diff options
| author | salo <salo@pkgsrc.org> | 2003-04-16 06:37:19 +0000 |
|---|---|---|
| committer | salo <salo@pkgsrc.org> | 2003-04-16 06:37:19 +0000 |
| commit | 8dd2d2ad1d34f90875e380e2e21091677d393763 (patch) | |
| tree | c1c4b6e5449d3a48997a05aca28fa1ac46c772bb /net/snort/distinfo | |
| parent | e88489b19454038603fd537d33852ffe1f578bd5 (diff) | |
| download | pkgsrc-8dd2d2ad1d34f90875e380e2e21091677d393763.tar.gz | |
Updated to version 2.0.0.
IMPORTANT: This version fixes remotely exploitable heap overflow in the stream4
preprocessor module.
Advisory: http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10
Changes:
2.0.0:
======
- Enhanced high-performance detection engine
- Stateful Pattern Matching
- New detection keywords: byte_test & byte_jump
- The Snort code base has undergone an external third party professional
security audit funded by Sourcefire (http://www.sourcefire.com)
- Many new and updated rules
- snort.conf has been updated
- Enhancements to self preservation mechanisms in stream4 and frag2
- State tracking fixes in stream4
- New HTTP flow analyzer
- Enhanced protocol decoding (TCP options, 802.1q, etc)
- Enhanced protocol anomaly detection (IP, TCP, UDP, ICMP, RPC, HTTP, etc)
- Enhanced flexresp mode for real-time TCP session sniping
- Better chroot()'ing
- Tagging system updated
- Several million bugs addressed....
- Updated FAQ (thanks to Erek Adams and Dragos Ruiu) Snort 2.0 can be
downloaded at http://www.snort.org/dl/snort-2.0.0.tar.gz. Binary
versions of the codebase will be built over the next several days and
made available at here.
2.0.rc4:
========
- byte_jump/byte_test don't force relative content options
- byte_jump/byte_test absolute offsets work
- Better FIN handling in Stream4
2.0.rc3:
========
- A low memory usage detection method (enabled via "config detection:
search-method lowmem")
- Moved the default unix socket location to LOGDIR
2.0.rc2:
========
- syslog should work on win32 and unix
- major tagging updates
- new UDP decoding alerts
- snort.conf updates
2.0.rc1:
========
- Higher performance (due to a new pattern matcher and rebuilt detection
engine)
- Better decoders
- Enhanced stream reassembly and defragmentation
- Tons of bug fixes
- Updated rules
- Updated snort.conf
- New detection keywords (byte_test, byte_jump, distance, within) &
stateful pattern matching
- New HTTP flow analyzer
- Enhanced anomaly detection (HTTP, RPC, TCP, IP, etc)
- Better self preservation in stateful subsystems
- Xrefs fixed
- Flexresp works faster and more effectively
- Better chroot()'ing
- Fixed 802.1q decoding
- Better async state handling
- New alerting option: -A cmg!!
Diffstat (limited to 'net/snort/distinfo')
| -rw-r--r-- | net/snort/distinfo | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/net/snort/distinfo b/net/snort/distinfo index 362518d1e9a..bd415f70140 100644 --- a/net/snort/distinfo +++ b/net/snort/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.14 2003/03/04 01:02:25 salo Exp $ +$NetBSD: distinfo,v 1.15 2003/04/16 06:37:19 salo Exp $ -SHA1 (snort-1.9.1.tar.gz) = a176beab3cac249da491d81081c0ca6d82fd405a -Size (snort-1.9.1.tar.gz) = 1466151 bytes -SHA1 (patch-aa) = ce6d9a13823dd1ca25a0ff250a3e134f71227ca4 +SHA1 (snort-2.0.0.tar.gz) = 1fdb5656b7a84439da0cd9118f5a977098f0652b +Size (snort-2.0.0.tar.gz) = 1556540 bytes +SHA1 (patch-aa) = 8cb1b83611eb6cf82197c9b27b91d967bfd4fcd7 SHA1 (patch-ab) = 0ea7deb91de5d3d68558a30e80dcbd8bd81f8a5e SHA1 (patch-ac) = 6cdf26fcaeb8dad9cd9562b77377bd56b49c9f38 -SHA1 (patch-ad) = 5472fc78db0c0668a1d8ff8f1c66eee6ba7f6a7e -SHA1 (patch-ae) = b402289267cebc0721104c6e8c8f7ce6a6b11a59 +SHA1 (patch-ad) = 6853a0e7105e97089bbee8a8abb535cef9f905f1 +SHA1 (patch-ae) = 5a5123c5352e87650a4ce91123a196c576f37ea8 |