webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-05-06 21:16:10 +02:00
Code Issues Packages Projects Releases Wiki Activity
13,938 Commits 2 Branches 1 Tag
62e116567adf025d1ecc4e290b0dcbb3fb886fb2
Commit Graph

17 Commits

Author SHA1 Message Date
Arne Fitzenreiter
cafef39aa2 Revert "suricata: Enable rust support" 
This reverts commit 5b87687cb1.
 2019-10-18 20:39:47 +02:00
Stefan Schantl
5b87687cb1 suricata: Enable rust support 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2019-10-08 19:08:37 +00:00
Matthias Fischer
dbf1ae2a10 suricata: Update to 4.1.5 
Changelog:
"4.1.5 -- 2019-09-24

Feature #3068: protocol parser: vxlan (4.1.x)
Bug #2841: False positive alerts firing after upgrade suricata 3.0 -> 4.1.0 (4.1.x)
Bug #2966: filestore (v1 and v2): dropping of "unwanted" files (4.1.x)
Bug #3008: rust: updated libc crate causes depration warnings (4.1.x)
Bug #3044: tftp: missing logs because of broken tx handling (4.1.x)
Bug #3067: GeoIP keyword depends on now discontinued legacy GeoIP database (4.1.x)
Bug #3094: Fedora rawhide af-packet compilation err (4.1.x)
Bug #3123: bypass keyword: Suricata 4.1.x Segmentation Faults (4.1.x)
Bug #3129: Fixes warning about size of integers in string formats (4.1.x)
Bug #3159: SC_ERR_PCAP_DISPATCH with message "error code -2" upon rule reload completion (4.1.x)
Bug #3164: Suricata 4.1.4: NSS Shutdown triggers crashes in test mode
Bug #3168: tls: out of bounds read
Bug #3170: defrag: out of bounds read
Bug #3173: ipv4: ts field decoding oob read
Bug #3175: File_data inspection depth while inspecting base64 decoded data (4.1.x)
Bug #3184: decode/der: crafted input can lead to resource starvation
Bug #3186: Multiple Content-Length headers causes HTP_STREAM_ERROR (4.1.x)
Bug #3187: GET/POST HTTP-request with no Content-Length, http_client_body miss (4.1.x)"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Reviewed-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2019-10-08 18:37:29 +00:00
Erik Kapfer
21a8382383 suricata: Enable EVE logging 
The EVE output facility outputs alerts, metadata, file info and protocol specific records through JSON.
for further informations please see --> https://suricata.readthedocs.io/en/suricata-4.1.2/output/eve/index.html .

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Acked-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2019-06-05 12:44:49 +01:00
Stefan Schantl
a59052cec6 suricata: Update to 4.1.4 
This is a minor update to the latest available version from
the suricata 4.1 series.

Fixes #12068.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2019-05-02 19:33:38 +02:00
Stefan Schantl
728f3d2e8f suricata: Fix ownership and file permissions of files inside /var/lib/suricata. 
These files needs to have nobody.nobody as owner but requires read-acces from everyone
to allow the suricata user reading-in this files during startup.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2019-03-16 12:28:30 +00:00
Stefan Schantl
e8b1b397c1 suricata: Remove unneeded stuff during build 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2019-03-13 10:03:48 +01:00
Stefan Schantl
f717b1dc55 IDS: Set owner of suricata logging directory to correct user 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2019-03-10 18:52:40 +01:00
Stefan Schantl
2bec60c347 suricata: Update to 4.1.3 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2019-03-10 17:34:03 +01:00
Stefan Schantl
208cb3363f suricata: Update to 4.0.6 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-12-17 15:03:10 +01:00
Stefan Schantl
89a12b3843 suricata: Set correct ownership for /var/lib/suricata 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-10-01 20:14:00 +02:00
Stefan Schantl
2d475a3c6c Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next-suricata 2018-09-26 14:49:34 +02:00
Stefan Schantl
21cab141ec suricata: Rule files are now located in /var/lib/suricata 
Place the rulefiles from now in "/var/lib/suricata".

Fixes #11834

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-29 12:37:44 +02:00
Stefan Schantl
d2e6bf6e5f suricata: Do not ship an example configuration file 
Stop shipping a full example configuration file for suricata.

Fixes #11836.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-29 12:27:12 +02:00
Stefan Schantl
baeae34658 lfs/suricata: Move classification and reference config to /etc/suricata/rules 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-24 15:15:09 +02:00
Stefan Schantl
4c6d6c1ee3 suricata: Install very basic config file 
This config file is mostly based on the example configuration shipped
by the suricata project and needs to be enhanched.

See #11808.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-02 09:10:25 +02:00
Stefan Schantl
67752a9510 suricata: New package 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-07-30 21:31:15 +02:00