Snort-dev Package Update and Bug List

jamesdean

snort-dev package: Update log.

With this new version of snort you will be able to have complete control on
blocked ips. That is to say, you will have a choice on how long exacly each snort rule
will be blocked for.

Goals:

Main goal is to make adding options as simple as possible.

Reduce code…... Done ….
Make a framework. Done ….
Move code to OOP php.
Add snortsam with custom patches Done ….

2.9.1 pkg v. 2.0 progress

Build snort to support IPV6 Done ….

Move snort settings from xml to sqlite. Done ….

Removed all other javascript frameworks Done ….
Removed most of jquery… Done ….
Added json/javascript framework. Done ….

Finished: snortDB Done ….
Finished: snortDBrules Done ….
Finished: snort_alerts.php Done ….
Finished: snort_barnyard.php Done ….
Finished: snort_blocked.php Done ….
Finished: snort_define_servers.php Done ….
Finished: snort_gui.inc Done ….
Finished: snort_head.inc Done ….
Finished: snort_headbase.inc Done ….
Finished: snort_help_info.php Done ….
Finished: snort_interfaces.php Done ….
Finished: snort_interfaces_edit.php Done ….
Finished: snort_interfaces_global.p Done ….
Finished: snort_interfaces_suppress Done ….
Finished: snort_interfaces_suppress Done ….
Finished: snort_interfaces_whitelis Done ….
Finished: snort_interfaces_whitelis Done ….
Finished: snort_json_get.php Done ….
Finished: snort_json_post.php Done ….
Finished: snort_new.inc Done ….
Finished: snort_preprocessors.php Done ….
Finished: snort_rules.php Done ….
Finished: snort_rulesets.php Done ….
Finished: Add Emerging Threats Pro Rules download option. Done ….

Working: Add SnortSam GUI. Working ….
Working: Create Alert/block jQuery tables for parsed logs. Working ….

Hard Part Is Over
Finished: Built ports of Snort 2.9.1 Done …
Finished: Built ports of Barnyard2 2.1.9 Done …
Finished: Built ports of SnortSam 2.9.0.3 Done …
Finished: Created a custom SnortSam plugin patch for Snort 2.9.0.3 and submitted upstream diff to FreeBSD ports Done …

TODO:

Add ability to create and upload custom rules. working ….

Add GUI update tab. working ….

Add GUI to "Upload Custom Rules. working ….

Add save the list of blocked IP by snort after a reboot. working ….
Bugs:

Major Changes:

Add inline version of the snort package. working ….

Add GUI options for Snort Inline. working ….

Move My version of Global Blacklist into snort. working …. Code is done, Needs a GUI

==============

[1.2.3-RELEASE] [root@pfsense.local]/root/Pfsense_123x86_files(28): snort -V

,,_ -> Snort! <-
o" )~ Version 2.9.0.3 IPv6 GRE (Build 98) FreeBSD
'''' By Martin Roesch & The Snort Team: http://www.snort.org/snort/snort-team
Copyright (C) 1998-2010 Sourcefire, Inc., et al.
Using libpcap version 0.9.8
Using PCRE version: 8.12 2011-01-15
Using ZLIB version: 1.2.3

___ Built Date for Snort on Pfsense 1.2.3x86 is Jan 31, 2011.
/ f \ Orion IPS Patches Copyright (C) 2009-2011 Robert Zelaya.
/ p _/Sense
_/
__/ Using Snort.org dynamic plugins and SnortSam 2.69.

[1.2.3-RELEASE] [root@pfsense.local]/root/Pfsense_123x86_files(29): barnyard2 -V

______ -> Barnyard2 <-
/ ,,_ \ Version 2.1.9 (Build 263)
|o" )~| By the SecurixLive.com Team: http://www.securixlive.com/about.php

Snort by Martin Roesch & The Snort Team: http://www.snort.org/team.html
(C) Copyright 1998-2007 Sourcefire Inc., et al.

___ Built Date for Barnyard2 on Pfsense 1.2.3x86 is Jan 31, 2011.
/ f \ Orion IPS Patches Copyright (C) 2009-2011 Robert Zelaya.
/ p _/Sense
_/
_/ Using Snort.org dynamic plugins and SnortSam 2.69.

[1.2.3-RELEASE] [root@pfsense.local]/root/Pfsense_123x86_files(30): snortsam -V

==============

Main GUI

Global Settings GUI

RuleSets GUI

Select Rules GUI

Edit Sid GUI

Wait MSG

/frank@knobbe.us