Mon, 16 Dec 2024 20:46:25 UTC | login

Information for build psad-2.4.6-6.fc32

ID142354
Package Namepsad
Version2.4.6
Release6.fc32
Epoch
SummaryPort Scan Attack Detector (psad) watches for suspect traffic
DescriptionPort Scan Attack Detector (psad) is a lightweight system daemon written in Perl designed to work with Linux iptables firewalling code to detect port scans and other suspect traffic. It features a set of highly configurable danger thresholds (with sensible defaults provided), verbose alert messages that include the source, destination, scanned port range, begin and end times, tcp flags and corresponding nmap options, reverse DNS info, email and syslog alerting, automatic blocking of offending ip addresses via dynamic configuration of iptables rulesets, and passive operating system fingerprinting. In addition, psad incorporates many of the tcp, udp, and icmp signatures included in the snort intrusion detection system (https://www.snort.org) to detect highly suspect scans for various backdoor programs (e.g. EvilFTP, GirlFriend, SubSeven), DDoS tools (mstream, shaft), and advanced port scans (syn, fin, xmas) which are easily leveraged against a machine via nmap. psad can also alert on snort signatures that are logged via fwsnort (https://www.cipherdyne.org/fwsnort/), which makes use of the iptables string match module to detect application layer signatures.
Built bydavidlt
State complete
Volume DEFAULT
StartedFri, 27 Mar 2020 10:34:31 UTC
CompletedFri, 27 Mar 2020 10:34:31 UTC
Tags
f33
RPMs
src
psad-2.4.6-6.fc32.src.rpm (info) (download)
noarch
psad-2.4.6-6.fc32.noarch.rpm (info) (download)
Changelog * Thu Jan 30 2020 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Wed Dec 04 2019 Dominik Mierzejewski <rpm@greysector.net> - 2.4.6-5 - fix netlink_tcpdiag_socket AVC denials - allow ss command to trigger kernel module loads - silence more getattr AVC denials - drop obsolete triggerpostun * Fri Jul 26 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Mon Feb 25 2019 Dominik Mierzejewski <rpm@greysector.net> - 2.4.6-3 - silence sys_ptrace AVC denials (#1615087) - use upstream patch to drop net-tools dependency (#1496149) - stop shipping obsolete binaries kmsgsd and psadwatchd - switch to noarch * Sat Feb 02 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Aug 01 2018 Dominik Mierzejewski <rpm@greysector.net> - 2.4.6-1 - update to 2.4.6 (#1611013) * Fri Jul 13 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Thu Jun 28 2018 Dominik Mierzejewski <rpm@greysector.net> - 2.4.5-1 - update to 2.4.5 (#1394902, #1476553) - use upstream systemd unit - include additional docs - fix SELinux policy installation scriptlet logic (#1438190) - drop HLL policy, CIL import is supported in 2.4+ and RHEL 7.3 ships 2.5 - add gcc to BRs, use set_build_flags macro - add more missing SELinux rules - silence last module removal semodule warning * Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.3-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild