View Single Post
  #6   (View Single Post)  
Old 27th October 2008
DutchDaemon's Avatar
DutchDaemon DutchDaemon is offline
Real Name: Ben
Spam Refugee
 
Join Date: Jul 2008
Location: Rotterdam, The Netherlands
Posts: 336
Default

I'm using Apache (https, in this case, to prevent password sniffing) and PF, yes. The authenticated IP address gets harvested from a continuous tail -f on the https logfile (grepping/awking lines with a 200 OK status, which means someone must have authenticated themselves), and put in a firewall table using the usual pfctl -t some_table -T add $ip routine. It's a terrible hack, but it works
Reply With Quote