sad/firehol
1
0
Fork 0
mirror of https://github.com/firehol/firehol.git synced 2024-06-30 19:02:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,281 Commits 5 Branches 37 Tags 5.2 MiB
6c303b37de
Commit Graph

399 Commits

Author SHA1 Message Date
Costa Tsaousis (ktsaou)
6c303b37de Merge branch 'master' of github.com:firehol/firehol 2015-11-13 00:29:05 +02:00
Costa Tsaousis (ktsaou)
a03049e7d4 added support for DNS temporary failures - in such cases, DNS resolution is retried up to 20 times (only when the DNS server responds with temporary DNS failure) 2015-11-13 00:28:48 +02:00
Costa Tsaousis (ktsaou)
747f718119 use iprange --diff mode for comparing ipset versions 2015-11-13 00:27:36 +02:00
Philip Whineray
b73d00f7d9 configure script now only detected needed commands 
When programs are disabled, their dependencies are omitted. Same
if ipv6 or ipv6 is disabled.
 2015-11-12 21:36:06 +00:00
Costa Tsaousis (ktsaou)
fb7eb84609 added option --quiet to silently check if ipsets differ with --diff 2015-11-12 03:30:27 +02:00
Costa Tsaousis (ktsaou)
3952fd0744 Merge branch 'master' of github.com:firehol/firehol 2015-11-12 03:19:15 +02:00
Costa Tsaousis (ktsaou)
e1f0e0d392 added option --diff to show the differences between ipsets 2015-11-12 03:19:00 +02:00
Philip Whineray
111aa66962 Add flags to disable ipv4/ipv6 in firehol 2015-11-11 22:37:53 +00:00
Philip Whineray
b670b4cd21 Allow configuring to not install specific scripts 
When not installing a script, also stop its documentation, example
files etc.
 2015-11-11 18:28:01 +00:00
Philip Whineray
fdef2baa35 Add comment regarding namespace problem 2015-11-11 07:54:28 +00:00
Philip Whineray
fde365ab94 Make sure use same defaults file for all 
Make it read-all so non-root use in update-ipsets is OK
Make the source test for readability so we do not get an error if not
 2015-11-11 07:44:28 +00:00
Costa Tsaousis (ktsaou)
d1473e1f59 fixed typos 2015-11-10 23:03:08 +02:00
Costa Tsaousis (ktsaou)
112a21c445 added prototype for custom/admin/user supplied downloaders; fixed an issue with git commits 2015-11-10 22:15:58 +02:00
Philip Whineray
370a6616f4 Honour the config directory set by configure 
Ensure that ipset_remove_all_tmp_sets() is defined before it can
be called in firehol_exit().
 2015-11-10 18:35:12 +00:00
Philip Whineray
d2ec651cdc Detect and use TAR_CMD 
A couple of other programs replaced
Allow unconfigured programs to detect iprange in-situ
 2015-11-10 07:26:59 +00:00
Costa Tsaousis (ktsaou)
f7c3f430fd Merge branch 'master' of github.com:firehol/firehol 2015-11-10 01:50:38 +02:00
Costa Tsaousis (ktsaou)
41db726dfb added ability to ask update for specific ipsets; added distribution, admin and user supplied ipsets; moved the current directory to a temporary place to prevent accidental damage or random files appearing in system locations 2015-11-10 01:50:33 +02:00
Philip Whineray
c031254067 Remove unused commands 
Detect unused commands in script during pre-commit checks
Always use /sbin and /usr/sbin as part of autoconf detection
 2015-11-09 20:52:11 +00:00
Philip Whineray
ee401fc813 Switch vnetbuild to common command detection 2015-11-09 07:39:05 +00:00
Costa Tsaousis (ktsaou)
740c738f29 made range printing, always print ranges 2015-11-09 09:33:05 +02:00
Philip Whineray
ea252883d8 Add perl script to detect plain command usage 
Update scripts with the problems found
In firehol, moved the iptables() and ipset() helpers to before they are

used, since this is how the detection script learns they are not a problem.
 2015-11-08 17:28:16 +00:00
Costa Tsaousis (ktsaou)
6a1dbc4db7 fixed a division by zero 2015-11-08 12:35:02 +02:00
Costa Tsaousis (ktsaou)
741d0d09a3 --enable-all does not enable certain ip lists; these can only be enabled manually 2015-11-08 09:26:26 +02:00
Costa Tsaousis (ktsaou)
c5e6026c61 modified to automatically support sane default for running as root or as user 2015-11-08 06:27:36 +02:00
Costa Tsaousis (ktsaou)
9d2b75bc9f allow configuration variables to be set via environment 2015-11-08 05:11:51 +02:00
Costa Tsaousis (ktsaou)
f28122934e isolated warning about WEB_DIR and LIB_DIR 2015-11-08 03:25:30 +02:00
Costa Tsaousis (ktsaou)
4b463218a7 allowed badips.com lists to be empty 2015-11-07 23:54:50 +02:00
Costa Tsaousis (ktsaou)
04e93f0b0d prevent ipsets from being updated with zero IP count (it is allowed for all malware ipsets); added function for temporary settings per ipset; added history_statistics() to calculate min/max/avg update time, min/max entries and min/max IPs for the last 500 updates of ipsets 2015-11-07 23:46:31 +02:00
Costa Tsaousis (ktsaou)
05f91ad033 added min/max update duration calculation for all lists 2015-11-07 19:23:51 +02:00
Costa Tsaousis (ktsaou)
2c843be9a7 calculated the average update frequency of lists; support for the new dns progress bar of iprange 2015-11-07 18:56:21 +02:00
Costa Tsaousis (ktsaou)
9b4320a44c disable dns progress bar by default 2015-11-07 18:55:47 +02:00
Costa Tsaousis (ktsaou)
c699a4cd91 moved RUN_DIR to /tmp because certain distros have very small /var/run tmpfs - /tmp is the proper place for temporary files 2015-11-07 15:26:04 +02:00
Costa Tsaousis (ktsaou)
4c9a7a2c2d use iprange DNS resolv instead of the host command; use iprange binary format for the history log of aggregated ipsets 2015-11-07 15:05:53 +02:00
Costa Tsaousis (ktsaou)
a59e485d22 Merge branch 'master' of github.com:firehol/firehol 2015-11-07 13:24:24 +02:00
Phil Whineray
0dac5317fb Detect and use pthreads when building iprange 2015-11-07 06:50:36 +00:00
Costa Tsaousis
c608bc3c22 update-ipsets now uses the async DNS resolver of iprange 2015-11-07 04:38:29 +02:00
Costa Tsaousis (ktsaou)
25249ad1f8 added options to silent dns errors and hide the progress bar 2015-11-07 04:06:04 +02:00
Costa Tsaousis (ktsaou)
d590fef00c added asynchronous DNS resolver - now it needs to be build with -lpthread 2015-11-07 03:45:09 +02:00
Costa Tsaousis (ktsaou)
2f3a825dda added async dns resolution - still in progress, so it is disabled, make with CFLAGS=-DASYNC_RESOLVER to enable for testing 2015-11-06 03:00:37 +02:00
Costa Tsaousis (ktsaou)
213a28571d moved hostname resolution to a separate function 2015-11-06 01:22:52 +02:00
Costa Tsaousis (ktsaou)
c021d69c91 better handling of erroneus lines in input files; 30% faster printing of IP addresses; support for DNS resolution of hostnames in input files 2015-11-06 01:08:34 +02:00
Costa Tsaousis (ktsaou)
94d4b7eb73 added more packetmail lists 2015-11-05 01:33:16 +02:00
Costa Tsaousis (ktsaou)
dd91db096c fix for optional and possibly missing commands 2015-11-05 00:16:22 +02:00
Costa Tsaousis (ktsaou)
5f9c83ce48 cleanup of required commands; cleanup of log formatting; some better error handling 2015-11-05 00:10:07 +02:00
Costa Tsaousis (ktsaou)
f2cc8ead49 fixes after the external command management to make it operational again 2015-11-04 01:32:44 +02:00
Costa Tsaousis (ktsaou)
4ce16f3319 added errors in *-next parameters when no file is given before the *-next parameter 2015-11-04 01:32:14 +02:00
Phil Whineray
dfa1664df0 Merge branch 'master' into update-ipsets-commands 
Conflicts:
	sbin/update-ipsets.in
 2015-11-02 07:52:12 +00:00
Costa Tsaousis (ktsaou)
83ee676c91 fixed various issues and improved significantly the download manager and the logging 2015-11-02 08:46:46 +02:00
Costa Tsaousis (ktsaou)
3aea86defa increased the timeouts a bit to prevent download errors 2015-11-02 00:54:15 +02:00
Costa Tsaousis (ktsaou)
81462ae4b9 fixed a bug that did not update the geolocation maps for ipsets that have not been updated, in --rebuild mode 2015-11-02 00:35:49 +02:00