote: Does something like this exist? Or maybe, is there a better way of dealing with this? http://ossec.net/ it's EXACTLY what you want. -- Cris, member of G.U.F.I Italian FreeBSD User Group http://www.gufi.org/

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Rod Whitworth
On Mon, 29 Jun 2009 09:23:47 +0200, M. Feenstra wrote: Hi List, I'm getting a bit tired of all those web vulnerability scanners. I generate a list of 404 requests to find errors in my websites but this list is mainly filled with these scanners. I have added a table to pf that blocks some of

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Rod Whitworth
On Mon, 29 Jun 2009 09:39:07 +0200, Cristiano Deana wrote: On Mon, Jun 29, 2009 at 9:23 AM, M. Feenstraopen...@itmon.nl wrote: Does something like this exist? Or maybe, is there a better way of dealing with this? http://ossec.net/ it's EXACTLY what you want. They don't say they do pf on

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Cristiano Deana
On 6/29/09 9:58 AM, Rod Whitworth wrote: http://ossec.net/ it's EXACTLY what you want. They don't say they do pf on their webpage. Yes, it does. A default installation use a standard firewall_up on server side, in while in the client it use pf, or iptable or whatever O.S. is supporting.

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Bret S. Lambert
On Mon, Jun 29, 2009 at 05:58:05PM +1000, Rod Whitworth wrote: On Mon, 29 Jun 2009 09:39:07 +0200, Cristiano Deana wrote: On Mon, Jun 29, 2009 at 9:23 AM, M. Feenstraopen...@itmon.nl wrote: Does something like this exist? Or maybe, is there a better way of dealing with this?

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Kaltashkin Eugene
M. Feenstra ?: Hi List, I'm getting a bit tired of all those web vulnerability scanners. I generate a list of 404 requests to find errors in my websites but this list is mainly filled with these scanners. I have added a table to pf that blocks some of the more persistent attackers but I

Re: pf table update-daemon? Does it exist?

2009-06-29 Thread Kaltashkin Eugene
M. Feenstra ? QTFG: pftabled Thanks... I did the QTFG-part quite a bit but never ran into pftabled but you are correct. This is exactly what I was looking for.. Looks like a very nice implementation also. Nice readable code. Thanks again.. you are welcome :) i use pftabled in my