![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / security / prelude-lml
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.51, Mon Aug 22 22:59:09 2022 UTC (19 months, 3 weeks ago) by tnn
Branch: MAIN
CVS Tags: HEAD
Changes since 1.50: +1 -1
lines
FILE REMOVED
prelude: remove from pkgsrc prelude is unmaintained in pkgsrc since 2009 and is several major versions behind. This makes it useless for it's intended purpose as an intrusion detection system. Can be revived if/when there is an interested maintainer. But it's probably easier to start from scratch given how stale these packages were.
Revision 1.50 / (download) - annotate - [select for diffs], Wed Dec 8 16:06:22 2021 UTC (2 years, 4 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2022Q2-base,
pkgsrc-2022Q2,
pkgsrc-2022Q1-base,
pkgsrc-2022Q1,
pkgsrc-2021Q4-base,
pkgsrc-2021Q4
Changes since 1.49: +2 -2
lines
Diff to previous 1.49 (colored) to selected 1.33 (colored)
revbump for icu and libffi
Revision 1.49 / (download) - annotate - [select for diffs], Wed Sep 29 19:01:19 2021 UTC (2 years, 6 months ago) by adam
Branch: MAIN
Changes since 1.48: +2 -2
lines
Diff to previous 1.48 (colored) to selected 1.33 (colored)
revbump for boost-libs
Revision 1.48 / (download) - annotate - [select for diffs], Wed Apr 21 13:25:21 2021 UTC (2 years, 11 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2021Q3-base,
pkgsrc-2021Q3,
pkgsrc-2021Q2-base,
pkgsrc-2021Q2
Changes since 1.47: +2 -2
lines
Diff to previous 1.47 (colored) to selected 1.33 (colored)
revbump for boost-libs
Revision 1.47 / (download) - annotate - [select for diffs], Fri May 22 10:56:38 2020 UTC (3 years, 10 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2021Q1-base,
pkgsrc-2021Q1,
pkgsrc-2020Q4-base,
pkgsrc-2020Q4,
pkgsrc-2020Q3-base,
pkgsrc-2020Q3,
pkgsrc-2020Q2-base,
pkgsrc-2020Q2
Changes since 1.46: +2 -2
lines
Diff to previous 1.46 (colored) to selected 1.33 (colored)
revbump after updating security/nettle
Revision 1.46 / (download) - annotate - [select for diffs], Sun Mar 8 16:51:11 2020 UTC (4 years, 1 month ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base,
pkgsrc-2020Q1
Changes since 1.45: +2 -2
lines
Diff to previous 1.45 (colored) to selected 1.33 (colored)
*: recursive bump for libffi
Revision 1.45 / (download) - annotate - [select for diffs], Mon Nov 4 21:12:59 2019 UTC (4 years, 5 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2019Q4-base,
pkgsrc-2019Q4
Changes since 1.44: +3 -3
lines
Diff to previous 1.44 (colored) to selected 1.33 (colored)
security: align variable assignments pkglint -Wall -F --only aligned --only indent -r No manual corrections.
Revision 1.44 / (download) - annotate - [select for diffs], Sat Jul 20 22:46:49 2019 UTC (4 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2019Q3-base,
pkgsrc-2019Q3
Changes since 1.43: +2 -2
lines
Diff to previous 1.43 (colored) to selected 1.33 (colored)
*: recursive bump for nettle 3.5.1
Revision 1.43 / (download) - annotate - [select for diffs], Thu May 23 19:23:16 2019 UTC (4 years, 10 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base,
pkgsrc-2019Q2
Changes since 1.42: +4 -4
lines
Diff to previous 1.42 (colored) to selected 1.33 (colored)
all: replace SUBST_SED with the simpler SUBST_VARS pkglint -Wall -r --only "substitution command" -F With manual review and indentation fixes since pkglint doesn't get that part correct in every case.
Revision 1.42 / (download) - annotate - [select for diffs], Wed Jul 4 13:40:35 2018 UTC (5 years, 9 months ago) by jperkin
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base,
pkgsrc-2019Q1,
pkgsrc-2018Q4-base,
pkgsrc-2018Q4,
pkgsrc-2018Q3-base,
pkgsrc-2018Q3
Changes since 1.41: +3 -3
lines
Diff to previous 1.41 (colored) to selected 1.33 (colored)
*: Move SUBST_STAGE from post-patch to pre-configure Performing substitutions during post-patch breaks tools such as mkpatches, making it very difficult to regenerate correct patches after making changes, and often leading to substituted string replacements being committed.
Revision 1.41 / (download) - annotate - [select for diffs], Tue Apr 17 22:29:50 2018 UTC (6 years ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2018Q2-base,
pkgsrc-2018Q2
Changes since 1.40: +2 -2
lines
Diff to previous 1.40 (colored) to selected 1.33 (colored)
Add p11-kit to gnutls/bl3.mk and bump dependencies.
Revision 1.40 / (download) - annotate - [select for diffs], Mon Sep 19 13:04:27 2016 UTC (7 years, 7 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2018Q1-base,
pkgsrc-2018Q1,
pkgsrc-2017Q4-base,
pkgsrc-2017Q4,
pkgsrc-2017Q3-base,
pkgsrc-2017Q3,
pkgsrc-2017Q2-base,
pkgsrc-2017Q2,
pkgsrc-2017Q1-base,
pkgsrc-2017Q1,
pkgsrc-2016Q4-base,
pkgsrc-2016Q4,
pkgsrc-2016Q3-base,
pkgsrc-2016Q3
Changes since 1.39: +2 -2
lines
Diff to previous 1.39 (colored) to selected 1.33 (colored)
Recursive PKGREVISION bump for gnutls shlib major bump.
Revision 1.39 / (download) - annotate - [select for diffs], Tue May 17 10:32:08 2016 UTC (7 years, 11 months ago) by fhajny
Branch: MAIN
CVS Tags: pkgsrc-2016Q2-base,
pkgsrc-2016Q2
Changes since 1.38: +4 -4
lines
Diff to previous 1.38 (colored) to selected 1.33 (colored)
Use REAL_ROOT_USER/REAL_ROOT_GROUP instead of ROOT_USER/ROOT_GROUP for all pkgsrc dir/file ownership rules. Fixes unprivileged user/group names from leaking into binary packages, manifest as non-fatal chown/chgrp failure messages at pkg_add time. Bump respective packages' PKGREVISION.
Revision 1.38 / (download) - annotate - [select for diffs], Sun Aug 23 14:30:41 2015 UTC (8 years, 7 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2016Q1-base,
pkgsrc-2016Q1,
pkgsrc-2015Q4-base,
pkgsrc-2015Q4,
pkgsrc-2015Q3-base,
pkgsrc-2015Q3
Changes since 1.37: +2 -2
lines
Diff to previous 1.37 (colored) to selected 1.33 (colored)
Bump PKGREVISION for nettle shlib major bump.
Revision 1.37 / (download) - annotate - [select for diffs], Wed Jan 1 11:52:33 2014 UTC (10 years, 3 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q2-base,
pkgsrc-2015Q2,
pkgsrc-2015Q1-base,
pkgsrc-2015Q1,
pkgsrc-2014Q4-base,
pkgsrc-2014Q4,
pkgsrc-2014Q3-base,
pkgsrc-2014Q3,
pkgsrc-2014Q2-base,
pkgsrc-2014Q2,
pkgsrc-2014Q1-base,
pkgsrc-2014Q1
Changes since 1.36: +2 -2
lines
Diff to previous 1.36 (colored) to selected 1.33 (colored)
Recursive PKGREVISION bump for libgcrypt-1.6.0 shlib major bump.
Revision 1.36 / (download) - annotate - [select for diffs], Fri Jul 12 10:45:02 2013 UTC (10 years, 9 months ago) by jperkin
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base,
pkgsrc-2013Q4,
pkgsrc-2013Q3-base,
pkgsrc-2013Q3
Changes since 1.35: +2 -2
lines
Diff to previous 1.35 (colored) to selected 1.33 (colored)
Bump PKGREVISION of all packages which create users, to pick up change of sysutils/user_* packages.
Revision 1.35 / (download) - annotate - [select for diffs], Mon Apr 8 11:17:22 2013 UTC (11 years ago) by rodent
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base,
pkgsrc-2013Q2
Changes since 1.34: +2 -2
lines
Diff to previous 1.34 (colored) to selected 1.33 (colored)
Remove "Trailing empty lines." and/or "Trailing white-space."
Revision 1.34 / (download) - annotate - [select for diffs], Fri Feb 1 22:21:12 2013 UTC (11 years, 2 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2013Q1-base,
pkgsrc-2013Q1
Changes since 1.33: +2 -2
lines
Diff to previous 1.33 (colored)
Reset MAINTAINER/OWNER (became observers)
Revision 1.33 / (download) - annotate - [selected], Tue Oct 23 18:16:51 2012 UTC (11 years, 5 months ago) by asau
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base,
pkgsrc-2012Q4
Changes since 1.32: +1 -3
lines
Diff to previous 1.32 (colored)
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
Revision 1.32 / (download) - annotate - [select for diffs], Thu Jul 5 16:09:18 2012 UTC (11 years, 9 months ago) by drochner
Branch: MAIN
CVS Tags: pkgsrc-2012Q3-base,
pkgsrc-2012Q3
Changes since 1.31: +2 -2
lines
Diff to previous 1.31 (colored) to selected 1.33 (colored)
revbump for libpreluse requirement bump
Revision 1.31 / (download) - annotate - [select for diffs], Sat Mar 3 00:13:53 2012 UTC (12 years, 1 month ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2012Q2-base,
pkgsrc-2012Q2,
pkgsrc-2012Q1-base,
pkgsrc-2012Q1
Changes since 1.30: +2 -2
lines
Diff to previous 1.30 (colored) to selected 1.33 (colored)
Recursive bump for pcre-8.30* (shlib major change)
Revision 1.30 / (download) - annotate - [select for diffs], Fri Nov 11 18:58:13 2011 UTC (12 years, 5 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2011Q4-base,
pkgsrc-2011Q4
Changes since 1.29: +4 -4
lines
Diff to previous 1.29 (colored) to selected 1.33 (colored)
Remove patch-aa, it's a nop. Remove MAKE_DIRS for an entry that also has MAKE_DIRS_PERMS. Add user-destdir support.
Revision 1.29 / (download) - annotate - [select for diffs], Fri Apr 22 13:44:38 2011 UTC (13 years ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2011Q3-base,
pkgsrc-2011Q3,
pkgsrc-2011Q2-base,
pkgsrc-2011Q2
Changes since 1.28: +2 -2
lines
Diff to previous 1.28 (colored) to selected 1.33 (colored)
recursive bump from gettext-lib shlib bump.
Revision 1.28 / (download) - annotate - [select for diffs], Tue Dec 15 22:10:40 2009 UTC (14 years, 4 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2011Q1-base,
pkgsrc-2011Q1,
pkgsrc-2010Q4-base,
pkgsrc-2010Q4,
pkgsrc-2010Q3-base,
pkgsrc-2010Q3,
pkgsrc-2010Q2-base,
pkgsrc-2010Q2,
pkgsrc-2010Q1-base,
pkgsrc-2010Q1,
pkgsrc-2009Q4-base,
pkgsrc-2009Q4
Changes since 1.27: +2 -1
lines
Diff to previous 1.27 (colored) to selected 1.33 (colored)
Recursive bump for libltdl
Revision 1.27 / (download) - annotate - [select for diffs], Sun Aug 23 19:49:27 2009 UTC (14 years, 7 months ago) by hasso
Branch: MAIN
CVS Tags: pkgsrc-2009Q3-base,
pkgsrc-2009Q3
Changes since 1.26: +35 -6
lines
Diff to previous 1.26 (colored) to selected 1.33 (colored)
Update to 0.9.15. Changes since 0.9.14: - Make the Prelude-LML UDP server IPv6 compatible. - Implement 'idmef-alter' and 'idmef-alter-force' option, alloing to include static values into IDMEF events generated using a given format. - New PPP/PPTPD/L2TP ruleset, by Alexander Afonyashin <firm <at> iname.com>, with slight modification from Pierre Chifflier <p.chifflier <at> inl.fr>. Close #340. - Fix CISCO VPN ruleset so that the 'Authentication rejected' rule will trigger even if the 'server' field does not contain a word (fix #328). - Remove dos-style end-of-lines (Closes #338) - Fixes possible off by one when parsing variable reference number, and remove un-needed check that would always evaluate to TRUE.Thanks Steve Grubb <sgrubb <at> redhat.com> for reporting this problem (and running flexelint on the Prelude sources)! - Update for libtool 2.x compatibility. - This simplify the whole regular expression handling a lot, making the code much easier to read, and fixing potential problem with ovector assignement. This code should also improve performance by a small factor. - Change CISCO references urls to their new location, add CISCO ASA rule to handle discarded tcp or udp packets. - Various fixes and update.
Revision 1.26 / (download) - annotate - [select for diffs], Sat Oct 18 13:29:28 2008 UTC (15 years, 6 months ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2009Q2-base,
pkgsrc-2009Q2,
pkgsrc-2009Q1-base,
pkgsrc-2009Q1,
pkgsrc-2008Q4-base,
pkgsrc-2008Q4
Changes since 1.25: +2 -2
lines
Diff to previous 1.25 (colored) to selected 1.33 (colored)
Update to 0.9.14. Changes: - Fix log file permission error, that could happen thought the user Prelude-LML was running as could access the file (#291). - ModSecurity ruleset update, by Dan Kopecek <dkopecek@redhat.com>: provides much more descriptive classification.text, add regexps for [file ..], [line ...], [tag ...] fields and fine tune targets/types (#321). - Deprecate Gamin/FAM support in favor of libev: the previous implementation had problem on SELinux enabled system due to Gamin server startup being triggered by other program, and thus using improper role for Prelude-LML. (#326). - Improved polling architecture by using Operating System specific backend when possible. - We now monitor files that are not immediately available for reading on startup: once the file can be monitored, libev provide us with a notification.
Revision 1.25 / (download) - annotate - [select for diffs], Tue Aug 26 22:23:29 2008 UTC (15 years, 7 months ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2008Q3-base,
pkgsrc-2008Q3,
cube-native-xorg-base,
cube-native-xorg
Changes since 1.24: +4 -5
lines
Diff to previous 1.24 (colored) to selected 1.33 (colored)
Update to 0.9.13. Changes: ModSecurity ruleset rewrite, by Peter Vrabec <pvrabec@redhat.com> and Dan Kopecek <dkopecek@redhat.com>. This ruleset handle ModSecurity 2.0 output. (Fix #216). - New rulesets for FreeBSD su attempts, by Alexander Afonyashin <firm@iname.com> (Fix #304). - Add additional format to the default configuration to deal with apache error_log file format, by Alexander Afonyashin <firm@iname.com> (Fix #307). - Normalize some classification: introduce Remote Login, and Credentials Change. Cleanup SSH ruleset, and remove duplicated rules.
Revision 1.24 / (download) - annotate - [select for diffs], Mon Jun 16 15:33:11 2008 UTC (15 years, 10 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2008Q2-base,
pkgsrc-2008Q2,
cwrapper
Changes since 1.23: +3 -1
lines
Diff to previous 1.23 (colored) to selected 1.33 (colored)
Add missing directory.
Revision 1.23 / (download) - annotate - [select for diffs], Mon Apr 28 10:54:08 2008 UTC (15 years, 11 months ago) by shannonjr
Branch: MAIN
Changes since 1.22: +2 -3
lines
Diff to previous 1.22 (colored) to selected 1.33 (colored)
Update to 0.9.12.2. Changes: - [rulesets]: Remove successful/failure keyword from classification (use IDMEF completion). Analyzer class sanitization. - [nagios] Handle Nagios V2 log entry (fix #283). - [spamassassin] Fix incorrect AdditionalData assignement. - New Suhosin ruleset, by Sebastien Tricaud <toady@inl.fr> - Fix invalid logfile inconsistency alert that could be triggered in a rare case, after a renaming detection. Alert improvement. - On logfile inconsistency alert, do not re-analyze the whole file. - Remove the 1024 bytes per PCRE reference limit. - Minor bug fixes, build system cleanup.
Revision 1.22 / (download) - annotate - [select for diffs], Thu Mar 6 14:53:53 2008 UTC (16 years, 1 month ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2008Q1-base,
pkgsrc-2008Q1
Changes since 1.21: +2 -2
lines
Diff to previous 1.21 (colored) to selected 1.33 (colored)
Recursive PKGREVISION bump for gnutls-2.2.2 update with shlib major bump.
Revision 1.21 / (download) - annotate - [select for diffs], Mon Oct 29 21:53:24 2007 UTC (16 years, 5 months ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2007Q4-base,
pkgsrc-2007Q4
Changes since 1.20: +2 -2
lines
Diff to previous 1.20 (colored) to selected 1.33 (colored)
PLIST correction
Revision 1.20 / (download) - annotate - [select for diffs], Wed Sep 5 18:58:41 2007 UTC (16 years, 7 months ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2007Q3-base,
pkgsrc-2007Q3
Changes since 1.19: +70 -15
lines
Diff to previous 1.19 (colored) to selected 1.33 (colored)
Corrected my misunderstanding of CONF_FILES infrastrure. Fixed several configuration file installation problems.
Revision 1.19 / (download) - annotate - [select for diffs], Mon Sep 3 13:46:04 2007 UTC (16 years, 7 months ago) by shannonjr
Branch: MAIN
Changes since 1.18: +4 -3
lines
Diff to previous 1.18 (colored) to selected 1.33 (colored)
Update to 0.9.10.1. Changes: - Make SSH rules IPv6 compliants, allowing to merge old IPv6 only rules with IPv4 rules. Some additional minor bug fixes (fix #232). - Fix incorrect target user assignment, as well as incorrect PCRE reference in assessment.impact.description (Paul Robert Marino <prmarino1@gmail.com>) (fix #232). - CISCO router acl lists can now use names instead of numbers. This made rule id=500 in cisco-router.rules fail to alert on packet denys on newer cisco devices (Paul Robert Marino <prmarino1@gmail.com>). - Fix Apache formating when Apache logname or user is set (Robin Gruyters <r.gruyters@yirdis.nl> and <andre@vandervlies.xs4all.nl>) (fix #229). - Invalid user.user_id(0).name assignement in SSH rule 1913 (Scott Olihovik <skippylou@gmail.com>) (fix #243). - Various bug fixes and minor improvements.
Revision 1.18 / (download) - annotate - [select for diffs], Sat Aug 4 09:29:29 2007 UTC (16 years, 8 months ago) by shannonjr
Branch: MAIN
Changes since 1.17: +2 -3
lines
Diff to previous 1.17 (colored) to selected 1.33 (colored)
Update to 0.9.10. Changes: - Ability to use regular expressions in plugins.rules to define monitored sources, this can be very useful when combined to file globing. - [SPEEDUP] When the "*" keyword is used, the data is passed to the upper layer without trying to match anything. - Fix NULL pointer dereference when a rule reference an existing, but empty context (fix #226). - Remove deprecated use of prelude_client_print_setup_error(), directly handled via prelude_perror(). - Make the log parser more robust.
Revision 1.17 / (download) - annotate - [select for diffs], Wed Jul 4 20:54:58 2007 UTC (16 years, 9 months ago) by jlam
Branch: MAIN
Changes since 1.16: +4 -1
lines
Diff to previous 1.16 (colored) to selected 1.33 (colored)
Make it easier to build and install packages "unprivileged", where
the owner of all installed files is a non-root user. This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.
(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
unprivileged.mk. These two variables are lists of other bmake
variables that define package-specific users and groups. Packages
that have user-settable variables for users and groups, e.g. apache
and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
and ${UNPRIVILEGED_GROUP}.
(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.
Revision 1.16 / (download) - annotate - [select for diffs], Tue Jun 5 05:37:34 2007 UTC (16 years, 10 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2007Q2-base,
pkgsrc-2007Q2
Changes since 1.15: +2 -1
lines
Diff to previous 1.15 (colored) to selected 1.33 (colored)
opencdk shlib major changed; bump ABI depends and PKGREVISIONs of affected packages.
Revision 1.15 / (download) - annotate - [select for diffs], Sat May 12 10:00:35 2007 UTC (16 years, 11 months ago) by shannonjr
Branch: MAIN
Changes since 1.14: +2 -2
lines
Diff to previous 1.14 (colored) to selected 1.33 (colored)
Update to 0.9.9. Changes: - Pattern can now be used to specify file to be monitored. - Fix an issue in the detection of buggy writev() FAM notification. - Add bonding.rules, by Paul Robert Marino <prmarino1@gmail.com>. - ModSecurity ruleset update: remove unnecessary fields + ModSecurity 2.0 compatibility. - New Cisco IOS common ruleset, by Alexandre Racine. - Avoid duplicating information in node name and node address. - Add rule ID and revision to the generated alert for each matched rule. Fix #206. - Handle "last" keyword even if the rule does not contain any IDMEF assignment. Fix #218. - Various bug fixes.
Revision 1.14 / (download) - annotate - [select for diffs], Fri Feb 23 15:22:10 2007 UTC (17 years, 1 month ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2007Q1-base,
pkgsrc-2007Q1
Changes since 1.13: +2 -2
lines
Diff to previous 1.13 (colored) to selected 1.33 (colored)
Update to 0.9.8.1. Changes: - Various portability fixes. - Introduce Cisco ASA IPS module support. - Introduce yum support. - Introduce Cacti thold plugin support. - Introduce Microsoft Cluster Service support. - Honeyd rules update and improvement. - Updated NAVCE rules; modified ClamAV rules for consistency. - Improve NTSyslog ruleset. - Added rule to ignore LML's "could not match prefix" log entries. - Fix format problem with Apache logs from western hemisphere (- versus + TZ). - Fix Squid process exited rule (#185).
Revision 1.13 / (download) - annotate - [select for diffs], Wed Aug 23 18:51:56 2006 UTC (17 years, 8 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2006Q4-base,
pkgsrc-2006Q4,
pkgsrc-2006Q3-base,
pkgsrc-2006Q3
Changes since 1.12: +3 -2
lines
Diff to previous 1.12 (colored) to selected 1.33 (colored)
Add master site entry for times when pkgsrc doesn't have the completely latest version.
Revision 1.12 / (download) - annotate - [select for diffs], Tue Jul 11 09:41:33 2006 UTC (17 years, 9 months ago) by shannonjr
Branch: MAIN
Changes since 1.11: +2 -3
lines
Diff to previous 1.11 (colored) to selected 1.33 (colored)
Update to prelude-lml 0.9.6. Changes: - Fix a bug where some rules marked silent would trigger an alert. - Load Sonicwall and Spamassassin ruleset by default. - Fix rule syntax problem in Sonicwall ruleset. - Fix rule indexing problem in Squid ruleset. - Postfix rule consistency fix.
Revision 1.11 / (download) - annotate - [select for diffs], Fri May 26 11:25:22 2006 UTC (17 years, 10 months ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2006Q2-base,
pkgsrc-2006Q2
Changes since 1.10: +2 -1
lines
Diff to previous 1.10 (colored) to selected 1.33 (colored)
Modify run-prelude-lml to properly start prelude-lml as daemon. This works around a problem where prelude-lml is not connecting to prelude-manager when passed the -d command line argument.
Revision 1.10 / (download) - annotate - [select for diffs], Mon May 22 11:49:51 2006 UTC (17 years, 11 months ago) by shannonjr
Branch: MAIN
Changes since 1.9: +4 -5
lines
Diff to previous 1.9 (colored) to selected 1.33 (colored)
1) Update to 0.9.5 2) Changed permissions on plugins.rules and prelude-lml.conf so that prelude-lml can run unpriviledged 3) Changed confdir in configure so that plugins.rules and prelude-lml.conf are found. Changes in 0.9.5: - Experimental context support (ala SEC): we now handle multiline log matching. - Update PAX rules so that it use the new context feature. - Don't exit on statistics signal, improve statistics precision, make them easier to read. - Fix some problem with user & group options. - text-output argument is optional. - New experimental ruleset: Sonicwall and Spamassassin. These need to be manually hooked to pcre.rules if you plan to use them. - Fix FAM activation switches.
Revision 1.9 / (download) - annotate - [select for diffs], Sun May 21 15:50:18 2006 UTC (17 years, 11 months ago) by rillig
Branch: MAIN
Changes since 1.8: +10 -10
lines
Diff to previous 1.8 (colored) to selected 1.33 (colored)
Fixed pkglint warnings.
Revision 1.8 / (download) - annotate - [select for diffs], Sun May 21 15:05:57 2006 UTC (17 years, 11 months ago) by joerg
Branch: MAIN
Changes since 1.7: +6 -6
lines
Diff to previous 1.7 (colored) to selected 1.33 (colored)
It is spelled CONF_FILES_PERMS, USE_GNU_TOOLS is dead and remove some bogus :Q.
Revision 1.7 / (download) - annotate - [select for diffs], Sat May 20 19:12:32 2006 UTC (17 years, 11 months ago) by joerg
Branch: MAIN
Changes since 1.6: +22 -2
lines
Diff to previous 1.6 (colored) to selected 1.33 (colored)
Use config file framework.
Revision 1.6 / (download) - annotate - [select for diffs], Sun Apr 23 00:12:42 2006 UTC (18 years ago) by jlam
Branch: MAIN
Changes since 1.5: +7 -2
lines
Diff to previous 1.5 (colored) to selected 1.33 (colored)
Modify packages that set PKG_USERS and PKG_GROUPS to follow the new syntax as specified in pkgsrc/mk/install/bsd.pkginstall.mk:1.47.
Revision 1.5 / (download) - annotate - [select for diffs], Fri Mar 10 22:49:37 2006 UTC (18 years, 1 month ago) by shannonjr
Branch: MAIN
CVS Tags: pkgsrc-2006Q1-base,
pkgsrc-2006Q1
Changes since 1.4: +2 -3
lines
Diff to previous 1.4 (colored) to selected 1.33 (colored)
Update to 0.9.4 Changes: - Remove trailing space from regex we get from plugins.rules (this fix a match problem on log entry that didn't contain any space). - Add --user / --group option to drop privilege. However, make sure it is not allowed to open file that the target user can not read, because it would lead to failure when trying to re-open the logfile after a rotation. - Signal handling improvement. - Fix priority for --quiet option. - Use newer libprelude IDMEF_LIST_APPEND/IDMEF_LIST_PREPEND addition. - Add unhandled arguments warning.
Revision 1.4 / (download) - annotate - [select for diffs], Mon Mar 6 00:18:22 2006 UTC (18 years, 1 month ago) by wiz
Branch: MAIN
Changes since 1.3: +2 -2
lines
Diff to previous 1.3 (colored) to selected 1.33 (colored)
Belatedly bump PKGREVISION for all libtasn1 dependencies, since libtasn1 had a shlib major bump. Also update dependencies in bl3.mk files. Addresses PR 32998 by Robert Elz.
Revision 1.3 / (download) - annotate - [select for diffs], Sun Feb 5 23:10:46 2006 UTC (18 years, 2 months ago) by joerg
Branch: MAIN
Changes since 1.2: +2 -1
lines
Diff to previous 1.2 (colored) to selected 1.33 (colored)
Recursive revision bump / recommended bump for gettext ABI change.
Revision 1.2 / (download) - annotate - [select for diffs], Tue Jan 31 10:46:31 2006 UTC (18 years, 2 months ago) by shannonjr
Branch: MAIN
Changes since 1.1: +4 -2
lines
Diff to previous 1.1 (colored) to selected 1.33 (colored)
Update to 0.9.2. Changes: - Get rid of the 1024 characters per line limitation (defined as per the syslog RFC), since LML is not limited to parsing input from syslog anymore. - Handle events in Clamav logging format as well as syslog. - Abstracted Squid chain regex to allow parsing of data directly from Squid log files. - Introduced support for openhostapd. - Began expanding rulesets with additional_data and vendor-specific classification data. - Various ruleset updates and bug fixes. Prelude-LML is a signature based log analyzer monitoring logfile and received syslog messages for suspicious activity. It handle events generated by a large set of components, including but not limited to: BigIP, Grsecurity, Honeyd, ipchains, Netfilter, ipfw, Nokia ipso, Nagios, Norton Antivirus Corporate Edition, NTsyslog, PAM, Portsentry, Postfix, Proftpd, ssh, etc.
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Sun Jan 29 15:56:42 2006 UTC (18 years, 2 months ago) by shannonjr
Branch: TNF
CVS Tags: pkgsrc-base
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored) to selected 1.33 (colored)
Prelude is a hybrid IDS consisting of multiple sensors, managers, and a display console. Prelude-lml is the log file analyzer. It scans system log files and generates IDMEF alerts to the prelude-manager based on signature rulesets. This is one of sever new Prelude packages.
Revision 1.1 / (download) - annotate - [select for diffs], Sun Jan 29 15:56:42 2006 UTC (18 years, 2 months ago) by shannonjr
Branch: MAIN
Diff to selected 1.33 (colored)
Initial revision