-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathfirewall-whitelisting-failcount
executable file
·79 lines (61 loc) · 1.77 KB
/
firewall-whitelisting-failcount
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
#!/usr/bin/env perl
# clear failed user login attempt counter
# by Jon Jensen <jon@endpointdev.com>
# March 2007
=for comment
This program is free software: you can redistribute it and/or modify it
under the terms of the GNU General Public License as published by the
Free Software Foundation, either version 3 of the License, or (at your
option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General
Public License for more details.
You should have received a copy of the GNU General Public License along
with this program. If not, see <https://www.gnu.org/licenses/>.
=cut
use warnings;
use strict;
use DB_File;
use Getopt::Std;
use IO::Handle;
*STDOUT->autoflush(1);
*STDERR->autoflush(1);
my $user_attempts_file = '/var/log/httpd/firewall.users.failed.attempts';
my %opts;
getopts('lzdh?', \%opts);
tie my %user_attempts, 'DB_File', $user_attempts_file
or die "Error tie-ing $user_attempts_file\n";
my @users = @ARGV;
if ($opts{h} or $opts{'?'} or ! %opts) {
print STDERR <<'END';
Usage: firewall.failcount [-l] [-z] [-d] [user] [user...]
-l list counter
-z zero user counter
-d delete user entry
If no users are specified, act on all users.
END
exit 1;
}
@users = sort keys %user_attempts unless @users;
for my $user (@users) {
my $count = $user_attempts{$user};
print "$user: ";
if (! defined $count) {
print "no counter\n";
}
else {
print $count;
if ($opts{d}) {
delete $user_attempts{$user};
print ' - deleted';
}
elsif ($opts{z} and $count) {
$user_attempts{$user} = 0;
print ' - reset to 0';
}
print "\n";
}
}
untie %user_attempts
or die "Error untie-ing file $user_attempts_file!\n";