Tags · mrash/fwsnort

fwsnort-1.6.9-pre1

Bug fix to handle negated port numbers in multiport match usage (bug

reported by David Mason).

Nov 26, 2018
b6c5f76
zip
tar.gz

1.6.8

fwsnort-1.6.8 (07/31/2018):

    - Update to handle the 'metadata' keyword in the Snort rules language.
      This restores the ability to translate the Emerging Threats rule sets
      and beyond.
    - Updated to bundle the latest Emerging Threats rule set.

Aug 1, 2018
e366899
zip
tar.gz

1.6.7

fwsnort-1.6.7 (05/06/2017):

- Bug fix reported independently by Dan Alberghetti and fixed by Axel
Beckert in github issue #14 to strip out brackets from single port
numbers in Snort rules when they exist.
- Updated to bundle the latest Emerging Threats rule set.

May 6, 2017
7aaa233
zip
tar.gz

1.6.6

fwsnort-1.6.6 (12/04/2016):

    - (Robert Foreman) Whitelist IP addresses for Emerging Threats ruleset
      downloads (96.43.137.99, 204.12.217.19).
    - Update to IPTables::Parse-1.6 which contains a fix for a local-only
      vulnerability dealing with temporary file handling. Details can be found
      here: https://github.com/mrash/IPTables-Parse/blob/master/Changes
    - Fixed an issue for Snort rules against all IP protocols should be
      translated with the iptables '-p all' argument instead of '-p ip'. This
      issue was reported by Github user mgaulton.
    - Added support for using the 'ip' command for acquiring IP addresses
      assigned to local interfaces. The 'ifconfig' command is still supported,
      but 'ip' is preferred when it is available. Issue #9 reported by
      'mgaulton'.
    - Updated to bundle the latest Emerging Threats rule set.