[Lunar-commits] <moonbase> BlockHosts: a log analizing IP-blocking tool

Duncan Gibson engelsman at lunar-linux.org
Thu Jul 1 19:07:54 CEST 2010 

commit a89a53998ec74da9df51245f931df9f451e7ac02
Author: Christian Riggenbach <criggenbach at magahugu.ch>
Date:   Thu Jul 1 19:07:54 2010 +0200

    BlockHosts: a log analizing IP-blocking tool
---
 zbeta/BlockHosts/BUILD   |    6 ++++++
 zbeta/BlockHosts/DEPENDS |    2 ++
 zbeta/BlockHosts/DETAILS |   21 +++++++++++++++++++++
 3 files changed, 29 insertions(+), 0 deletions(-)

diff --git a/zbeta/BlockHosts/BUILD b/zbeta/BlockHosts/BUILD
new file mode 100644
index 0000000..25180a7
--- /dev/null
+++ b/zbeta/BlockHosts/BUILD
@@ -0,0 +1,6 @@
+(
+
+    prepare_install  &&
+    python ./setup.py install
+
+) > $C_FIFO 2>&1
diff --git a/zbeta/BlockHosts/DEPENDS b/zbeta/BlockHosts/DEPENDS
new file mode 100644
index 0000000..c15fdcc
--- /dev/null
+++ b/zbeta/BlockHosts/DEPENDS
@@ -0,0 +1,2 @@
+depends Python
+
diff --git a/zbeta/BlockHosts/DETAILS b/zbeta/BlockHosts/DETAILS
new file mode 100644
index 0000000..8593c08
--- /dev/null
+++ b/zbeta/BlockHosts/DETAILS
@@ -0,0 +1,21 @@
+          MODULE=BlockHosts
+         VERSION=2.4.0
+          SOURCE=${MODULE}-${VERSION}.tar.gz
+      SOURCE_URL=http://www.aczoom.com/tools/blockhosts/
+SOURCE_DIRECTORY=$BUILD_DIRECTORY/$MODULE-$VERSION
+      SOURCE_VFY=sha1:c1cb468fbd01887ddc22f41554a63b0f41f120ae
+        WEB_SITE="http://www.aczoom.com/cms/blockhosts"
+         ENTERED=20100625
+         UPDATED=20100625
+           SHORT="Automatic blocking of abusive IP hosts"
+cat <<EOF
+Script to record how many times system services are being probed,
+using configurable pattern matching to recognize failed accesses (such
+as for "sshd" or "proftpd" or any service), and when a particular IP
+address exceeds a certain number of failed attempts, that IP address
+is blocked by using multiple techniques: using /etc/hosts.allow for
+services that support TCP_WRAPPERS, or by executing ip route commands
+to setup null-routing for that source host address, or by executing
+iptables commands to setup packet filtering to drop packets from a
+source host address.
+EOF

More information about the Lunar-commits mailing list