Mercurial > dropbear

annotate blacklist.c @ 247:c07de41b53d7 contrib-blacklist

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
propagate from branch 'au.asn.ucc.matt.dropbear' (head c9347a030ac9ef5454b7a84f4915e91dc44efd6c) to branch 'au.asn.ucc.matt.dropbear.contrib.blacklist' (head 8662c7148e4b738e2511a6fce9a4cbd959ecb6b8)
author Matt Johnston <matt@ucc.asn.au>
date Tue, 06 Sep 2005 04:57:14 +0000
parents f4cf0415fec1
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
246
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
1 #include "includes.h"
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
2 #include "options.h"
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
3 #include "dbutil.h"
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
4
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
5 #define LINE_LENGTH 50
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
6
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
7 int is_blacklisted (char *remote_ip) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
8
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
9 char sz_tmp[LINE_LENGTH];
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
10 FILE *fp_blacklist = NULL;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
11
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
12 fp_blacklist = fopen(BLACKLISTFILE, "r");
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
13 if (fp_blacklist == NULL) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
14 /* TODO: this could spew log messages. */
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
15 dropbear_log(LOG_INFO, "Could not open blacklist %s for reading.", BLACKLISTFILE);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
16 } else {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
17 while (fgets(sz_tmp, LINE_LENGTH - 1, fp_blacklist) != NULL) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
18 if (strlen(sz_tmp) > 0) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
19 sz_tmp[strlen(sz_tmp)-1] = '\0';
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
20 if (!strcmp(sz_tmp, remote_ip)) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
21 dropbear_log(LOG_INFO, "IP %s is forbidden!", remote_ip);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
22 fclose (fp_blacklist);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
23 return 1;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
24 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
25 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
26 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
27 fclose (fp_blacklist);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
28 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
29 return 0;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
30 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
31
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
32 void blacklist (char *addrstring)
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
33 {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
34 int i;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
35 FILE *fp_blacklist = NULL;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
36 char *remote_ip = NULL;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
37
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
38 remote_ip = m_strdup (addrstring);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
39 i = strlen (remote_ip);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
40 /* This may not be IPv6 safe if addrstring doesn't have a :port suffix */
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
41 while (i--) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
42 if (remote_ip[i] == ':') {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
43 remote_ip[i] = '\0';
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
44 break;
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
45 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
46 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
47 dropbear_log (LOG_INFO, "Blacklisting %s", remote_ip);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
48 if ((fp_blacklist = fopen (BLACKLISTFILE, "a")) == NULL) {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
49 dropbear_log (LOG_INFO, "Could not open blacklist %s for appending", BLACKLISTFILE);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
50 } else {
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
51 fprintf (fp_blacklist, "%s\n", remote_ip);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
52 fclose (fp_blacklist);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
53 }
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
54 m_free (remote_ip);
f4cf0415fec1 - blacklisting patch from Michael Deiters
Matt Johnston <matt@ucc.asn.au>
parents:
diff changeset
55 }