From fcbd595dc66f462539e0589cf6b1bb24829c603b Mon Sep 17 00:00:00 2001 From: recht Date: Mon, 3 Nov 2003 11:45:28 +0000 Subject: update to version 2.0.3 changes/fixes include: Iproved -F. Masquerade detection code now checks for time going backwards in timestamps. Added uptime in query data and p0fq.c. Added -F fuzzy TTL matching option. More signatures. [BUG] Missing ENDIAN define on SunOS? Added to Makefile. It now defaults to big endian, perhaps worth auto-detecting in case of Solaris on x86 or such. -r now also resolves the target host. Added -X option, sendsyn added. Better Makefile and p0f*.fp documentation. Automatic wildcard for WSS of 12345 and size exceeding PACKET_BIG. Sheesh, more cleanup in p0fr.fp explanations and p0f.c RST recognition code. Added wildcard for packet size; massive ACK probing to diagnose the payload quoting issue. Many new RST fingerprints for network devices. Updated some tos.h signatures. see doc/ChangeLog for a complete list --- security/p0f/Makefile | 8 ++++---- security/p0f/distinfo | 12 ++++++------ security/p0f/patches/patch-aa | 8 ++++---- security/p0f/patches/patch-ac | 8 ++++---- security/p0f/patches/patch-ad | 33 +++++++++++---------------------- 5 files changed, 29 insertions(+), 40 deletions(-) (limited to 'security/p0f') diff --git a/security/p0f/Makefile b/security/p0f/Makefile index 6d70ea2028c..2e831cd0103 100644 --- a/security/p0f/Makefile +++ b/security/p0f/Makefile @@ -1,10 +1,10 @@ -# $NetBSD: Makefile,v 1.9 2003/10/05 18:13:00 recht Exp $ +# $NetBSD: Makefile,v 1.10 2003/11/03 11:45:28 recht Exp $ # -DISTNAME= p0f -PKGNAME= p0f-2.0.2 +DISTNAME= p0f-2.0.3 +WRKSRC= ${WRKDIR}/p0f CATEGORIES= security net -MASTER_SITES= http://lcamtuf.coredump.cx/ +MASTER_SITES= http://lcamtuf.coredump.cx/p0f/ EXTRACT_SUFX= .tgz MAINTAINER= dawszy@arhea.net diff --git a/security/p0f/distinfo b/security/p0f/distinfo index 35feaa7f183..b106b142229 100644 --- a/security/p0f/distinfo +++ b/security/p0f/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.9 2003/10/05 18:13:00 recht Exp $ +$NetBSD: distinfo,v 1.10 2003/11/03 11:45:28 recht Exp $ -SHA1 (p0f-2.0.2/p0f.tgz) = 3d863d7a669a3041af46ac4a9a84ec0ca6a30f1d -Size (p0f-2.0.2/p0f.tgz) = 74524 bytes -SHA1 (patch-aa) = 370fa780873e606697acbc21c9fc9fdce81f6ab6 +SHA1 (p0f-2.0.3/p0f-2.0.3.tgz) = a27fc55d81289ea990af765c27e7d5b7347e6f52 +Size (p0f-2.0.3/p0f-2.0.3.tgz) = 119407 bytes +SHA1 (patch-aa) = f05549d73409fb392582be47d15a75b00b321b44 SHA1 (patch-ab) = 6bf3c0997a303ec8de7f25a483c830d368d5c1a2 -SHA1 (patch-ac) = 4e7e07910c848a8e4505a202e7fee51e46e06078 -SHA1 (patch-ad) = 692d3f3f2c8bd9071764c0c973cdd91d87bf5f1f +SHA1 (patch-ac) = 1b7e8ed5830f1e9fe53004e4347dc184037327b2 +SHA1 (patch-ad) = 8dd941205b94213ee2caa100ab26780315ed28ca diff --git a/security/p0f/patches/patch-aa b/security/p0f/patches/patch-aa index 5c2c96e3ad1..cdb353b0c5b 100644 --- a/security/p0f/patches/patch-aa +++ b/security/p0f/patches/patch-aa @@ -1,7 +1,7 @@ -$NetBSD: patch-aa,v 1.5 2003/09/06 04:56:29 itojun Exp $ +$NetBSD: patch-aa,v 1.6 2003/11/03 11:45:28 recht Exp $ ---- mk/NetBSD- 2003-09-06 13:52:37.000000000 +0900 -+++ mk/NetBSD 2003-09-06 13:52:52.000000000 +0900 +--- mk/NetBSD.orig 2003-09-28 23:40:07.000000000 +0200 ++++ mk/NetBSD 2003-11-03 12:27:53.000000000 +0100 @@ -7,10 +7,8 @@ # (C) Copyright 2000-2003 by Michal Zalewski # @@ -11,5 +11,5 @@ $NetBSD: patch-aa,v 1.5 2003/09/06 04:56:29 itojun Exp $ STRIP = strip -CFLAGS = -O3 -Wall -fomit-frame-pointer -funroll-loops FILE = p0f + TOOLS = test/sendack test/sendack2 test/sendsyn - all: $(FILE) strip diff --git a/security/p0f/patches/patch-ac b/security/p0f/patches/patch-ac index b5252b977ae..4954fd2a2de 100644 --- a/security/p0f/patches/patch-ac +++ b/security/p0f/patches/patch-ac @@ -1,7 +1,7 @@ -$NetBSD: patch-ac,v 1.1 2003/10/01 23:13:13 recht Exp $ +$NetBSD: patch-ac,v 1.2 2003/11/03 11:45:28 recht Exp $ ---- p0f.1.orig Fri Sep 19 17:11:56 2003 -+++ p0f.1 Wed Sep 24 21:25:51 2003 +--- p0f.1.orig 2003-10-10 23:39:00.000000000 +0200 ++++ p0f.1 2003-11-03 12:28:01.000000000 +0100 @@ -32,9 +32,9 @@ .TP \fB\-f\fR file @@ -15,7 +15,7 @@ $NetBSD: patch-ac,v 1.1 2003/10/01 23:13:13 recht Exp $ Specifying multiple -f values will NOT combine several signature files together. .TP -@@ -190,7 +190,7 @@ +@@ -199,7 +199,7 @@ You need to consult the documentation for an up-to-date list of issues. .SH FILES .TP diff --git a/security/p0f/patches/patch-ad b/security/p0f/patches/patch-ad index cc15218b8a5..f23748dfdab 100644 --- a/security/p0f/patches/patch-ad +++ b/security/p0f/patches/patch-ad @@ -1,30 +1,19 @@ -$NetBSD: patch-ad,v 1.1 2003/10/05 18:13:00 recht Exp $ +$NetBSD: patch-ad,v 1.2 2003/11/03 11:45:28 recht Exp $ ---- mk/SunOS~ 2003-09-19 20:04:06.000000000 +0200 -+++ mk/SunOS 2003-10-05 20:06:00.000000000 +0200 -@@ -5,9 +5,9 @@ +--- mk/SunOS.orig 2003-10-01 23:20:31.000000000 +0200 ++++ mk/SunOS 2003-11-03 12:35:15.000000000 +0100 +@@ -5,11 +5,9 @@ # (C) Copyright 2000-2003 by Michal Zalewski # -CC = gcc --LIBS = -lpcap -I/opt/local/include -L/opt/local/lib -lsocket -lnsl --CFLAGS = -O3 -Wall -fomit-frame-pointer -funroll-loops +-LIBS = -lpcap -I/opt/local/include -L/opt/local/lib \ +- -I/usr/local/include -L/usr/local/lib -lsocket -lnsl +-CFLAGS = -O3 -Wall -fomit-frame-pointer -funroll-loops \ +- -DBYTE_ORDER=1234 -DBIG_ENDIAN=1234 +#CC = gcc -+LIBS = $(LDFLAGS) -lpcap -lsocket -lnsl -+#CFLAGS = -O3 -Wall -fomit-frame-pointer -funroll-loops ++LIBS = $(LDFLAGS) -lpcap -lsocket -lnsl ++CFLAGS = $(CFLAGS) -DBYTE_ORDER=1234 -DBIG_ENDIAN=1234 FILE = p0f - - all: $(FILE) -@@ -17,10 +17,10 @@ - static: $(FILE)-static - - $(FILE): $(FILE).c -- $(CC) $(CFLAGS) -o $@ $(FILE).c $(LIBS) -+ $(CC) $(CFLAGS) -o $@ $(FILE).c $(FILE)-query.c $(LIBS) - - $(FILE)-static: $(FILE).c -- $(CC) -static $(CFLAGS) -o $@ $(FILE).c $(LIBS) -+ $(CC) -static $(CFLAGS) -o $@ $(FILE).c $(FILE)-query.c $(LIBS) - - p0fq: test/p0fq + TOOLS = test/sendack test/sendack2 test/sendsyn -- cgit v1.2.3