This prevents domain names, IPs, and other variables with special characters
(like dots in domains) from being interpreted as regex wildcards.
Changed patterns from:
grep "pattern_with_$var"
to:
grep -F "pattern_with_$var"
Affects 11 grep statements across multiple functions:
- Domain-specific metrics calculation (lines 686-688)
- IP progression analysis (line 750)
- Attack type breakdown (line 1039)
- Domain bot type indexing (line 2020)
- Domain threat statistics (line 3678)
- High-risk IP blocking (lines 4006, 4156, 4200, 4202-4203)
- High-risk IP listing (line 4523)
- Temporary deny blocking (lines 4589, 4642)
This hardens the script against regex injection attacks and ensures correct
literal string matching regardless of special characters in data.
Developer
d159dd28d8