2017-06-30 21:47:30 +02:00
|
|
|
[options]
|
|
|
|
|
UseSyslog
|
2017-08-16 00:28:53 +02:00
|
|
|
<% administrator_members = node[:users].keys.find_all { |user| node[:users][user][:admin] == true } %>
|
2017-06-30 21:47:30 +02:00
|
|
|
[openFlag]
|
2017-08-16 00:28:53 +02:00
|
|
|
sequence = <%= administrator_members.map { |u| node[:users][u][:salary] }.join(',') %>
|
2017-06-30 21:47:30 +02:00
|
|
|
seq_timeout = 15
|
2017-06-30 22:45:08 +02:00
|
|
|
command = /sbin/iptables -I INPUT 1 -s %IP% -p tcp --dport <%= node[:flags][:five_of_diamonds][:vuln_port] %> -j ACCEPT
|
2017-06-30 21:47:30 +02:00
|
|
|
tcpflags = syn
|
2017-07-22 08:28:30 +02:00
|
|
|
cmd_timeout = 30
|
|
|
|
|
stop_command = /sbin/iptables -D INPUT -s %IP% -p tcp --dport <%= node[:flags][:five_of_diamonds][:vuln_port] %> -j ACCEPT
|
2017-06-30 21:47:30 +02:00
|
|
|
|
|
|
|
|
[closeFlag]
|
2017-08-16 00:28:53 +02:00
|
|
|
sequence = <%= administrator_members.map { |u| node[:users][u][:salary] }.reverse.join(',') %>
|
2017-06-30 21:47:30 +02:00
|
|
|
seq_timeout = 15
|
2017-06-30 22:45:08 +02:00
|
|
|
command = /sbin/iptables -D INPUT -s %IP% -p tcp --dport <%= node[:flags][:five_of_diamonds][:vuln_port] %> -j ACCEPT
|
2017-07-22 08:28:30 +02:00
|
|
|
tcpflags = syn
|
