Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 90544 - net-firewall/psad version bump to version 1.4.1
Summary: net-firewall/psad version bump to version 1.4.1
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: New packages (show other bugs)
Hardware: All Linux
: High enhancement (vote)
Assignee: The Gentoo Linux Hardened Team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-04-26 14:27 UTC by Erinn Looney-Triggs
Modified: 2005-07-30 20:09 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Erinn Looney-Triggs 2005-04-26 14:27:23 UTC 
New version is available, might also want to clean out some of the old ebuilds for this package.
Thanks,
-Erinn
Here is a copy of the Change Log.
psad-1.4.1 release   [Mar 12, 2005] 
Updated to Snort-2.3 rules in the snort_rules directory. 
Re-worked syslog installation portion of install.pl. The user will always be prompted to enter the syslog daemon now, and also added the --syslog-conf arg to allow the config file path to be specified on the install.pl command line. 
Bugfix in install.pl for using IP address instead of network address of directly connected subnets. 
Updated to version 4.6.23 of the whois client. 
Bugfix for distinguishing OPT field associated with --log-tcp-options vs. --log-ip-options. 
Bugfix for syslog format that may not include the "kernel:" tag. 
Applied patch to only install perl modules that are not already installed (Blair Zajac). 
Bugfix for the psad version number that is sent in DShield alerts. 
Updated Psad module directory structure to be consistent with current versions of perl (5.8.x). 
Added IPTables::ChainMgr module. 
Completely re-worked the Netfilter auto-blocking code to use IPTables::ChainMgr functions so that auto-generated rules are placed in chains created by psad. 
Added IPT_AUTO_CHAIN keyword in psad.conf which is used to define the set of chains to which auto-generated Netfilter rules are added. 
Added --fw-list-auto to display the contents of psad Netfilter chains. 
Added the ability to import an IP into the Netfilter auto-blocking chains from the command line with --fw-block-ip. This allows psad to apply its timeout mechanism against such IPs/nets. 
Added the ability to ignore packets based on input interface with IGNORE_INTERFACES in psad.conf. 
Re-worked auto_dl code, better hash design and searching function. 
Removed dependency on sendmail command unless DShield alerting is enabled and a DShield user id is specified. 
Added ALERTING_METHODS keyword in the file alert.conf to allow either syslog or email alerts (or both) to be disabled. Psad and psadwatchd reference this file.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.
Comment 1 Bryan Stine (RETIRED) gentoo-dev 2005-07-30 20:09:31 UTC 
Bumped in portage.