Bug#475822: marked as done (ITP: fwsnort -- Fwsnort translates Snort rules into iptables rules.)
Your message dated Sat, 06 Dec 2008 13:21:52 +0000
with message-id <E1L8x6W-0005NU-IB@ries.debian.org>
and subject line Bug#475822: fixed in fwsnort 1.0.5-1
has caused the Debian Bug report #475822,
regarding ITP: fwsnort -- Fwsnort translates Snort rules into iptables rules.
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
475822: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475822
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: ITP: fwsnort -- Fwsnort translates Snort rules into iptables rules.
- From: Franck Joncourt <franck.joncourt@wanadoo.fr>
- Date: Sun, 13 Apr 2008 10:30:25 +0200
- Message-id: <20080413083025.24949.23131.reportbug@diamond.stones.lan>
Package: wnpp
Severity: wishlist
Owner: Franck Joncourt <franck.joncourt@wanadoo.fr>
* Package name : fwsnort
Version : 1.0.4
Upstream Author : Michael Rash <mbr@cipherdyne.org>
* URL : http://www.cipherdyne.org/fwsnort/
* License : GPL
Programming Lang: Perl
Description : Fwsnort translates Snort rules into iptables rules.
fwsnort translates Snort rules into iptables rules and generates a
Bourne shell script that implements the resulting iptables commands.
This ruleset allows network traffic that exhibits Snort signatures to
be logged and/or dropped by iptables directly without putting an
interface into promiscuous mode or queuing packets from kernel to user space.
Note that fwsnort can also build an iptables policy that combines the string
match extension with the NFQUEUE or QUEUE targets to allow the kernel to
perform preliminary string matches that are defined within Snort rules
before queuing matching packets to userspace. Because the bulk of
network communications are not malicious, this should provide a speedup
for snort_inline since the majority of packets do not then have to be
copied from kernel memory into user memory and subsequently inspected by
snort_inline. There is a tradeoff here in terms of signature detection
however because snort_inline does not have the opportunity to see all
packets associated with a session, so stream reassembly and signature
comparisons against a reassembled buffer do not take place (the stream
preprocessor - stream4, stream5, etc. - should be disabled).
--- End Message ---
--- Begin Message ---
Source: fwsnort
Source-Version: 1.0.5-1
We believe that the bug you reported is fixed in the latest version of
fwsnort, which is due to be installed in the Debian FTP archive:
fwsnort_1.0.5-1.diff.gz
to pool/main/f/fwsnort/fwsnort_1.0.5-1.diff.gz
fwsnort_1.0.5-1.dsc
to pool/main/f/fwsnort/fwsnort_1.0.5-1.dsc
fwsnort_1.0.5-1_all.deb
to pool/main/f/fwsnort/fwsnort_1.0.5-1_all.deb
fwsnort_1.0.5.orig.tar.gz
to pool/main/f/fwsnort/fwsnort_1.0.5.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 475822@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Franck Joncourt <franck.mail@dthconnex.com> (supplier of updated fwsnort package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 13 Aug 2008 12:17:46 +0200
Source: fwsnort
Binary: fwsnort
Architecture: source all
Version: 1.0.5-1
Distribution: unstable
Urgency: low
Maintainer: Franck Joncourt <franck.mail@dthconnex.com>
Changed-By: Franck Joncourt <franck.mail@dthconnex.com>
Description:
fwsnort - Snort-to-iptables rule translator
Closes: 475822
Changes:
fwsnort (1.0.5-1) unstable; urgency=low
.
* Initial release (Closes: #475822)
Checksums-Sha1:
8085146a5b02c3e3bd5fdc4bae6e29345948d7c7 1157 fwsnort_1.0.5-1.dsc
d1ab41082de384d93b3a5ddc45a6da46f66c7bd9 65908 fwsnort_1.0.5.orig.tar.gz
04130ede5e19b0ec190d111a6ef63bc2371136d0 4362 fwsnort_1.0.5-1.diff.gz
a51d89c7864a226c65c1bd7e1fae6fc8c64b1209 46954 fwsnort_1.0.5-1_all.deb
Checksums-Sha256:
beaccef24d0903a7344add3b81f320e53a22686f8b58d5dc28c30423f1ff0c81 1157 fwsnort_1.0.5-1.dsc
a9a2f0a331743690df74252026763d201f1b7c7ee46e72086a0ec13e4f6bddc5 65908 fwsnort_1.0.5.orig.tar.gz
0c5d3a071cba464107f4dfb918041da93096162e99ab30fb69fa9dc6d6105e9c 4362 fwsnort_1.0.5-1.diff.gz
cc4e86c403ffad38ecd3bb11d910f2f9d6d6ee34cbe21ae153d546eb3ae57e7b 46954 fwsnort_1.0.5-1_all.deb
Files:
edaf87e07bbf362c8da8761730945993 1157 admin optional fwsnort_1.0.5-1.dsc
3f8bf720234b5313fe8a5a94b078b3b7 65908 admin optional fwsnort_1.0.5.orig.tar.gz
ed9bc5dbac566dab09b0036f50a73447 4362 admin optional fwsnort_1.0.5-1.diff.gz
29cc7d766b9d2a87ad0e6665cdb06b15 46954 admin optional fwsnort_1.0.5-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkkOEQoACgkQScUZKBnQNIaZZQCfTagyDdWAMXv5sb02DBB2k2LG
j6EAniVH9mf09egOlGQzhmmzkolqF1d4
=A/kv
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: