diff options
| author | Olivier Mehani <shtrom@ssji.net> | 2015-12-24 13:15:12 +0100 |
|---|---|---|
| committer | Olivier Mehani <shtrom@ssji.net> | 2015-12-24 13:15:12 +0100 |
| commit | f640d669d1ce644d7f5085b5fb8a1f71eb32c797 (patch) | |
| tree | b481ffb3bbd10f3d36abd47f6777aae52c534cb7 | |
| parent | eaafc8246d14c722ec4dbbb1e0dca47b1334699d (diff) | |
Keep blockers list in /etc
Signed-off-by: Olivier Mehani <shtrom@ssji.net>
| -rwxr-xr-x | openbsd/denyhost.sh | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/openbsd/denyhost.sh b/openbsd/denyhost.sh index 629ef00..bea320d 100755 --- a/openbsd/denyhost.sh +++ b/openbsd/denyhost.sh @@ -6,7 +6,7 @@ # # Minimal pf.conf file: # table <whitelist> persist file "/etc/whitelist" -# table <kiddies> persist file "/var/tmp/blockers.list" +# table <kiddies> persist file "/etc/blockers.list" # pass in quick on egress proto tcp from <whitelist> to (egress) port ssh # block in quick on $ext_if from <kiddies> # Crontab entry: @@ -152,5 +152,6 @@ pfctl -t kiddies -T expire 25200 1>/dev/null 2>&1 # Add new entries mv $NEW_BLOCKERS_FILE ${TMP_DIR}/blockers.list pfctl -t kiddies -Tadd -f ${TMP_DIR}/blockers.list 1>/dev/null 2>&1 +mv ${TMP_DIR}/blockers.list /etc/blockers.list rm $PIDFILE |
