From: Frank Brehm Date: Thu, 18 Apr 2019 04:38:24 +0000 (+0200) Subject: daily autocommit X-Git-Url: https://git.uhu-banane.org/?a=commitdiff_plain;h=5af4df8ce09dc067e6efd9406b56033d730d1929;p=config%2Fns2%2Fetc.git daily autocommit --- diff --git a/.etckeeper b/.etckeeper index b4b43d5..b745f66 100755 --- a/.etckeeper +++ b/.etckeeper @@ -1339,6 +1339,7 @@ maybe chmod 0755 'systemd/system/getty@.service.d' maybe chmod 0644 'systemd/system/getty@.service.d/noclear.conf' maybe chmod 0755 'systemd/system/icinga2.service.d' maybe chmod 0644 'systemd/system/icinga2.service.d/limits.conf' +maybe chmod 0644 'systemd/system/local.service' maybe chmod 0755 'systemd/system/multi-user.target.wants' maybe chmod 0755 'systemd/system/network-online.target.wants' maybe chmod 0755 'systemd/system/paths.target.wants' diff --git a/iptables/rules.v4 b/iptables/rules.v4 index 02c982b..982773e 100644 --- a/iptables/rules.v4 +++ b/iptables/rules.v4 @@ -1,8 +1,8 @@ -# Generated by iptables-save v1.6.0 on Wed Feb 20 21:38:39 2019 +# Generated by iptables-save v1.6.0 on Wed Apr 17 10:33:58 2019 *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] -:OUTPUT ACCEPT [452:97575] +:OUTPUT ACCEPT [36:10554] :f2b-apache - [0:0] :f2b-apache-modsecurity - [0:0] :f2b-apache-nohome - [0:0] @@ -40,6 +40,8 @@ -A f2b-apache -j RETURN -A f2b-apache -j RETURN -A f2b-apache -j RETURN +-A f2b-apache -j RETURN +-A f2b-apache-modsecurity -j RETURN -A f2b-apache-modsecurity -j RETURN -A f2b-apache-modsecurity -j RETURN -A f2b-apache-modsecurity -j RETURN @@ -48,6 +50,8 @@ -A f2b-apache-nohome -j RETURN -A f2b-apache-nohome -j RETURN -A f2b-apache-nohome -j RETURN +-A f2b-apache-nohome -j RETURN +-A f2b-apache-noscript -j RETURN -A f2b-apache-noscript -j RETURN -A f2b-apache-noscript -j RETURN -A f2b-apache-noscript -j RETURN @@ -56,10 +60,18 @@ -A f2b-apache-overflows -j RETURN -A f2b-apache-overflows -j RETURN -A f2b-apache-overflows -j RETURN +-A f2b-apache-overflows -j RETURN +-A f2b-postfix -j RETURN -A f2b-postfix -j RETURN -A f2b-postfix -j RETURN -A f2b-postfix -j RETURN -A f2b-postfix -j RETURN +-A f2b-ssh -s 89.3.236.207/32 -j REJECT --reject-with icmp-port-unreachable +-A f2b-ssh -s 185.87.121.19/32 -j REJECT --reject-with icmp-port-unreachable +-A f2b-ssh -s 112.85.42.232/32 -j REJECT --reject-with icmp-port-unreachable +-A f2b-ssh -s 185.254.122.114/32 -j REJECT --reject-with icmp-port-unreachable +-A f2b-ssh -s 45.55.80.186/32 -j REJECT --reject-with icmp-port-unreachable +-A f2b-ssh -s 139.59.85.89/32 -j REJECT --reject-with icmp-port-unreachable -A f2b-ssh -s 80.152.170.99/32 -j REJECT --reject-with icmp-port-unreachable -A f2b-ssh -s 112.85.42.88/32 -j REJECT --reject-with icmp-port-unreachable -A f2b-ssh -s 58.218.198.142/32 -j REJECT --reject-with icmp-port-unreachable @@ -67,6 +79,8 @@ -A f2b-ssh -j RETURN -A f2b-ssh -j RETURN -A f2b-ssh -j RETURN +-A f2b-ssh -j RETURN +-A f2b-sshd -j RETURN -A f2b-sshd -j RETURN -A f2b-sshd -j RETURN -A f2b-sshd -j RETURN @@ -89,4 +103,4 @@ -A rejects -p tcp -m tcp --dport 5060 -j REJECT --reject-with icmp-port-unreachable -A rejects -p tcp -m tcp --dport 8080 -j REJECT --reject-with icmp-port-unreachable COMMIT -# Completed on Wed Feb 20 21:38:39 2019 +# Completed on Wed Apr 17 10:33:58 2019 diff --git a/iptables/rules.v6 b/iptables/rules.v6 index f7323ac..d4e8008 100644 --- a/iptables/rules.v6 +++ b/iptables/rules.v6 @@ -1,7 +1,7 @@ -# Generated by ip6tables-save v1.6.0 on Wed Feb 20 21:38:39 2019 +# Generated by ip6tables-save v1.6.0 on Wed Apr 17 10:33:58 2019 *filter :INPUT ACCEPT [1:49] :FORWARD ACCEPT [0:0] -:OUTPUT ACCEPT [15:941] +:OUTPUT ACCEPT [27:1613] COMMIT -# Completed on Wed Feb 20 21:38:39 2019 +# Completed on Wed Apr 17 10:33:58 2019 diff --git a/systemd/system/local.service b/systemd/system/local.service new file mode 100644 index 0000000..ba700ac --- /dev/null +++ b/systemd/system/local.service @@ -0,0 +1,12 @@ +[Unit] +Description=Executed scripts after booting +After=remote-fs.target postfix.service networking.service rsyslog.service ssh.service bind9.service netfilter-persistent.service libvirt-guests.service mariadb.service + +[Service] +ExecStart=/usr/local/sbin/local_service start +ExecStop=/usr/local/sbin/local_service stop +Type=oneshot +RemainAfterExit=yes + +[Install] +WantedBy=multi-user.target