firehol

Settings | Report Duplicate

4

I Use This!

Inactive

Commits : Listings

Analyzed about 12 hours ago. based on code collected about 14 hours ago.

Commit Message	Contributor	Files Modified	Lines Added	Lines Removed	Code Location	Date
Apr 25, 2023 — Apr 25, 2024 Showing page 57 of 58 Search / Filter on:
Changed the banner to be much more descriptive. It now also shows the services FireHOL supports (removed the services parameter).	Costa Tsaousis as ktsaou	More...				over 21 years ago
Fixed the usage banner to show the "services" parameter.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Another work around to fix the problem of LINENO not working in debian systems.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Fixed a bug where some versions of BASH do not handle correctly cat >>"EOF". They treat it as cat >>EOF and thus they do variable substitution on the text. Now, FireHOL uses cat >>EOF but the text has been escaped in order to avoid variable substitution.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Fixed parameter 'custom' processing. It is not an array now, but it is treated specially to support BASH special characters such as ! Quoting things in parameters 'custom' needs tweaking still.	Costa Tsaousis as ktsaou	More...				over 21 years ago
More quoting issues fixed. Changed the core to work with BASH arrays in order to handle quoted arguments accurately.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Fixed various problems related to quoted arguments. Fixed iptables generation to support quoted arguments. Made chain names shorter.	Costa Tsaousis as ktsaou	More...				over 21 years ago
As suggested by Florian Thiel <[email protected]>: a. Fixed service IRC to work on TCP instead of UDP. b. Added services: UUCP, VNC, WEBCACHE, IMAPS, IKE.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Minor aesthetic changes.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added service: any Any allows the administrator to define any stateful rule to match services that cannot have source and destination ports, such as unusual protocols, etc.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added command line parameter 'try' (in addition to 'start', 'stop', etc) that when used it activates the firewall and waits 30 seconds for the administrator to type 'commit' in order to keep the firewall active. If the administrator does not write 'commit' or the timeout passes, FireHOL restores the previous firewall.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Rearranged default RELATED rules to match after normal processing and protections. Made the core of FireHOL operate on multiple tables (not assuming the rules refer to the 'filter' table). This will allow FireHOL to support all kinds of NAT chains in the future.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Client and server keywords now work on routers too. (The old 'route' subcommand is an alias for the 'server' subcommand - within a router). Protection can be reversed on routers to match outface instead of inface. Masquerade can be used in interfaces, routers (matches outface - but can be reverse(ed) to match inface) or as a primary command with all the interfaces to be masqueraded in an argument.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Protection has been extented to work on routers too. Made a few minor aesthetic changes on the generated code. Now in/out chains on routers match the inface/outface correctly.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added support for ICMP floods protection and from BAD TCP flags protection. This was suggested by: Fco.Felix Belmonte ([email protected]).	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added CVS versioning to all files.	Costa Tsaousis as ktsaou	More...				over 21 years ago
CVS test	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added home-dialup.conf Minor fixes in others.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Now, it rejects idents.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added example home-adsl.conf	Costa Tsaousis as ktsaou	More...				over 21 years ago
Fixed the typo in the "grep" and fixed the label of the printout.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added a third interface and moved the client definition to this one. Now it should be even more generic.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added service IRC. Extended kernel modules handling to simple services too. Simple services can now have:	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added example config.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added logging options support as suggested by: Fco.Felix Belmonte <[email protected]>	Costa Tsaousis as ktsaou	More...				over 21 years ago
Removed service TFTP since this requires a kernel module for stateful operation.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Changed TFTP from TCP to UDP.	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added file README	Costa Tsaousis as ktsaou	More...				over 21 years ago
Added services RNDC, FINGER, ECHO, DAYTIME, NNTP	Costa Tsaousis as ktsaou	More...				over 21 years ago
Fixed negative expressions in FireHOL statements. By default, when multiple instances of interfaces/ports/addresses exist FireHOL produces one rule for each instance. However when negative expressions were defined the previous approach was producing ORed iptables statements instead of ANDed statements. The new code, now produces linked lists of iptables chains for all negative expressions so that only if ALL the negative are matched, one rule for each positive expression will be produced.	Costa Tsaousis as ktsaou	More...				over 21 years ago

←
1
2
…
50
51
52
53
54
55
56
57
58
→