1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
|
#!/bin/sh
. ./testlib.sh
cat > $TEST_DIR/extcmd.sh <<EOF
#!/bin/sh
echo "\$1 \$2" > /tmp/portsentry-test/extcmd.stdout
EOF
cat > $TEST_DIR/routesim.sh <<EOF
#!/bin/sh
echo "\$1" > /tmp/portsentry-test/routesim.stdout
EOF
chmod +x $TEST_DIR/extcmd.sh
chmod +x $TEST_DIR/routesim.sh
runNmap 11 T
waitForFile $TEST_DIR/extcmd.stdout
sleep 1
confirmBlockFileSize 1 0
verbose "expect routesim.sh output"
if ! findInFile "^127\.0\.0\.1" $TEST_DIR/routesim.stdout ; then
err "Expected routesim.sh output not found"
fi
verbose "expect extcmd.sh output"
if ! findInFile "^127\.0\.0\.1 11" $TEST_DIR/extcmd.stdout ; then
err "Expected extcmd.sh output not found"
fi
verbose "expect correct route kill, external and scan command message ordering"
if ! cat $PORTSENTRY_STDOUT | tr -d '\n' | grep -q "attackalert: External command run for host: 127.0.0.1 using command.*attackalert: Host 127.0.0.1 has been blocked via dropped route using command.*Scan from: \[127\.0\.0\.1\] (127\.0\.0\.1) protocol: \[TCP\] port: \[11\]"; then
err "Expected correct route kill, external and scan command run messages not found"
fi
ok
|
