Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Commits on Nov 25, 2010
  1. - Bug fix for ICMP packet handling where psad would incorrectly inter…

    authored
    …pret
    
      ICMP port unreachable messages as UDP packets because the UDP specifics
      are included in the iptables log message.  This bug was first reported by
      Lukas Baxa to the Debian maintainers and was followed up by Franck
      Joncourt:
    
        http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=596240
    
      An example ICMP log message that exposed the bug is included below:
    
      Sep  8 18:04:26 baxic kernel: [28241.572876] IN_DROP IN=wlan0
      OUT= MAC=00:1a:9f:91:df:ae:00:21:27:e8:0a:a0:08:00
      SRC=10.0.0.138 DST=192.168.1.103 LEN=96 TOS=0x00 PREC=0xC0 TTL=254
      ID=63642 PROTO=ICMP TYPE=3 CODE=3
      [SRC=192.168.1.103 DST=10.0.0.138 LEN=68 TOS=0x00 PREC=0x00 TTL=0
      ID=22458 PROTO=UDP SPT=35080 DPT=33434 LEN=48 ]
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2311 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 14, 2010
  1. - Updated psad to issues whois lookups against IP addresses that are not

    authored
    directly connected to the local system.  This is useful for example when
    an internal system is scanning an external destination system, and the
    scan is logged in the FORWARD chain.  Issuing whois lookups on the
    internal system (frequently on RFC 1918 address space) is not usually
    very useful, but issuing the whois lookup against the destination system
    gives much more interesting data.  This feature can be disabled with the
    new ENABLE_WHOIS_FORCE_SRC_IP variable.
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2297 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
  2. - Added ENABLE_WHOIS_FORCE_ASCII to replace any non-ascii characters in

    authored
    whois data (which is common with whois lookups against Chinese IP
    addresses for example) with the string "NA".  This option is disabled by
    default, but can be useful if errors like the following are seen upon
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2296 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 12, 2010
  1. (Dan A. Dickey) Added the ability to use the "ip" command from the

    authored
    iproute2 tools to acquire IP addresses from local interfaces.  Dan's
    description is as follows: "...A main reason for doing this is in the
    case of multi-homed hosts. ifconfig sets these up on an interface using
    aliases, iproute2 does not.  So, for a multi-homed interface (eth0 with
    multiple addresses), ifconfig -a only shows the first one configured and
    not the rest.  ip addr shows all of the configured addresses...".
    
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2293 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 2, 2010
  1. - Bug fix for Decode_Month() call in DShield processing code to ensure

    authored
    proper month handling for iptables log message time stamps.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2281 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 30, 2009
  1. updated to include Sourcefire trademark mention

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2270 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 28, 2009
  1. - (Franck Joncourt) Added --Override-config feature so that alternate

    authored
    configuration files can be specified on the command line to override
    configuration variables in the standard /etc/psad/psad.conf file.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2263 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 24, 2009
  1. - (Franck Joncourt) Submitted patches to fix stderr redirection for the

    authored
    usage of the mail binary, and to close stdout, stdin, and stderr when
    running psad as a daemon.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2260 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Feb 21, 2009
  1. added Miroslav Grepl

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2258 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Oct 14, 2008
  1. - Bug fix for local server ports not reported correctly under netstat

    authored
    parsing (Franck Joncourt).
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2244 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 31, 2008
  1. Applied patch from Franck Joncourt to fix missing check for the 'mail…

    authored
    …' command
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2242 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 29, 2008
  1. dash fixes from Franck

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2238 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 27, 2008
  1. - (Steve B) Submitted patch to fix a bug in the start() function in the

    authored
    Gentoo init script which caused psad to not be started and the error
    "* ERROR: psad failed to start" to be generated.
    
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2234 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Aug 22, 2008
  1. added deps/ blurb for Franck

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2232 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jul 24, 2008
  1. Bugfix to honor the IPT_SYSLOG_FILE variable in --Analyze-msgs mode (…

    authored
    …reported by j.bakshi)
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2187 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Apr 9, 2008
  1. added Andrew Kaplan

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2168 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 22, 2008
  1. another entry for Albert

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2159 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 18, 2008
  1. psad-2.1.2-pre3

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2156 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 26, 2008
  1. Added Erik Heidt

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2145 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 11, 2008
  1. added locale C setting for LC_ALL variable

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2132 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 5, 2008
  1. minor fix to allow easier HTML page generation for contributors listing

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2131 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 19, 2007
  1. added James Neff

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2130 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Oct 15, 2007
  1. added Christian Lyra

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2120 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Sep 7, 2007
  1. additions for pyllyukko

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2111 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jun 29, 2007
  1. update for pyllyukko

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2076 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on May 26, 2007
  1. updates for Jeff S.

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2063 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Apr 28, 2007
  1. more additions for Jeff S.

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2038 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 23, 2007
  1. added pyllyukko's psad.SlackBuild script

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@2013 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Mar 3, 2007
  1. merged r1985:1997 from psad-2.0.5 branch

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1998 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Feb 5, 2007
  1. Added Aki Tuomi

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1956 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Jan 17, 2007
  1. added Stefano Harding

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1943 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 18, 2006
  1. additions for Albert

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1848 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 16, 2006
  1. changed Unix::Syslog import style from use to require since the psad …

    authored
    …lib path is not determined now until import_psad_perl_modules() gets a chance to run
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1839 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 12, 2006
  1. added Philip Lawrence for perl module path import fix

    authored
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1819 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Commits on Dec 9, 2006
  1. Bugfix for syslog-ng config so that any custom source for /proc/kmsg …

    authored
    …is used for the psadfifo path.
    
    git-svn-id: file:///home/mbr/svn/psad_repos/psad/trunk@1790 91a0a83b-1414-0410-bf9a-c3dbc33e90b6
Something went wrong with that request. Please try again.