Sha256: 92c55d8646bde10ce57a29c7d05b2036e9985157109eecc1220dbf83c2fe6214

Contents?: true

Size: 1.2 KB

Versions: 21

Compression:

Stored size: 1.2 KB

Contents

# Copyright (c) 2015 Sqreen. All Rights Reserved.
# Please refer to our terms for more information: https://www.sqreen.io/terms.html

require 'ipaddr'

require 'sqreen/rule_callback'

module Sqreen
  module Rules
    # Looks for a blacklisted ip and block
    class BlacklistIPsCB < RuleCB
      def initialize(klass, method, rule_hash)
        super(klass, method, rule_hash)
        @ips = Hash[@data['values'].map { |v| [v, IPAddr.new(v)] }]
        Sqreen.log.info 'no ips given for IP blacklisting' if @ips.empty?
      end

      def pre(_inst, _args, _budget = nil, &_block)
        return unless framework
        ip = framework.client_ip
        return unless ip
        found = find_blacklisted_ip(ip)
        return unless found
        Sqreen.log.debug { "Found blacklisted IP #{ip} - found: #{found}" }
        record_observation('blacklisted', found, 1)
        advise_action(:raise)
      end

      protected

      # Is this a blacklisted ip?
      # return the ip blacklisted range that match ip
      def find_blacklisted_ip(rip)
        ret = (@ips || {}).find do |_, ip|
          ip.include?(rip)
        end
        return nil unless ret
        ret.first
      rescue
        nil
      end
    end
  end
end

Version data entries

21 entries across 21 versions & 2 rubygems

Version Path
sqreen-1.15.0-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.15.0 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.2-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.2 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.1-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.1 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.0-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.0 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.0.beta3-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.0.beta3 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.0.beta2 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.14.0.beta1 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.13.4-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-alt-1.13.4 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.13.4 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.13.2-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-alt-1.13.2 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.13.2 lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-1.13.1-java lib/sqreen/rules_callbacks/blacklist_ips.rb
sqreen-alt-1.13.1 lib/sqreen/rules_callbacks/blacklist_ips.rb