pfSense-pkg-suricata-3.1.2 0 -- Pass List implementation fix #260
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
The title of this pull request should be "pfSense-pkg-suricata-3.1.2_0", but the underscore to denote the Port Revision is missing and I can't figure out how to edit it. Bill |
netgate-git-updates
pushed a commit
that referenced
this pull request
Jan 20, 2017
netgate-git-updates
pushed a commit
that referenced
this pull request
May 29, 2022
Changelog:
Support http protocol versions besides 0.9, 1.0, 1.1, 2.0
[Issue #224 - @HQuest, @martinhsv]
Support for building with nginx configured with PCRE2
[Issue #260 - @defanator]
Sponsored by: Netzkommune GmbH
netgate-git-updates
pushed a commit
that referenced
this pull request
Nov 8, 2022
Patch release with miscellaneous bug/doc/build fixes.
Excerpt from release tag:
[#269] fix memory leak in V3fArrayFromBuffer
[#268] Add <cstdint> for int64_t
[#263] Initialize x in testRoots.cpp:solve() to suppress compiler warning
[#262] Fix gcc compiler warning in testFun.cpp
[#261] Test return value of extractSHRT to avoid uninitialized reference
[#260] Fix example code so it compiles as is
[#259] Cuda safety in several headers
[#256] Fix markdown and typos in README.md
[#255] Do not warn if half.h has already being included
[#248] Update sphinx version
ChangeLog: https://github.com/AcademySoftwareFoundation/Imath/releases/tag/v3.1.6
MFH: 2022Q4
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This update to the Suricata GUI package corrects issues with implementation of default Pass Lists when running Suricata with inline IPS Mode enabled. A couple of other minor bugs are also fixed.
Bug Fixes
Remove automatic inclusion of all locally-attached networks in the default Pass List when using IPS mode. This had the unintended side-effect of essentially whitelisting all traffic to and from local hosts.
Added the capability to completely disable use of the default Pass List when running with inline IPS Mode. Formerly, the default Pass List would be used when no custom list was specified.
Remove automatic inclusion of the WAN interface IP address in the default Pass List when using IPS mode. This had the unintended side-effect of essentially whitelist all inbound NAT traffic because the destination IP would be the WAN IP.
Increase default value of Host Memcap on IP REPUTATION tab to 32 MB as most IP lists today are quite large. This is effective only for newly created interfaces.
The checkbox for including/excluding the WAN IP from a custom Pass List was inadvertently removed during the Bootstrap conversion of the GUI code. This checkbox is now restored.