[pam_shield/f14/master] patched shield-trigger-iptables to insert rules instead of add and added checks for chain existance

Carl Thompson redragon at fedoraproject.org
Sun May 1 00:25:55 UTC 2011 

commit 9c0d78c1f5498c6df1bdb9a5e8bdcf8510f99070
Author: Carl Thompson <fedora at red-dragon.com>
Date:   Sat Apr 30 19:25:27 2011 -0500

    patched shield-trigger-iptables to insert rules instead of add
    and added checks for chain existance and creation if necessary
    before adding rules to iptables/ip6tables and dropped the
    destination port so it can be used for any service

 pam_shield.spec |    9 ++++++++-
 1 files changed, 8 insertions(+), 1 deletions(-)
---
diff --git a/pam_shield.spec b/pam_shield.spec
index 4750314..9a35fc4 100644
--- a/pam_shield.spec
+++ b/pam_shield.spec
@@ -1,6 +1,6 @@
 Name:		pam_shield
 Version:	0.9.5
-Release:	7%{?dist}
+Release:	8%{?dist}
 Summary:	Pam Shield - A pam module to counter brute force attacks
 
 Group:		System Environment/Libraries
@@ -13,6 +13,7 @@ Source3:	shield-trigger-iptables.8.gz
 BuildRoot:	%{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 BuildRequires:	pam-devel, gdbm-devel
 Patch0:		shield_purge_segfault.patch
+Patch1:		shield-trigger-iptables.patch
 
 %description
 This is a pam module that supports brute force blocking against pam
@@ -21,6 +22,7 @@ authentication mechanisms.
 %prep
 %setup -q -n pam_shield-%{version}
 %patch0 -p0 -b .shield_purge_segfault
+%patch1 -p0 -b .shield_trigger_iptables
 #disable debug by default
 sed -i -e 's/debug on/debug off/' shield.conf
 #change to block all users for failed attempts
@@ -87,6 +89,11 @@ rm -rf %{buildroot}
 %{_sbindir}/shield-trigger-iptables
 
 %changelog
+* Sat Apr 30 2011 Carl Thompson <fedora at red-dragon.com> 0.9.5-8
+- patches shield-trigger-iptables to insert rules instead of add
+- and added checks for chain existance and creation if necessary
+- before adding rules to iptables/ip6tables and dropped the
+- destination port so it can be used for any service
 * Sun Apr 10 2011 Carl Thompson <fedora at red-dragon.com> 0.9.5-7
 - restored /var/lib/pam_shield to 700
 * Sat Apr 9 2011 Carl Thompson <fedora at red-dragon.com> 0.9.5-6

More information about the scm-commits mailing list