Current location

narf Source control manager Git

summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorshtrom <shtrom@1991c358-8f32-0410-a49a-990740bdf4c2>2010-07-07 03:58:35 +0000
committershtrom <shtrom@1991c358-8f32-0410-a49a-990740bdf4c2>2010-07-07 03:58:35 +0000
commit5a343059f955e34574eea95a8cea0483507fe7d8 (patch)
tree390dbfc9938d8b6462c420a620a6534271e49643 /openbsd
parent9b73b5c61845666e52a4c8f0af9ca5380f6d7357 (diff)
[denyhost.sh] Updated documentation in header comments.
git-svn-id: svn+ssh://scm.narf.ssji.net/svn/shtrom/scripts@812 1991c358-8f32-0410-a49a-990740bdf4c2
Diffstat (limited to 'openbsd')
-rwxr-xr-xopenbsd/denyhost.sh6
1 files changed, 4 insertions, 2 deletions
diff --git a/openbsd/denyhost.sh b/openbsd/denyhost.sh
index 52793a5..94fb63d 100755
--- a/openbsd/denyhost.sh
+++ b/openbsd/denyhost.sh
@@ -7,11 +7,13 @@
# Minimal pf.conf file:
# table <whitelist> persist
# table <kiddies> persist
-# pass in quick on $ext_if from <whitelist>
+# pass in quick on egress proto tcp from <whitelist> to (egress) port ssh
# block in quick on $ext_if from <kiddies>
+# Crontab entry:
+# */5 * * * * /usr/local/sbin/denyhost.sh
#
# Remember to manually populate your <whitelist> table:
-# # pfctl -vT whitelist -t add ADDRESS
+# # pfctl -vt whitelist -T add ADDRESS
#
PATH=/usr/local/bin:$PATH
AUTHLOG=/var/log/authlog