diff options
| author | lidl <lidl@FreeBSD.org> | 2016-10-13 03:08:32 +0000 |
|---|---|---|
| committer | lidl <lidl@FreeBSD.org> | 2016-10-13 03:08:32 +0000 |
| commit | dd3f5f4482d7477ebb5afc487f5b64db0126d3bf (patch) | |
| tree | ec84e9f2ad58ec7df3728b89a65a915350536c72 /etc/periodic | |
| parent | f7149700977f965b9f830b29fd4aa6b646ffcc25 (diff) | |
| download | FreeBSD-src-dd3f5f4482d7477ebb5afc487f5b64db0126d3bf.zip FreeBSD-src-dd3f5f4482d7477ebb5afc487f5b64db0126d3bf.tar.gz | |
MFC r306696: Make 502.pfdenied find blacklistd/* filter names dynamically
This change is needed to make the 520.pfdenied script find the new
blacklistd/* anchor points for reporting blocked traffic.
Sponsored by: The FreeBSD Foundation
Diffstat (limited to 'etc/periodic')
| -rwxr-xr-x | etc/periodic/security/520.pfdenied | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/etc/periodic/security/520.pfdenied b/etc/periodic/security/520.pfdenied index 850c10d..e3021ce 100755 --- a/etc/periodic/security/520.pfdenied +++ b/etc/periodic/security/520.pfdenied @@ -44,8 +44,7 @@ rc=0 if check_yesno_period security_status_pfdenied_enable then TMP=`mktemp -t security` - touch ${TMP} - for _a in "" blacklistd + for _a in "" $(pfctl -a "blacklistd" -sA 2>/dev/null) do pfctl -a ${_a} -sr -v -z 2>/dev/null | \ nawk '{if (/^block/) {buf=$0; getline; gsub(" +"," ",$0); if ($5 > 0) print buf$0;} }' >> ${TMP} |
