Package Details: husk 0.9.13-1

Git Clone URL: https://aur.archlinux.org/husk.git (read-only, click to copy)
Package Base: husk
Description: An iptables front-end to allow rules to be expressed in a more flexible, free-form style using language.
Upstream URL: https://huskfw.info/
Licenses: GPL
Conflicts: husk-git
Submitter: fukawi2
Maintainer: None
Last Packager: fukawi2
Votes: 4
Popularity: 0.000000
First Submitted: 2010-11-01 07:47 (UTC)
Last Updated: 2018-05-17 01:53 (UTC)

Latest Comments

« First ‹ Previous 1 2 3

fukawi2 commented on 2010-12-02 08:50 (UTC)

==> Version 0.6.5 adjusted comment on dhcp discover spoof bypass fixed iptables syntax errors fixed syntax errors bypass spoof protection for dhcp discover packets removed 0.0.0.0/8 as a bogon since it can be legitimate source incorrect back reference used in multiport regex added new-no-syn protection to simple example rules using syntax "standard syn" swap a long if-elsif-elsif-etc block for a switch block extra commenting renamed sub "strip_extra_spaces" to "collapse_spaces" new method of handling empty and comment-only lines added "standard" new-no-syn protection added a coalesce function to tidy up some ternary operations

fukawi2 commented on 2010-12-01 08:23 (UTC)

==> Version 0.6.4 updated simple example rules to include drop handler modified some regex updated README to explain handlers added support for drop and reject handlers stop time module being included in all rules general code cleanup; pass arguments to subs using hashes

fukawi2 commented on 2010-11-29 08:36 (UTC)

==> Version 0.6.3 fixed regex patterns for "port" and "ports" keywords added support for "day" keyword; fixed syntax of output rules when using modules with multiple options fixed syntax for statistics module fixed syntax error added support for statistics module with keywords "every" and "offset" added error checking for script output added support for time-based "start" and "finish" keywords added icons fixed interface name matching in standard rule compilation added logging for standard protections

fukawi2 commented on 2010-11-28 12:30 (UTC)

==> Version 0.6.2 added simple example file to Makefile added simple example file refactor of the way bogons are generated to include comments expanded bogon configuration expanded error handling of unknown keywords added CHANGES file

fukawi2 commented on 2010-11-27 00:01 (UTC)

==> Version 0.6.1 make some regexes a bit more liberal fixed syntax error and scope declaration issues

fukawi2 commented on 2010-11-25 12:16 (UTC)

==> Version 0.6.0 replace string comparisions with regex comparisons rename variable to make its purpose clearer reworded error message when "end match calls" is found in wrong place add a line number comment to "iptables" rules refactor how call chains are dispatched refactor some routines use make greater use of hashes renamed function compile_redirect to compile_interception added support for source or destination ports instead of only destination ports fixed more regexes updated some regex patterns to be more accurate fixed bug setting default policies extra error handling for ending blocks fixed comment on bogon rule updated README to document the "ANY" interface fixed parsing of hostgroups dont remove config during uninstall added example rule for "ANY" special interface added support for special interface "ANY" added a debugging function fixed hostgroup usage added missing RFC1918 address to bogons test for root in fire script added bogons to hostgroups.conf sanity check for duplicates in interfaces file only generate protection chains if the rules file actually uses them fixed fire script to exit if compilation fails

fukawi2 commented on 2010-11-21 03:56 (UTC)

Bump to 0.5.2: ==> Version 0.5.2 updated 'fire' script we're now much more 'safer' with an automatic reversion to the previous ruleset if the application is not confirmed by the user. based on the script written by Martin F. Krafft <madduck@madduck.net> and distributed under the Artistic Licence 2.0 http://svn.netfilter.org/netfilter/trunk/iptables/iptables-apply Much more sanity checking and error handling too. call bogon and xmas protection early (-I instead of -A) fixed error in bogon and xmas protection generation fixed error in bogon and xmas protection generation converted constants to use uppercase names added support for "xmas" standard function updated README file added support for "bogon" standard function

fukawi2 commented on 2010-11-20 09:19 (UTC)

Bump to 0.5.1 Fixed some "show-stopper" bugs in 0.5.0 with 'forward' rules.

fukawi2 commented on 2010-11-20 06:00 (UTC)

Bump to 0.5.0 ==> Version 0.5.0 updated example rules to suit new 'match chain' syntax out of habit from the system husk is based on, I wrote 'match table' when it should have been 'match chain' so the syntax has been updated to suit the correct semantics. fixed default config file major cleanup and refactor

fukawi2 commented on 2010-11-11 09:34 (UTC)

Bump to 0.4.2: Changes: only snat for rfc1918 private addresses refactored rules generation in compile_call updated Makefile to avoid clobbering existing config fixed typo in generation of loopback rules updated install paths in Makefile

« First ‹ Previous 1 2 3