search for: blrule

...------------------------------------------ I I I. N E W F E A T U R E S I N T H I S R E L E A S E ---------------------------------------------------------------------------- 1) The rules generated by the following interface options are now traversed after those generated by the blrules file. dhcp maclist nosmurfs sfilter tcpflags As part of this change, the BLACKLIST section in the rules file has been eliminated. If you have rules in that section, you must move them to the blrules file prior to installing this Shorewall version. 2) The timeout...

...------------------------------------------ I I I. N E W F E A T U R E S I N T H I S R E L E A S E ---------------------------------------------------------------------------- 1) The rules generated by the following interface options are now traversed after those generated by the blrules file. dhcp maclist nosmurfs sfilter tcpflags As part of this change, the BLACKLIST section in the rules file has been eliminated. If you have rules in that section, you must move them to the blrules file prior to installing this Shorewall version. 2) The timeout...

> On 22. Apr 2020, at 19.14, Michael Peddemors <michael at linuxmagic.com> wrote: > The three most common attack vectors, (and attack volumes have never been higher) are: > > * Sniffed unencrypted credentials > (Assume every home wifi router and CPE equipment are compromised ;) > * Re-used passwords where data is exposed from another site's breach > (Users WANT to

...---------------------------------------------- N E W F E A T U R E S I N T H I S R E L E A S E ---------------------------------------------------------------------------- 1) The rules generated by the following interface options are now traversed after those generated by the blrules file. dhcp maclist nosmurfs sfilter tcpflags As part of this change, the BLACKLIST section in the rules file has been eliminated. If you have rules in that section, you must move them to the blrules file prior to installing this Shorewall version. 2)...

On 2020-04-22 18:45, Sami Ketola wrote: > Actually by far the biggest source of stolen credentials is > viruses/trojans harvesting them. i tryed blacklist all ips that got passwords errors, but that ends in big shorewall blrules so i turn it over to just add whitelist into blrules where ips is known custommers that dont abuse server, that way my shorewall got alot smaller config files to read and no kids from outside can abuse logins that way, now i have maked php script that monitors where abusers is from without giv...

...by far the biggest source of stolen credentials is </div> <div> viruses/trojans harvesting them. </div> </blockquote> <div> i tryed blacklist all ips that got passwords errors, but that ends in </div> <div> big shorewall blrules so i turn it over to just add whitelist into </div> <div> blrules where ips is known custommers that dont abuse server, that way </div> <div> my shorewall got alot smaller config files to read and no kids from </div> <div> outside c...

Shorewall 4.5.8 Beta 1 is now available for testing. ---------------------------------------------------------------------------- I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- 1) This release includes the defect repair from Shorewall 4.5.7.1. 2) The restriction that TTL and HL rules could

Shorewall 4.5.8 Beta 1 is now available for testing. ---------------------------------------------------------------------------- I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- 1) This release includes the defect repair from Shorewall 4.5.7.1. 2) The restriction that TTL and HL rules could

...s Example: CT:helper:ftp(expevents=new) See shorewall-conntrack (5) for details. 8) The deprecated /etc/shorewall[6]/blacklist files are no longer installed. Existing files are still processed by the compiler. Note that blacklist files may be converted to equivalent blrules files using ''shorewall[6] update -b''. 9) "?IF", "?ELSE", "?ELSEIF" and "?END" are now case-insensitive so, for example, they can be entered as "?if", "?else", "elseif" AND "?end". 10...