aboutsummaryrefslogtreecommitdiffstats
path: root/config/snort
Commit message (Collapse)AuthorAgeFilesLines
* Generalize more referencesjim-p2012-03-275-5/+5
|
* Add this required variable for nowErmal2012-01-271-0/+1
|
* Remove wrongly used ifErmal2012-01-271-7/+5
|
* Bump version here toojim-p2012-01-261-1/+1
|
* Expose the new options of spoink to the GUIErmal2012-01-252-4/+48
| | | | | | | | | | | Improve spoink code a lot: - Allow to block by src/dst/both on the packet that generated alert. Default to src to keep backward compatibility - Speedup whitelist search - Create an option that allows to kill states on pf for blocked hosts. This allows to remove all access to the blocked host. TODO: - More fine grained blocking options? - Make whiwhitelist hparsing less sucky and IPv6 compatible
* Patch to the previous change, reference: http://redmine.pfsense.org/issues/2033.Michele Di Maria2011-12-063-14/+14
|
* Adds two variables for SIP services in the "Define Servers" interface:Michele Di Maria2011-12-053-0/+40
| | | | | | | SIP_SERVERS, default=$HOME_NET SIP_PORTS, default=[5060:5090,16384:32768] Reference: http://redmine.pfsense.org/issues/2033
* Correct the copying of rules during config sync it was copying the wrong rules.Ermal2011-11-111-1/+3
|
* Use basename to be sure that no full path is used on the files themselvesErmal2011-11-113-12/+6
|
* Send snort.inc on some diet by removing unused/junk codeErmal2011-11-111-248/+3
|
* Remove the mess of config syncing in snort and just provide one function for ↵Ermal2011-11-1111-255/+42
| | | | all. This allows snort to properly start at bootup and restart on ip change.
* Get rid of the stop/start button on interface edit is useless.Ermal2011-11-111-31/+1
|
* Correct The functions used on the GUI to check if snort is up or not.Ermal2011-11-112-131/+47
|
* Correct the change made before to the script to properly work. Check if ↵Ermal2011-11-101-49/+12
| | | | snort is running and restart it otherwise start it.
* Remove this not needed code anymore since snort is able to recover itself ↵Ermal2011-11-101-8/+0
| | | | just that the configure option was not the right one. Ticket #1982
* Correct checkErmal2011-11-101-1/+1
|
* Run snort as root user in pfSense this does not change much and allows to ↵Ermal2011-11-106-130/+36
| | | | reload snort rather than stop start it.
* Add a little pause after reload so we are sure the reload process creates ↵Ermal2011-11-091-0/+3
| | | | the new snort process and passes latest checks in code. This according to: http://forum.pfsense.org/index.php/topic,41533.msg221183.html#msg221183
* Fixes #1765. Correctly identify the clear action that comes through POST or GETErmal2011-11-011-2/+2
|
* Add missing keyword for gzip http inspection to not break stuff. Resolves #1985Ermal2011-11-011-0/+1
|
* Add settings to allow inspecting gzipped http flows.Ermal2011-10-311-1/+4
|
* Ticket #1749. Add some more validations to the code that generates oink ↵Ermal2011-10-233-27/+33
| | | | scripts config.
* Correct clearing the alerts.Ermal2011-09-292-21/+10
|
* snort.sh script understands of reloading snort so just use that rather than ↵Ermal2011-09-082-20/+2
| | | | triggering a stop and then start. Also correct repsective file names inside the files while here.
* Copyright on a configuration file does not make sense! The author is already ↵Ermal2011-09-061-26/+0
| | | | credited in the code of the package.
* Add checks to see if the files exists before being used on the config to ↵Ermal2011-09-061-2/+7
| | | | avoid possible errors.
* Include default preprocessor rules which should fix portscan and other ↵Ermal2011-09-051-4/+6
| | | | preprocessor detections
* More fixes to stream5_tcp configErmal2011-09-051-1/+1
|
* Sleep 4 seconds when toggle the status of the snort (start/stop) so the GUI ↵Ermal2011-09-051-0/+1
| | | | reports correctly
* Try to fix the portscan not workingErmal2011-09-051-3/+3
|
* Add function in case it is not declared so the editing works correctlyErmal2011-09-051-0/+10
|
* Correct syntax errorErmal2011-09-042-2/+0
|
* Remove not needed codeErmal2011-09-042-11/+0
|
* Quick round of fixes to not break lightyErmal2011-09-041-10/+13
|
* Correct freebsd version for the folder whre the snort rules are contained ↵Ermal2011-09-042-13/+20
| | | | and add support for 64bit precompiled rules since they are present.
* Catch up with the version string in other places of rules updatedErmal2011-09-042-12/+10
|
* Correct toggle action behaviour on snort rules. Also a quick attempt to fix ↵Ermal2011-09-032-175/+39
| | | | keeping local modification of disable/enable of rules.
* Update snort rules version. Reported-by: ↵Ermal2011-09-033-6/+6
| | | | http://forum.pfsense.org/index.php/topic,40568.0.html
* Correct version stringErmal2011-09-021-1/+1
|
* Remove other junk filesErmal2011-09-023-18/+0
|
* Remove outdated commentsErmal2011-09-021-26/+0
|
* Get rid os unneeded binariesErmal2011-09-025-0/+0
|
* Remove dead codeErmal2011-09-022-12/+0
|
* Correct page nameErmal2011-09-021-2/+1
|
* Fix rule saving and modification for snortErmal2011-09-022-315/+193
|
* Some improvements to the snort rules screensErmal2011-09-012-48/+33
|
* Update version stringsErmal2011-09-012-2/+2
|
* Until php behaves hardcode barnyard2 with a url for version 8 of repo.Ermal2011-09-011-5/+3
|
* Correct code to do testing and not assigningErmal2011-09-011-1/+1
|
* Cleanup barnyard2/preprocessor/servers pages.Ermal2011-09-013-471/+41
|