head 1.6; access; symbols pkgsrc-2017Q1:1.5.0.50 pkgsrc-2017Q1-base:1.5 pkgsrc-2016Q4:1.5.0.48 pkgsrc-2016Q4-base:1.5 pkgsrc-2016Q3:1.5.0.46 pkgsrc-2016Q3-base:1.5 pkgsrc-2016Q2:1.5.0.44 pkgsrc-2016Q2-base:1.5 pkgsrc-2016Q1:1.5.0.42 pkgsrc-2016Q1-base:1.5 pkgsrc-2015Q4:1.5.0.40 pkgsrc-2015Q4-base:1.5 pkgsrc-2015Q3:1.5.0.38 pkgsrc-2015Q3-base:1.5 pkgsrc-2015Q2:1.5.0.36 pkgsrc-2015Q2-base:1.5 pkgsrc-2015Q1:1.5.0.34 pkgsrc-2015Q1-base:1.5 pkgsrc-2014Q4:1.5.0.32 pkgsrc-2014Q4-base:1.5 pkgsrc-2014Q3:1.5.0.30 pkgsrc-2014Q3-base:1.5 pkgsrc-2014Q2:1.5.0.28 pkgsrc-2014Q2-base:1.5 pkgsrc-2014Q1:1.5.0.26 pkgsrc-2014Q1-base:1.5 pkgsrc-2013Q4:1.5.0.24 pkgsrc-2013Q4-base:1.5 pkgsrc-2013Q3:1.5.0.22 pkgsrc-2013Q3-base:1.5 pkgsrc-2013Q2:1.5.0.20 pkgsrc-2013Q2-base:1.5 pkgsrc-2013Q1:1.5.0.18 pkgsrc-2013Q1-base:1.5 pkgsrc-2012Q4:1.5.0.16 pkgsrc-2012Q4-base:1.5 pkgsrc-2012Q3:1.5.0.14 pkgsrc-2012Q3-base:1.5 pkgsrc-2012Q2:1.5.0.12 pkgsrc-2012Q2-base:1.5 pkgsrc-2012Q1:1.5.0.10 pkgsrc-2012Q1-base:1.5 pkgsrc-2011Q4:1.5.0.8 pkgsrc-2011Q4-base:1.5 pkgsrc-2011Q3:1.5.0.6 pkgsrc-2011Q3-base:1.5 pkgsrc-2011Q2:1.5.0.4 pkgsrc-2011Q2-base:1.5 pkgsrc-2011Q1:1.5.0.2 pkgsrc-2011Q1-base:1.5 pkgsrc-2010Q4:1.4.0.34 pkgsrc-2010Q4-base:1.4 pkgsrc-2010Q3:1.4.0.32 pkgsrc-2010Q3-base:1.4 pkgsrc-2010Q2:1.4.0.30 pkgsrc-2010Q2-base:1.4 pkgsrc-2010Q1:1.4.0.28 pkgsrc-2010Q1-base:1.4 pkgsrc-2009Q4:1.4.0.26 pkgsrc-2009Q4-base:1.4 pkgsrc-2009Q3:1.4.0.24 pkgsrc-2009Q3-base:1.4 pkgsrc-2009Q2:1.4.0.22 pkgsrc-2009Q2-base:1.4 pkgsrc-2009Q1:1.4.0.20 pkgsrc-2009Q1-base:1.4 pkgsrc-2008Q4:1.4.0.18 pkgsrc-2008Q4-base:1.4 pkgsrc-2008Q3:1.4.0.16 pkgsrc-2008Q3-base:1.4 cube-native-xorg:1.4.0.14 cube-native-xorg-base:1.4 pkgsrc-2008Q2:1.4.0.12 pkgsrc-2008Q2-base:1.4 cwrapper:1.4.0.10 pkgsrc-2008Q1:1.4.0.8 pkgsrc-2008Q1-base:1.4 pkgsrc-2007Q4:1.4.0.6 pkgsrc-2007Q4-base:1.4 pkgsrc-2007Q3:1.4.0.4 pkgsrc-2007Q3-base:1.4 pkgsrc-2007Q2:1.4.0.2 pkgsrc-2007Q2-base:1.4 pkgsrc-2007Q1:1.3.0.2 pkgsrc-2007Q1-base:1.3 pkgsrc-2006Q4:1.2.0.12 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.10 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.8 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.6 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.2.0.4 pkgsrc-2005Q4-base:1.2 pkgsrc-2005Q3:1.2.0.2 pkgsrc-2005Q3-base:1.2; locks; strict; comment @# @; 1.6 date 2017.06.15.18.27.50; author nils; state dead; branches; next 1.5; commitid N8mah66giRHeOuVz; 1.5 date 2011.04.01.16.48.36; author gdt; state Exp; branches; next 1.4; 1.4 date 2007.05.18.22.20.10; author adrianp; state Exp; branches; next 1.3; 1.3 date 2007.02.20.17.29.36; author joerg; state Exp; branches; next 1.2; 1.2 date 2005.09.20.18.01.26; author adrianp; state dead; branches; next 1.1; 1.1 date 2005.09.14.12.46.52; author adrianp; state Exp; branches; next ; desc @@ 1.6 log @Upgraded to version 2.9.9.0. This is a HUGE bump, so look at the changelog on the Snort website ! For example, Snort does not natively handle MySQL anymore. As for the pkgsrc changes : - updated deps (net/daq) ; - updated config files ; - updated MASTER_SITE ; - some substitution to handle pkgsrc paths ; - updated compile options. @ text @$NetBSD: patch-af,v 1.5 2011/04/01 16:48:36 gdt Exp $ --- src/dynamic-plugins/sf_dynamic_plugins.c.orig 2009-08-10 21:26:41.000000000 +0000 +++ src/dynamic-plugins/sf_dynamic_plugins.c @@@@ -244,8 +244,7 @@@@ void LoadAllLibs(char *path, LoadLibrary dir_entry = readdir(directory); while (dir_entry != NULL) { - if ((dir_entry->d_reclen != 0) && - (fnmatch(MODULE_EXT, dir_entry->d_name, FNM_PATHNAME | FNM_PERIOD) == 0)) + if (fnmatch(MODULE_EXT, dir_entry->d_name, FNM_PATHNAME | FNM_PERIOD) == 0) { /* Get the string up until the first dot. This will be * considered the file prefix. */ @ 1.5 log @Update to 2.8.5.1, to resolve a security issue. Upstream NEWS is weak; release notes for 2.8.5.1 follow. [*] Improvements * Fixed syslog output when running on Windows. * Fixed potential segfault when printing IPv6 packets using the -v option. Thanks to Laurent Gaffie for reporting this issue. * Fixed segfault when additional policies were added during a configuration reload. @ text @d1 1 a1 1 $NetBSD: patch-af,v 1.4 2007/05/18 22:20:10 adrianp Exp $ @ 1.4 log @Update to 2.6.1.5 Snort v2.6.1.5 includes: * A new http_post rule keyword used to search for content in normalized HTTP posts * A fix for a potential memory leak when generating HTTP Inspection events Snort v2.6.1.4 includes detection functionality for a BSD IPv6 fragmentation overflow, and addresses a number of potential security-related issues in Snort as reported by customers, uncovered by internal investigations, and through third-party code audits. @ text @d1 1 a1 1 $NetBSD$ d3 1 a3 1 --- src/dynamic-plugins/sf_dynamic_plugins.c.orig 2007-03-14 16:58:10.000000000 +0000 d5 3 a7 3 @@@@ -210,8 +210,7 @@@@ void LoadAllLibs(char *path, LoadLibrary dirEntry = readdir(directory); while (dirEntry) d9 3 a11 3 - if (dirEntry->d_reclen && - !fnmatch(EXT, dirEntry->d_name, FNM_PATHNAME | FNM_PERIOD)) + if (!fnmatch(EXT, dirEntry->d_name, FNM_PATHNAME | FNM_PERIOD)) d13 2 a14 2 SnortSnprintf(path_buf, PATH_MAX, "%s%s%s", path, "/", dirEntry->d_name); loadFunc(path_buf, 1); @ 1.3 log @Kill an useless, unportable check. @ text @d3 1 a3 1 --- src/dynamic-plugins/sf_dynamic_plugins.c.orig 2007-02-20 16:54:06.000000000 +0000 d13 1 a13 1 snprintf(path_buf, PATH_MAX, "%s%s%s", path, "/", dirEntry->d_name); @ 1.2 log @Update snort to 2.4.1 From the ChangeLog: > 2005-09-16 - Snort 2.4.1 Released > [*] New additions > * Added a -K command line option to manually select the logging mode using > a single switch. The -b and -N switches will be deprecated in version > 2.7. Pcap logging is now the default for Snort at startup, use "-K ascii" > to revert to old behavior. > > [*] Improvements > * Win32 version now supports winpcap 3.1 and MySQL client 4.13. > * Added event on zero-length RPC fragments. > * Fixed TCP SACK processing for text based outputs that could result in a > DoS. > * General improvements to frag3 including Teardrop detection fix. > * Fixed a bug in the PPPoE decoder. > * Added patch for time stats from Bill Parker. Enable with configure > --enable-timestats. > * Fixed IDS mode bailing at startup if logdir is specified in snort.conf > and /var/log/snort doesn't exist. > * Added decoder for IPEnc for OpenBSD. Thanks Jason Ish for the patch > (long time ago) and Chris Kuethe for reraising the issue. > * Allow snort to use usernames (-u) and groupnames (-g) that include > numbers. Thanks to Shaick for the patch. > * Fixed broken -T option. > * Change ip_proto to ip for portscan configuration. Thanks David Bianco > for pointing this out. > * Fix for prelude initialization. Thanks Yoann Vandoorselaere for the > update. > * For content matches, when subsequent rule options fail, start searching > again in correct location. > * Updated Win32 to handle pflog patch. > * Added support for new OpenBSD pflog format. Older pflog format, > OpenBSD 3.3 and earlier is still supported. Thanks Breno Leitao > and Christian Reis for the patch. > * Added statistics counter for ETH_LOOPBACK packets. Thanks rmkml > for the patch. @ text @d1 1 a1 1 $NetBSD: patch-af,v 1.1 2005/09/14 12:46:52 adrianp Exp $ d3 12 a14 115 --- src/log.c.orig 2005-07-11 15:41:40.000000000 +0100 +++ src/log.c 2005-08-23 16:52:19.000000000 +0100 @@@@ -1478,7 +1478,10 @@@@ { for(j = 0; j < p->ip_options[i].len; j++) { - fprintf(fp, "%02X", p->ip_options[i].data[j]); + if (p->ip_options[i].data) + fprintf(fp, "%02X", p->ip_options[i].data[j]); + else + fprintf(fp, "%02X", 0); if((j % 2) == 0) fprintf(fp, " "); @@@@ -1522,7 +1525,8 @@@@ case TCPOPT_MAXSEG: bzero((char *) tmp, 5); fwrite("MSS: ", 5, 1, fp); - memcpy(tmp, p->tcp_options[i].data, 2); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 2); fprintf(fp, "%u ", EXTRACT_16BITS(tmp)); break; @@@@ -1535,15 +1539,20 @@@@ break; case TCPOPT_WSCALE: - fprintf(fp, "WS: %u ", p->tcp_options[i].data[0]); + if (p->tcp_options[i].data) + fprintf(fp, "WS: %u ", p->tcp_options[i].data[0]); + else + fprintf(fp, "WS: %u ", 0); break; case TCPOPT_SACK: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 2); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 2); fprintf(fp, "Sack: %u@@", EXTRACT_16BITS(tmp)); bzero((char *) tmp, 5); - memcpy(tmp, (p->tcp_options[i].data) + 2, 2); + if (p->tcp_options[i].data) + memcpy(tmp, (p->tcp_options[i].data) + 2, 2); fprintf(fp, "%u ", EXTRACT_16BITS(tmp)); break; @@@@ -1553,40 +1562,47 @@@@ case TCPOPT_ECHO: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 4); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 4); fprintf(fp, "Echo: %u ", EXTRACT_32BITS(tmp)); break; case TCPOPT_ECHOREPLY: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 4); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 4); fprintf(fp, "Echo Rep: %u ", EXTRACT_32BITS(tmp)); break; case TCPOPT_TIMESTAMP: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 4); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 4); fprintf(fp, "TS: %u ", EXTRACT_32BITS(tmp)); bzero((char *) tmp, 5); - memcpy(tmp, (p->tcp_options[i].data) + 4, 4); + if (p->tcp_options[i].data) + memcpy(tmp, (p->tcp_options[i].data) + 4, 4); fprintf(fp, "%u ", EXTRACT_32BITS(tmp)); break; case TCPOPT_CC: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 4); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 4); fprintf(fp, "CC %u ", EXTRACT_32BITS(tmp)); break; case TCPOPT_CCNEW: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 4); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 4); fprintf(fp, "CCNEW: %u ", EXTRACT_32BITS(tmp)); break; case TCPOPT_CCECHO: bzero((char *) tmp, 5); - memcpy(tmp, p->tcp_options[i].data, 4); + if (p->tcp_options[i].data) + memcpy(tmp, p->tcp_options[i].data, 4); fprintf(fp, "CCECHO: %u ", EXTRACT_32BITS(tmp)); break; @@@@ -1598,7 +1614,10 @@@@ for(j = 0; j < p->tcp_options[i].len; j++) { - fprintf(fp, "%02X", p->tcp_options[i].data[j]); + if (p->tcp_options[i].data) + fprintf(fp, "%02X", p->tcp_options[i].data[j]); + else + fprintf(fp, "%02X", 0); if((j % 2) == 0) fprintf(fp, " "); @ 1.1 log @Add patch from snort CVS to address a security issue: http://secunia.com/advisories/16786/ Whitespace police on MESSAGE Bump to nb1 @ text @d1 1 a1 1 $NetBSD$ @