From owner-freebsd-ports-bugs@freebsd.org Thu Apr 13 14:55:22 2017 Return-Path: Delivered-To: freebsd-ports-bugs@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D984FD3B4B4 for ; Thu, 13 Apr 2017 14:55:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AEA881B6F for ; Thu, 13 Apr 2017 14:55:22 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v3DEtMCK076930 for ; Thu, 13 Apr 2017 14:55:22 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 218633] /security/ossec-hids-local host-deny.sh add ip's to hosts.allow permanently Date: Thu, 13 Apr 2017 14:55:22 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: netbackup.gs@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-ports-bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Apr 2017 14:55:22 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D218633 Bug ID: 218633 Summary: /security/ossec-hids-local host-deny.sh add ip's to hosts.allow permanently Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Many People Priority: --- Component: Individual Port(s) Assignee: freebsd-ports-bugs@FreeBSD.org Reporter: netbackup.gs@gmail.com /usr/local/ossec-hids/active-response/bin/host-deny.sh dosent delete entrie= s in /etc/hosts.allow Mktemp /var/ossec/ossec-hosts.XXXXXXXXXX is the problem i think, maybe /tmp/ossec-hosts.XXXXXXXXXX ? cat host-deny.sh: # Deleting from hosts.deny=20=20=20 elif [ "x${ACTION}" =3D "xdelete" ]; then=20=20=20 lock; TMP_FILE =3D `mktemp /var/ossec/ossec-hosts.XXXXXXXXXX`=20 if [ "X${TMP_FILE}" =3D "X" ]; then=20 # Cheap fake tmpfile, but should be harder then no random data=20 TMP_FILE =3D "/var/ossec/ossec-hosts.`cat /dev/urandom | tr -dc 'a-zA-= Z0-9' | fold -w 32 | head -1 `" fi if [ "X$UNAME" =3D "XFreeBSD" ]; then cat /etc/hosts.allow | grep -v "ALL : ${IP} : deny$"> ${TMP_FILE} mv ${TMP_FILE} /etc/hosts.allow else cat /etc/hosts.deny | grep -v "ALL:${IP}$"> ${TMP_FILE} cat ${TMP_FILE} > /etc/hosts.deny rm ${TMP_FILE} fi=20 unlock; exit 0; Mktemp /var/ossec/ --=20 You are receiving this mail because: You are the assignee for the bug.=