Parcourir la source

Implemented WhiteGuard

Updated engine revision number

git-svn-id: https://svn.microneil.com/svn/SNFMulti/trunk@55 dc71a809-1921-45c4-985c-09c81d0142d9
wx
madscientist il y a 10 ans
Parent
révision
68b932d2cf
1 fichiers modifiés avec 17 ajouts et 4 suppressions
  1. 17
    4
      SNFMulti.cpp

+ 17
- 4
SNFMulti.cpp Voir le fichier

@@ -25,7 +25,7 @@ using namespace std;

//// Version Info

const char* SNF_ENGINE_VERSION = "SNFMulti Engine Version 3.1.0 Build: " __DATE__ " " __TIME__;
const char* SNF_ENGINE_VERSION = "SNFMulti Engine Version 3.1.1 Build: " __DATE__ " " __TIME__;

//// Script Caller Methods

@@ -1779,9 +1779,22 @@ int snf_EngineHandler::scanMessage(

switch(ScanResultType) { // Evaluate the scan result.
case NoPattern: // On no pattern (benefit of doubt) or
case WhitePattern: { // a white pattern:
MyRulebase->MyGBUdb.addGood( // then add a good count to the
MyScanData.SourceIPRecord().IP); // source IP.
case WhitePattern: { // a white pattern:
GBUdbRecord thisRecord = // Grab the GBUdb record for later
MyRulebase->MyGBUdb.addGood( // then add a good count to the
MyScanData.SourceIPRecord().IP); // source IP.
const unsigned int WhiteGuardValue = 7;
bool triggeredWhiteGuard = (0 == thisRecord.Bad() && 1 == thisRecord.Good());
if(triggeredWhiteGuard) {
thisRecord.Good(WhiteGuardValue);
thisRecord.Bad(WhiteGuardValue);
MyRulebase->MyGBUdb.setRecord(
MyScanData.SourceIPRecord().IP,
thisRecord
);
}
break;
}
case BlackPattern: { // On a black pattern:

Chargement…
Annuler
Enregistrer