TCLUG Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ipfwadm question



I'm running an older server, using ipfwadm instead of ipchains.  Some time
ago I installed a script, based on suggestions from other Linux users, which
would be triggered by hosts.deny to add a would-be intruder's IP address to
ipfwadm's "deny" list.

This worked just swell, until a couple days ago I blew a circuit breaker and
wound up rebooting my server for the first time in almost 300 days.  Now
that script is, for some reason, being triggered by user 'bin' instead of
'root', which means it isn't allowed to add rules to ipfwadm -- even
setuiding the script (which I'd rather avoid anyways) doesn't make it work.

Does anybody have any idea what caused this change?  I assume I must have
upgraded some service ages ago and never restarted it (although I'm usually
quite circumspect about that sort of thing).  And does anybody have any
suggestions on the best way to get it working again?


--
Eric Hillman
UNIX Sysadmin
City & County Credit Union
ehillman@cccu.com