Date: Mon, 3 Mar 2014 15:58:54 GMT From: Kurt J Lidl <lidl@pix.net> To: freebsd-gnats-submit@FreeBSD.org Subject: misc/187224: /etc/periodic/security/520.pfdenied enhancement Message-ID: <201403031558.s23Fwsec009507@cgiserv.freebsd.org> Resent-Message-ID: <201403031600.s23G00Sb000472@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 187224 >Category: misc >Synopsis: /etc/periodic/security/520.pfdenied enhancement >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Mon Mar 03 16:00:00 UTC 2014 >Closed-Date: >Last-Modified: >Originator: Kurt J Lidl >Release: 9.2 >Organization: >Environment: FreeBSD [redatced] 9.1-RELEASE-p10 FreeBSD 9.1-RELEASE-p10 #0: Sun Jan 12 10:32:09 UTC 2014 root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC i386 >Description: The /etc/periodic/security/520.pfdenied script produces a line of output for all lines in the PF file, not just those that cause a deny to happen. >How-To-Repeat: >Fix: Basically, only print the line if the 5th field isn't empty. diff -r /etc/periodic/security/520.pfdenied /var/ibmpc01/etc/periodic/security/520.pfdenied 47c45 < if pfctl -sr -v 2>/dev/null | nawk '{if (/^block/) {buf=$0; getline; gsub(" +"," ",$0); print buf$0;} }' > ${TMP}; then --- > if pfctl -sr -v 2>/dev/null | nawk '{if (/^block/) {buf=$0; getline; gsub(" +"," ",$0); if ($5>0) print buf$0;} }' > ${TMP}; then >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201403031558.s23Fwsec009507>