Mon, 16 Dec 2024 22:37:15 UTC | login

Information for RPM psad-2.4.6-6.fc32.noarch.rpm

ID536343
Namepsad
Version2.4.6
Release6.fc32
Epoch
Archnoarch
SummaryPort Scan Attack Detector (psad) watches for suspect traffic
DescriptionPort Scan Attack Detector (psad) is a lightweight system daemon written in Perl designed to work with Linux iptables firewalling code to detect port scans and other suspect traffic. It features a set of highly configurable danger thresholds (with sensible defaults provided), verbose alert messages that include the source, destination, scanned port range, begin and end times, tcp flags and corresponding nmap options, reverse DNS info, email and syslog alerting, automatic blocking of offending ip addresses via dynamic configuration of iptables rulesets, and passive operating system fingerprinting. In addition, psad incorporates many of the tcp, udp, and icmp signatures included in the snort intrusion detection system (https://www.snort.org) to detect highly suspect scans for various backdoor programs (e.g. EvilFTP, GirlFriend, SubSeven), DDoS tools (mstream, shaft), and advanced port scans (syn, fin, xmas) which are easily leveraged against a machine via nmap. psad can also alert on snort signatures that are logged via fwsnort (https://www.cipherdyne.org/fwsnort/), which makes use of the iptables string match module to detect application layer signatures.
Build Time2020-01-30 09:54:46 GMT
Size1.24 MB
f1b77326c7c8dd24e953e776467f479e
LicenseGPLv2+
Provides
config(psad) = 2.4.6-6.fc32
psad = 2.4.6-6.fc32
Obsoletes
psad < 2.4.6-3
Conflicts No Conflicts
Requires
/bin/ps
/bin/sh
/bin/sh
/bin/sh
/usr/bin/killall
/usr/bin/perl
/usr/sbin/semodule
/usr/sbin/semodule
config(psad) = 2.4.6-6.fc32
gzip
iproute
iptables
perl(Bit::Vector)
perl(Carp::Clan)
perl(Data::Dumper)
perl(Date::Calc)
perl(File::Copy)
perl(File::Path)
perl(Getopt::Long)
perl(IO::Handle)
perl(IO::Select)
perl(IO::Socket)
perl(IPTables::ChainMgr)
perl(IPTables::Parse)
perl(NetAddr::IP)
perl(POSIX)
perl(Socket)
perl(Storable)
perl(Unix::Syslog)
perl(strict)
policycoreutils >= 2.4
rpmlib(CompressedFileNames) <= 3.0.4-1
rpmlib(FileDigests) <= 4.6.0-1
rpmlib(PayloadFilesHavePrefix) <= 4.0-1
rpmlib(PayloadIsZstd) <= 5.4.18-1
Recommends
/bin/mail
/usr/bin/whois
/usr/sbin/sendmail
Suggests No Suggests
Supplements No Supplements
Enhances No Enhances
Files
Page:
1 through 50 of 89 >>>
Name ascending sort Size
/etc/logrotate.d0.00 B
/etc/logrotate.d/psad515.00 B
/etc/psad0.00 B
/etc/psad/auto_dl1.13 KB
/etc/psad/icmp6_types2.47 KB
/etc/psad/icmp_types2.77 KB
/etc/psad/ip_options1.54 KB
/etc/psad/pf.os27.79 KB
/etc/psad/posf1.87 KB
/etc/psad/protocols2.86 KB
/etc/psad/psad.conf29.92 KB
/etc/psad/signatures44.21 KB
/etc/psad/snort_rule_dl524.00 B
/etc/psad/snort_rules0.00 B
/etc/psad/snort_rules/VERSION12.00 B
/etc/psad/snort_rules/attack-responses.rules4.54 KB
/etc/psad/snort_rules/backdoor.rules16.57 KB
/etc/psad/snort_rules/bad-traffic.rules2.87 KB
/etc/psad/snort_rules/chat.rules6.99 KB
/etc/psad/snort_rules/classification.config3.44 KB
/etc/psad/snort_rules/ddos.rules6.58 KB
/etc/psad/snort_rules/deleted.rules61.91 KB
/etc/psad/snort_rules/dns.rules5.68 KB
/etc/psad/snort_rules/dos.rules5.12 KB
/etc/psad/snort_rules/emerging-all.rules12.95 MB
/etc/psad/snort_rules/experimental.rules415.00 B
/etc/psad/snort_rules/exploit.rules25.87 KB
/etc/psad/snort_rules/finger.rules3.22 KB
/etc/psad/snort_rules/ftp.rules19.96 KB
/etc/psad/snort_rules/icmp-info.rules15.20 KB
/etc/psad/snort_rules/icmp.rules4.34 KB
/etc/psad/snort_rules/imap.rules12.23 KB
/etc/psad/snort_rules/info.rules2.32 KB
/etc/psad/snort_rules/local.rules150.00 B
/etc/psad/snort_rules/misc.rules16.71 KB
/etc/psad/snort_rules/multimedia.rules2.75 KB
/etc/psad/snort_rules/mysql.rules1022.00 B
/etc/psad/snort_rules/netbios.rules277.98 KB
/etc/psad/snort_rules/nntp.rules3.75 KB
/etc/psad/snort_rules/oracle.rules172.71 KB
/etc/psad/snort_rules/other-ids.rules1.30 KB
/etc/psad/snort_rules/p2p.rules3.81 KB
/etc/psad/snort_rules/policy.rules5.15 KB
/etc/psad/snort_rules/pop2.rules1.15 KB
/etc/psad/snort_rules/pop3.rules8.33 KB
/etc/psad/snort_rules/porn.rules4.89 KB
/etc/psad/snort_rules/reference.config608.00 B
/etc/psad/snort_rules/rpc.rules50.12 KB
/etc/psad/snort_rules/rservices.rules2.80 KB
/etc/psad/snort_rules/scan.rules3.95 KB
Component of No Buildroots