From 78ca7d52054bdfc2d429a6cc331c64471eaa7111 Mon Sep 17 00:00:00 2001
From: serxoz <serxoz@protonmail.ch>
Date: Thu, 18 Apr 2024 17:34:26 +0200
Subject: [PATCH] clarifications on example action script

---
 action_script.sh | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/action_script.sh b/action_script.sh
index a4edbb1..6c43fbc 100755
--- a/action_script.sh
+++ b/action_script.sh
@@ -5,12 +5,14 @@
 #   iptables -I INPUT -s $1 -j DROP
 #
 # Example for OpenBSD:
-# Having a table in pf.conf:
+# Having this line in /etc/doas.conf
+#   permit nopass _tarpit as root cmd /sbin/pfctl
+# And having a table defined in pf.conf:
 #   table <blacklist> persist file "/etc/blacklist"
 #   block drop in quick from <blacklist> to any
-# then add/delete dinamically:
-#   pfctl -t blacklist -T add $1
-#   pfctl -t blacklist -T delete $1
+# then it is possible to add/delete dinamically:
+#   doas /sbin/pfctl -t blacklist -T add $1
+#   doas /sbin/pfctl -t blacklist -T delete $1
 
 # Example for "debugging":
 echo $1 > /tmp/foo