Merge pull request #20 from safing/feature/portscan_detection

minor general changes: debugmessages, comments, TODOs
2025-09-04 11:39:29 +00:00 · 2019-08-23 09:56:27 +00:00 · 2019-08-23 09:56:27 +00:00 · c65d830fc5
commit c65d830fc5
parent a2a52eb7cd d3e70523f2
3 changed files with 4 additions and 1 deletions
--- a/firewall/firewall.go
+++ b/firewall/firewall.go
@ -146,6 +146,7 @@ func handlePacket(pkt packet.Packet) {
 			pkt.PermanentAccept()
 			return
 		}
+		// TODO: Howto handle NetBios?
 	}

 	// log.Debugf("firewall: pkt %s has ID %s", pkt, pkt.GetLinkID())
@ -268,6 +269,7 @@ func initialHandler(pkt packet.Packet, link *network.Link) {
 	// 	link.StopFirewallHandler()
 	// 	permanentVerdict(pkt, network.VerdictAccept)
 	case link.Inspect:
+		log.Tracer(pkt.Ctx()).Trace("firewall: start inspecting")
 		link.SetFirewallHandler(inspectThenVerdict)
 		inspectThenVerdict(pkt, link)
 	default:
--- a/firewall/inspection/inspection.go
+++ b/firewall/inspection/inspection.go
@ -64,7 +64,7 @@ func RunInspectors(pkt packet.Packet, link *network.Link) (network.Verdict, bool
 			continue
 		}

-		action := inspectors[key](pkt, link)
+		action := inspectors[key](pkt, link) // Actually run inspector
 		switch action {
 		case DO_NOTHING:
 			if verdict < network.VerdictAccept {
--- a/status/threat.go
+++ b/status/threat.go
@ -14,6 +14,7 @@ type Threat struct {
 	MitigationLevel uint8       // Recommended Security Level to switch to for mitigation
 	Started         int64
 	Ended           int64
+	// TODO: add locking
 }

 // AddOrUpdateThreat adds or updates a new threat in the system status.