diff options
| author | IT Offshore <developer@it-offshore.co.uk> | 2013-11-10 09:58:58 +0000 |
|---|---|---|
| committer | Natanael Copa <ncopa@alpinelinux.org> | 2013-11-15 15:56:53 +0000 |
| commit | eadf0256139ab6119be9dcc04df58ac4bef2918a (patch) | |
| tree | 9e1d5a06b955de5c32a59455bacafdda5175effb /testing/fwsnort/fwsnort.update | |
| parent | abfbc911367cbd315ee0564a4756aa4197799c40 (diff) | |
| download | aports-eadf0256139ab6119be9dcc04df58ac4bef2918a.tar.bz2 aports-eadf0256139ab6119be9dcc04df58ac4bef2918a.tar.xz | |
testing/fwsnort: new aport
Application layer IDS/IPS by translating snort rules into iptables
http://www.cipherdyne.org/fwsnort/
re-submitted complete patch for FWSNORT correcting:
periodic.daily - now updates the SNORT rules / PSAD signatures daily.
fwsnort.post-install - now just shows a message to update signatures manually
(to avoid any problems with installations on tmpfs). Now uses the system terminal
colours $STRONG $GREEN.
fwsnort.update - update script for FWSNORT & PSAD (if PSAD exists).
fwsnort.up - lives in /etc/network/if-pre-up.d/ to put the SNORT rules into iptables
every time networking comes up.
Diffstat (limited to 'testing/fwsnort/fwsnort.update')
| -rw-r--r-- | testing/fwsnort/fwsnort.update | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/testing/fwsnort/fwsnort.update b/testing/fwsnort/fwsnort.update new file mode 100644 index 0000000000..41dc608f6d --- /dev/null +++ b/testing/fwsnort/fwsnort.update @@ -0,0 +1,15 @@ +#!/bin/sh + +# update fwsnort rules / psad signatures +/usr/sbin/fwsnort --update-rules +#generate iptables ruleset +/usr/sbin/fwsnort +#splice rules into iptables +/var/lib/fwsnort/fwsnort.sh + +if ps aux | grep psad; then + psad --sig-update + echo "running 'psad -H'" + psad -H +fi + |