aboutsummaryrefslogtreecommitdiff
path: root/security/samhain
Commit message (Collapse)AuthorAgeFilesLines
* Update to 2.5.4, a security bugfix release. This resolves a problemDavid Thiel2009-03-042-5/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | where an unauthorized client could download configuration and database files from the server. Full changes since 2.5.2: - email logging has been rewritten for enhanced functionality. It's now possible to filter messages different for each recipient, and regular expressions can be used now for filtering - new option SetMailPort allows to set a custom SMTP port - in the configuration file, option values can now be set by evaluating shell commands: Key = $( command ) - PortCheckInterface now allows a list as value - new option SetConnectionTimeout allows to configure the client/server connection timeout - new option SetThrottle allows to configure throughput throttling for the database download to the client Notes: svn path=/head/; revision=229503
* - Chase security/libprelude shlib version bumpDmitry Marakasov2009-02-181-1/+2
| | | | | | | | PR: 131286, 131585 (partial) Submitted by: Vladimir Korkodinov <viper at perm dot raid dot ru> Notes: svn path=/head/; revision=228623
* Update to 2.5.2.David Thiel2009-02-092-4/+4
| | | | | | | | | | | | | | | | | | | | Changes: - On request, there is now a global option LooseDirCheck ([false]/true) to drop reports on directories with changes of size/mtime/ctime (resulting from changes within the directory) - An option to improve hidden process detection from within an OpenVZ container has been added - Port check now reports process pid, reporting to prelude is more complete now - A bug has been fixed whereby for files larger than 2GB, a filesize of exactly 2GB could be inserted into the RDBMS (if logging to one) Notes: svn path=/head/; revision=227857
* Update to 2.5.1, which should really fix the amd64 build problems.David Thiel2008-12-082-4/+4
| | | | Notes: svn path=/head/; revision=223981
* - Chase libprelude updatePav Lucistnik2008-11-291-1/+1
| | | | | | | | Forgotten by: beech Reported by: pointyhat Notes: svn path=/head/; revision=223609
* Update to 2.5.0. Includes a new module for log file analysis, and should fix ↵David Thiel2008-11-052-5/+4
| | | | | | | build issues on 64 bit platforms. Notes: svn path=/head/; revision=222409
* - Mark BROKEN on amd64Pav Lucistnik2008-09-011-0/+1
| | | | Notes: svn path=/head/; revision=219609
* Use -fPIC on amd64.David Thiel2008-08-141-0/+4
| | | | | | | Submitted by: QA Tindy Notes: svn path=/head/; revision=218517
* Update to 2.4.5. Only notable change on fbsd is the introduction ofDavid Thiel2008-08-102-4/+4
| | | | | | | the dnmalloc allocator. Notes: svn path=/head/; revision=218371
* Update dependency on libprelude.David Thiel2008-05-141-1/+1
| | | | | | | | PR: 123660 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> Notes: svn path=/head/; revision=213044
* Update to 2.4.4. Fixes some bugs, and adds the ability to store fullDavid Thiel2008-05-012-4/+4
| | | | | | | file content for small files in the signature database itself. Notes: svn path=/head/; revision=212385
* Update to 2.4.2. This fixes a security issue where checksumming of the gpgDavid Thiel2008-01-172-4/+4
| | | | | | | binary before execution did not function correctly. Notes: svn path=/head/; revision=205735
* Update to 2.4.1. Also fix a rather silly uninstall message, reportedDavid Thiel2007-12-113-5/+5
| | | | | | | by brd@. Notes: svn path=/head/; revision=202976
* Upgrade to 2.3.7, which fixes a Prelude integration bug.David Thiel2007-09-132-4/+4
| | | | Notes: svn path=/head/; revision=199442
* Update to 2.3.6.David Thiel2007-09-062-5/+4
| | | | Notes: svn path=/head/; revision=198929
* Chase libprelude version bump.David Thiel2007-09-051-1/+2
| | | | | | | | | PR: ports/116112 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> Approved by: lx Notes: svn path=/head/; revision=198862
* - Set --mandir and --infodir in CONFIGURE_ARGS if the configure scriptRong-En Fan2007-07-231-1/+1
| | | | | | | | | | | | | | | | | | | | | supports them. This is determined by running ``configure --help'' in do-configure target and set the shell variable _LATE_CONFIGURE_ARGS which is then passed to CONFIGURE_ARGS. - Remove --mandir and --infodir in ports' Makefile where applicable Few ports use REINPLACE_CMD to achieve the same effect, remove them too. - Correct some manual pages location from PREFIX/man to MANPREFIX/man - Define INFO_PATH where necessary - Document that .info files are installed in a subdirectory relative to PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and subdirectory detection. PR: ports/111470 Approved by: portmgr Discussed with: stas (Mk/*), gerald (info related stuffs) Tested by: pointyhat exp run Notes: svn path=/head/; revision=196111
* Update to 2.3.5.David Thiel2007-06-202-5/+4
| | | | Notes: svn path=/head/; revision=193980
* - Update libprelude to 0.9.14.Marcelo Araujo2007-06-061-1/+2
| | | | | | | | | | | | - Update dependent ports accordingly. - Bump PORTVERSION to force rebuild. PR: ports/112703 Submitted by: Marcelo Araujo <araujo@FreeBSD.org> Approved by: stas (mentor) Notes: svn path=/head/; revision=192913
* Update to 2.3.4. This fixes a reliablility problem in the process checkDavid Thiel2007-05-022-5/+4
| | | | | | | | | module. If you are a user of this module, upgrading is recommended. Approved by: edwin (mentor) Notes: svn path=/head/; revision=191433
* Updating to 2.3.3.David Thiel2007-03-282-4/+4
| | | | | | | Approved by: edwin (mentor) Notes: svn path=/head/; revision=188662
* Update to 2.3.2, which fixes a regression in "stealth mode".David Thiel2007-01-292-4/+4
| | | | | | | Approved by: edwin (mentor) Notes: svn path=/head/; revision=183649
* Updating to 2.3.1.David Thiel2007-01-212-6/+5
| | | | | | | Approved by: edwin (mentor) Notes: svn path=/head/; revision=182880
* - update Prelude versionDavid Thiel2007-01-161-1/+2
| | | | | | | | | | | - bump PORTREVISION PR: ports/107985 Submitted by: Robin Gruyters <r.gruyters at yirdis.nl> Approved by: edwin (mentor) Notes: svn path=/head/; revision=182530
* - Update to 0.9.11Cheng-Lung Sung2006-11-271-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - library version update of related ports Changelog libprelude: - Hook class comparison function. Accept NULL, equal, not equal operator. - Introduce better error checking in the idmef-class API, which is now considered public and might be used by external application. Rename error code to reflect the API. - Change to the way IDMEF listed element are handled. Specifying negative number as the position of the element from the low level API now allow to position the element at the specified (reversed) index. Using the high level API a negative index permit to address a list of element backward (replace an element). - Build fixes for SWIG > 1.3.27. - Modify idmef_value_match() so that it always unroll listed value (do it for both val1 and val2. Remove assertion, and let idmef_value_type_compare() return an error code in case there is an issue. - Handle path using IDMEF_LIST_APPEND or IDMEF_LIST_PREPEND as path using an undefined list index on idmef_path_get() call. - Make criteria parser accept (*) list index. - Implement comparison function for all IDMEF object. PR: ports/104328 Submitted by: maintainer (Robin Gruyters) Approved by: portmgr (pav) Notes: svn path=/head/; revision=178081
* - Update to 2.3.0Rong-En Fan2006-11-053-6/+6
| | | | | | | | PR: ports/105159 Submitted by: David Thiel (maintainer) Notes: svn path=/head/; revision=176462
* - Update to 2.2.4Rong-En Fan2006-09-065-25/+26
| | | | | | | | PR: ports/102915 Submitted by: David Thiel <lx at redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=172380
* Updating the Samhain HIDS to 2.2.1. This is a minor release which fixesIon-Mihai Tetcu2006-06-182-5/+4
| | | | | | | | | | some issues with the Prelude IDS system and compilation on x86_64. PR: ports/99114 Submitted by: maintainer Notes: svn path=/head/; revision=165703
* Fix build on 4.xRenato Botelho2006-05-221-0/+16
| | | | | | | Reported by: krismail Notes: svn path=/head/; revision=163081
* - Chase libprelude versionRenato Botelho2006-05-051-1/+2
| | | | | | | | | | - Bump PORTREVISION PR: ports/96758, ports/96759, ports/96760 Submitted by: maintainer Notes: svn path=/head/; revision=161417
* Updating the Samhain HIDS to 2.2.0. Changes since last version:Cheng-Lung Sung2006-05-023-10/+7
| | | | | | | | | | | | | - For files under the 'GrowingLogfiles' policy, the checksum is now verified up to the previous size. - Server-to-server relay is possible. - More user policies are available now. PR: ports/96643 Submitted by: maintainer (David Thiel) Notes: svn path=/head/; revision=161164
* When yule is installed, add the yule user and group as well. This isSam Lawrance2006-04-093-3/+63
| | | | | | | | | | | | | especially useful for package users since they couldn't run the install-user target. PR: ports/90305 (based on) Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Approved by: maintainer timeout on feedback (3 months) Committed from: Sydney Linux User Group codefest at UTS Notes: svn path=/head/; revision=159184
* - Update to 2.1.2Marcus Alves Grando2006-03-182-5/+10
| | | | | | | | | | | - Add PRELUDE option PR: 94406 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> Approved by: maintainer Notes: svn path=/head/; revision=157596
* SHA256ifyEdwin Groothuis2006-01-241-0/+1
| | | | | | | Approved by: krion@ Notes: svn path=/head/; revision=154303
* Update: security/samhain 2.0.10 -> 2.1.0Edwin Groothuis2006-01-073-24/+11
| | | | | | | | | | | | | | | | | | | | Updating the Samhain integrity checking system to 2.1.0, a bugfix release. It's been requested by several people to break Samhain out into separate client and server ports. This PR does that, with a samhain-client and samhain-server port, as slave ports off of samhain. I'm not sure the best way to submit a PR to do this kind of action, but here is a shar of all three ports. If another format is desired, please let me know. I'm also interested in feedback on the approach used for splitting these out. PR: ports/90305 Submitted by: David Thiel <lx@redundancy.redundancy.org> Notes: svn path=/head/; revision=152971
* Fix DISTNAME variable.Vsevolod Stakhov2005-09-221-1/+1
| | | | | | | | Reported by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw> Pointy hat to: vsevolod Notes: svn path=/head/; revision=143321
* Update to 2.0.10 [1]Vsevolod Stakhov2005-09-212-4/+6
| | | | | | | | | | Feed portlint PR: 86426 [1] Submitted by: David Thiel (maintainer) [1] Notes: svn path=/head/; revision=143313
* - Replace .error with IGNORE to prevent INDEX build failuresPav Lucistnik2005-09-101-12/+3
| | | | Notes: svn path=/head/; revision=142381
* - Update to 2.0.9Pav Lucistnik2005-08-302-7/+30
| | | | | | | | | | | | - samhainrc.sample file is chgrp'd to wheel - RUNAS_USER now defaults to "yule" properly - XML logging is now on by default and tunable PR: ports/85448 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=141502
* Update to 2.0.8.Thierry Thomas2005-07-312-3/+3
| | | | | | | | | PR: 83960 Submitted by: Babak Farrokhi <babak (at) farrokhi.net> Approved by: maintainer Notes: svn path=/head/; revision=140583
* - Update to 2.0.6Pav Lucistnik2005-05-052-3/+5
| | | | | | | | PR: ports/80622 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=134650
* - Update to 2.0.2Pav Lucistnik2004-11-092-3/+3
| | | | | | | | PR: ports/73699 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=121231
* - Update to 2.0.1Pav Lucistnik2004-11-042-3/+3
| | | | | | | | PR: ports/73501 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=120767
* - Update to 2.0.0Pav Lucistnik2004-11-024-32/+23
| | | | | | | | PR: ports/73393 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=120647
* - Fix OPTIONS handlingPav Lucistnik2004-10-211-2/+2
| | | | Notes: svn path=/head/; revision=119905
* - Update to 1.8.12 and unbreak on 5.xPav Lucistnik2004-10-162-8/+4
| | | | | | | | PR: ports/72750 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=119583
* Update: security/samhain 1.8.10b -> 1.8.11Edwin Groothuis2004-10-132-8/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | Updating the Samhain integrity checking system from 1.8.10b to 1.8.11. Code changes include: o for files in the IgnoreAll policy, there are no warnings (anymore) about 'no such user/group' and/or non-printable filenames o there is a new option HardlinkOffset=... to specify an offset from the canonical hardlink count for a directory o ... and a new option AddOKChars=... to modify the set of characters in a filename for which a warning (about obscure/non-printable) filename is issued. Port changes: Turn off kernel integrity checking by default - building this into packages wouldn't work anyhow, since it would only work with an identical kernel as on the build cluster. PR: ports/71169 Submitted by: David Thiel <lx@redundancy.redundancy.org> Notes: svn path=/head/; revision=119141
* BROKEN on 5.x: Does not compileKris Kennaway2004-09-261-0/+4
| | | | | | | Approved by: portmgr (self) Notes: svn path=/head/; revision=118428
* - Update to 1.8.10bPav Lucistnik2004-08-112-48/+38
| | | | | | | | PR: ports/69387 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=115981
* - Update to 1.8.9Pav Lucistnik2004-06-212-3/+3
| | | | | | | | PR: ports/68173 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Notes: svn path=/head/; revision=111946
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-10 15:32:46 +0000