FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
bsmtrace BSM based intrusion detection system
1.4 security on this many watch lists=3 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: alm@FreeBSD.org search for ports maintained by this maintainer
Port Added: 15 Jul 2007 17:47:52
License: not specified in port
bsmtrace is a BSM based intrusion detection system, utilizing audit trails
and real-time audit event analysis through auditpipe(4).  This host based
IDS operates using a finite state machine principles with a flexible
sequence driven signature system.

WWW: http://people.freebsd.org/~csjp/bsmtrace/bsmtrace.txt
SVNWeb : Homepage : Distfiles Availability : PortsMonThere are no ports dependent upon this port

To install the port: cd /usr/ports/security/bsmtrace/ && make install clean
To add the package: pkg install security/bsmtrace


Configuration Options
===> The following configuration options are available for bsmtrace-1.4:
     EXAMPLES=on: Build and/or install examples
     PCRE=off: Use Perl Compatible Regular Expressions
===> Use 'make config' to modify these settings

Master Sites:
  1. http://distcache.FreeBSD.org/local-distfiles/csjp/
  2. http://distcache.FreeBSD.org/ports-distfiles/
  3. http://distcache.eu.FreeBSD.org/local-distfiles/csjp/
  4. http://distcache.us-east.FreeBSD.org/local-distfiles/csjp/
  5. http://distcache.us-west.FreeBSD.org/local-distfiles/csjp/

Number of commits found: 11

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
13 Nov 2014 09:02:57
Original commit files touched by this commit  1.4
Revision:372514
antoine search for other commits by this committer
Cleanup plist
11 Jun 2014 14:50:00
Original commit files touched by this commit  1.4
Revision:357486
tijl search for other commits by this committer
Support LIBS like LDFLAGS.

- Add LIBS="${LIBS}" to MAKE_ENV and CONFIGURE_ENV.
- Add an option helper for LIBS.
- Adjust all ports that already use LIBS.  Also remove references to
  PTHREAD_CFLAGS and PTHREAD_LIBS while here.
- Some ports did not support having a LIBS environment variable and
  required additional patches.

Somewhat simplified a linker command line looks like:

${CC} ${src_LDFLAGS} ${LDFLAGS} ${src_LIBS} ${LIBS}

where src_LDFLAGS and src_LIBS are controlled by upstream and LDFLAGS and
LIBS can be controlled by us.  If possible -L and -l flags need to be
(Only the first 15 lines of the commit message are shown above View all of this commit message)
09 Feb 2014 20:29:37
Original commit files touched by this commit  1.4
Revision:343540
lme search for other commits by this committer
Update to 1.4

PR:		ports/186595
Submitted by:	maintainer
Approved by:	maintainer
08 Feb 2014 20:54:45
Original commit files touched by this commit  1.3_3
Revision:343385
ehaupt search for other commits by this committer
- Support staging
- Respect CC
- Respect CFLAGS
- Fix build with PCRE option
- Convert to OPTIONSng
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.3_2
Revision:327769
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
10 Dec 2012 19:11:12
Refresh Original commit files touched by this commit
Revision:308630  Sanity Test Failure
mm search for other commits by this committer
Update PCRE to 8.32
Introduces the UTF-32 library pcre32
Bump PORTREVISION in dependent ports
25 May 2012 17:15:53
Original commit files touched by this commit  1.3_1
crees search for other commits by this committer
Set MAKE_JOBS_UNSAFE-- does not build with FORCE_MAKE_JOBS

PR:             ports/167599
Submitted by:   Bryan Drewery <bryan@shatow.net>
Approved by:    alm (maintainer)

Remove compatibility for FreeBSD <7; obsolete versions

PR:             ports/168280
Submitted by:   crees
Approved by:    alm (maintainer)
14 Feb 2012 12:45:35
Original commit files touched by this commit  1.3_1
mm search for other commits by this committer
Bump pcre library dependency due to 8.30 update
06 Jun 2011 17:06:36
Original commit files touched by this commit  1.3
csjp search for other commits by this committer
Update bsmtrace port to version 1.3

-Add support for larger set sizes (for group/user specifications)
-Add the ability to pass the effective uid to a trigger
-Fixed bug which resulted in "status" being ignored for single
 state sequences
-Added support for logging channels.
-Added support for state triggers.
-Fixed bug where alerts were being produced for state machines
 that have been expired. (Alerts have already been generated).
-Fixed two memory leaks which could really impact systems with high
 volumes audit records.

Approved by:    wxs
Reviewed by:    alm (maintainer)
24 Oct 2007 01:08:36
Original commit files touched by this commit  1.1.0
csjp search for other commits by this committer
Update bsmtrace to 1.1.0.

1.1.0 fixes a pretty serious bug which resulted in BSM records without
pathname tokens being processed in some cases.

Additionally, timeout-window and timeout-probability features were added
to allow people defining sequences with timeouts to add an element of
randomness to the timeout, in theory making it more difficult for people
to attack.

timeout 60;
timeout-window 10;
timeout-probability 65;

Basically equates to:

"This sequence should timeout in a random amount of time, where the
 probability of the timeout being from 60-70 is 65%"

It should be noted that there is a probability of 35% that the value will
be completely random.  So naturally, the lower the timeout-probability, the
more random the timeout will be.

Approved by:    tmclaugh
15 Jul 2007 17:46:42
Original commit files touched by this commit  1.0.3
csjp search for other commits by this committer
Add the bsmtrace port.

bsmtrace is a audit driven host based intrusion detection system which
operates on finite state machine principles.  Since it's audit driven,
it requires that operating system security auditing be enabled. This
requires FreeBSD 6.2 at a minimum.  By default it provides real-time
analysis through the use of an audit pipe, however it can operate on
regular audit trail files as well.

Approved by:    Pav
Reviewed by:    Pav (and others)

Number of commits found: 11

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
jenkinsMar 01
jenkins-ltsMar 01
firefoxFeb 27
firefox-esrFeb 27
libxulFeb 27
linux-firefoxFeb 27
linux-seamonkeyFeb 27
linux-thunderbirdFeb 27
seamonkeyFeb 27
thunderbirdFeb 27
php5Feb 26
php55Feb 26
php56Feb 26
krb5-111Feb 25
e2fsprogsFeb 24

11 vulnerabilities affecting 34 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24628
Broken 92
Deprecated 38
Ignore 371
Forbidden 1
Restricted 207
No CDROM 93
Vulnerable 21
Expired 0
Set to expire 32
Interactive 0
new 24 hours 9
new 48 hours13
new 7 days36
new fortnight68
new month125

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.