anonfunc/xtables-addons
1
0
Fork 0
mirror of git://git.code.sf.net/p/xtables-addons/xtables-addons synced 2025-12-07 16:43:54 +01:00
Code Issues Releases Wiki Activity
Files
5b2649b1a29f87b27e963dd68ffa57fe4c01a04b
xtables-addons/doc
History
Florian Westphal f6b8767228 psd: add basic validation of userspace matchinfo data 
psd multiplies weight_thresh by HZ, so it could overflow.

Userspace libxt_psd refuses values exceeding PSD_MAX_RATE, so check
that on kernel side, too.

Also, setting 0 weight for both privileged and highports will cause
psd to never match at all.

Reject 0 weight threshold, too because it makes no sense (triggers
match for every initial packet).
2012-06-15 15:11:32 +02:00
..
api
compat_xtables: fixed mistranslation of checkentry return values
2012-01-12 09:21:39 +01:00
changelog.txt
psd: add basic validation of userspace matchinfo data
2012-06-15 15:11:32 +02:00
README.psd
psd: import 20090807 code base
2009-08-12 21:59:33 +02:00

README.psd 

PSD (Portscan Detection) External extensions for Xtables-addons

Example:
iptables -A INPUT -m psd --psd-weight-threshold 21 --psd-delay-threshold 300 --psd-lo-ports-weight 1 --psd-hi-ports-weight 10 -j LOG --log-prefix "PSD: "
Reference in New Issue View Git Blame Copy Permalink