d731127ea2
Major changes from previous version:
Master site has moved to sourceforge
Licence has changed to a GPL-like licence
Minor changes from previous version:
12-21-1999 - 1.1 Fixed typo in bare-bones TCP list where 524 was supposed to be for 1524.
03-31-2000 - 1.1 Updated .conf to add ipf blocking rule. Thanks Graham Dunn
<gdunn@inscriber.com>
06-08-2000 - 1.1 Fixed an error in the state engine portion that could cause an increment error
under certain conditions. Thanks Peter M. Allan <peter.m.allan@hsbcgroup.com> for finding this.
6-21-2000 - 1.1 New Features added
- Added in feature to disable DNS host resolution by checking RESOLVE_HOST in
conf file.
- Added in feature to have external command run before or after blocking has
occurred as defined in KILL_RUN_CMD_FIRST option in conf file.
- Removed DoBlockTCP/UDP functions. Converted over to generic flag checker.
7-5-2000 - 1.1
- Added iptables support (thanks Scott Catterton <scatterton@valinux.com>)
- Added Makefile support for Irix
- Put in ports for common DDOS ports
9-8-2000 - 1.1 - Added in netmask support
9-9-2000 - 1.1 - Finally moved resolver functions to own area.
- Made CleanAndResolve to ensure DNS records returned are sanitized
correctly before being passed back.
3-23-2001 - 1.1 - Fixed a bug that showed up under Linux 2.4 Kernel that would cause accept
to loop. There was an error with how I used a count variable after trying to bind to ports.
If the port didn't bind the count for the openSockfd would still increment and this caused
the error to show up.
6-26-2001 - 1.1 - Added Mac OS X build support (Same as FreeBSD). Fixed bug for Advanced mode
to properly monitor 1024 ports (it only did first 1023 before). Thanks Guido.
05-23-2003 - 1.2 - Removed references to old psionic e-mail and changed license to
Common Public License.
I've also added a fix for a multi-line string constant for gcc3.
32 lines
1.2 KiB
Text
32 lines
1.2 KiB
Text
$NetBSD: patch-ab,v 1.3 2004/01/22 10:08:19 agc Exp $
|
|
|
|
--- portsentry.conf 1999/11/09 02:45:42 1.13
|
|
+++ portsentry.conf 2000/02/07 15:11:33
|
|
@@ -80,11 +80,11 @@
|
|
######################
|
|
#
|
|
# Hosts to ignore
|
|
-IGNORE_FILE="/usr/local/psionic/portsentry/portsentry.ignore"
|
|
+IGNORE_FILE="@PKG_SYSCONFDIR@/portsentry.ignore"
|
|
# Hosts that have been denied (running history)
|
|
-HISTORY_FILE="/usr/local/psionic/portsentry/portsentry.history"
|
|
+HISTORY_FILE="@PKG_SYSCONFDIR@/portsentry.history"
|
|
# Hosts that have been denied this session only (temporary until next restart)
|
|
-BLOCKED_FILE="/usr/local/psionic/portsentry/portsentry.blocked"
|
|
+BLOCKED_FILE="@PKG_SYSCONFDIR@/portsentry.blocked"
|
|
|
|
##############################
|
|
# Misc. Configuration Options#
|
|
@@ -167,10 +167,10 @@
|
|
#KILL_ROUTE="/sbin/route add -host $TARGET$ reject"
|
|
|
|
# Generic BSD (BSDI, OpenBSD, NetBSD, FreeBSD)
|
|
-#KILL_ROUTE="/sbin/route add $TARGET$ 333.444.555.666"
|
|
+@netbsd@KILL_ROUTE="/sbin/route add $TARGET$ 333.444.555.666"
|
|
|
|
# Generic Sun
|
|
-#KILL_ROUTE="/usr/sbin/route add $TARGET$ 333.444.555.666 1"
|
|
+@solaris@KILL_ROUTE="/usr/sbin/route add $TARGET$ 333.444.555.666 1"
|
|
|
|
# NEXTSTEP
|
|
#KILL_ROUTE="/usr/etc/route add $TARGET$ 127.0.0.1 1"
|