Date: Fri, 23 Jul 2010 23:06:03 +0200 (CEST) From: olli hauer <ohauer@gmx.de> To: <FreeBSD-gnats-submit@FreeBSD.org> Cc: ohauer@gmx.de Subject: ports/148878: [patch] port security/snort update to 2.8.6.1 Message-ID: <20100723210603.49B2120291@u18-124.dsl.vianetworks.de> Resent-Message-ID: <201007232110.o6NLA6LB037321@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 148878
>Category: ports
>Synopsis: [patch] port security/snort update to 2.8.6.1
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Fri Jul 23 21:10:06 UTC 2010
>Closed-Date:
>Last-Modified:
>Originator: olli hauer <ohauer@gmx.de>
>Release:
>Organization:
>Environment:
FreeBSD 7.3-RELEASE-p2 i386
>Description:
Update snort to version 2.8.6.1.
>From the release notes:
* Eliminate false positives when using fast_pattern:only and having only
one http content in the pattern matcher.
* Address false positives in FTP preprocessor with string format verification.
Also addressed issue with handling of response codes to data transfer
commands where the response code didn't contain a message.
Tested with the following options on FreeBSD-7.3 i386
WITH_DYNAMIC=true
WITHOUT_FLEXRESP=true
WITH_FLEXRESP2=true
WITHOUT_MYSQL=true
WITHOUT_ODBC=true
WITH_POSTGRESQL=true
WITHOUT_PRELUDE=true
WITH_PERPROFILE=true
WITH_SNORTSAM=true
>How-To-Repeat:
>Fix:
--- patch_security_snort-2.8.6.1.txt begins here ---
Index: Makefile
===================================================================
--- Makefile
+++ Makefile
@@ -6,7 +6,7 @@
#
PORTNAME= snort
-PORTVERSION= 2.8.6
+PORTVERSION= 2.8.6.1
CATEGORIES= security
MASTER_SITES= LOCAL
MASTER_SITE_SUBDIR= clsung
Index: distinfo
===================================================================
--- distinfo
+++ distinfo
@@ -1,6 +1,6 @@
-MD5 (snort-2.8.6.tar.gz) = b1c2d3ddb1c0a859a47c5a31d19e60ad
-SHA256 (snort-2.8.6.tar.gz) = 6064d7bb78d6438b455ff349b93d52f40d3977f1fecb1d7958c87881b0030358
-SIZE (snort-2.8.6.tar.gz) = 4960740
+MD5 (snort-2.8.6.1.tar.gz) = b1119396a32e9df0d80404e4b6c49166
+SHA256 (snort-2.8.6.1.tar.gz) = 7a948ef235c59b193ca0883b04a0d3ef4cc5250f933cafc4d06feed57150ae23
+SIZE (snort-2.8.6.1.tar.gz) = 4939019
MD5 (snortsam-2.8.6.diff.gz) = 35fe432a8061dc3155f3530ff54f4ebf
SHA256 (snortsam-2.8.6.diff.gz) = 24253b7f1dac99edc4527ac9a4da1c30d340c0eeaf6f754495e4078bf1b88955
SIZE (snortsam-2.8.6.diff.gz) = 28755
Index: files/pkg-message.in
===================================================================
--- files/pkg-message.in
+++ files/pkg-message.in
@@ -6,7 +6,7 @@
NOTE: Starting with Snort 2.4.0 (released on 2005-04-22)
the rules are no longer included with the distribution.
- Please download them from http://www.snort.org/rules/.
- You might consider installing security/oinkmaster port to simplify
- rules downloads and updates.
+ Please download them from http://www.snort.org/snort-rules/.
+ You might consider installing the port security/oinkmaster or
+ security/pulledpork to simplify rules downloads and updates.
=========================================================================
--- patch_security_snort-2.8.6.1.txt ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20100723210603.49B2120291>