From 391e0bad90da42e64f244b979b83167b8acb744b Mon Sep 17 00:00:00 2001 From: mcrane Date: Sat, 1 Aug 2009 03:42:04 -0600 Subject: New pfSense package DenyHosts for protecting SSH. --- config/denyhosts/denyhosts.inc | 167 +++++++++++++++++++++++++++++++++++++ config/denyhosts/denyhosts.xml | 115 +++++++++++++++++++++++++ config/denyhosts/denyhosts_log.tmp | 166 ++++++++++++++++++++++++++++++++++++ pkg_config.7.xml | 14 ++++ 4 files changed, 462 insertions(+) create mode 100644 config/denyhosts/denyhosts.inc create mode 100644 config/denyhosts/denyhosts.xml create mode 100644 config/denyhosts/denyhosts_log.tmp diff --git a/config/denyhosts/denyhosts.inc b/config/denyhosts/denyhosts.inc new file mode 100644 index 00000000..d83f2878 --- /dev/null +++ b/config/denyhosts/denyhosts.inc @@ -0,0 +1,167 @@ + "denyhosts.sh", + // "start" => "start command", + // "stop" => "rm /var/run/nameofservice.pid" + // ) + //); + + + php_sync_package(); + + //start denyhosts + exec("/usr/local/etc/rc.d/denyhosts.sh start"); + + //if (pkg_is_service_running('notes')) { + //documentation purposes + //} + + + +} + + +function deinstall_command() +{ + + $hosts_allow = "#\n"; + $hosts_allow .= "# hosts.allow access control file for \"tcp wrapped\" applications.\n"; + $hosts_allow .= "#\n; + $hosts_allow .= "ALL : ALL : allow\n"; + $fout = fopen("/etc/hosts.allow","w"); + fwrite($fout, $tmp); + unset($tmp); + fclose($fout); + + exec("pkg_delete denyhosts"); + exec("rm -R /usr/local/www/packages/denyhosts/"); + +} + +?> \ No newline at end of file diff --git a/config/denyhosts/denyhosts.xml b/config/denyhosts/denyhosts.xml new file mode 100644 index 00000000..35878c7a --- /dev/null +++ b/config/denyhosts/denyhosts.xml @@ -0,0 +1,115 @@ + + + + + + + + DenyHosts + Describe your package requirements here + Currently there are no FAQ items provided. + DenyHosts + 0.1 + Settings + /usr/local/pkg/denyhosts.inc + + DenyHosts + DenyHosts. +
Services
+ denyhosts.xml + /packages/denyhosts/denyhosts_log.php +
+ + + Settings + /packages/denyhosts/denyhosts_log.php + + + + installedpackages->package->$packagename->configuration->denyhosts + + /usr/local/pkg/ + 0755 + http://www.pfsense.com/packages/config/denyhosts/denyhosts.inc + + + + Title + title + + + Category + category + + + + + Title + title + Enter the title. + input + + + Category + category + Enter a category. + input + + + <b>zzz</b> <br /> <br /> + zzz + + textarea + base64 + 30 + 70 + 20 + + + + + + php_sync_package(); + + + php_sync_package(); + + + php_install_command(); + + + deinstall_command(); + +
\ No newline at end of file diff --git a/config/denyhosts/denyhosts_log.tmp b/config/denyhosts/denyhosts_log.tmp new file mode 100644 index 00000000..69d16cce --- /dev/null +++ b/config/denyhosts/denyhosts_log.tmp @@ -0,0 +1,166 @@ + + + + + + + + + +$v_project_label: Variables

\n"; +?> + +
+ + +
+ +
+ + + + + + +
+ + + + + + + +

DenyHosts Log
+
+ +

+
+
+
+ + +
+
+ + + +
+
+ +
+
+
+
+
+
+
+
+ +
+ +
+ + + + + + diff --git a/pkg_config.7.xml b/pkg_config.7.xml index d1cfdca6..bd1893ea 100755 --- a/pkg_config.7.xml +++ b/pkg_config.7.xml @@ -216,6 +216,20 @@ markjcrane@gmail.com shellcmd.xml + + DenyHosts + + The DenyHosts utility is used to manage protect SSH. + Services + + http://www.pfsense.com/packages/config/denyhosts/denyhosts.xml + http://files.pfsense.org/packages/7/All/ + 0.1 + Beta + 1.2.3 + markjcrane@gmail.com + denyhosts.xml + snort Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of other attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. -- cgit v1.2.3