Re: [PATCH 1/5] ids-functions.pl: Drop downloader code for sourcefire based ruleset.

public inbox for development@lists.ipfire.org
 help / color / mirror / Atom feed

From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: [PATCH 1/5] ids-functions.pl: Drop downloader code for sourcefire based ruleset.
Date: Wed, 23 Mar 2022 09:37:18 +0000	[thread overview]
Message-ID: <84EB6E23-4183-4427-A54C-6142B7E33BD8@ipfire.org> (raw)
In-Reply-To: <20220323040452.2609-1-stefan.schantl@ipfire.org>

[-- Attachment #1: Type: text/plain, Size: 2653 bytes --]

Yes, agreed. We should not send any HEAD requests at all. GET will be able to tell us the same.

Not sure if this is a relic from before when we had HTTP/1.1. Wow.

> On 23 Mar 2022, at 04:04, Stefan Schantl <stefan.schantl(a)ipfire.org> wrote:
> 
> Even if the servers do not support HEAD requests, the remote filesize
> (content_length) can be obtained from the connection headers.
> 
> This generic method works for all servers and therefore we do not need
> the code for handle sourcefire servers in a different way anymore.
> 
> Signed-off-by: Stefan Schantl <stefan.schantl(a)ipfire.org>
> ---
> config/cfgroot/ids-functions.pl | 43 +++++----------------------------
> 1 file changed, 6 insertions(+), 37 deletions(-)
> 
> diff --git a/config/cfgroot/ids-functions.pl b/config/cfgroot/ids-functions.pl
> index 94dccc8ae..eb276030b 100644
> --- a/config/cfgroot/ids-functions.pl
> +++ b/config/cfgroot/ids-functions.pl
> @@ -354,43 +354,6 @@ sub downloadruleset ($) {
> 			return 1;
> 		}
> 
> -		# Variable to store the filesize of the remote object.
> -		my $remote_filesize;
> -
> -		# The sourcfire (snort rules) does not allow to send "HEAD" requests, so skip this check
> -		# for this webserver.
> -		#
> -		# Check if the ruleset source contains "snort.org".
> -		unless ($url =~ /\.snort\.org/) {
> -			# Pass the requrested url to the downloader.
> -			my $request = HTTP::Request->new(HEAD => $url);
> -
> -			# Accept the html header.
> -			$request->header('Accept' => 'text/html');
> -
> -			# Perform the request and fetch the html header.
> -			my $response = $downloader->request($request);
> -
> -			# Check if there was any error.
> -			unless ($response->is_success) {
> -				# Obtain error.
> -				my $error = $response->status_line();
> -
> -				# Log error message.
> -				&_log_to_syslog("Unable to download the ruleset. \($error\)");
> -
> -				# Return "1" - false.
> -				return 1;
> -			}
> -
> -			# Assign the fetched header object.
> -			my $header = $response->headers();
> -
> -			# Grab the remote file size from the object and store it in the
> -			# variable.
> -			$remote_filesize = $header->content_length;
> -		}
> -
> 		# Load perl module to deal with temporary files.
> 		use File::Temp;
> 
> @@ -416,6 +379,12 @@ sub downloadruleset ($) {
> 			return 1;
> 		}
> 
> +		# Obtain the connection headers.
> +		my $headers = $response->headers;
> +
> +		# Get the remote size of the downloaded file.
> +		my $remote_filesize = $headers->content_length;
> +
> 		# Load perl stat module.
> 		use File::stat;
> 
> -- 
> 2.30.2
>

next prev parent reply	other threads:[~2022-03-23  9:37 UTC|newest]

Thread overview: 13+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-03-23  4:04 Stefan Schantl
2022-03-23  4:04 ` [PATCH 2/5] ids-functions.pl: Allow "5" download attempts for each provider before fail Stefan Schantl
2022-03-23  9:28   ` Michael Tremer
2022-03-24 18:23     ` Stefan Schantl
2022-03-28 15:16       ` Michael Tremer
2022-03-23  4:04 ` [PATCH 3/5] ids-functions.pl: Remove temporary file, if the download failed Stefan Schantl
2022-03-23  4:04 ` [PATCH 4/5] ids-functions.pl: Use If-Modified-Since header to reduce file downloads Stefan Schantl
2022-03-23  9:34   ` Michael Tremer
2022-03-24 18:50     ` Stefan Schantl
2022-03-28 15:15       ` Michael Tremer
2022-03-23  4:04 ` [PATCH 5/5] ids-functions.pl: Do not longer call any log message as "ERROR" Stefan Schantl
2022-03-23  9:37 ` Michael Tremer [this message]
  -- strict thread matches above, loose matches on Subject: below --
2022-03-22 19:40 [PATCH 1/5] ids-functions.pl: Drop downloader code for sourcefire based ruleset Stefan Schantl

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=84EB6E23-4183-4427-A54C-6142B7E33BD8@ipfire.org \
    --to=michael.tremer@ipfire.org \
    --cc=development@lists.ipfire.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox