Welcome, Guest! Log In | Create Account

Share

Snort2Pf

by ssc_, ttz

Snort2Pf is a small Perl daemon which greps Snort's alertfile and blocks the "naughty" hosts for a given amount of time using pfctl.


http://www.thinknerd.org/~ssc/projects/snort2pf/

Firewalls, Security

Project Feed

  • snort2pf 4.3 file released: snort2pf-4.3.tar.gz

    ####
    ##    4.3 (2007-11-29)
    
    - add the -t option to use a table instead of an anchor
    - improve manpages
    
    ####
    ##    4.2 (2007-11-27)
    
    - double amnesty time for recidivists
    - add whitelist support
    - dump status in syslog as LOG_DEBUG when SIGUSR1 is ...

    01:01AM on Nov 30 2007

  • snort2pf-3.4+2 snortp2pf-3.4+2 file released: snort2pf34+2.tar.gz

    
                
            
            

    07:14PM on Nov 23 2006

  • snort2pf 3.4 file released: snort2pf-3.4.tar.gz

    - fixed snort2pf and idpsinfo to work with OpenBSD 3.6's pf-code
    - this release is not compatible with OpenBSD 3.5 and prior

    02:29PM on Jan 03 2005

  • snort2pf 3.3 file released: snort2pf-3.3.tar.gz

    - fixed typo in idpsinfo(1)
    - generalised regex for attack-detection (reported by c.harford)

    12:00AM on May 24 2004

  • Code committed

    ssc_ committed patchset 4 of module snort2pf to the Snort2Pf CVS repository, changing 1 files

    01:48PM on Apr 18 2004 by ssc_

  • Code committed

    ssc_ committed patchset 3 of module snort2pf to the Snort2Pf CVS repository, changing 1 files

    01:41PM on Apr 18 2004 by ssc_

  • Code committed

    ssc_ committed patchset 2 of module snort2pf to the Snort2Pf CVS repository, changing 9 files

    01:23PM on Apr 18 2004 by ssc_

  • Code committed

    ssc_ committed patchset 1 of module snort2pf to the Snort2Pf CVS repository, changing 9 files

    01:23PM on Apr 18 2004 by ssc_

  • snort2pf 3.2 file released: snort2pf3.2.tar.gz

    - fixed/improved regex for portscan-detection (reported by dinoc)
    - `ps|grep -i snort2pf` shows status information now
    - install.sh won't touch /etc/changelist anymore
    - idpsinfo(1) wastes much less ressources
    - README.de added

    12:00AM on Apr 10 2004

  • Code committed

    Anonymous committed patchset 1 of module CVSROOT to the Snort2Pf CVS repository, changing 11 files

    03:14PM on Feb 02 2004 by nobody

Snort2Pf Actions