Re: Reading auto-whitelist files (a soloution)
On Tue, May 17, 2005 at 09:09:39AM +, Fredrik Bjork wrote: > Surely there is a better way, but nobody seems to be willing to post it... tools/check_whitelist? Been part of the standard distro for ages. Output is: 0.0 (0.0/2) -- [EMAIL PROTECTED]|ip=66.92 Average Score (total score / # of messages) from_addr|ip=class_b_rcvd_by -- Randomly Generated Tagline: [Rob] Reiner agrees. "If it was made clear to people that we could win the war on terrorism by driving a hybrid car, that we could stop global warming by driving a hybrid, I think people would do it," he says. "But people haven't made those kind of connections." - http://www.washingtonpost.com/wp-dyn/articles/A2587-2002Jun5.html pgpLZr9jqyyOp.pgp Description: PGP signature
Re: Reading auto-whitelist files (a soloution)
Fredrik Bjork wrote: > Hi! > > I have seen a couple of requests for reading the auto-whitelist file in plain > text. You can use at least two database formats, but this command worked for > me: > > dbmmanage auto-whitelist view > Surely there is a better way, but nobody seems to be willing to post it... The proper tool to use is in the SA tarball, in the tools subdirectory: check-whitelist
Reading auto-whitelist files (a soloution)
Hi! I have seen a couple of requests for reading the auto-whitelist file in plain text. You can use at least two database formats, but this command worked for me: dbmmanage auto-whitelist view See man dbmmanage for more info (available in most Linux distributions). It is written to "Create and update user authentication files in DBM format". Example of output: [EMAIL PROTECTED]|ip=152.52|totscore:16.034 [EMAIL PROTECTED]|ip=219.133|totscore:7.476 [EMAIL PROTECTED]|ip=212.199:1 [EMAIL PROTECTED]|ip=203.200|totscore:22.434 [EMAIL PROTECTED]|ip=219.81|totscore:14.895 ip=219.81 means that the IP address begins with 219.81. Surely there is a better way, but nobody seems to be willing to post it... /Fredrik