secureideas-base-devel Mailing List for BASE
Brought to you by:
secureideas,
sinukas
You can subscribe to this list here.
2004 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
(23) |
Oct
(41) |
Nov
(234) |
Dec
(45) |
---|---|---|---|---|---|---|---|---|---|---|---|---|
2005 |
Jan
(93) |
Feb
(181) |
Mar
(70) |
Apr
(89) |
May
(77) |
Jun
(46) |
Jul
(32) |
Aug
(31) |
Sep
(12) |
Oct
(21) |
Nov
(10) |
Dec
(2) |
2006 |
Jan
(54) |
Feb
(34) |
Mar
(41) |
Apr
(33) |
May
(36) |
Jun
(30) |
Jul
(70) |
Aug
(36) |
Sep
(9) |
Oct
(7) |
Nov
(19) |
Dec
(26) |
2007 |
Jan
(29) |
Feb
(8) |
Mar
(13) |
Apr
(3) |
May
(7) |
Jun
(11) |
Jul
(1) |
Aug
(8) |
Sep
(5) |
Oct
(1) |
Nov
(5) |
Dec
(23) |
2008 |
Jan
(34) |
Feb
(3) |
Mar
(5) |
Apr
(25) |
May
(8) |
Jun
(69) |
Jul
(67) |
Aug
(30) |
Sep
(16) |
Oct
(29) |
Nov
|
Dec
|
2009 |
Jan
|
Feb
|
Mar
(7) |
Apr
(7) |
May
(9) |
Jun
(3) |
Jul
(7) |
Aug
(4) |
Sep
(3) |
Oct
|
Nov
(4) |
Dec
(14) |
2010 |
Jan
(3) |
Feb
|
Mar
(2) |
Apr
|
May
|
Jun
(2) |
Jul
(1) |
Aug
(18) |
Sep
|
Oct
|
Nov
|
Dec
|
2015 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(2) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
From: Oleg R. <soy...@ya...> - 2015-07-11 08:49:18
|
Hi List Got some trouble with a BASE 1.4.5 "Access denied for user ''@'localhost' to database 'snort' " My environment: FreeBSD 9.1 PHP Version 5.4.42 nginx-devel-1.9.2_1 mysql56-client-5.6.24_1 mysql56-server-5.6.24 The snort & barnyard2 & Mysql base working extremely well. And was not any problems with a BASE, until the PHP extensions installation those are below -----------------------PDO_MYSQL SIMPLEXML MCRYPT HASH ---------------------- This extensions needs for a web service. I can to log in to snort mysql database by name/passwd , that specified in base_conf.php > SELECT count(*) FROM event; Connection id: 6 Current database: snort mysql> SELECT count(*) FROM event; +----------+ | count(*) | +----------+ | 335 | +----------+ 1 row in set (0,01 sec) But when i puting on my username/passwd on to BASE login web form, got an error : Access denied for user ''@'localhost' to database 'snort' I attempted to disable https(ssl) type connection for the web server, but result is a simular. Any ideas? |
From: Oleg R. <soy...@ya...> - 2015-07-09 05:46:56
|
Hi List Got some trouble with a BASE 1.4.5 "Access denied for user ''@'localhost' to database 'snort' " My environment: FreeBSD 9.1 PHP Version 5.4.42 nginx-devel-1.9.2_1 mysql56-client-5.6.24_1 mysql56-server-5.6.24 The snort & barnyard2 & Mysql base working extremely well. And was not any problems with a BASE, until had not yet been installed PHP undermentioned extensions ----------------------- PDO_MYSQL SIMPLEXML MCRYPT HASH ---------------------- This extensions needs for a web service. I can to log in to snort mysql database by name/passwd , that specified in base_conf.php > SELECT count(*) FROM event; Connection id: 6 Current database: snort mysql> SELECT count(*) FROM event; +----------+ | count(*) | +----------+ | 335 | +----------+ 1 row in set (0,01 sec) But when i puting on my username/passwd on to BASE login web form, got an error : Access denied for user ''@'localhost' to database 'snort' I attempted to disable https(ssl) type connection for the web server, but result is a simular. Any ideas? |
From: Micah G. <mi...@on...> - 2010-08-13 19:42:11
|
On 08/13/2010 02:30 PM, GaRaGeD Style wrote: > On Thu, Aug 12, 2010 at 6:56 PM, <wi...@sh... > <mailto:wi...@sh...>> wrote: > > It seems like we have lots of options available to us. > > Does anyone have any strong opposition against continuing to use > sourceforge, beyond the 'secureideas' name? If not, I can register > a new > project. SF offers git, svn, and bzr version control. The only > issue would > be the nightly builds, and I'm sure we could automate that if > necessary. > > > I like sourceforge, is a little less biased than launchpad, and I like > SVN and GIT :) > > > Micah, I agree that nightly builds would be very helpful. > > > I don't see a lot of usefulness unless we agree to send mostly tested > code, and we would need a good set of unit tests to keep at its lowest > the commit of broken code to the repository. I would think any code committed to a central repo should be tested in some way. Perhaps a goal would be to have automated test coverage for most of the app. > > I'm not sure if voting or a more democratic method is necessary to get > this decided. I would like to get started on some requirements :) > > I've been looking at frameworks today and it seems like CodeIgniter > <http://codeigniter.com/> or Zend <http://framework.zend.com/> > would be > good to use. Both offer MVC and database abstraction. > > CodeIgniter bills itself as being a high performance / low > footprint set > of libraries for PHP. Zend, as far as I can remember, allows you > to import > single database classes instead of requiring you to import the entire > library at a time. > > > I don't like the idea of getting limited by a framework, unless the > app is really simple (wont find a lot of implementation problems with > the FW), but I will go with the decision anyway. > > Max Frameworks aren't meant to limit, but to provide a foundation so you can focus on the core logic of your app instead of the foundation. Micah |
From: GaRaGeD S. <ga...@gm...> - 2010-08-13 19:31:06
|
On Thu, Aug 12, 2010 at 6:56 PM, <wi...@sh...> wrote: > It seems like we have lots of options available to us. > > Does anyone have any strong opposition against continuing to use > sourceforge, beyond the 'secureideas' name? If not, I can register a new > project. SF offers git, svn, and bzr version control. The only issue would > be the nightly builds, and I'm sure we could automate that if necessary. > I like sourceforge, is a little less biased than launchpad, and I like SVN and GIT :) > > Micah, I agree that nightly builds would be very helpful. > I don't see a lot of usefulness unless we agree to send mostly tested code, and we would need a good set of unit tests to keep at its lowest the commit of broken code to the repository. > > I'm not sure if voting or a more democratic method is necessary to get > this decided. I would like to get started on some requirements :) > > I've been looking at frameworks today and it seems like CodeIgniter > <http://codeigniter.com/> or Zend <http://framework.zend.com/> would be > good to use. Both offer MVC and database abstraction. > > CodeIgniter bills itself as being a high performance / low footprint set > of libraries for PHP. Zend, as far as I can remember, allows you to import > single database classes instead of requiring you to import the entire > library at a time. > I don't like the idea of getting limited by a framework, unless the app is really simple (wont find a lot of implementation problems with the FW), but I will go with the decision anyway. Max -- $ echo "scale=1000000; 4*a(1)" | bc -l |
From: Micah G. <mi...@on...> - 2010-08-13 00:09:44
|
Oops, forgot bzr on the list there. :) On 08/12/2010 07:08 PM, Micah Gersten wrote: > Launchpad can do code imports from Subversion, CVS, Mercurial or Git, > so we can still leverage the nightly builds. I'm cool with staying on > Sourceforge. > > Micah > > On 08/12/2010 06:56 PM, wi...@sh... wrote: >> It seems like we have lots of options available to us. >> >> Does anyone have any strong opposition against continuing to use >> sourceforge, beyond the 'secureideas' name? If not, I can register a new >> project. SF offers git, svn, and bzr version control. The only issue would >> be the nightly builds, and I'm sure we could automate that if necessary. >> >> Micah, I agree that nightly builds would be very helpful. >> >> I'm not sure if voting or a more democratic method is necessary to get >> this decided. I would like to get started on some requirements :) >> >> I've been looking at frameworks today and it seems like CodeIgniter >> <http://codeigniter.com/> or Zend<http://framework.zend.com/> would be >> good to use. Both offer MVC and database abstraction. >> >> CodeIgniter bills itself as being a high performance / low footprint set >> of libraries for PHP. Zend, as far as I can remember, allows you to import >> single database classes instead of requiring you to import the entire >> library at a time. >> >> Will >> >>> I'm with Kevin on this >>> >>> Let's keep some commitment to bugfixing on the 1.x branch, but just that, >>> no >>> new features, no major changes, let's focus 95% on the rewrite, I really >>> think it's needed, and there are a lot of things to improve from the >>> current >>> version. Let's be honest, it's painful to modify anything on the current >>> code. >>> >>> For the framework, I hate to say this, but most frameworks put a lot of >>> unneeded overhead on the code, but a lot of people like the idea, so, >>> let's >>> try to use one of the less bloated ones. >>> >>> Max >>> >>> -- >>> $ echo "scale=1000000; 4*a(1)" | bc -l >>> ------------------------------------------------------------------------------ >>> This SF.net email is sponsored by >>> >>> Make an app they can't live without >>> Enter the BlackBerry Developer Challenge >>> http://p.sf.net/sfu/RIM-dev2dev >>> _______________________________________________ >>> Secureideas-base-devel mailing list >>> Sec...@li... >>> https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel >>> >> >> ------------------------------------------------------------------------------ >> This SF.net email is sponsored by >> >> Make an app they can't live without >> Enter the BlackBerry Developer Challenge >> http://p.sf.net/sfu/RIM-dev2dev >> _______________________________________________ >> Secureideas-base-devel mailing list >> Sec...@li... >> https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Secureideas-base-devel mailing list > Sec...@li... > https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel |
From: Micah G. <mi...@on...> - 2010-08-13 00:08:38
|
Launchpad can do code imports from Subversion, CVS, Mercurial or Git, so we can still leverage the nightly builds. I'm cool with staying on Sourceforge. Micah On 08/12/2010 06:56 PM, wi...@sh... wrote: > It seems like we have lots of options available to us. > > Does anyone have any strong opposition against continuing to use > sourceforge, beyond the 'secureideas' name? If not, I can register a new > project. SF offers git, svn, and bzr version control. The only issue would > be the nightly builds, and I'm sure we could automate that if necessary. > > Micah, I agree that nightly builds would be very helpful. > > I'm not sure if voting or a more democratic method is necessary to get > this decided. I would like to get started on some requirements :) > > I've been looking at frameworks today and it seems like CodeIgniter > <http://codeigniter.com/> or Zend<http://framework.zend.com/> would be > good to use. Both offer MVC and database abstraction. > > CodeIgniter bills itself as being a high performance / low footprint set > of libraries for PHP. Zend, as far as I can remember, allows you to import > single database classes instead of requiring you to import the entire > library at a time. > > Will > >> I'm with Kevin on this >> >> Let's keep some commitment to bugfixing on the 1.x branch, but just that, >> no >> new features, no major changes, let's focus 95% on the rewrite, I really >> think it's needed, and there are a lot of things to improve from the >> current >> version. Let's be honest, it's painful to modify anything on the current >> code. >> >> For the framework, I hate to say this, but most frameworks put a lot of >> unneeded overhead on the code, but a lot of people like the idea, so, >> let's >> try to use one of the less bloated ones. >> >> Max >> >> -- >> $ echo "scale=1000000; 4*a(1)" | bc -l >> ------------------------------------------------------------------------------ >> This SF.net email is sponsored by >> >> Make an app they can't live without >> Enter the BlackBerry Developer Challenge >> http://p.sf.net/sfu/RIM-dev2dev >> _______________________________________________ >> Secureideas-base-devel mailing list >> Sec...@li... >> https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel >> > > > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Secureideas-base-devel mailing list > Sec...@li... > https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel |
From: <wi...@sh...> - 2010-08-12 23:56:51
|
It seems like we have lots of options available to us. Does anyone have any strong opposition against continuing to use sourceforge, beyond the 'secureideas' name? If not, I can register a new project. SF offers git, svn, and bzr version control. The only issue would be the nightly builds, and I'm sure we could automate that if necessary. Micah, I agree that nightly builds would be very helpful. I'm not sure if voting or a more democratic method is necessary to get this decided. I would like to get started on some requirements :) I've been looking at frameworks today and it seems like CodeIgniter <http://codeigniter.com/> or Zend <http://framework.zend.com/> would be good to use. Both offer MVC and database abstraction. CodeIgniter bills itself as being a high performance / low footprint set of libraries for PHP. Zend, as far as I can remember, allows you to import single database classes instead of requiring you to import the entire library at a time. Will > I'm with Kevin on this > > Let's keep some commitment to bugfixing on the 1.x branch, but just that, > no > new features, no major changes, let's focus 95% on the rewrite, I really > think it's needed, and there are a lot of things to improve from the > current > version. Let's be honest, it's painful to modify anything on the current > code. > > For the framework, I hate to say this, but most frameworks put a lot of > unneeded overhead on the code, but a lot of people like the idea, so, > let's > try to use one of the less bloated ones. > > Max > > -- > $ echo "scale=1000000; 4*a(1)" | bc -l > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Secureideas-base-devel mailing list > Sec...@li... > https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel > |
From: Micah G. <mi...@on...> - 2010-08-12 18:16:22
|
Right, so the reason to have daily builds, which would only build as an all architecture package, is if someone wants to track trunk to get daily updates of all files (including configs/crons) w/out manual input. This may or may not be a good thing, but is available.` On 08/12/2010 08:07 AM, wi...@sh... wrote: > Launchpad looks like a good solution, although it seems like generating > daily .deb builds is a little out of scope. Web applications rarely (if > ever?) need builds for different architectures. > > Other options that seem a little bit dated are Bugzilla, Trac, and Google > Code. > >> Since location changes were mentioned, what about Launchpad? >> https://launchpad.net >> You get series, milestones, bzr branches, bug tracking, blueprints, >> answers (support tracker) and teams. There is now integration to >> generate daily .deb builds from repos hosted on Launchpad. >> As an Ubuntu developer, I'm very familiar with Launchpad. I'm happy to >> answer any questions about it. >> >> Thanks, >> Micah >> >> On 08/11/2010 07:09 PM, wi...@sh... wrote: >>> <Sorry for the multimail, just pressed SEND too early> >>> >>> Personally I believe we should drop the 'secureideas' moniker. Since 2.x >>> will be a clean break from the previous code it seems like it's only >>> fair >>> to also drop that name. Changing where the SF.net page links to is >>> fairly >>> trivial. >>> >>> I have a fairly ambitious list of TODOs for the 2.x series. It seems >>> like >>> 3 or 4 developers have made themselves available to help draft >>> requirements and a roadmap for 2.x. If we break the 2.x series from the >>> 1.x series in SF i think it will be easier to logically separate the two >>> sets of developers,as some may prefer to just incrementally patch 1.4.5. >>> 2.0 is not going to happen overnight and people will still download >>> 1.4.5. >>> >>> >>> Github or looking for sponsorship from an external organization (like >>> the >>> 501c3 OISF) is also an option. >>> >>> -Will >>> <snip /> >> ------------------------------------------------------------------------------ >> This SF.net email is sponsored by >> >> Make an app they can't live without >> Enter the BlackBerry Developer Challenge >> http://p.sf.net/sfu/RIM-dev2dev >> _______________________________________________ >> Secureideas-base-devel mailing list >> Sec...@li... >> https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel >> > |
From: GaRaGeD S. <ga...@gm...> - 2010-08-12 15:04:35
|
I'm with Kevin on this Let's keep some commitment to bugfixing on the 1.x branch, but just that, no new features, no major changes, let's focus 95% on the rewrite, I really think it's needed, and there are a lot of things to improve from the current version. Let's be honest, it's painful to modify anything on the current code. For the framework, I hate to say this, but most frameworks put a lot of unneeded overhead on the code, but a lot of people like the idea, so, let's try to use one of the less bloated ones. Max -- $ echo "scale=1000000; 4*a(1)" | bc -l |
From: <wi...@sh...> - 2010-08-12 13:07:50
|
Launchpad looks like a good solution, although it seems like generating daily .deb builds is a little out of scope. Web applications rarely (if ever?) need builds for different architectures. Other options that seem a little bit dated are Bugzilla, Trac, and Google Code. > Since location changes were mentioned, what about Launchpad? > https://launchpad.net > You get series, milestones, bzr branches, bug tracking, blueprints, > answers (support tracker) and teams. There is now integration to > generate daily .deb builds from repos hosted on Launchpad. > As an Ubuntu developer, I'm very familiar with Launchpad. I'm happy to > answer any questions about it. > > Thanks, > Micah > > On 08/11/2010 07:09 PM, wi...@sh... wrote: >> <Sorry for the multimail, just pressed SEND too early> >> >> Personally I believe we should drop the 'secureideas' moniker. Since 2.x >> will be a clean break from the previous code it seems like it's only >> fair >> to also drop that name. Changing where the SF.net page links to is >> fairly >> trivial. >> >> I have a fairly ambitious list of TODOs for the 2.x series. It seems >> like >> 3 or 4 developers have made themselves available to help draft >> requirements and a roadmap for 2.x. If we break the 2.x series from the >> 1.x series in SF i think it will be easier to logically separate the two >> sets of developers,as some may prefer to just incrementally patch 1.4.5. >> 2.0 is not going to happen overnight and people will still download >> 1.4.5. >> >> >> Github or looking for sponsorship from an external organization (like >> the >> 501c3 OISF) is also an option. >> >> -Will >> <snip /> > > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Secureideas-base-devel mailing list > Sec...@li... > https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel > |
From: Kevin J. <kjo...@se...> - 2010-08-12 00:49:44
|
On Aug 11, 2010, at 8:09 PM, wi...@sh... wrote: > <Sorry for the multimail, just pressed SEND too early> > I do that way to often. > Personally I believe we should drop the 'secureideas' moniker. Since 2.x > will be a clean break from the previous code it seems like it's only fair > to also drop that name. Changing where the SF.net page links to is fairly > trivial. That works, keep in mind though that its not a change to where the sf.net page points too, you have to create a brand new project. Either way, let me know and I can update base.secureideas.net. BTW, we should get you access to that so you can update it. > > I have a fairly ambitious list of TODOs for the 2.x series. It seems like > 3 or 4 developers have made themselves available to help draft > requirements and a roadmap for 2.x. If we break the 2.x series from the > 1.x series in SF i think it will be easier to logically separate the two > sets of developers,as some may prefer to just incrementally patch 1.4.5. > 2.0 is not going to happen overnight and people will still download 1.4.5. My recommendation is to shut down the 1.4.5 branch if you move the project. My reasoning is that people are still downloading and installing ACID and it hasn't been updated in 8 years or something like that. :) > Github or looking for sponsorship from an external organization (like the > 501c3 OISF) is also an option. Kevin |
From: Micah G. <mi...@on...> - 2010-08-12 00:33:54
|
Since location changes were mentioned, what about Launchpad? https://launchpad.net You get series, milestones, bzr branches, bug tracking, blueprints, answers (support tracker) and teams. There is now integration to generate daily .deb builds from repos hosted on Launchpad. As an Ubuntu developer, I'm very familiar with Launchpad. I'm happy to answer any questions about it. Thanks, Micah On 08/11/2010 07:09 PM, wi...@sh... wrote: > <Sorry for the multimail, just pressed SEND too early> > > Personally I believe we should drop the 'secureideas' moniker. Since 2.x > will be a clean break from the previous code it seems like it's only fair > to also drop that name. Changing where the SF.net page links to is fairly > trivial. > > I have a fairly ambitious list of TODOs for the 2.x series. It seems like > 3 or 4 developers have made themselves available to help draft > requirements and a roadmap for 2.x. If we break the 2.x series from the > 1.x series in SF i think it will be easier to logically separate the two > sets of developers,as some may prefer to just incrementally patch 1.4.5. > 2.0 is not going to happen overnight and people will still download 1.4.5. > > > Github or looking for sponsorship from an external organization (like the > 501c3 OISF) is also an option. > > -Will > <snip /> |
From: Micah G. <mi...@on...> - 2010-08-12 00:20:23
|
Well, I think it should be based on one of the open source frameworks (Zend PHP Framework, Symfony, Solar...) so that existing functionality can be leveraged and the focus can be on the analysis components. I'm personally biased towards Zend PHP Framework since I use it, but I think almost any framework would be a good starting point. I'm also willing to help to some extent. Micah On 08/10/2010 10:14 AM, wi...@sh... wrote: > Hello, > > I would like to solicite assistance and advice from the BASE community > with regards for setting requirements for the BASE 2.0 release. Since > taking over the project from Kevin I have been reviewing the code and have > found that moving forward, it will probably be best for us to rewrite the > engine from scratch. While this may be a large project in the short term > in the long term I feel the current code is > unmaintainable and a new codebase will allow us to easily integrate new > features (like IPv6 support) when the time comes. > > The last release in the 1.5.X release chain will be 1.5.5, which will > contain the patches for BASE to run under PHP 5.3. The 1.5.5 release will > still include the Pear::Image and Pear::Graph functionality that is broken > under PHP5.3. If someone wants to develop a work around or patch for this > then I welcome your efforts, but I will be focusing on the 2.0 release. > > I would like to solicit assistance from developers who would like to help > with BASE 2.0. In the coming days I will be sending more emails to the > secureideas-base-devel mailing list. If you are interested please contact > me for more details. I hope that BASE can continue to be a flexible > enterprise snort analysis console. > > Best, > > Will Urbanski |
From: <wi...@sh...> - 2010-08-12 00:09:44
|
<Sorry for the multimail, just pressed SEND too early> Personally I believe we should drop the 'secureideas' moniker. Since 2.x will be a clean break from the previous code it seems like it's only fair to also drop that name. Changing where the SF.net page links to is fairly trivial. I have a fairly ambitious list of TODOs for the 2.x series. It seems like 3 or 4 developers have made themselves available to help draft requirements and a roadmap for 2.x. If we break the 2.x series from the 1.x series in SF i think it will be easier to logically separate the two sets of developers,as some may prefer to just incrementally patch 1.4.5. 2.0 is not going to happen overnight and people will still download 1.4.5. Github or looking for sponsorship from an external organization (like the 501c3 OISF) is also an option. -Will > > On Aug 11, 2010, at 2:37 PM, Randal T. Rioux wrote: > >> On 8/11/2010 10:48 AM, GaRaGeD Style wrote: >>> Hi kids >>> >>> We have made this a few times before :), hopefully this time it will take out. >>> >>> I would love to see BASE 2 made totally from scratch, I would specially love to see the rewriting of the alerts disappear from the app, and of course, MVC usage, and better javascript usage :) >>> >>> I think a good option is to start a wiki and make decisions from the opinions expressed on it (and on email of course). >> >> Hey there, Max! >> >> I cc'd the group, looks like your message only went to me. >> >> We're in agreement. > > We have tried this before, but sadly due to my other commitments I never was able to get it moving. Thankfully Will has stepped up and I believe it will go crazy. > >> >> Will - are we going to kill off the Secureideas moniker as well? If so, can we start a new SourceForge site just called "BASE" and start tossing up ideas? >> > > I would hesitate to move the project to a new SF ID since all of the references and books and other mentions of the project point there. Of course I may be biased. ;-) > > Kevin > ------------------------------------------------------------------------------ This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Secureideas-base-devel mailing list > Sec...@li... > https://lists.sourceforge.net/lists/listinfo/secureid |
From: <wi...@sh...> - 2010-08-12 00:05:40
|
Personally I believe we should drop the 'secureideas' moniker. Since 2.x will be a clean break from the previous code it seems like it's only fair to also drop that name. Changing where the SF.net page links to is fairly trivial. I have a fairly ambitious list of TODOs for the 2.x series. > > On Aug 11, 2010, at 2:37 PM, Randal T. Rioux wrote: > >> On 8/11/2010 10:48 AM, GaRaGeD Style wrote: >>> Hi kids >>> >>> We have made this a few times before :), hopefully this time it will >>> take out. >>> >>> I would love to see BASE 2 made totally from scratch, I would specially >>> love to see the rewriting of the alerts disappear from the app, and of >>> course, MVC usage, and better javascript usage :) >>> >>> I think a good option is to start a wiki and make decisions from the >>> opinions expressed on it (and on email of course). >> >> Hey there, Max! >> >> I cc'd the group, looks like your message only went to me. >> >> We're in agreement. > > We have tried this before, but sadly due to my other commitments I never > was able to get it moving. Thankfully Will has stepped up and I believe > it will go crazy. > >> >> Will - are we going to kill off the Secureideas moniker as well? If so, >> can we start a new SourceForge site just called "BASE" and start tossing >> up ideas? >> > > I would hesitate to move the project to a new SF ID since all of the > references and books and other mentions of the project point there. Of > course I may be biased. ;-) > > Kevin > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Secureideas-base-devel mailing list > Sec...@li... > https://lists.sourceforge.net/lists/listinfo/secureideas-base-devel > |
From: Kevin J. <kjo...@se...> - 2010-08-11 23:52:56
|
On Aug 11, 2010, at 2:37 PM, Randal T. Rioux wrote: > On 8/11/2010 10:48 AM, GaRaGeD Style wrote: >> Hi kids >> >> We have made this a few times before :), hopefully this time it will >> take out. >> >> I would love to see BASE 2 made totally from scratch, I would specially >> love to see the rewriting of the alerts disappear from the app, and of >> course, MVC usage, and better javascript usage :) >> >> I think a good option is to start a wiki and make decisions from the >> opinions expressed on it (and on email of course). > > Hey there, Max! > > I cc'd the group, looks like your message only went to me. > > We're in agreement. We have tried this before, but sadly due to my other commitments I never was able to get it moving. Thankfully Will has stepped up and I believe it will go crazy. > > Will - are we going to kill off the Secureideas moniker as well? If so, > can we start a new SourceForge site just called "BASE" and start tossing > up ideas? > I would hesitate to move the project to a new SF ID since all of the references and books and other mentions of the project point there. Of course I may be biased. ;-) Kevin |
From: Kevin J. <kjo...@se...> - 2010-08-11 23:48:00
|
On Aug 10, 2010, at 11:14 AM, wi...@sh... wrote: > Hello, > > I would like to solicite assistance and advice from the BASE community > with regards for setting requirements for the BASE 2.0 release. Since > taking over the project from Kevin I have been reviewing the code and have > found that moving forward, it will probably be best for us to rewrite the > engine from scratch. While this may be a large project in the short term > in the long term I feel the current code is > unmaintainable and a new codebase will allow us to easily integrate new > features (like IPv6 support) when the time comes. > > The last release in the 1.5.X release chain will be 1.5.5, which will > contain the patches for BASE to run under PHP 5.3. The 1.5.5 release will > still include the Pear::Image and Pear::Graph functionality that is broken > under PHP5.3. If someone wants to develop a work around or patch for this > then I welcome your efforts, but I will be focusing on the 2.0 release. > > I would like to solicit assistance from developers who would like to help > with BASE 2.0. In the coming days I will be sending more emails to the > secureideas-base-devel mailing list. If you are interested please contact > me for more details. I hope that BASE can continue to be a flexible > enterprise snort analysis console. I hope that it goes without saying, but of course I am saying it, I am available to help with this. I look forward to seeing where BASE ends up. Kevin |
From: Randal T. R. <ra...@pr...> - 2010-08-11 18:37:39
|
On 8/11/2010 10:48 AM, GaRaGeD Style wrote: > Hi kids > > We have made this a few times before :), hopefully this time it will > take out. > > I would love to see BASE 2 made totally from scratch, I would specially > love to see the rewriting of the alerts disappear from the app, and of > course, MVC usage, and better javascript usage :) > > I think a good option is to start a wiki and make decisions from the > opinions expressed on it (and on email of course). Hey there, Max! I cc'd the group, looks like your message only went to me. We're in agreement. Will - are we going to kill off the Secureideas moniker as well? If so, can we start a new SourceForge site just called "BASE" and start tossing up ideas? Randy |
From: Randal T. R. <ra...@pr...> - 2010-08-10 16:14:16
|
On 8/10/2010 8:14 AM, wi...@sh... wrote: > Hello, > > I would like to solicite assistance and advice from the BASE community > with regards for setting requirements for the BASE 2.0 release. Since > taking over the project from Kevin I have been reviewing the code and have > found that moving forward, it will probably be best for us to rewrite the > engine from scratch. While this may be a large project in the short term > in the long term I feel the current code is > unmaintainable and a new codebase will allow us to easily integrate new > features (like IPv6 support) when the time comes. > > The last release in the 1.5.X release chain will be 1.5.5, which will > contain the patches for BASE to run under PHP 5.3. The 1.5.5 release will > still include the Pear::Image and Pear::Graph functionality that is broken > under PHP5.3. If someone wants to develop a work around or patch for this > then I welcome your efforts, but I will be focusing on the 2.0 release. > > I would like to solicit assistance from developers who would like to help > with BASE 2.0. In the coming days I will be sending more emails to the > secureideas-base-devel mailing list. If you are interested please contact > me for more details. I hope that BASE can continue to be a flexible > enterprise snort analysis console. Greetings, Will. Welcome to the team! I, as I'm sure others are as well, am anxious to get the foundation for 2.0 started. We should begin by drafting a list of features both required and desired for the new codebase, along with a roadmap. We should also re-org the developer roster. So those interested should wave their hands vociferously! And we may want to include some new folks wishing to participate. I've cc'd the Snort-users list for that purpose, as well as to get suggestions from the community as to what they'd like to see in the new BASE. So, who's in?! :-) Thanks, Randy |
From: <wi...@sh...> - 2010-08-10 15:47:09
|
Hello, I would like to solicite assistance and advice from the BASE community with regards for setting requirements for the BASE 2.0 release. Since taking over the project from Kevin I have been reviewing the code and have found that moving forward, it will probably be best for us to rewrite the engine from scratch. While this may be a large project in the short term in the long term I feel the current code is unmaintainable and a new codebase will allow us to easily integrate new features (like IPv6 support) when the time comes. The last release in the 1.5.X release chain will be 1.5.5, which will contain the patches for BASE to run under PHP 5.3. The 1.5.5 release will still include the Pear::Image and Pear::Graph functionality that is broken under PHP5.3. If someone wants to develop a work around or patch for this then I welcome your efforts, but I will be focusing on the 2.0 release. I would like to solicit assistance from developers who would like to help with BASE 2.0. In the coming days I will be sending more emails to the secureideas-base-devel mailing list. If you are interested please contact me for more details. I hope that BASE can continue to be a flexible enterprise snort analysis console. Best, Will Urbanski |
From: Champ C. I. [Softwink] <ch...@so...> - 2010-07-22 18:37:21
|
I posted this as a bug report, but I figured it couldn't hurt to post information here about the problem. Basically, here is the skinny of it :) Sagan is a real time log analysis tool that can store and correlate IDS/IPS information with log (syslog/snmptrap) information. For more information, please see http://sagan.softwink.com. Sagan uses the Snort MySQL and PostgreSQL to store events and for correlation. When Sagan stores events, reference URLs show Sagan alerts as "EmThreat", which is incorrect. Sagan rule set SID's start at 500000. It's likely that BASE simply considers EmThreat rules any thing over 200000 (?). There's a screen shot of this issue at: http://sagan.softwink.com/screenshots.html (about middle of the page). Let me know if you need any more information. -- Champ Clark III | Softwink, Inc | 800-538-9357 x 101 http://www.softwink.com GPG Key ID: 58A2A58F Key fingerprint = 7734 2A1C 007D 581E BDF7 6AD5 0F1F 655F 58A2 A58F If it wasn't for C, we'd be using BASI, PASAL and OBOL. |
From: Kevin J. <kjo...@se...> - 2010-06-16 21:58:40
|
Hello everyone, It is with sadness and excitement that I am writing this email. After almost six years of running the BASE project, I have to move on to other responsibilities. My focus has shifted over the last few years towards red-team tools and activities. This is shown with the other projects I am running; SamuraiWTF, Laudanum and Yokoso as well as the Web Application Penetration Testing and Ethical Hacking class I author for SANS. I have really enjoyed the time I have spent on the BASE project and am glad to have met all of you. I will remain around to provide what help I can, but will not be taking an active role in the project. My excitement comes from being able to introduce Will Urbanski. Will Urbanski is a Security Analyst with the Virginia Tech IT Security Office and Lab. He has a strong background in web application development and has contributed to a number of open source projects. Will is looking forward to working with other BASE contributors and building upon the strong foundation provided. Will and I will be working together to transition the project. I hope that you all welcome Will as I know you will and help him move the BASE project towards the great project we all know it can be. Thank you! Kevin Kevin Johnson Senior Security Analyst InGuardians, Inc. office: 202.448.8958 cell: 904.403.8024 |
From: Micah G. <mi...@on...> - 2010-06-10 18:47:28
|
One can seemingly start multiple maintenance jobs at the same time by using it through cron as well as the web interface. I'd like to propose either a log table for maintenance, or just a row somewhere in the DB so that multiple jobs cannot run at the same time. Opinions? -- Thank you, Micah Gersten onShore Networks Internal Developer http://www.onshore.com |
From: Kevin J. <ke...@in...> - 2010-03-05 15:24:08
|
On Mar 4, 2010, at 6:25 PM, Micah Gersten wrote: > I was wondering if this is actually happening? Also, is it possible > that my multiple base instance patch can get in? > Thanks. Hi all, 1.4.5 was just released. Micah, your patch did not make it in, because I ran out of time. If you can send me your sf.net id I will give you cvs access and you can put it in for us to test. Kevin Kevin Johnson Senior Security Analyst InGuardians, Inc. office: 202.448.8958 cell: 904.403.8024 |
From: Micah G. <mi...@on...> - 2010-03-04 23:40:36
|
I was wondering if this is actually happening? Also, is it possible that my multiple base instance patch can get in? Thanks. -- Thank you, Micah Gersten onShore Networks Internal Developer http://www.onshore.com |