"Fossies" - the Fresh Open Source Software Archive

Member "portsentry-2.0b1/CHANGES" (8 Apr 2002, 2838 Bytes) of package /linux/privat/old/portsentry-2.0b1.tar.gz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file.

    1 $Id: CHANGES,v 1.56 2002/04/08 19:12:30 crowland Exp crowland $
    2 
    3 Psionic PortSentry 2.x Changes
    4 
    5 12-23-2001 - Project Begins. 
    6 
    7 12-23-2001 - 2.0b1 - Here's what I did while rotting in the Greensville, SC 
    8 and Charlottesville, NC airports today:
    9 	- Researched pcap support
   10 	- Wrote pcap functional spec
   11 	- Broke out new functions for AdvancedStealthMode
   12 	- Added in JRF's patch
   13 
   14 3-05-2002 - 2.0b1 - Sat down last week and finally banged all of this out. Here are the 
   15 changes:
   16 	- Implemented pcap support
   17 	- Cleaned up almost every major function.
   18 	- Deleted lots of redundant code.
   19 	- Consolidated functions
   20 	- Broke out analysis engine to add in new checks.
   21 	- Pulled JRF's patch (sorry Jeremy). Testing with new pcap support for stability
   22 	first and then will apply changes.
   23 	- The PORT_BANNER Option has gone away.
   24 	- The "Classic" TCP/UDP modes have gone away.
   25 	- Advanced mode TCP/UPD mode is not in operation yet and will be added back 
   26 	later.
   27 	- PortSentry runs all protection modes from one process
   28 	- PortSentry no longer has command line options. Everything is in the config 
   29 	file.
   30 	- Eliminated multiple blocked file types.
   31 	- Test, test, test
   32 	
   33 3-26-2002 - 2.0b1 - More fixes
   34 	- Cleaned up various functions
   35 	- Fixed TCP/UDP port parsing function to build out BPF filter
   36 	- Made configtoken function null out variable before use to allow
   37 	for checking empty config variables
   38 	- TCP and UDP modes now work
   39 	- Parent process now exits without bogus "Shutting down" message
   40 	
   41 
   42 3-27-2002
   43 	- Removed check in SubstString function to check for too great a 
   44 	length in passed arguments because the arithmetic was wrong anyway
   45 	and it's not needed because excess length is chopped anyway.
   46 	- Remove DynString function because it's not being used now.
   47 	- Reads in INTERFACE option from config. Auto-determines interface if set to "auto"
   48 
   49 3-29-2002
   50 	- Fixed BPF filter generation. Now ignores local system IP 
   51 	correctly.
   52 	- Put in INTERACE_ADDRESS config option to bypass libpcap's seeming
   53 	inability to determine the interfaces own address. This needs to
   54 	be changed to do this automatically later.
   55 	- Cleaned up adminalert messages to some degree. Made initconfig
   56 	report adminalerts on config errors for consistency.
   57 	- Changed .conf comments and removed 333.444.555.666 in bogus 
   58 	addresses and replaced with XXX.XXX.XXX.XXX because some people
   59 	don't read the directions and try to use the 333.444.555.666
   60 	address for a bogus route.
   61 	- Print out monitored port list to log file on init
   62 
   63 4-8-2002 
   64 	- Removed alerting for unused TCP flags because it can false 
   65 	alarm with Explicit Congestion Notification aware kernels. These
   66 	flags are still reported under the unknown scan type though.
   67 	- Cleaned up for public beta.
   68 	- Changed package so everything runs from portsentry2 directory
   69 	to prevent people from mashing versions
   70 
   71