it's about creating solutions
Squidefender is a perl script which parses a
log file in native format for
attacks. If it finds an attack is sends a complaint email to the ISP of the
attacker. It also has the option to execute an external command to take
other actions. This can for example be used to automatically adapt your
firewall when an attack has occured. The complaint function of squidefender
is largely based on the code of Wormwarner
. The power of squidefender lays in
it configuration options which let you easily add new attacks to scan for.
Another interesting option of squidefender is that it gives you the ability
to use different message templates based on the attack found.
Squidefender needs its own directory because of its extensive configuration
options. It allows you to keep the message templates at one place.
Another important reason is that it makes it much easier to install
upgrades to squidefender. If for example the whois lookup function is
improved you can easily put the new whois2address.pm module in this
squidefender was created by Jeroen van Nieuwenhuizen and Jasper O Waale.