[Astlinux-commits] SF.net SVN: astlinux:[6686] branches/1.0/package/arnofw

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Revision: 6686
          http://sourceforge.net/p/astlinux/code/6686
Author:   abelbeck
Date:     2014-09-02 12:58:58 +0000 (Tue, 02 Sep 2014)
Log Message:
-----------
arnofw, adaptive-ban plugin, add 'kamailio' analysis type.  Note: requires 'WITH_ANTIFLOOD' enabled in kamailio for the logs to be generated

Modified Paths:
--------------
    branches/1.0/package/arnofw/adaptive-ban/adaptive-ban-helper.sh
    branches/1.0/package/arnofw/adaptive-ban/adaptive-ban.conf
    branches/1.0/package/arnofw/arnofw.serial

Modified: branches/1.0/package/arnofw/adaptive-ban/adaptive-ban-helper.sh
===================================================================

--- branches/1.0/package/arnofw/adaptive-ban/adaptive-ban-helper.sh	2014-09-01 19:16:29 UTC (rev 6685)
+++ branches/1.0/package/arnofw/adaptive-ban/adaptive-ban-helper.sh	2014-09-02 12:58:58 UTC (rev 6686)
@@ -132,6 +132,8 @@
          ;;
       asterisk) filter_asterisk "$file" "$PREFIX" "$HOST"
          ;;
+      kamailio) filter_kamailio "$file" "$PREFIX" "$HOST"
+         ;;
       lighttpd) filter_lighttpd "$file" "$PREFIX" "$HOST"
          ;;
       prosody) filter_prosody "$file" "$PREFIX" "$HOST"
@@ -176,6 +178,14 @@
                "$file" >"$TEMPFILE"
 }
 
+filter_kamailio()
+{
+  local file="$1" PREFIX="$2" HOST="$3"
+
+  sed -n -r -e "s/^${PREFIX}.* pike blocking .* from .* \(IP:${HOST}:[0-9]+\)$/\1/p" \
+               "$file" >"$TEMPFILE"
+}
+
 filter_lighttpd()
 {
   local file="$1" PREFIX="$2" HOST="$3"

Modified: branches/1.0/package/arnofw/adaptive-ban/adaptive-ban.conf
===================================================================
--- branches/1.0/package/arnofw/adaptive-ban/adaptive-ban.conf	2014-09-01 19:16:29 UTC (rev 6685)
+++ branches/1.0/package/arnofw/adaptive-ban/adaptive-ban.conf	2014-09-02 12:58:58 UTC (rev 6686)
@@ -19,7 +19,7 @@
 ADAPTIVE_BAN_COUNT=6
 
 # A list of analysis types that are applied
-# Choose from: sshd asterisk lighttpd prosody pptpd
+# Choose from: sshd asterisk kamailio lighttpd prosody pptpd
 # ------------------------------------------------------------------------------
 ADAPTIVE_BAN_TYPES="sshd asterisk"
 

Modified: branches/1.0/package/arnofw/arnofw.serial
===================================================================
--- branches/1.0/package/arnofw/arnofw.serial	2014-09-01 19:16:29 UTC (rev 6685)
+++ branches/1.0/package/arnofw/arnofw.serial	2014-09-02 12:58:58 UTC (rev 6686)
@@ -1 +1 @@
-0002~0021~0000~0000~0000~
+0002~0022~0000~0000~0000~

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.



