# HG changeset patch
# User Matti Hamalainen <ccr@tnsp.org>
# Date 1295065322 -7200
# Node ID ee4a55fb7d23c241ea7041b5ee6dc20812f337ec
# Parent  4b3b1724c99570d6f365ad3f1f24bca56eccad67
Add some checks; On html output, make links to open in new tabs/windows via target=_blank attribute. Bump version.

diff -r 4b3b1724c995 -r ee4a55fb7d23 maltfilter
--- a/maltfilter	Tue Mar 23 17:37:28 2010 +0200
+++ b/maltfilter	Sat Jan 15 06:22:02 2011 +0200
@@ -3,7 +3,7 @@
 #
 # Malicious Attack Livid Termination Filter daemon (maltfilter)
 # Programmed by Matti 'ccr' Hämäläinen <ccr@tnsp.org>
-# (C) Copyright 2009 Tecnic Software productions (TNSP)
+# (C) Copyright 2009-2010 Tecnic Software productions (TNSP)
 #
 #############################################################################
 use strict;
@@ -13,11 +13,11 @@
 use LWP::UserAgent;
 use IO::Seekable;
 
-my $progversion = "0.20.2";
+my $progversion = "0.20.4";
 my $progbanner =
 "Malicious Attack Livid Termination Filter daemon (maltfilter) v$progversion\n".
 "Programmed by Matti 'ccr' Hamalainen <ccr\@tnsp.org>\n".
-"(C) Copyright 2009 Tecnic Software productions (TNSP)\n";
+"(C) Copyright 2009-2010 Tecnic Software productions (TNSP)\n";
 
 
 #############################################################################
@@ -117,7 +117,7 @@
     my $merr = $3;
     if ($merr =~ /^File does not exist: (.+)$/) {
       my $tmp = $1;
-      if ($tmp =~ /\/mss2|\/pma|cpanel|admin|\/sql|mysql|websql|\/SSI.php|\/horde|\/rc$|\/xmlrpc.php|sqladm|dbadm|\/roundcube|\/webmail|\/mail|\/email|xampp|\/zen.*cart|\/cart|\/shop|\/store|mailto:|appserv|roundcube|_vti_bin|wiki|bugtrack|mantis|mantisbt|phpmanager|commerce|SID_box_notns_path/i) {
+      if ($tmp =~ /\/mss2|\/pma|cpanel|admin|\/sql|mysql|websql|\/SSI.php|\/horde|\/rc$|\/xmlrpc.php|sqladm|dbadm|\/roundcube|\/webmail|\/mail|\/email|xampp|\/zen.*cart|\/cart|\/shop|\/store|mailto:|appserv|roundcube|_vti_bin|wiki|bugtrack|mantis|mantisbt|phpmanager|commerce|SID_box_notns_path|\/tinybrowser.php\?type=file\&folder=/i) {
         check_add_hit($mip, $mdate, "CGI vuln scan", $tmp, 6, $settings{"CHK_KNOWN_CGI"});
       }
     }
@@ -309,7 +309,7 @@
 sub get_link($$)
 {
   if ($settings{"WHOIS_URL"} ne "") {
-    return $_[0] ? "<a href=\"".$settings{"WHOIS_URL"}.$_[1].
+    return $_[0] ? "<a target=\"_blank\" href=\"".$settings{"WHOIS_URL"}.$_[1].
       "\">".htmlentities($_[1])."</a>" : $_[1];
   } else {
     return $_[0];
@@ -319,7 +319,7 @@
 sub get_dronebl_link($)
 {
   if ($settings{"DRONEBL_LOOKUP_URL"} ne "") {
-    return sprintf(" [<a href=\"".$settings{"DRONEBL_LOOKUP_URL"}."\">*</a>]", $_[0]);
+    return sprintf(" [<a target=\"_blank\" href=\"".$settings{"DRONEBL_LOOKUP_URL"}."\">*</a>]", $_[0]);
   } else {
     return "";
   }