From owner-freebsd-arch Sun Sep 22 15:43:19 2002 Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D5DB937B401 for ; Sun, 22 Sep 2002 15:43:18 -0700 (PDT) Received: from melusine.cuivre.fr.eu.org (melusine.cuivre.fr.eu.org [62.212.105.185]) by mx1.FreeBSD.org (Postfix) with ESMTP id 549AD43E4A for ; Sun, 22 Sep 2002 15:43:18 -0700 (PDT) (envelope-from thomas@FreeBSD.ORG) Received: by melusine.cuivre.fr.eu.org (Postfix, from userid 1000) id B35CD2C3D1; Mon, 23 Sep 2002 00:43:15 +0200 (CEST) Date: Mon, 23 Sep 2002 00:43:15 +0200 From: Thomas Quinot To: freebsd-arch@freebsd.org Subject: Code factoring in /etc/periodic/security firewall checks Message-ID: <20020922224315.GA71199@melusine.cuivre.fr.eu.org> References: <20020918235930.D58595@melusine.cuivre.fr.eu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020918235930.D58595@melusine.cuivre.fr.eu.org> User-Agent: Mutt/1.4i X-message-flag: WARNING! Using Outlook can damage your computer. Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Much code duplication exists in /etc/periodic/security scripts. I would like to propose that most of the complexity of these scripts be factored out into a common file. The patch at http://www.cuivre.fr.eu.org/~thomas/periodic-security/ factors the common code out of 100.chksetuid, 200.chkmounts, 500.ipfwdenied, 600.ip6fwdenied and 700.kernelmsg. It also adds a new script, 501.ipfdenied, similar in purpose to 500.ipfwdenied but for use with ipfilter. If there are no objections I intend to commit this to -CURRENT around Oct. 1st. Thomas. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message