File suricata-update.changes of Package suricata-update
-------------------------------------------------------------------
Fri Nov 15 13:31:50 UTC 2024 - Martin Hauke <mardnh@gmx.de>
- Update to version 1.3.3
* Add missing engine provided rules:
https://redmine.openinfosecfoundation.org/issues/6932
- Update to version 1.3.2
* Fix copying of file hash lists which was broken in the dataset
fix as part of ticket #6833:
https://redmine.openinfosecfoundation.org/issues/6854
- Update to version 1.3.1
* Fix detecting dataset "load" when preceded by a space:
https://redmine.openinfosecfoundation.org/issues/6777
* If no Suricata is found, Suricata-Update will assume
version 6.0.0 instead of 4.0.0.
* Handle URLs of bare files that don't end in .rules:
https://redmine.openinfosecfoundation.org/issues/3664
* Don't base dataset filenames on the contents of the file, but
instead the filename path:
https://redmine.openinfosecfoundation.org/issues/6763
* Give each file in a source a unique filename by prefixing the
files with a hash of the URL to prevent duplicate filenames
from cloberring each other, in particular dataset files:
https://redmine.openinfosecfoundation.org/issues/6833
- Update to version 1.3.0
* Fix loading of configuration files specified in update.yaml:
https://redmine.openinfosecfoundation.org/issues/6172
- Update to version 1.3.0-rc1
* Be consistent about warning about old index. The index won't
be automatically updated now in some cases and not in others.
Instead opt to never auto-update:
https://redmine.openinfosecfoundation.org/issues/3249
* Better flowbit resolution logging in verbose mode
https://redmine.openinfosecfoundation.org/issues/3205
* Hide advanced command line options from help output:
https://redmine.openinfosecfoundation.org/issues/3974
* Allow spaces in custom HTTP headers. Redmine issue
https://redmine.openinfosecfoundation.org/issues/4362
* Better error message on invalid source specification:
https://redmine.openinfosecfoundation.org/issues/5141
- Update to version 1.2.7
* Embed an index that has been formatted so diffs are more
readable.
* Documentation update with respect to how Suricata-Update is
bundled with all versions of Suricata now.
- Update to version 1.2.6
* Allow checksum URL to be specified by the index:
https://redmine.openinfosecfoundation.org/issues/5684
* Metadata rule matching for disable, enable and drop:
https://redmine.openinfosecfoundation.org/issues/5561
- Update to version 1.2.5
* Update entrypoint search path when not installed with
distutils. This is required for installation when bundled
with Suricata 6.0.7 or newer:
https://redmine.openinfosecfoundation.org/issues/5313
- Update to version 1.2.4
* Fix multiple modifications to a rule:
https://redmine.openinfosecfoundation.org/issues/4259
* Fix "check-versions" where the running Suricata is newer than
what the index knows about:
https://redmine.openinfosecfoundation.org/issues/4373
* Fix issue with dataset handling. Also adds file renaming to
avoid conflicts:
https://redmine.openinfosecfoundation.org/issues/5010.
* New modify option to add metadata:
https://redmine.openinfosecfoundation.org/issues/5221.
* Respect Suricata's sysconfdir when loading configuration files:
https://redmine.openinfosecfoundation.org/issues/4374.
* Modify rule to add metadata:
https://redmine.openinfosecfoundation.org/issues/5221
* Don't fail when source removed from index:
https://redmine.openinfosecfoundation.org/issues/5269
* Option fail on download error:
https://redmine.openinfosecfoundation.org/issues/4579
- Update to version 1.2.3
* Allow more custom characters in custom http header to allow
for more of the base64 character set:
https://redmine.openinfosecfoundation.org/issues/4701
* Send custom HTTP headers with check for remote checksum file:
https://redmine.openinfosecfoundation.org/issues/4001
- Update to version 1.2.2
* Fix "no-test" when set in configuration file:
https://redmine.openinfosecfoundation.org/issues/4493
- Update to version 1.2.1
* Fix --no-merge. Redmine issue
https://redmine.openinfosecfoundation.org/issues/4324.
- Update to version 1.2.0
* Documentation updates.
- Update to version 1.2.0rc2
Features
* Obsolete and deprecated source handling from the index:
https://redmine.openinfosecfoundation.org/issues/3918,
https://redmine.openinfosecfoundation.org/issues/3919.
Fixes
* Fix re-enabling a disabled source that was initially added with
"add-source": https://redmine.openinfosecfoundation.org/issues/3843
* Handle duplicate filenames across multiple sources:
https://redmine.openinfosecfoundation.org/issues/3174
- Update to version 1.2.0rc1
Added
* Add summary for update-sources command:
https://redmine.openinfosecfoundation.org/issues/2472
* Disable SMB rules if installed Suricata does not support them:
https://redmine.openinfosecfoundation.org/issues/3280
* Better error on bad modify filter:
https://redmine.openinfosecfoundation.org/issues/3536
* Missing documentation for list-sources, list-enabled-sources and
check-versions:
https://redmine.openinfosecfoundation.org/issues/3228
* Optimization for modify filters:
https://redmine.openinfosecfoundation.org/issues/3620
* Fix --http-header option. Header was not being sent:
https://redmine.openinfosecfoundation.org/issues/3696
* Add classification.config management. Suricata-Update will no
load the Suricata installed classification.config and merge it
with classification.config's found in rule
files. https://redmine.openinfosecfoundation.org/issues/3203
* Copy md5/sha1/sha256 file lists from rulesets into the rule
output directory:
https://redmine.openinfosecfoundation.org/issues/2688
* Copy dataset files from ruleset into the rule output directory:
https://redmine.openinfosecfoundation.org/issues/3528
-------------------------------------------------------------------
Tue Nov 10 18:10:00 UTC 2020 - Hans-Peter Jansen <hpj@urpla.net>
- Update to version 1.1.2
+ Better error on bad modify filter:
+ https://redmine.openinfosecfoundation.org/issues/3536
+ Optimization for modify filters:
+ https://redmine.openinfosecfoundation.org/issues/3620
- Update to version 1.1.1
+ If Suricata is less than 5, and Rust is not enabled, disable
+ smb rules as they require Rust.
+ https://redmine.openinfosecfoundation.org/issues/3280
- Update to version 1.1.0
+ Disable ja3 rules if the Suricata build or runtime
configuration
+ does not support
+ ja3. https://redmine.openinfosecfoundation.org/issues/3215
+ New command, check-versions to compare the version of Suricata
on
+ the system to Suricata version information in the index. Can
let you
+ know if Suricata is
+ outdated. https://redmine.openinfosecfoundation.org/issues/2341
- Update to version 1.1.0rc1
+ Enable integration tests on
+ Travis-CI.
https://redmine.openinfosecfoundation.org/issues/2760
+ Fix error on missing sid, or missing ';' in rule
+ parsing. https://redmine.openinfosecfoundation.org/issues/2867
+ Improve permission errors from tracebacks to more user friendly
+ error messages.
https://redmine.openinfosecfoundation.org/issues/2875
+ Log warnings and errors to stderr, info and debug to stdout.
+ https://redmine.openinfosecfoundation.org/issues/2565
+ Cleaner exit on CTRL-C.
+ https://redmine.openinfosecfoundation.org/issues/2878
+ Run offline.
+ https://redmine.openinfosecfoundation.org/issues/2864
+ Log warning on duplicate SID.
+ https://redmine.openinfosecfoundation.org/issues/2879
+ Parse rule files alphabetically.
+ https://redmine.openinfosecfoundation.org/issues/2892
+ Set the noalert option on rules enabled for flowbit
dependencies.
+ https://redmine.openinfosecfoundation.org/issues/2906
+ Allow sources to be specified without a checksum URL to prevent
the
+ warning log message when this URL does not
+ exist. https://redmine.openinfosecfoundation.org/issues/3100
- Update to version 1.0.7
+ Better error on bad modify filter:
+ https://redmine.openinfosecfoundation.org/issues/3536
- Update to version 1.0.6
+ If Suricata is less than 5, and Rust is not enabled, disable
smb
+ rules as they require
+ Rust. https://redmine.openinfosecfoundation.org/issues/3280
+ Disable ja3 rules if the Suricata build or runtime
configuration
+ does not support ja3.
+ https://redmine.openinfosecfoundation.org/issues/3215
- Update to version 1.0.5
+ Fix NULL pointer dereference (FORWARD_NULL) found by Coverity.
https://redmine.openinfosecfoundation.org/issues/2834
+ Add a download connection timeout of 30 seconds.
https://redmine.openinfosecfoundation.org/issues/2703
+ Fix issue with --no-merge command line option.
https://redmine.openinfosecfoundation.org/issues/2869
+ Fix handling of default ignore files.
https://redmine.openinfosecfoundation.org/issues/2851
+ Allow repeated calls to enable the same rule source without
exiting with an error.
https://redmine.openinfosecfoundation.org/issues/2728
- Switch to github tarball in order to perform tests
-------------------------------------------------------------------
Thu Mar 7 21:41:44 UTC 2019 - Martin Hauke <mardnh@gmx.de>
- Update to version 1.0.4
* Add --free argument to list-sources command to show only those
that are freely available.
* If user-agent is configured to be empty, don't send the header
at all. This also fixes an issue where trying to set the user
agent to an empty string reset it back to the default.
* Fix --dump-sample-configs. The data files were being installed.
* Fix missing check for None, from Coverity.
* Suppress download progress meter when not on a tty.
* Hide git revision if not available in --version.
* Update list of engine provided rules to include.
* Allow a custom HTTP header to be set on a source when added
with add-source.
* Fix exception while referencing configuration filename.
-------------------------------------------------------------------
Wed Jun 6 11:35:02 UTC 2018 - mardnh@gmx.de
- Initial package, version 1.0.0b1
