Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Commits on Oct 12, 2012
  1. Merge pull request #48 from binf/bug-fix

    authored
    updated: minor compilation bugfixes and less melodramatic with warnings.
Commits on Oct 8, 2012
  1. @binf

    Minor bugfix and improvement

    binf authored
    Bumped revision to 313
    
    Fix: Enable compilation without error with --enable-ipv6
    
    Fix to spo_syslog_full
    Fix: operation_mode parsing (strcasecmp return value)
    Fix: defined values (literals instead of 0 and 1) for clarity.
    Fix: in complete mode used a } instead of a ] at one place in a output
    literal.
    Fix: Check for input data in spo_database.c where revision is 0, we do
    not log and we print messages
    Modified: Replaced WARNING database by INFO database so people are less
    alarmed when those pop-up.
Commits on Sep 24, 2012
  1. @jsiwek

    Fixes for the Bro output plugin.

    jsiwek authored committed
    - Update event/record names for identifiers that Bro uses in its
      Barnyard2 integration scripts.
    - Fix ICMP type/code byte ordering.
    - Fix segfault when an alert has no classification.
    - Fix for Broccoli expecting 64-bit count values.
    - Support for IPv6 addresses (needs Bro > v2.0).
Commits on Aug 30, 2012
  1. @binf

    Fixed typo in spo_alert_unixsock.c (memmmove -> memmove)

    binf authored
    Bumped revision to 310
  2. @dogbert2 @binf

    changed bzero() to memset()

    dogbert2 authored binf committed
    changed bzero() to memset() as bzero is deprecated.
    
    replaced bzero() with memset()
    
    replaced calls to bzero() with memset() as bzero is deprecated.
    
    replaced bcopy() with memmove()
    
    Replaced deprecated bcopy() with memmove(), memmove is guaranteed to
    work even if memory areas overlap, where as memcpy is designed so that
    the memory areas MUST not overlap.
    
    replaced bzero() with memset()
    
    Replaced bzero() with memset() as bzero is deprecated.
    
    replaced bzero() with memset()
    
    changed bzero() which is deprecated to memset().
    
    replaced deprecated function calls
    
    replaced bzero() with memset() and
    bcopy() with memmove().
    
    changed bzero to memset
    
    changed bzero() to memset in #define, bzero deprecated.
    
    replaced bzero() with memset()
    
    replaced bzero() with memset() as bzero is deprecated.
    
    changed function prototype
    
    corrected function prototype for PlatypusAgentReceive to match actual
    function later in file.
    
    corrected function prototype and deprecated calls
    
    changed function prototype for SguilRecvAgentMsg() and changed bzero()
    to memset() as bzero() is deprecated
    
    replaced bzero() with memset()
    
    replaced bzero() with memset() since bzero() is deprecated.
  3. @binf

    -Fix: Lightened dbProcessSignatureInformation and fixed logical issue

    binf authored
    -Bumped: Build to 309
    
    Fix sguil compile issue
Commits on Aug 28, 2012
  1. @binf

    -Fix: Allowed to run with an empty classification.config file as long…

    binf authored
    … as there is data in the database
    
    -Bumped version to 208
  2. @binf

    -Fix: Removed a call to snort_escape_static() in reference populate d…

    binf authored
    …atabase that was leading to a missleading reference compare/insertion and a grow on the reference table.
    
    -Fix: Modified the sigref code so i is smarter and more tolerant to changes of order of reference etc.
    -Bumped revision to 307
Commits on Aug 27, 2012
  1. @binf

    Add: After initialization, free unused cache memory (reference and sy…

    binf authored
    …stem and sigref)
    
    Fix: Signature will now heritate message from latest revision if it exist in cache instead of Snort Alert [gid:sid:rev]
    Fix: Balance reference for signature with same gid:sid and different revision (no logic, raw compare, need to be present in file (sid-msg.map)
    Bumped build to 306.
Commits on Aug 20, 2012
  1. @binf

    Rel version 2-1.10 Build 305

    binf authored
    -Fix: Compilation Warning.
    -Fix: Spooler behavior (ISSUE 9 merge error?)
    -Fix: Stack overwriting in spo_database.c
    -Fix: Potential heap overwriting in spo_database.c
  2. @binf

    -Upd: Build Version

    binf authored
    -Add: SCHEMA_ACCESS for instruction on database schema requirements
    -Add: SQL escaping code check for reference tag name.
    -Fix: will not insert sig_ref for ""internal"" signature
    -Fix: will not fail when there is no reference present in sid-msg.map file.
    -Fix: spo_database.c typo in if (define) for postgresql
    -Fix: max cache events bumped to 256
    -Fix: for compilation without libpcap libraries
    -Fix: compilation issue with Postgresql (Define error)
    -Fix: Database Compilation Warning (Header re-use issue)
    -Fix: Postgresql Encoding issue.
Commits on Jun 1, 2012
  1. @binf

    This commit fixes a few logical issue handling signature and cache data.

    binf authored
    No signature data is commited to the database if it has a revision of 0 (initialized form file, beside preprocessor)
    
    This fixes some issue regarding uninitialized signature being logged.
    A few assert() call have been added. If you hit a bugcheck and use this branch, let us know.
    
    Addmentum: This commit contain ODBC code that is not ready for deployment.
Commits on May 31, 2012
  1. @binf
  2. @binf

    Rebase commit (incomplete fix)

    binf authored
Commits on May 24, 2012
  1. @binf
Commits on May 10, 2012
  1. @binf

    Fix for issue 26

    binf authored
  2. @binf

    Fix dbConnectionStatusMYSQL

    binf authored
Commits on Mar 2, 2012
  1. @binf

    Never commit without checking if it compile ;)

    binf authored
    (fixed compile with not --enable*db option, regression
  2. @binf

    -Added DEBUG_WRAP code for some database code, if compiled with --ena…

    binf authored
    …ble-debug and BARNYARD2_DEBUG set or combined with to (DB_DEBUG)0x80000000
    
    -Added SignatureLookupDatabase() function to prevent some possible race condition when a signature is not found in cache,mabey an other by2 process could insert it ex:if an event occur at the same time for two sensor
    -Changed some log message format.
Commits on Feb 19, 2012
  1. @binf

    -changed some esthetics of the dbConnectionStatusPOSTGRESQL (using PQ…

    binf authored
    …setdbLogin instead of PQreset)
Commits on Feb 13, 2012
  1. @binf

    -Fixed length of REF_TAG_LEN to 255

    binf authored
    -Fixed possible nexted call to Rollback issued call to dbProcessSignatureInformation,dbSignatureInformationUpdate and SignaturePopulateDatabase
    -Fixed compilation issue when no database configuration flag are enabled.
    
    -Added some debug info to some RollbackTransaction call
Commits on Jan 31, 2012
  1. @binf
  2. @binf

    Fixed a few issue:

    binf authored
    - Added iph defaulting with inner_iph (portscan mainly..)
    - Added exit in Barnyard2Cleanup (prob merge conflict)
    - some cleanup in syslog fix
    - fixed a leak in spoolerEventCacheClean
  3. @binf

    Fix build issue

    binf authored
Commits on Jan 30, 2012
  1. @binf

    Fixed message format by adding the "operation mode directive"

    binf authored
    Added support for local syslog logging.
Commits on Jan 17, 2012
  1. @binf

    Official beta release

    binf authored
    -Added support for PostgreSQL
    -Fixed a few bugs related to transaction call stack.
    -Ready to be used by you,you and yes you.
Commits on Jan 12, 2012
  1. @binf

    Final commit for mysql-beta

    binf authored
  2. @binf

    Current Working build

    binf authored
Commits on Dec 11, 2011
  1. @binf

    Completly fix ISSUE9

    binf authored
Commits on Nov 14, 2011
  1. @binf

    added: support for compiling under cygwin.

    binf authored committed
Commits on Nov 8, 2011
  1. Merge pull request #7 from regit/master

    authored
    Small fixes from Suricata team.
Something went wrong with that request. Please try again.