Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Fetching contributors…

Cannot retrieve contributors at this time

84 lines (64 sloc) 3.451 kB
commit dd4f5c0df8b9e117eba0496badefbb9cd42d2bc9 (HEAD, refs/remotes/origin/master, refs/remotes/origin/HEAD, refs/heads/master)
Author: Michael Rash <mbr@cipherdyne.org>
Date: Tue May 12 22:45:12 2015 -0400
extend IGNORE_PROTOCOLS to match on both numeric protocol and text string regardless of what iptables reports
ChangeLog | 4 ++++
psad | 10 ++++++++++
2 files changed, 14 insertions(+)
commit 7534df2f52cf057ee0f901e0f69347a01864baac
Author: Michael Rash <mbr@cipherdyne.org>
Date: Tue May 12 22:32:40 2015 -0400
bumped version to 2.4.1
ChangeLog | 10 ++++++++++
VERSION | 2 +-
nf2csv | 2 +-
packaging/psad-nodeps.spec | 5 ++++-
packaging/psad-require-makemaker.spec | 5 ++++-
packaging/psad.spec | 5 ++++-
psad | 4 ++--
7 files changed, 26 insertions(+), 7 deletions(-)
commit e596a507dc30b64977c8d4565946698fdf7ee04b
Author: Michael Rash <mbr@cipherdyne.org>
Date: Tue May 12 22:22:40 2015 -0400
added config vars to enable/disable whois and reverse DNS lookups
psad | 19 ++++++++++---------
psad.conf | 6 ++++++
test/conf/auto_blocking.conf | 2 ++
test/conf/auto_min_dl5_blocking.conf | 2 ++
test/conf/default_psad.conf | 2 ++
test/conf/disable_ipv6_detection.conf | 2 ++
test/conf/enable_ack_detection.conf | 2 ++
test/conf/ignore_igmp.conf | 2 ++
test/conf/ignore_intf.conf | 2 ++
test/conf/ignore_tcp.conf | 2 ++
test/conf/ignore_udp.conf | 2 ++
test/conf/require_DROP_syslog_prefix_str.conf | 2 ++
test/conf/require_missing_syslog_prefix_str.conf | 2 ++
13 files changed, 38 insertions(+), 9 deletions(-)
commit c157a3bfd82f1ae22437834106c496eae368772b
Author: Michael Rash <mbr@cipherdyne.org>
Date: Tue May 12 21:54:48 2015 -0400
Bug fix to honor IGNORE_PROTOCOLS for non-tcp/udp/icmp protocols
This bug was reported by Paul Versloot.
CREDITS | 7 +-
psad | 40 +++++----
test/conf/ignore_igmp.conf | 199 ++++++++++++++++++++++++++++++++++++++++++
test/scans/iptables/ipv4_igmp | 4 +
test/test-psad.pl | 14 +++
5 files changed, 244 insertions(+), 20 deletions(-)
commit 907230bb59d2d03d32d730fc3f29e8dc18d16ad4
Author: Michael Rash <mbr@cipherdyne.org>
Date: Sun May 10 16:31:50 2015 -0400
Account for older versions of IPTables::ChainMgr that don't export _cmd
Github user itoffshore reported an issue #19 on Alpine Linux where the
following error was produced in 'psad -L' mode:
[+] Listing chains from IPT_AUTO_CHAIN keywords...
Use of uninitialized value in concatenation (.) or string at
/usr/sbin/psad line 6701.
[*] -t filter -n -L PSAD_BLOCK_INPUT -v does not look like an iptables
command. at /usr/sbin/psad line 6701.
This error was produced because a pre-1.3 version of IPTables::ChainMgr
is installed on the system, and it doesn't export the _cmd hash key
(which is actually exported first by the IPTables::Parse module).
psad | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
Jump to Line
Something went wrong with that request. Please try again.