lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 16:14:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

IDS, missing cleanup after rule installation, for https://github.com/opnsense/core/issues/3472

Browse Source
This commit is contained in:
Ad Schellevis 2019-05-08 11:47:54 +02:00
parent e224771ce0
commit df4fe1c683
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/opnsense/scripts/suricata/installRules.py
View File

@ -29,6 +29,8 @@
Install suricata ruleset into opnsense.rules directory
"""
import os
import glob
import os.path
import lib.rulecache
from lib import rule_source_directory
@ -90,3 +92,8 @@ if __name__ == '__main__':
f_out.write('rule-files:\n')
for installed_file in all_installed_files:
f_out.write(' - %s\n' % installed_file)
# cleanup unused files in rule_target_dir, since it's only meant for staging.
for filename in glob.glob("%s/*.rules" % rule_target_dir):
if os.path.basename(filename) not in all_installed_files:
os.remove(filename)