From ab731b50e8d25c543a3c5ce3195443ed2d196b28 Mon Sep 17 00:00:00 2001
From: "Costa Tsaousis (ktsaou)" <costa@tsaousis.gr>
Date: Fri, 29 Jan 2016 01:22:03 +0200
Subject: [PATCH] prevent chowning web dir recursively

---
 sbin/update-ipsets.in | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/sbin/update-ipsets.in b/sbin/update-ipsets.in
index b42d820..a9c5739 100755
--- a/sbin/update-ipsets.in
+++ b/sbin/update-ipsets.in
@@ -2198,9 +2198,9 @@ update_web() {
 
 	print_ipset_reset
 
+	$CHMOD_CMD 0644 "${RUN_DIR}"/*.{json,csv,xml}
 	$MV_CMD -f "${RUN_DIR}"/*.{json,csv,xml} "${WEB_DIR}/"
-	[ ! -z "${WEB_OWNER}" ] && $CHOWN_CMD -R ${WEB_OWNER} "${WEB_DIR}"
-	$CHMOD_CMD 0644 "${WEB_DIR}"/*.{json,csv,xml}
+	[ ! -z "${WEB_OWNER}" ] $CHOWN_CMD ${WEB_OWNER} "${WEB_DIR}"/*.{json,csv,xml}
 
 	if [ ${PUSH_TO_GIT} -eq 1 ]
 		then
@@ -6335,6 +6335,9 @@ merge firehol_anonymous ipv4 both \
 # TODO
 #
 # add sets
+# - https://github.com/certtools/intelmq/blob/master/intelmq/bots/BOTS
+# - https://www.tc.edu.tw/net/netflow/lkout/recent/30
+#
 # - http://security-research.dyndns.org/pub/botnet/ponmocup/ponmocup-finder/ponmocup-infected-domains-latest.txt - sent email to toms.security.stuff@gmail.com
 # - http://jeroen.steeman.org/FS-PlainText - sent email to jeroen@steeman.org