firewall/modules/module-php.sh

11 lines
331 B
Bash
Raw Normal View History

2024-09-24 21:18:59 -06:00
#!/bin/bash
FIREWALL="/opt/firewall/firewall.sh"
2024-09-24 22:30:26 -06:00
ATTACK="module-php"
2024-09-25 19:49:34 -06:00
PHP_SPAM=$(grep $2 $3 | grep -E ".php|cgi-bin|wp-content|wp-admin|wp-includes" | wc -l)
2024-09-24 21:18:59 -06:00
if [[ "$PHP_SPAM" -gt 10 ]]; then
2024-09-24 21:21:45 -06:00
bash $FIREWALL ipBlockParser "$1"
2024-09-24 22:30:26 -06:00
bash $FIREWALL message "$ATTACK-$1"
2024-09-24 21:21:45 -06:00
redis-cli SADD tmp_block $1
2024-09-25 19:49:34 -06:00
cp -f $3 /tmp/debug-$ATTACK-$1.txt
2024-09-24 21:18:59 -06:00
fi