Xenophobe Files

***************************
	Read Me
***************************

The Xenophobe project intends to simply blocking countries via iptables.
While this solution is largely derived from Administrative Downtime:
http://lazyadmin.wordpress.com/2010/08/10/country-based-blocking-using-geoip-and-iptables-on-centos/

I intend you make a simple, easy to use gui that shows country flags in order to deny traffic from countries.
By using the solution from Admin Downtime, it becomes easier to block countries by assigned country code than ip ranges or blocks. 

***************************
	Facts
***************************

Yes, the gui is not great, just a proof of concept. 
Yes, you need to be root and launch your browser, localy, in order to get this to work.
I attempted suid, sudo, all of these are BAD ways to get a silly gui to work and great ways to leave gapping security holes.


**************************
	Install
**************************

0. Follow the Administrative Downtime link and setup iptables and geoIP.
or
1. Follow the centos-5-tasks.sh, but read before you copy paste   *** Do not execute this*** (The shell script needs love and care)
2. Create a flags folder, and extract the flags there.
3. Copy the .pl files that enable and remove iptable rules.
4. Copy the Main.php to your web server folder.
5. Everything will work if you are root.

**************************
	Wishlist
**************************

0. Better GUI.
1. rpm installer.
2. rooted C&C daemon that can receive instructions to block from non-root users (very deadly).
3. Fine grain control of not only more countries, but ports and protocols.
4. Windows port (years away).