Commit Graph

56 Commits

Author SHA1 Message Date
GTrunsec
9382357160
zeek: fix hardlinking duplicate files 2020-03-01 16:48:23 -08:00
Mario Rodas
a5f4a12fb8
Merge pull request #76448 from r-ryantm/auto-update/suricata
suricata: 5.0.0 -> 5.0.1
2020-01-09 05:37:13 -05:00
Robin Gloster
6ca6ac796b
treewide: configureFlags is a flat list 2019-12-31 01:37:49 +01:00
Robin Gloster
65395a7105
treewide: installTargets is a list 2019-12-30 13:29:27 +01:00
R. RyanTM
9323e55b2f suricata: 5.0.0 -> 5.0.1 2019-12-24 12:36:09 -08:00
Mario Rodas
e11288b919 zeek: 3.0.0 -> 3.0.1
Changelog: https://github.com/zeek/zeek/releases/tag/v3.0.1
2019-12-11 00:17:03 -08:00
Tobias Mayer
d46de73253 suricata: 4.1.5 -> 5.0.0
Additional Changes:
 - Disabled AFL build configuration
 - Enabled eBPF support
2019-10-21 05:51:54 +02:00
R. RyanTM
6d847007ad suricata: 4.1.4 -> 4.1.5 (#70801)
* suricata: 4.1.4 -> 4.1.5

Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/suricata/versions

* suricata: fix Hyperscan includes location

+ add lz4 to build inputs for compressed pcap
2019-10-15 19:56:31 +02:00
Mario Rodas
7ed57e7c70
zeek: add tobim as maintainer 2019-10-02 04:00:00 -05:00
Mario Rodas
80e262e85a
zeek: add marsam as maintainer 2019-10-02 03:00:00 -05:00
Mario Rodas
0449518afb
zeek: 2.5.5 -> 3.0.0 2019-09-29 21:21:21 -05:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
magenbluten
576c04a9a5 suricata: init at 4.1.4 2019-07-30 20:16:04 +02:00
R. RyanTM
4b02c087f1 bro: 2.5.4 -> 2.5.5
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
bro
2018-08-30 22:22:45 -07:00
John Ericson
db965063b3 treewide: Make configureFlags lists 2018-08-03 17:06:03 -04:00
Silvan Mosberger
57bccb3cb8 treewide: http -> https sources (#42676)
* treewide: http -> https sources

This updates the source urls of all top-level packages from http to
https where possible.

* buildtorrent: fix url and tab -> spaces
2018-06-28 20:43:35 +02:00
Ryan Mulligan
0d5eb901ad treewide: http -> https 2018-06-23 04:34:55 -07:00
Pascal Wittmann
f2ea885bed
bro: 2.5.3 -> 2.5.4 2018-06-06 19:13:26 +02:00
Ryan Mulligan
038a0c9a60 treewide: http to https 2018-04-30 21:39:20 -07:00
Ryan Mulligan
6aad4bf55e snort: 2.9.8.2 -> 2.9.11.1 (#36026)
Semi-automatic update. These checks were performed:

- built on NixOS
- ran `/nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1/bin/snort -V` and found version 2.9.11.1
- ran `/nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1/bin/snort --version` and found version 2.9.11.1
- ran `/nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1/bin/u2spewfoo help` got 0 exit code
- ran `/nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1/bin/.snort-wrapped -V` and found version 2.9.11.1
- ran `/nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1/bin/.snort-wrapped --version` and found version 2.9.11.1
- found 2.9.11.1 with grep in /nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1
- found 2.9.11.1 in filename of file in /nix/store/qan26dfxzzbh27cd91hcvad69ls7xnhw-snort-2.9.11.1

cc "@aycanirican"
2018-02-28 12:35:35 +03:00
adisbladis
f744dd9e25
Merge pull request #35605 from ryantm/auto-update/daq-2.0.6-to-2.2.2
daq: 2.0.6 -> 2.2.2
2018-02-26 15:20:52 +08:00
Ryan Mulligan
5db347a1f9 daq: 2.0.6 -> 2.2.2
Semi-automatic update. These checks were performed:

- built on NixOS
- ran `/nix/store/k309zjlgh7pn9h1gpzf5rrmnxzmfifil-daq-2.2.2/bin/daq-modules-config -h` got 0 exit code
- ran `/nix/store/k309zjlgh7pn9h1gpzf5rrmnxzmfifil-daq-2.2.2/bin/daq-modules-config --help` got 0 exit code
- ran `/nix/store/k309zjlgh7pn9h1gpzf5rrmnxzmfifil-daq-2.2.2/bin/daq-modules-config help` got 0 exit code
- found 2.2.2 with grep in /nix/store/k309zjlgh7pn9h1gpzf5rrmnxzmfifil-daq-2.2.2
- found 2.2.2 in filename of file in /nix/store/k309zjlgh7pn9h1gpzf5rrmnxzmfifil-daq-2.2.2
2018-02-25 18:49:14 -08:00
Ryan Mulligan
899376448b bro: 2.5.2 -> 2.5.3
Semi-automatic update. These checks were performed:

- built on NixOS
- ran `/nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3/bin/bro-config --version` and found version 2.5.3
- ran `/nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3/bin/binpac -V` and found version 2.5.3
- ran `/nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3/bin/binpac -v` and found version 2.5.3
- ran `/nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3/bin/binpac --version` and found version 2.5.3
- ran `/nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3/bin/bro -v` and found version 2.5.3
- ran `/nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3/bin/bro --version` and found version 2.5.3
- found 2.5.3 with grep in /nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3
- found 2.5.3 in filename of file in /nix/store/l58hq30xhskjp4cvqpjjdxzjqi9q21wi-bro-2.5.3
2018-02-25 11:03:26 -08:00
Pascal Wittmann
255130b340
bro: 2.5.1 -> 2.5.2 2017-10-21 23:59:51 +02:00
Franz Pletz
80848ce10d
bro: 2.5 -> 2.5.1 2017-08-28 00:54:43 +02:00
mimadrid
09e0cc7cc7
Update homepage attributes: http -> https
Homepage link "http://.../" is a permanent redirect to "https://.../" and should be updated
https://repology.org/repository/nix_stable/problems
2017-08-03 11:56:15 +02:00
Sophie Taylor
ffa225336c bro: 2.4.1 -> 2.5 2016-11-18 23:20:58 +10:00
Tuomas Tynkkynen
4f398dfd13 bro: Broken on Darwin
http://hydra.nixos.org/build/38312081
2016-08-06 17:06:45 +03:00
Tuomas Tynkkynen
21f17d69f6 treewide: Add lots of meta.platforms
Build-tested on x86_64 Linux & Mac.
2016-08-02 21:42:43 +03:00
Aycan iRiCAN
379559702e snort: 2.9.7.2 -> 2.9.8.2 2016-05-21 10:08:36 +03:00
William A. Kennington III
6602f49495 Revert "Revert "Merge pull request #9543 from NixOS/staging.post-15.06""
This reverts commit 741bf840da.

This reverts the fallout from reverting the major changes.
2015-11-14 12:32:51 -08:00
William A. Kennington III
4251612faa Merge branch 'master.upstream' into staging.upstream 2015-11-04 01:00:48 -08:00
Pascal Wittmann
7fd0048a93 bro: 2.4 -> 2.4.1 2015-11-02 21:26:56 +01:00
Vladimír Čunát
52ea05187a snort: fix evaluation 2015-10-15 21:46:13 +02:00
William A. Kennington III
8a44a36ca4 Merge branch 'master.upstream' into staging.upstream 2015-10-15 10:22:28 -07:00
Eelco Dolstra
741bf840da Revert "Merge pull request #9543 from NixOS/staging.post-15.06"
This reverts commit f61176c539, reversing
changes made to a27ca029ee.

Conflicts:
	pkgs/development/libraries/ncurses/default.nix
2015-10-06 15:24:20 +02:00
Aycan iRiCAN
4e9f5328a5 snort: move dynamic path defs to wrapper script. 2015-10-03 17:22:40 +03:00
Aycan iRiCAN
5d952d68de snort: typo fix 2015-10-02 12:08:25 +03:00
Aycan iRiCAN
0e69d85980 snort: provide dynamic preprocessor path via wrapper 2015-10-02 11:43:03 +03:00
Aycan iRiCAN
8d8457d9ae add wrapProgram to buildInputs 2015-10-02 10:18:55 +03:00
Aycan iRiCAN
6b84f5cd61 snort: introducing inline snort support via nfq daq 2015-10-02 10:11:04 +03:00
Pascal Wittmann
bd65e8afb4 bro: update from 2.3.2 to 2.4 2015-06-29 12:50:34 +02:00
Vladimír Čunát
bba6880aa6 snort.org: switch downloads to SourceForge
On snort.org they only seem to keep the latest release, which is annoying.
Fixes #8065. /cc maintainer @aycanirican.
2015-05-31 17:11:40 +02:00
Peter Simons
06f3c4dba5 daq: update to version 2.0.5
Fixes https://github.com/NixOS/nixpkgs/issues/7947.
2015-05-22 20:41:59 +02:00
devhell
77c40224d2 snort: 2.9.7.0 -> 2.9.7.2
This includes a slight refactor.

2014-11-24 - Snort 2.9.7.2
[*] New additions
* Application Identification Preprocessor, when used in conjunction with
  open app ID detector content, that will identify application protocol,
  client, server, and web applications (including those using SSL) and
  include the info in Snort alert data. In addition, a new rule option
  keyword 'appid' that can be used to constrain Snort rules based on one
  or more applications that are identified for the connection.
  See README.appid for details.

* A new protected_content rule option that is used to match against a content
  that is hashed.  It can be used to obscure the full context of the rule from
  the administrator.

* Protocol Aware Flushing (PAF) improvements for SMTP, POP, and IMAP to
  more accurately process different portions of email messages and file
  attachments.

* Added ability to test normalization behavior without modifying network traffic.
  When configured using na_policy_mode:inline-test, statistics will be gathered
  on packet normalizations that would have occurred, allowing less disruptive
  testing of inline deployments.

* The HTTP Inspection preprocessor now has the ability to decompress
  DEFLATE and LZMA compressed flash content and DEFLATE compressed PDF
  content from http responses when configured with the new decompress_swf
  and decompress_pdf options. This enhancement can be used with existing rule
  options that already match against decompressed equivalents.

* Added improved XFF support to HttpInspect. It is now possible to specify custom
  HTTP headers to use in place of 'X-Fowarded-For'. In situations where traffic may
  contain multiple XFF-like headers, it is possible to specify which headers hold
  precedence.

* Added control socket command to dump packets.

* The Stream5 preprocessor functionality is now split between the new Session and Stream preprocessors.

* Added decoding capaiblity for Cisco FabricPath

[*] Improvements
* Update active response to allow for responses of 1500+ bytes that span
  multiple TCP packets.

* Check limits of multiple configurations to not exceed a maximum ID of 4095.

* Updated the error output of byte_test, byte_jump, byte_extract to
  including details on offending options for a given rule.

* Update build and install scripts to install preprocessor and engine libraries
  into user specified libdir.

* Improved performance of IP Reputation preprocessor.

* The control socket will now report success when reloading empty IP Reputation whitelists/blacklists.

* All TCP normalizations can now be enabled individually. See README.normalize for details on using
  the new options. For consistency with other options, the "urp" tcp normalization keyword now
  enables the normalization instead of disabling it.

* Lowered memory demand of Unicode -> ASCII mapping in HttpInspect.

* Updated profiler output to remove duplicate results when using multiple configurations.

* Improved performance of FTP reassembly.
2015-03-16 00:07:00 +00:00
Pascal Wittmann
6b5658bf23 bro: update from 2.3.1 to 2.3.2 2015-02-09 12:20:10 +01:00
Aycan iRiCAN
073c764f6c Bump snort to 2.9.7.0 and daq to 2.0.4 2014-11-27 09:57:59 +02:00
Pascal Wittmann
a0e82a304f bro: update from 2.1 to 2.3.1 2014-09-27 19:34:20 +02:00
Aycan iRiCAN
d2b1644939 Fixed typo 2014-09-24 11:43:51 +03:00
Aycan iRiCAN
082167400f Added myself to maintainers 2014-09-24 11:24:47 +03:00