UNPKG

@d3x0r/sack-gui

Version:

SACK abstraction library exposed to JS to provide low level system services.

github.com/d3x0r/sack.vfs

d3x0r/sack.vfs

76 lines (59 loc) 2.07 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
import {sack} from "sack.vfs" const lbs = { command : "/root/bin/iptables-setup", output : "/etc/firewall/banlist", DSN : "maria-firewall", exec_timer : 0, lastban : null, pendingKeys : new Map(), // there's a 2 part ban command... db : null, file : null } const configProcessor = sack.Config(); configProcessor.add( "command=%m", (c)=>lbs.command = c ); configProcessor.add( "output=%m", (c)=>lbs.output = c ); configProcessor.add( "input=%m", (c)=>{ const words = c.split( " " ); sack.Task( { bin:words[0], args:words.slice( 1 ).join(" " ), input(buf) { //console.log( "Buf is:", buf ); processor.write( buf ); } } ); } ); configProcessor.add( "DSN=%m", (c)=>lbs.DSN = c ); configProcessor.go( "linux_syslog_scanner.conf" ); lbs.db = sack.DB( lbs.DSN, (db)=>{ try { db.makeTable( "create table banlist ( IP char(48) PRIMARY KEY, last_hit DATETIME default CURRENT_TIMESTAMP )" ); } catch( err ) { console.log( "create failed?", err ); } } ); const processor = sack.Config(); processor.add( "%w - - [%m] \"GET /CherryWeb %m", failed_pass0 ); processor.add( "%w - - [%m] \"GET //a2billing/customer/templates/default/footer.tpl %m", failed_pass0 ); processor.add( "%w - - [%m] \"GET /assets/jnkp.php %m", failed_pass0 ); processor.add( "%w - - [%m] \"GET /recordings%m", failed_pass0 ); processor.on( "unhandled", (str)=> console.log( "Unhandled line:", str ) ); function failed_pass0( leader, ip, path, line ) { AddBan( ip ); } function ExecFirewall( ) { lbs.exec_timer = 0; } function AddBan( IP ) { console.log( "ban IP:", IP ); if( lbs.db ) { const result = lbs.db.do( "select 1 from banlist where IP=?", IP ) if( result && result[0] ) { console.log( "already banned? %s\n", IP ); lbs.db.do( "update banlist set last_hit=now() where IP=?", IP ); return; // no need to include this one. } else { console.log( "insert IP:", IP ); lbs.db.do( "insert into banlist (IP) values(?)", IP ); } } if( !lbs.lastban || lbs.lastban.localeCompare( IP ) ) { sack.Task( {bin:lbs.command, args:[IP] } ); } }