tallow

tallow copied to clipboard

tallow eating 100% of 1 CPU thread

9

I noticed in top that `tallow` was consuming 100% of a cpu thread. A `gdb` attach shows its stack as: ``` (gdb) where #0 0x00007fa3ae02fd4c in ?? () from /usr/lib64/libsystemd.so.0...

grahamwhaley

Thanks

q2dg

RFE: add IPv6 LLA and ULA to default whitelist

3

This is an RFE for adding IPv6 Link-Local Address (LLA) range and Unique local address (ULA) to the default whitelist. So essentially add fd00::/8 and FE80::/10 prefixes. Maybe even IPv6...

jeka

iptables -t filter -A INPUT -m set --match-set tallow src -j DROP Does not apply when rules already exists as it insert at bottom. iptables -I INPUT 1 -m set...

pguimond

I can pull detailed logs if it would help, but the basic use case seems consistent with each of the ~half-dozen CL hosts I've deployed in the cloud: 1. SSH...

rcoder

Added second level headers to man page docs.

6

This improves integration with automated document publishing systems like Sphinx. Plan is to incorporate all man pages into Clear Linux Documentation site. Signed-off-by: Kevin Putnam

intelkevinputnam

I have noticed on my server (Arch) that not a single malicious IP has been blocked. I debugged the code and notices that the [`sd_journal_next`](https://github.com/clearlinux/tallow/blob/03f4d64ff66a61f5bc9063b8932173c7441fb1ab/src/tallow.c#L395C20-L395C20) call **always** returns 0. So...

Tereius

The purpose of tallow is to ban specific hosts. This ban should be enacted as early as possible in the firwall, which is not achieved by using "iptables -A", which...

f00b4r0