Skip to content
Commits on Jun 12, 2012
Commits on Apr 21, 2012
  1. changelog and credits update

    committed Apr 20, 2012
Commits on Nov 25, 2010
  1. - Bug fix for ICMP packet handling where psad would incorrectly inter…

    committed Nov 25, 2010
    …pret
    
      ICMP port unreachable messages as UDP packets because the UDP specifics
      are included in the iptables log message.  This bug was first reported by
      Lukas Baxa to the Debian maintainers and was followed up by Franck
      Joncourt:
    
        http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=596240
    
      An example ICMP log message that exposed the bug is included below:
    
      Sep  8 18:04:26 baxic kernel: [28241.572876] IN_DROP IN=wlan0
      OUT= MAC=00:1a:9f:91:df:ae:00:21:27:e8:0a:a0:08:00
      SRC=10.0.0.138 DST=192.168.1.103 LEN=96 TOS=0x00 PREC=0xC0 TTL=254
      ID=63642 PROTO=ICMP TYPE=3 CODE=3
      [SRC=192.168.1.103 DST=10.0.0.138 LEN=68 TOS=0x00 PREC=0x00 TTL=0
      ID=22458 PROTO=UDP SPT=35080 DPT=33434 LEN=48 ]
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2311 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 14, 2010
  1. - Updated psad to issues whois lookups against IP addresses that are not

    committed Jul 14, 2010
    directly connected to the local system.  This is useful for example when
    an internal system is scanning an external destination system, and the
    scan is logged in the FORWARD chain.  Issuing whois lookups on the
    internal system (frequently on RFC 1918 address space) is not usually
    very useful, but issuing the whois lookup against the destination system
    gives much more interesting data.  This feature can be disabled with the
    new ENABLE_WHOIS_FORCE_SRC_IP variable.
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2297 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
  2. - Added ENABLE_WHOIS_FORCE_ASCII to replace any non-ascii characters in

    committed Jul 14, 2010
    whois data (which is common with whois lookups against Chinese IP
    addresses for example) with the string "NA".  This option is disabled by
    default, but can be useful if errors like the following are seen upon
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2296 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 12, 2010
  1. (Dan A. Dickey) Added the ability to use the "ip" command from the

    committed Jul 12, 2010
    iproute2 tools to acquire IP addresses from local interfaces.  Dan's
    description is as follows: "...A main reason for doing this is in the
    case of multi-homed hosts. ifconfig sets these up on an interface using
    aliases, iproute2 does not.  So, for a multi-homed interface (eth0 with
    multiple addresses), ifconfig -a only shows the first one configured and
    not the rest.  ip addr shows all of the configured addresses...".
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2293 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 2, 2010
  1. - Bug fix for Decode_Month() call in DShield processing code to ensure

    committed Jul 2, 2010
    proper month handling for iptables log message time stamps.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2281 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 30, 2009
  1. updated to include Sourcefire trademark mention

    committed Jul 30, 2009
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2270 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 28, 2009
  1. - (Franck Joncourt) Added --Override-config feature so that alternate

    committed Mar 28, 2009
    configuration files can be specified on the command line to override
    configuration variables in the standard /etc/psad/psad.conf file.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2263 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 24, 2009
  1. - (Franck Joncourt) Submitted patches to fix stderr redirection for the

    committed Mar 24, 2009
    usage of the mail binary, and to close stdout, stdin, and stderr when
    running psad as a daemon.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2260 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Feb 21, 2009
  1. added Miroslav Grepl

    committed Feb 21, 2009
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2258 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Oct 14, 2008
  1. - Bug fix for local server ports not reported correctly under netstat

    committed Oct 14, 2008
    parsing (Franck Joncourt).
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2244 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 31, 2008
  1. Applied patch from Franck Joncourt to fix missing check for the 'mail…

    committed Aug 31, 2008
    …' command
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2242 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 29, 2008
  1. dash fixes from Franck

    committed Aug 29, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2238 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 27, 2008
  1. - (Steve B) Submitted patch to fix a bug in the start() function in the

    committed Aug 27, 2008
    Gentoo init script which caused psad to not be started and the error
    "* ERROR: psad failed to start" to be generated.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2234 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 22, 2008
  1. added deps/ blurb for Franck

    committed Aug 22, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2232 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 24, 2008
  1. Bugfix to honor the IPT_SYSLOG_FILE variable in --Analyze-msgs mode (…

    committed Jul 24, 2008
    …reported by j.bakshi)
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2187 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Apr 9, 2008
  1. added Andrew Kaplan

    committed Apr 9, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2168 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 22, 2008
  1. another entry for Albert

    committed Mar 22, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2159 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 18, 2008
  1. psad-2.1.2-pre3

    committed Mar 18, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2156 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 26, 2008
  1. Added Erik Heidt

    committed Jan 26, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2145 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 11, 2008
  1. added locale C setting for LC_ALL variable

    committed Jan 11, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2132 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 5, 2008
  1. minor fix to allow easier HTML page generation for contributors listing

    committed Jan 5, 2008
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2131 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 19, 2007
  1. added James Neff

    committed Dec 19, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2130 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Oct 15, 2007
  1. added Christian Lyra

    committed Oct 15, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2120 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Sep 7, 2007
  1. additions for pyllyukko

    committed Sep 7, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2111 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jun 29, 2007
  1. update for pyllyukko

    committed Jun 29, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2076 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on May 26, 2007
  1. updates for Jeff S.

    committed May 26, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2063 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Apr 28, 2007
  1. more additions for Jeff S.

    committed Apr 28, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2038 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 23, 2007
  1. added pyllyukko's psad.SlackBuild script

    committed Mar 23, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2013 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 3, 2007
  1. merged r1985:1997 from psad-2.0.5 branch

    committed Mar 3, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1998 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Feb 5, 2007
  1. Added Aki Tuomi

    committed Feb 5, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1956 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 17, 2007
  1. added Stefano Harding

    committed Jan 17, 2007
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1943 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 18, 2006
  1. additions for Albert

    committed Dec 18, 2006
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1848 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 16, 2006
  1. changed Unix::Syslog import style from use to require since the psad …

    committed Dec 16, 2006
    …lib path is not determined now until import_psad_perl_modules() gets a chance to run
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1839 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Something went wrong with that request. Please try again.