Suricata 4.0.3 is available at FreshPorts



  • Hello,

    A new version of Suricata is available, 4.0.3 at FreshPorts https://www.freshports.org/security/suricata/

    Changelogs are available here:

    https://suricata-ids.org/2017/12/06/suricata-4-0-3-available/

    Thank you



  • I believe there is no difference between 4.0.3 and the 4.02 currently in pfSense.  I'm basing that on this note contained on the web page where the 4.03 version is announced:

    Note: this release was first released as 4.0.2, but due to a packaging mistake it contained the wrong branch.

    If I am reading that correctly, they released the 4.03 code but mistakenly called it 4.0.2.  So they have just changed the version without really changing the code.  I will qualify that statement by saying I have not performed a diff on this source code versus the 4.0.2 source code.  Either way, I will work on getting a new package update submitted with the 4.0.3 binary in the near future.

    Bill



  • You're correct, they announce that, but if I type:
    Suricata -V the output will be:

    "This is Suricata version 4.0.1 RELEASE"

    Shouldn't be at least 4.0.2 ?

    I'm on 2.4.2-RELEASE-p1 (amd64)
    built on Tue Dec 12 13:45:26 CST 2017
    FreeBSD 11.1-RELEASE-p6
    (stable branch)

    No update is available via Package Manager (GUI) or via CLI.

    Thank you



  • @NRgia:

    You're correct, they announce that, but if I type:
    Suricata -V the output will be:

    "This is Suricata version 4.0.1 RELEASE"

    Shouldn't be at least 4.0.2 ?

    I'm on 2.4.2-RELEASE-p1 (amd64)
    built on Tue Dec 12 13:45:26 CST 2017
    FreeBSD 11.1-RELEASE-p6
    (stable branch)

    No update is available via Package Manager (GUI) or via CLI.

    Thank you

    Oops!  My mistake.  I thought I had already updated the pfSense package to 4.0.2 – at least I remember that I intended to do that ...  :-[.

    Let me double-check the status and see about getting it updated if I did not.  Sorry about that.  I don't currently run Suricata on my production home firewall.  I'm still using Snort just because that's what I originally started with.

    Bill



  • I checked, and sure enough, I had not actually submitted the 4.0.3 update for the Suricata binary.  Kind of embarrassing on my part to realize I forgot to do that …  :P.

    A pull request to update the Suricata binary to version 4.0.3 has been posted for review and approval by the pfSense team.  The details are here:  https://github.com/pfsense/FreeBSD-ports/pull/493.

    I have a couple of small issues to fix in the Suricata GUI package as well, so look for an update there in the near future.  The new GUI package will show up as 4.0.3 when it is ready.

    Bill



  • No worries, at least I can do, from time to time, to post when a new version is available.

    Please let us know, as you always do, in a release note, what will change(if something is customized further in pfSense), when the new version will be ready.

    Thank you for maintaining Suricata also.


Log in to reply