-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Markus Wernig
Sent: den 3 november 2005 14:17
To: Jesper Louis Andersen
Cc: John N. Brahy; misc@openbsd.org
Subject: Re: perl interface to pf?
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jesper Louis Andersen wrote:
> John N. Brahy wrote:
>
>> Is there a perl interface to pf?
> No, and it would be totally insane to build one.
Well, the only use that came to my mind was a perl daemon running on the
FW that accepts rule updates from a remote client. While that can be done
with other means (ssh, sh scripts), i can imagine that a perl class for
manipulating pf rules would come in handy for that.
/m
iD8DBQFDag3a8BX/d8pVi/cRAlftAKCv+6AfnHbabfPk3NV7ixi7BHsmwQCfQzEa
vR9EvOJvXz6nFqS4r+CD5Jg=
=oCHu
-----END PGP SIGNATURE-----
Hello,
I am working on a program similar to that but written in c++ and
php. However slightly different functionality, uses token based OTP
authentication via SMS, and and a PHP interface to create the new
rules. However the reason I am doing this is not because there is a
need but more to learn c++ and encryption. There are much simpler
and safer ways to achieve this with pre-existing tools, but sure
it's possible although maybe not wise. One problem is parsing and
syntax checking of pf rules so that garbage isn't fed to for
example pfctl if that is the method one chooses. One problem of
many. Like a previous poster said, it'a a lot of work for very
little gain, but if like me you have the extra time and have
something else to gain from the excerise then it could be
worthwhile.
// jpb
********************************************
** Jorgen Boberg **
** Managing Director & Senior Consultant **
** Intellibit Consulting SIA **
** Krisjana Barona Iela 37/30 **
** LV-1011, Riga **
** Latvia **
********************************************
** Tel: +371 83 80 803 **
********************************************
