Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Revert "Preserve already configured settings for the instance" | Ermal | 2012-06-14 | 1 | -1/+1 | |
| | | | | This reverts commit 79822b6a62e78d29c6edd100fb0f784759174a25. | |||||
* | Revert "Preserve already configured settings for the instance" | Ermal | 2012-06-14 | 1 | -1/+1 | |
| | | | | This reverts commit 5e3a9fe4b075e54b2d0e5962d04eabc494f514fa. | |||||
* | Revert "Do not override previous settings when configuring barnyard2" | Ermal | 2012-06-14 | 1 | -4/+3 | |
| | | | | This reverts commit a941d0447a2ff516d248fa1a7e02ce65827a275a. | |||||
* | Preserve already configured settings for the instance | Ermal | 2012-06-14 | 1 | -1/+1 | |
| | ||||||
* | Preserve already configured settings for the instance | Ermal | 2012-06-14 | 1 | -1/+1 | |
| | ||||||
* | Do not override previous settings when configuring barnyard2 | Ermal | 2012-06-14 | 1 | -3/+4 | |
| | ||||||
* | Dno not remove lib/snort since it breaks reinstallations! | Ermal | 2012-06-14 | 1 | -2/+1 | |
| | ||||||
* | Bump minor verion | Ermal | 2012-06-14 | 1 | -1/+1 | |
| | ||||||
* | Remove pid file of barnyard2 when stopid and also remove duplicate log line | Ermal | 2012-06-14 | 1 | -2/+1 | |
| | ||||||
* | Move logs and alert file to per instance folder. Also remove configuration ↵ | Ermal | 2012-06-14 | 7 | -333/+156 | |
| | | | | only on deletion of an instance and not when its stopped | |||||
* | Use pid files to control snort start/stop code | Ermal | 2012-06-14 | 2 | -90/+52 | |
| | ||||||
* | Remove not needed code. | Ermal | 2012-06-12 | 1 | -7/+0 | |
| | ||||||
* | Remove not needed code. | Ermal | 2012-06-12 | 1 | -45/+0 | |
| | ||||||
* | Bump version | Ermal | 2012-06-12 | 1 | -1/+1 | |
| | ||||||
* | Add normalizd_javascript present in latest snort version | Ermal | 2012-06-12 | 1 | -0/+1 | |
| | ||||||
* | Put a single alert file for each instance of snort so it actually works. ↵ | Ermal | 2012-06-12 | 4 | -67/+73 | |
| | | | | Also correct blocked page/ For large files this still will bail out | |||||
* | Remove lib dir to avoid issues with upgrade of .so libs | Ermal | 2012-06-12 | 1 | -1/+1 | |
| | ||||||
* | Centralize the snort update tarball and use 2922 file for rules. | Ermal | 2012-06-12 | 4 | -60/+24 | |
| | ||||||
* | Generalize more references | jim-p | 2012-03-27 | 5 | -5/+5 | |
| | ||||||
* | Add this required variable for now | Ermal | 2012-01-27 | 1 | -0/+1 | |
| | ||||||
* | Remove wrongly used if | Ermal | 2012-01-27 | 1 | -7/+5 | |
| | ||||||
* | Bump version here too | jim-p | 2012-01-26 | 1 | -1/+1 | |
| | ||||||
* | Expose the new options of spoink to the GUI | Ermal | 2012-01-25 | 2 | -4/+48 | |
| | | | | | | | | | | | Improve spoink code a lot: - Allow to block by src/dst/both on the packet that generated alert. Default to src to keep backward compatibility - Speedup whitelist search - Create an option that allows to kill states on pf for blocked hosts. This allows to remove all access to the blocked host. TODO: - More fine grained blocking options? - Make whiwhitelist hparsing less sucky and IPv6 compatible | |||||
* | Patch to the previous change, reference: http://redmine.pfsense.org/issues/2033. | Michele Di Maria | 2011-12-06 | 3 | -14/+14 | |
| | ||||||
* | Adds two variables for SIP services in the "Define Servers" interface: | Michele Di Maria | 2011-12-05 | 3 | -0/+40 | |
| | | | | | | | SIP_SERVERS, default=$HOME_NET SIP_PORTS, default=[5060:5090,16384:32768] Reference: http://redmine.pfsense.org/issues/2033 | |||||
* | Correct the copying of rules during config sync it was copying the wrong rules. | Ermal | 2011-11-11 | 1 | -1/+3 | |
| | ||||||
* | Use basename to be sure that no full path is used on the files themselves | Ermal | 2011-11-11 | 3 | -12/+6 | |
| | ||||||
* | Send snort.inc on some diet by removing unused/junk code | Ermal | 2011-11-11 | 1 | -248/+3 | |
| | ||||||
* | Remove the mess of config syncing in snort and just provide one function for ↵ | Ermal | 2011-11-11 | 11 | -255/+42 | |
| | | | | all. This allows snort to properly start at bootup and restart on ip change. | |||||
* | Get rid of the stop/start button on interface edit is useless. | Ermal | 2011-11-11 | 1 | -31/+1 | |
| | ||||||
* | Correct The functions used on the GUI to check if snort is up or not. | Ermal | 2011-11-11 | 2 | -131/+47 | |
| | ||||||
* | Correct the change made before to the script to properly work. Check if ↵ | Ermal | 2011-11-10 | 1 | -49/+12 | |
| | | | | snort is running and restart it otherwise start it. | |||||
* | Remove this not needed code anymore since snort is able to recover itself ↵ | Ermal | 2011-11-10 | 1 | -8/+0 | |
| | | | | just that the configure option was not the right one. Ticket #1982 | |||||
* | Correct check | Ermal | 2011-11-10 | 1 | -1/+1 | |
| | ||||||
* | Run snort as root user in pfSense this does not change much and allows to ↵ | Ermal | 2011-11-10 | 6 | -130/+36 | |
| | | | | reload snort rather than stop start it. | |||||
* | Add a little pause after reload so we are sure the reload process creates ↵ | Ermal | 2011-11-09 | 1 | -0/+3 | |
| | | | | the new snort process and passes latest checks in code. This according to: http://forum.pfsense.org/index.php/topic,41533.msg221183.html#msg221183 | |||||
* | Fixes #1765. Correctly identify the clear action that comes through POST or GET | Ermal | 2011-11-01 | 1 | -2/+2 | |
| | ||||||
* | Add missing keyword for gzip http inspection to not break stuff. Resolves #1985 | Ermal | 2011-11-01 | 1 | -0/+1 | |
| | ||||||
* | Add settings to allow inspecting gzipped http flows. | Ermal | 2011-10-31 | 1 | -1/+4 | |
| | ||||||
* | Ticket #1749. Add some more validations to the code that generates oink ↵ | Ermal | 2011-10-23 | 3 | -27/+33 | |
| | | | | scripts config. | |||||
* | Correct clearing the alerts. | Ermal | 2011-09-29 | 2 | -21/+10 | |
| | ||||||
* | snort.sh script understands of reloading snort so just use that rather than ↵ | Ermal | 2011-09-08 | 2 | -20/+2 | |
| | | | | triggering a stop and then start. Also correct repsective file names inside the files while here. | |||||
* | Copyright on a configuration file does not make sense! The author is already ↵ | Ermal | 2011-09-06 | 1 | -26/+0 | |
| | | | | credited in the code of the package. | |||||
* | Add checks to see if the files exists before being used on the config to ↵ | Ermal | 2011-09-06 | 1 | -2/+7 | |
| | | | | avoid possible errors. | |||||
* | Include default preprocessor rules which should fix portscan and other ↵ | Ermal | 2011-09-05 | 1 | -4/+6 | |
| | | | | preprocessor detections | |||||
* | More fixes to stream5_tcp config | Ermal | 2011-09-05 | 1 | -1/+1 | |
| | ||||||
* | Sleep 4 seconds when toggle the status of the snort (start/stop) so the GUI ↵ | Ermal | 2011-09-05 | 1 | -0/+1 | |
| | | | | reports correctly | |||||
* | Try to fix the portscan not working | Ermal | 2011-09-05 | 1 | -3/+3 | |
| | ||||||
* | Add function in case it is not declared so the editing works correctly | Ermal | 2011-09-05 | 1 | -0/+10 | |
| | ||||||
* | Correct syntax error | Ermal | 2011-09-04 | 2 | -2/+0 | |
| |