aboutsummaryrefslogtreecommitdiffstats
path: root/config/snort
Commit message (Collapse)AuthorAgeFilesLines
...
* Revert "Preserve already configured settings for the instance"Ermal2012-06-141-1/+1
| | | | This reverts commit 79822b6a62e78d29c6edd100fb0f784759174a25.
* Revert "Preserve already configured settings for the instance"Ermal2012-06-141-1/+1
| | | | This reverts commit 5e3a9fe4b075e54b2d0e5962d04eabc494f514fa.
* Revert "Do not override previous settings when configuring barnyard2"Ermal2012-06-141-4/+3
| | | | This reverts commit a941d0447a2ff516d248fa1a7e02ce65827a275a.
* Preserve already configured settings for the instanceErmal2012-06-141-1/+1
|
* Preserve already configured settings for the instanceErmal2012-06-141-1/+1
|
* Do not override previous settings when configuring barnyard2Ermal2012-06-141-3/+4
|
* Dno not remove lib/snort since it breaks reinstallations!Ermal2012-06-141-2/+1
|
* Bump minor verionErmal2012-06-141-1/+1
|
* Remove pid file of barnyard2 when stopid and also remove duplicate log lineErmal2012-06-141-2/+1
|
* Move logs and alert file to per instance folder. Also remove configuration ↵Ermal2012-06-147-333/+156
| | | | only on deletion of an instance and not when its stopped
* Use pid files to control snort start/stop codeErmal2012-06-142-90/+52
|
* Remove not needed code.Ermal2012-06-121-7/+0
|
* Remove not needed code.Ermal2012-06-121-45/+0
|
* Bump versionErmal2012-06-121-1/+1
|
* Add normalizd_javascript present in latest snort versionErmal2012-06-121-0/+1
|
* Put a single alert file for each instance of snort so it actually works. ↵Ermal2012-06-124-67/+73
| | | | Also correct blocked page/ For large files this still will bail out
* Remove lib dir to avoid issues with upgrade of .so libsErmal2012-06-121-1/+1
|
* Centralize the snort update tarball and use 2922 file for rules.Ermal2012-06-124-60/+24
|
* Generalize more referencesjim-p2012-03-275-5/+5
|
* Add this required variable for nowErmal2012-01-271-0/+1
|
* Remove wrongly used ifErmal2012-01-271-7/+5
|
* Bump version here toojim-p2012-01-261-1/+1
|
* Expose the new options of spoink to the GUIErmal2012-01-252-4/+48
| | | | | | | | | | | Improve spoink code a lot: - Allow to block by src/dst/both on the packet that generated alert. Default to src to keep backward compatibility - Speedup whitelist search - Create an option that allows to kill states on pf for blocked hosts. This allows to remove all access to the blocked host. TODO: - More fine grained blocking options? - Make whiwhitelist hparsing less sucky and IPv6 compatible
* Patch to the previous change, reference: http://redmine.pfsense.org/issues/2033.Michele Di Maria2011-12-063-14/+14
|
* Adds two variables for SIP services in the "Define Servers" interface:Michele Di Maria2011-12-053-0/+40
| | | | | | | SIP_SERVERS, default=$HOME_NET SIP_PORTS, default=[5060:5090,16384:32768] Reference: http://redmine.pfsense.org/issues/2033
* Correct the copying of rules during config sync it was copying the wrong rules.Ermal2011-11-111-1/+3
|
* Use basename to be sure that no full path is used on the files themselvesErmal2011-11-113-12/+6
|
* Send snort.inc on some diet by removing unused/junk codeErmal2011-11-111-248/+3
|
* Remove the mess of config syncing in snort and just provide one function for ↵Ermal2011-11-1111-255/+42
| | | | all. This allows snort to properly start at bootup and restart on ip change.
* Get rid of the stop/start button on interface edit is useless.Ermal2011-11-111-31/+1
|
* Correct The functions used on the GUI to check if snort is up or not.Ermal2011-11-112-131/+47
|
* Correct the change made before to the script to properly work. Check if ↵Ermal2011-11-101-49/+12
| | | | snort is running and restart it otherwise start it.
* Remove this not needed code anymore since snort is able to recover itself ↵Ermal2011-11-101-8/+0
| | | | just that the configure option was not the right one. Ticket #1982
* Correct checkErmal2011-11-101-1/+1
|
* Run snort as root user in pfSense this does not change much and allows to ↵Ermal2011-11-106-130/+36
| | | | reload snort rather than stop start it.
* Add a little pause after reload so we are sure the reload process creates ↵Ermal2011-11-091-0/+3
| | | | the new snort process and passes latest checks in code. This according to: http://forum.pfsense.org/index.php/topic,41533.msg221183.html#msg221183
* Fixes #1765. Correctly identify the clear action that comes through POST or GETErmal2011-11-011-2/+2
|
* Add missing keyword for gzip http inspection to not break stuff. Resolves #1985Ermal2011-11-011-0/+1
|
* Add settings to allow inspecting gzipped http flows.Ermal2011-10-311-1/+4
|
* Ticket #1749. Add some more validations to the code that generates oink ↵Ermal2011-10-233-27/+33
| | | | scripts config.
* Correct clearing the alerts.Ermal2011-09-292-21/+10
|
* snort.sh script understands of reloading snort so just use that rather than ↵Ermal2011-09-082-20/+2
| | | | triggering a stop and then start. Also correct repsective file names inside the files while here.
* Copyright on a configuration file does not make sense! The author is already ↵Ermal2011-09-061-26/+0
| | | | credited in the code of the package.
* Add checks to see if the files exists before being used on the config to ↵Ermal2011-09-061-2/+7
| | | | avoid possible errors.
* Include default preprocessor rules which should fix portscan and other ↵Ermal2011-09-051-4/+6
| | | | preprocessor detections
* More fixes to stream5_tcp configErmal2011-09-051-1/+1
|
* Sleep 4 seconds when toggle the status of the snort (start/stop) so the GUI ↵Ermal2011-09-051-0/+1
| | | | reports correctly
* Try to fix the portscan not workingErmal2011-09-051-3/+3
|
* Add function in case it is not declared so the editing works correctlyErmal2011-09-051-0/+10
|
* Correct syntax errorErmal2011-09-042-2/+0
|