Current location

narf Source control manager Git

summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorOlivier Mehani <shtrom@ssji.net>2015-12-24 13:15:12 +0100
committerOlivier Mehani <shtrom@ssji.net>2015-12-24 13:15:12 +0100
commitf640d669d1ce644d7f5085b5fb8a1f71eb32c797 (patch)
treeb481ffb3bbd10f3d36abd47f6777aae52c534cb7 /openbsd
parenteaafc8246d14c722ec4dbbb1e0dca47b1334699d (diff)
Keep blockers list in /etc
Signed-off-by: Olivier Mehani <shtrom@ssji.net>
Diffstat (limited to 'openbsd')
-rwxr-xr-xopenbsd/denyhost.sh3
1 files changed, 2 insertions, 1 deletions
diff --git a/openbsd/denyhost.sh b/openbsd/denyhost.sh
index 629ef00..bea320d 100755
--- a/openbsd/denyhost.sh
+++ b/openbsd/denyhost.sh
@@ -6,7 +6,7 @@
#
# Minimal pf.conf file:
# table <whitelist> persist file "/etc/whitelist"
-# table <kiddies> persist file "/var/tmp/blockers.list"
+# table <kiddies> persist file "/etc/blockers.list"
# pass in quick on egress proto tcp from <whitelist> to (egress) port ssh
# block in quick on $ext_if from <kiddies>
# Crontab entry:
@@ -152,5 +152,6 @@ pfctl -t kiddies -T expire 25200 1>/dev/null 2>&1
# Add new entries
mv $NEW_BLOCKERS_FILE ${TMP_DIR}/blockers.list
pfctl -t kiddies -Tadd -f ${TMP_DIR}/blockers.list 1>/dev/null 2>&1
+mv ${TMP_DIR}/blockers.list /etc/blockers.list
rm $PIDFILE