Update Snort package to 2.9.7.0 pkg v3.2

author: bmeeks8 <bmeeks8@bellsouth.net> 2014-12-15 11:20:31 -0500
committer: bmeeks8 <bmeeks8@bellsouth.net> 2014-12-15 11:20:31 -0500
commit: fa3c2e96911bef223f62ecb0f450495b677dab4f (patch)
tree: f72c6339215470388ed77c31df287d9533ff110d /config/snort/snort_check_cron_misc.inc
parent: 0e931059d5cf44828b0b1dd29a9102618d0ce2a1 (diff)
download: pfsense-packages-fa3c2e96911bef223f62ecb0f450495b677dab4f.tar.gz
pfsense-packages-fa3c2e96911bef223f62ecb0f450495b677dab4f.tar.bz2
pfsense-packages-fa3c2e96911bef223f62ecb0f450495b677dab4f.zip
1 files changed, 24 insertions, 3 deletions
diff --git a/config/snort/snort_check_cron_misc.inc b/config/snort/snort_check_cron_misc.inc
index b39d8d1c..a2688b58 100644
--- a/config/snort/snort_check_cron_misc.inc
+++ b/config/snort/snort_check_cron_misc.inc
@@ -75,16 +75,21 @@ function snort_check_dir_size_limit($snortloglimitsize) {
 				@file_put_contents("{$snort_log_dir}/alert", "");
 			}
 
-			// Cleanup any rotated perfmon stats logs
+			// Cleanup any perfmon stats logs
 			$files = array();
 			$list = glob("{$snort_log_dir}/*");
 			foreach ($list as $file) {
-				if (preg_match('/(^\d{4}-\d{2}-\d{2}[\.]?[\d+]?)/', basename($file), $matches))
+				if (preg_match('/(^\d{4}-\d{2}-\d{2}[\.\d+]*)/', basename($file), $matches))
 					$files[] = $snort_log_dir . "/" . $matches[1];
 			}
 			foreach ($files as $file)
 				unlink_if_exists($file);
 
+			// Cleanup any AppID stats logs
+			$files = glob("{$snort_log_dir}/appid-stats.log.*");
+			foreach ($files as $file)
+				unlink_if_exists($file);
+
 			// This is needed if snort is run as snort user
 			mwexec('/bin/chmod 660 {$snort_log_dir}/*', true);
 
@@ -214,7 +219,7 @@ if ($config['installedpackages']['snortglobal']['enable_log_mgmt'] == 'on') {
 			$files = array();
 			$list = glob("{$snort_log_dir}/*");
 			foreach ($list as $file) {
-				if (preg_match('/(^\d{4}-\d{2}-\d{2}[\.]?[\d+]?)/', basename($file), $matches))
+				if (preg_match('/(^\d{4}-\d{2}-\d{2}[\.\d+]*)/', basename($file), $matches))
 					$files[] = $snort_log_dir . "/" . $matches[1];
 			}
 			$prune_count = 0;
@@ -228,6 +233,22 @@ if ($config['installedpackages']['snortglobal']['enable_log_mgmt'] == 'on') {
 			if ($prune_count > 0)
 				log_error(gettext("[Snort] perfmon stats logs cleanup job removed {$prune_count} file(s) from {$snort_log_dir}/..."));
 		}
+
+		// Prune any aged-out AppID stats logs if any exist
+		if ($value['appid_stats_log_retention'] > 0) {
+			$now = time();
+			$files = glob("{$snort_log_dir}/app-stats.log.*");
+			$prune_count = 0;
+			foreach ($files as $f) {
+				if (($now - filemtime($f)) > ($value['appid_stats_log_retention'] * 3600)) {
+					$prune_count++;
+					unlink_if_exists($f);
+				}
+			}
+			unset($files);
+			if ($prune_count > 0)
+				log_error(gettext("[Snort] AppID stats logs cleanup job removed {$prune_count} file(s) from {$snort_log_dir}/..."));
+		}
 	}
 }
author	bmeeks8 <bmeeks8@bellsouth.net>	2014-12-15 11:20:31 -0500
committer	bmeeks8 <bmeeks8@bellsouth.net>	2014-12-15 11:20:31 -0500
commit	fa3c2e96911bef223f62ecb0f450495b677dab4f (patch)
tree	f72c6339215470388ed77c31df287d9533ff110d /config/snort/snort_check_cron_misc.inc
parent	0e931059d5cf44828b0b1dd29a9102618d0ce2a1 (diff)
download	pfsense-packages-fa3c2e96911bef223f62ecb0f450495b677dab4f.tar.gz pfsense-packages-fa3c2e96911bef223f62ecb0f450495b677dab4f.tar.bz2 pfsense-packages-fa3c2e96911bef223f62ecb0f450495b677dab4f.zip