SECURITY ENHANCEMENT:
Added IP format validation before calling CSF firewall commands to prevent
potential command injection or invalid IP blocking attempts.
CHANGES:
- block_ip_temporary() - Added is_valid_ip() check before csf -td
- block_ip_permanent() - Added is_valid_ip() check before csf -d
- Both functions now return error if IP format is invalid
IMPACT:
Prevents invalid or malformed IPs from being passed to CSF commands,
improving security and preventing potential firewall corruption.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
cschantz
5c3ec7032a