mirror of https://github.com/CISOfy/lynis.git
Merge pull request #2 from nser77/nser77-patch-13
Update tests_firewalls
This commit is contained in:
commit
6410c5aadd
|
@ -114,6 +114,7 @@
|
|||
do
|
||||
${IPTABLESBINARY} -t "${IPTABLES_TABLE}" --list-rules --wait 1 2>/dev/zero |
|
||||
{
|
||||
IPTABLES_OUTPUT_QUEUE=""
|
||||
while IFS="$(printf '\n')" read -r IPTABLES_LINES
|
||||
do
|
||||
set -- ${IPTABLES_LINES}
|
||||
|
@ -143,11 +144,11 @@
|
|||
then
|
||||
if [ "${IPTABLES_TARGET}" = "ACCEPT" ]
|
||||
then
|
||||
IPTABLES_OUTPUT_QUEUE="${IPTABLES_OUTPUT_QUEUE}\n${IPTABLES_TABLE} ${IPTABLES_CHAIN} ${IPTABLES_TARGET} YELLOW"
|
||||
IPTABLES_OUTPUT_QUEUE="${IPTABLES_OUTPUT_QUEUE} ${IPTABLES_TABLE} ${IPTABLES_CHAIN} ${IPTABLES_TARGET} YELLOW"
|
||||
AddHP 1 3
|
||||
elif [ "${IPTABLES_TARGET}" = "DROP" ]
|
||||
then
|
||||
IPTABLES_OUTPUT_QUEUE="${IPTABLES_OUTPUT_QUEUE}\n${IPTABLES_TABLE} ${IPTABLES_CHAIN} ${IPTABLES_TARGET} GREEN"
|
||||
IPTABLES_OUTPUT_QUEUE="${IPTABLES_OUTPUT_QUEUE} ${IPTABLES_TABLE} ${IPTABLES_CHAIN} ${IPTABLES_TARGET} GREEN"
|
||||
AddHP 3 3
|
||||
fi
|
||||
fi
|
||||
|
@ -155,7 +156,7 @@
|
|||
then
|
||||
if [ "${IPTABLES_TARGET}" = "NFQUEUE" ]
|
||||
then
|
||||
IPTABLES_OUTPUT_QUEUE="${IPTABLES_OUTPUT_QUEUE}\n${IPTABLES_TABLE} ${IPTABLES_CHAIN} ${IPTABLES_TARGET} RED"
|
||||
IPTABLES_OUTPUT_QUEUE="${IPTABLES_OUTPUT_QUEUE} ${IPTABLES_TABLE} ${IPTABLES_CHAIN} ${IPTABLES_TARGET} RED"
|
||||
AddHP 0 3
|
||||
fi
|
||||
fi
|
||||
|
|
Loading…
Reference in New Issue