Sun, 07 Jul 2024 15:35:21 UTC | login

Information for build psad-2.4.6-7.fc33

ID176255
Package Namepsad
Version2.4.6
Release7.fc33
Epoch
SummaryPort Scan Attack Detector (psad) watches for suspect traffic
DescriptionPort Scan Attack Detector (psad) is a lightweight system daemon written in Perl designed to work with Linux iptables firewalling code to detect port scans and other suspect traffic. It features a set of highly configurable danger thresholds (with sensible defaults provided), verbose alert messages that include the source, destination, scanned port range, begin and end times, tcp flags and corresponding nmap options, reverse DNS info, email and syslog alerting, automatic blocking of offending ip addresses via dynamic configuration of iptables rulesets, and passive operating system fingerprinting. In addition, psad incorporates many of the tcp, udp, and icmp signatures included in the snort intrusion detection system (https://www.snort.org) to detect highly suspect scans for various backdoor programs (e.g. EvilFTP, GirlFriend, SubSeven), DDoS tools (mstream, shaft), and advanced port scans (syn, fin, xmas) which are easily leveraged against a machine via nmap. psad can also alert on snort signatures that are logged via fwsnort (https://www.cipherdyne.org/fwsnort/), which makes use of the iptables string match module to detect application layer signatures.
Built bydavidlt
State complete
Volume DEFAULT
StartedThu, 13 Aug 2020 13:37:00 UTC
CompletedThu, 13 Aug 2020 13:37:00 UTC
Tags
f33
f37
f38
RPMs
src
psad-2.4.6-7.fc33.src.rpm (info) (download)
noarch
psad-2.4.6-7.fc33.noarch.rpm (info) (download)
Changelog * Tue Jul 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Thu Jan 30 2020 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild * Wed Dec 04 2019 Dominik Mierzejewski <rpm@greysector.net> - 2.4.6-5 - fix netlink_tcpdiag_socket AVC denials - allow ss command to trigger kernel module loads - silence more getattr AVC denials - drop obsolete triggerpostun * Fri Jul 26 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Mon Feb 25 2019 Dominik Mierzejewski <rpm@greysector.net> - 2.4.6-3 - silence sys_ptrace AVC denials (#1615087) - use upstream patch to drop net-tools dependency (#1496149) - stop shipping obsolete binaries kmsgsd and psadwatchd - switch to noarch * Sat Feb 02 2019 Fedora Release Engineering <releng@fedoraproject.org> - 2.4.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Aug 01 2018 Dominik Mierzejewski <rpm@greysector.net> - 2.4.6-1 - update to 2.4.6 (#1611013)