[Bastille-linux-discuss] psad-1.1.1 release
This tool locks down Linux and UNIX systems.
Brought to you by:
jay
Menu
▾
▴
[Bastille-linux-discuss] psad-1.1.1 release
|
From: Michael R. <cip...@ya...> - 2003-04-27 01:05:52
|
** This is a bugfix release. ** If you are running psad-1.1, I would highly recommend that you upgrade to 1.1.1. The 1.1 release contained a bug where tcp/udp related hash keys were being tested when the current packet in check_scan() is icmp. This created a situation in which the warning handler would write a message to /var/log/psad/errs/psad.warn for every blocked (logged) icmp packet. This did not present a security risk, although if your firewall blocks lots of icmp packets then the psad.warn file can get quite over time with the 1.1 release. The 1.1.1 release fixes this issue, and it also includes the following: -Bugfix for being too strict on iptable default log string (Albert Whale). -Reworked USR1 signal handler so the Data::Dumper function call is made in the main part of the psad code. -Added a startup message for psad. -Minor bugfix for leading whitespace in auto_ips (Albert Whale). As usual, psad-1.1.1 may be downloaded here: http://www.cipherdyne.com/psad/download/psad-1.1.1.tar.gz Thanks, --Mike http://www.cipherdyne.com __________________________________ Do you Yahoo!? The New Yahoo! Search - Faster. Easier. Bingo. http://search.yahoo.com |