./security/base, Analysis engine to process a database of security events

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.4.3.1nb12, Package name: base-1.4.3.1nb12, Maintainer: pkgsrc-users

The Basic Analysis and Security Engine (BASE) is a PHP-based analysis
engine to search and process a database of security events generated by
various IDSes, firewalls, and network monitoring tools. The features currently
include:

o Query-builder and search interface for finding alerts matching
on alert meta information (e.g. signature, detection time) as well as
the underlying network evidence (e.g. source/destination address, ports,
payload, or flags).

o Packet viewer (decoder) will graphically display the layer-3 and
layer-4 packet information of logged alerts

o Alert management by providing constructs to logically group alerts
to create incidents (alert groups), deleting the handled alerts or
false positives, exporting to email for collaboration, or archiving of
alerts to transfer them between alert databases.

o Chart and statistic generation based on time, sensor, signature, protocol,
IP address, TCP/UDP ports, or classification


Required to run:
[sysutils/pear-Log] [www/ap-php] [graphics/pear-Image_Graph] [graphics/pear-Image_Color] [graphics/php-gd] [databases/adodb] [databases/php-mysql] [lang/perl5] [net/php-sockets] [math/pear-Numbers_Words] [math/pear-Numbers_Roman] [mail/pear-Mail] [mail/pear-Mail_Mime] [databases/mysql55-client]

Required to build:
[www/apache22] [pkgtools/cwrappers]

Package options: mysql

Master sites:

SHA1: bf0a9bbc7131eb84d4b85d25e2fe878da31582c4
RMD160: e12ec80997df17f4bf3e8ea016da6fc0414044c1
Filesize: 946.065 KB

Version history: (Expand)


CVS history: (Expand)


   2017-03-12 08:20:52 by Maya Rashish | Files touched by this commit (16)
Log message:
pkgrevision bump for changed apache default.

bumping any package depending on a pkg with APACHE_PKG_PREFIX but without
APACHE_PKG_PREFIX in its PKGNAME.
   2016-10-09 23:42:04 by Thomas Klausner | Files touched by this commit (110)
Log message:
Recursive bump for all users of pgsql now that the default is 95.
   2016-09-11 19:03:29 by Takahiro Kambe | Files touched by this commit (53)
Log message:
Drop "55" (php55) from PHP_VERSIONS_ACCEPTED.
   2016-07-09 08:39:18 by Thomas Klausner | Files touched by this commit (1068) | Package updated
Log message:
Bump PKGREVISION for perl-5.24.0 for everything mentioning perl.
   2015-12-06 13:13:13 by Takahiro Kambe | Files touched by this commit (25)
Log message:
Explicitly restrict PHP_VERSIONS_ACCEPTED to 55 and 56 for packages which
use php-mysql package.
   2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434)
Log message:
Add SHA512 digests for distfiles for security category

Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2015-06-12 12:52:19 by Thomas Klausner | Files touched by this commit (3152)
Log message:
Recursive PKGREVISION bump for all packages mentioning 'perl',
having a PKGNAME of p5-*, or depending such a package,
for perl-5.22.0.
   2014-05-30 01:38:20 by Thomas Klausner | Files touched by this commit (3049)
Log message:
Bump for perl-5.20.0.
Do it for all packages that
* mention perl, or
* have a directory name starting with p5-*, or
* depend on a package starting with p5-
like last time, for 5.18, where this didn't lead to complaints.
Let me know if you have any this time.