Please take a look at the attached SocketWatch. It
includes *many* additions, and is basically a total
rewrite of SocketWatch. It only works with ipchains,
and not with ipfwadm.
-Caleb
2001-04-17 caleb crome <caleb@hot.crome.org>
* Changes: Allow comments in socketwatch.pl.
* Allow lines of the form FRIEND=a.b.c.d instead of
just
FRIEND=a.b.c.d-e.f.g.h
* Added -t flag for testing. If specified, doesn't
actually run
ipchains.
* Added -s flag for shit-list
* Added -c flag for config file
* Added -i flag for interface
* Added timeout capability so that hosts in shit-list
can
reconnect after a timeout. This is for protection
against
blocking the wrong clients.
* Added --pid-file option.
* Changed shit list format to inclde time of last
infraction.
This is necessary for the timeout.
* basically, a total rewrite.
Updated SocketWatch.