cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
137,581 Commits 1 Branch 0 Tags
Commit Graph

7 Commits

Author SHA1 Message Date
gonzalo
fd3931c24b Update for Suricata to 4.1.4 and suricata-update to 1.0.5. 
While here we prepare Suricata for version 5 with rust included,
some patches already applied upstream thanks to bluhm@.

OK bluhm@ jasper@
 2019-05-03 06:22:34 +00:00
bluhm
a1d9dd6b9e Implement pledge support for suricata. 
from Emmanuel Roullit; OK gonzalo@
 2019-04-19 12:22:27 +00:00
bluhm
74d368dadf Reopen log files was broken since we switched to user privileges. 
Files are created as root, user _suricata cannot open them.  Use
filemode 664 in the default config where possible.  Use syslog for
general logging.  Fix possible NULL dereference found by Emmanuel
Roullit.
OK sthen@ gonzalo@
 2019-04-05 12:24:00 +00:00
bluhm
e4f86710dc Avoid use-after-free during pid file cleanup. This replaces my 
previous fix with the version commited upstream.
OK jasper@ gonzalo@
 2019-03-26 13:46:24 +00:00
bluhm
d8362b89f5 Use setresuid/gid() directly to change user and group. Otherwise 
Suricata uses libcap-ng on Linux and runs as root elsewhere.
Switch to _suricata user and group in config to avoid running as root.
To remove pid file its directory must be writable by suricata user.
Fix pid file removal if it is specified in config file.
setresuid()/gid() patch from Emmanuel Roullit
OK gonzalo@
 2019-03-05 12:38:23 +00:00
gonzalo
c1c4769833 Update for Suricata to 4.1.2 
Now include suricata-update

https://github.com/OISF/suricata/releases

OK jasper@
 2019-02-12 09:27:16 +00:00
gonzalo
52fa9f298c high performance network IDS, IPS and security monitoring OK jasper@ 2018-02-15 08:30:08 +00:00