aboutsummaryrefslogtreecommitdiffstats
path: root/config/snort/snort.inc
Commit message (Collapse)AuthorAgeFilesLines
* List all dependencies here to avoid problems during installationErmal2012-06-151-1/+1
|
* Dno not remove lib/snort since it breaks reinstallations!Ermal2012-06-141-2/+1
|
* Bump minor verionErmal2012-06-141-1/+1
|
* Remove pid file of barnyard2 when stopid and also remove duplicate log lineErmal2012-06-141-2/+1
|
* Move logs and alert file to per instance folder. Also remove configuration ↵Ermal2012-06-141-158/+52
| | | | only on deletion of an instance and not when its stopped
* Use pid files to control snort start/stop codeErmal2012-06-141-87/+52
|
* Remove not needed code.Ermal2012-06-121-7/+0
|
* Remove not needed code.Ermal2012-06-121-45/+0
|
* Bump versionErmal2012-06-121-1/+1
|
* Add normalizd_javascript present in latest snort versionErmal2012-06-121-0/+1
|
* Put a single alert file for each instance of snort so it actually works. ↵Ermal2012-06-121-23/+30
| | | | Also correct blocked page/ For large files this still will bail out
* Remove lib dir to avoid issues with upgrade of .so libsErmal2012-06-121-1/+1
|
* Centralize the snort update tarball and use 2922 file for rules.Ermal2012-06-121-0/+1
|
* Add this required variable for nowErmal2012-01-271-0/+1
|
* Bump version here toojim-p2012-01-261-1/+1
|
* Expose the new options of spoink to the GUIErmal2012-01-251-1/+5
| | | | | | | | | | | Improve spoink code a lot: - Allow to block by src/dst/both on the packet that generated alert. Default to src to keep backward compatibility - Speedup whitelist search - Create an option that allows to kill states on pf for blocked hosts. This allows to remove all access to the blocked host. TODO: - More fine grained blocking options? - Make whiwhitelist hparsing less sucky and IPv6 compatible
* Patch to the previous change, reference: http://redmine.pfsense.org/issues/2033.Michele Di Maria2011-12-061-7/+7
|
* Adds two variables for SIP services in the "Define Servers" interface:Michele Di Maria2011-12-051-0/+16
| | | | | | | SIP_SERVERS, default=$HOME_NET SIP_PORTS, default=[5060:5090,16384:32768] Reference: http://redmine.pfsense.org/issues/2033
* Correct the copying of rules during config sync it was copying the wrong rules.Ermal2011-11-111-1/+3
|
* Use basename to be sure that no full path is used on the files themselvesErmal2011-11-111-1/+1
|
* Send snort.inc on some diet by removing unused/junk codeErmal2011-11-111-248/+3
|
* Remove the mess of config syncing in snort and just provide one function for ↵Ermal2011-11-111-194/+31
| | | | all. This allows snort to properly start at bootup and restart on ip change.
* Correct The functions used on the GUI to check if snort is up or not.Ermal2011-11-111-79/+43
|
* Correct the change made before to the script to properly work. Check if ↵Ermal2011-11-101-49/+12
| | | | snort is running and restart it otherwise start it.
* Remove this not needed code anymore since snort is able to recover itself ↵Ermal2011-11-101-8/+0
| | | | just that the configure option was not the right one. Ticket #1982
* Correct checkErmal2011-11-101-1/+1
|
* Run snort as root user in pfSense this does not change much and allows to ↵Ermal2011-11-101-27/+26
| | | | reload snort rather than stop start it.
* Add a little pause after reload so we are sure the reload process creates ↵Ermal2011-11-091-0/+3
| | | | the new snort process and passes latest checks in code. This according to: http://forum.pfsense.org/index.php/topic,41533.msg221183.html#msg221183
* Add missing keyword for gzip http inspection to not break stuff. Resolves #1985Ermal2011-11-011-0/+1
|
* Add settings to allow inspecting gzipped http flows.Ermal2011-10-311-1/+4
|
* Correct clearing the alerts.Ermal2011-09-291-1/+1
|
* Copyright on a configuration file does not make sense! The author is already ↵Ermal2011-09-061-26/+0
| | | | credited in the code of the package.
* Add checks to see if the files exists before being used on the config to ↵Ermal2011-09-061-2/+7
| | | | avoid possible errors.
* Include default preprocessor rules which should fix portscan and other ↵Ermal2011-09-051-4/+6
| | | | preprocessor detections
* More fixes to stream5_tcp configErmal2011-09-051-1/+1
|
* Try to fix the portscan not workingErmal2011-09-051-3/+3
|
* Remove dead codeErmal2011-09-021-10/+0
|
* Update version stringsErmal2011-09-011-1/+1
|
* Until php behaves hardcode barnyard2 with a url for version 8 of repo.Ermal2011-09-011-5/+3
|
* Correct code to do testing and not assigningErmal2011-09-011-1/+1
|
* Be correct at commandErmal2011-09-011-1/+1
|
* Remove unneeded codeErmal2011-09-011-3/+1
|
* Correct reloading or rules and some information gathering on rc script of snortErmal2011-09-011-5/+5
|
* The new port does some things differentlyErmal2011-09-011-8/+8
|
* Correctly install barnyard2. Also correct typo on $config variable and do ↵Ermal2011-09-011-11/+13
| | | | not exit on error but just return and log it
* Silence some command becuase they just spam the logs uselessly.Ermal2011-08-051-34/+34
|
* GC some more codeErmal2011-08-041-15/+2
|
* Remove unused and problematic codeErmal2011-08-041-10/+1
|
* Unbreak row_helpers and add some more checks to prevent errorsErmal2011-08-041-2/+0
|
* Correct suppress file name to prevent issuesErmal2011-08-031-1/+1
|