konsthol/SecDep
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

this should fix it

Browse Source
This commit is contained in:
konsthol
2023-09-07 08:31:05 +03:00
parent 095adb09cd
commit 2ffbb618f4
1 changed files with 2 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
harden
View File

@@ -587,11 +587,8 @@ if [[ -n "$OLD_PORTS" ]]; then
for port in "${OLD_PORTS[@]}"; do for port in "${OLD_PORTS[@]}"; do
# Deny the port in the firewall # Deny the port in the firewall
case "$currentFirewall" in case "$currentFirewall" in
ufw) ufw) # There are two rules by default for ipv4 and ipv6
PORT_RULE_NUMS="$(sudo ufw status numbered | grep -i "$port" | grep -oP '\[.*?\]' | grep -o '[0-9]')" yes | sudo ufw delete allow "$port"/tcp
for PORT_RULE_NUM in ${PORT_RULE_NUMS[@]}; do
yes | sudo ufw delete "$PORT_RULE_NUM"
done
;; ;;
firewalld) firewalld)
sudo firewall-cmd --permanent --remove-port="$port"/tcp sudo firewall-cmd --permanent --remove-port="$port"/tcp