FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Please give me your LTO-4 or better tape library and I'll put it to good use.
Port details
bsmtrace BSM based intrusion detection system
1.4 security on this many watch lists=3 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: alm@FreeBSD.org search for ports maintained by this maintainer
Port Added: 15 Jul 2007 17:47:52
License: not specified in port
bsmtrace is a BSM based intrusion detection system, utilizing audit trails
and real-time audit event analysis through auditpipe(4).  This host based
IDS operates using a finite state machine principles with a flexible
sequence driven signature system.

WWW: http://people.freebsd.org/~csjp/bsmtrace/bsmtrace.txt
SVNWeb : Homepage : Distfiles Availability : PortsMonThere are no ports dependent upon this port

To install the port: cd /usr/ports/security/bsmtrace/ && make install clean
To add the package: pkg install security/bsmtrace


Configuration Options
===> The following configuration options are available for bsmtrace-1.4:
     EXAMPLES=on: Build and/or install examples
     PCRE=off: Use Perl Compatible Regular Expressions
===> Use 'make config' to modify these settings

Master Sites:
  1. http://distcache.FreeBSD.org/local-distfiles/csjp/
  2. http://distcache.FreeBSD.org/ports-distfiles/
  3. http://distcache.eu.FreeBSD.org/local-distfiles/csjp/
  4. http://distcache.us-east.FreeBSD.org/local-distfiles/csjp/
  5. http://distcache.us-west.FreeBSD.org/local-distfiles/csjp/

Number of commits found: 11

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
13 Nov 2014 09:02:57
Original commit files touched by this commit  1.4
Revision:372514
antoine search for other commits by this committer
Cleanup plist
11 Jun 2014 14:50:00
Original commit files touched by this commit  1.4
Revision:357486
tijl search for other commits by this committer
Support LIBS like LDFLAGS.

- Add LIBS="${LIBS}" to MAKE_ENV and CONFIGURE_ENV.
- Add an option helper for LIBS.
- Adjust all ports that already use LIBS.  Also remove references to
  PTHREAD_CFLAGS and PTHREAD_LIBS while here.
- Some ports did not support having a LIBS environment variable and
  required additional patches.

Somewhat simplified a linker command line looks like:

${CC} ${src_LDFLAGS} ${LDFLAGS} ${src_LIBS} ${LIBS}

where src_LDFLAGS and src_LIBS are controlled by upstream and LDFLAGS and
LIBS can be controlled by us.  If possible -L and -l flags need to be
(Only the first 15 lines of the commit message are shown above View all of this commit message)
09 Feb 2014 20:29:37
Original commit files touched by this commit  1.4
Revision:343540
lme search for other commits by this committer
Update to 1.4

PR:		ports/186595
Submitted by:	maintainer
Approved by:	maintainer
08 Feb 2014 20:54:45
Original commit files touched by this commit  1.3_3
Revision:343385
ehaupt search for other commits by this committer
- Support staging
- Respect CC
- Respect CFLAGS
- Fix build with PCRE option
- Convert to OPTIONSng
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.3_2
Revision:327769
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
10 Dec 2012 19:11:12
Refresh Original commit files touched by this commit
Revision:308630  Sanity Test Failure
mm search for other commits by this committer
Update PCRE to 8.32
Introduces the UTF-32 library pcre32
Bump PORTREVISION in dependent ports
25 May 2012 17:15:53
Original commit files touched by this commit  1.3_1
crees search for other commits by this committer
Set MAKE_JOBS_UNSAFE-- does not build with FORCE_MAKE_JOBS

PR:             ports/167599
Submitted by:   Bryan Drewery <bryan@shatow.net>
Approved by:    alm (maintainer)

Remove compatibility for FreeBSD <7; obsolete versions

PR:             ports/168280
Submitted by:   crees
Approved by:    alm (maintainer)
14 Feb 2012 12:45:35
Original commit files touched by this commit  1.3_1
mm search for other commits by this committer
Bump pcre library dependency due to 8.30 update
06 Jun 2011 17:06:36
Original commit files touched by this commit  1.3
csjp search for other commits by this committer
Update bsmtrace port to version 1.3

-Add support for larger set sizes (for group/user specifications)
-Add the ability to pass the effective uid to a trigger
-Fixed bug which resulted in "status" being ignored for single
 state sequences
-Added support for logging channels.
-Added support for state triggers.
-Fixed bug where alerts were being produced for state machines
 that have been expired. (Alerts have already been generated).
-Fixed two memory leaks which could really impact systems with high
 volumes audit records.

Approved by:    wxs
Reviewed by:    alm (maintainer)
24 Oct 2007 01:08:36
Original commit files touched by this commit  1.1.0
csjp search for other commits by this committer
Update bsmtrace to 1.1.0.

1.1.0 fixes a pretty serious bug which resulted in BSM records without
pathname tokens being processed in some cases.

Additionally, timeout-window and timeout-probability features were added
to allow people defining sequences with timeouts to add an element of
randomness to the timeout, in theory making it more difficult for people
to attack.

timeout 60;
timeout-window 10;
timeout-probability 65;

Basically equates to:

"This sequence should timeout in a random amount of time, where the
 probability of the timeout being from 60-70 is 65%"

It should be noted that there is a probability of 35% that the value will
be completely random.  So naturally, the lower the timeout-probability, the
more random the timeout will be.

Approved by:    tmclaugh
15 Jul 2007 17:46:42
Original commit files touched by this commit  1.0.3
csjp search for other commits by this committer
Add the bsmtrace port.

bsmtrace is a audit driven host based intrusion detection system which
operates on finite state machine principles.  Since it's audit driven,
it requires that operating system security auditing be enabled. This
requires FreeBSD 6.2 at a minimum.  By default it provides real-time
analysis through the use of an audit pipe, however it can operate on
regular audit trail files as well.

Approved by:    Pav
Reviewed by:    Pav (and others)

Number of commits found: 11

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
cross-binutilsMar 24
jenkinsMar 24
jenkins-ltsMar 24
libressl*Mar 24
linux-c6-openssl*Mar 24
mingw32-openssl*Mar 24
mingw64-binutilsMar 24
openssl*Mar 24
firefoxMar 22
firefox-esrMar 22
libxulMar 22
linux-firefoxMar 22
linux-seamonkeyMar 22
seamonkeyMar 22
sympaMar 13

5 vulnerabilities affecting 24 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24719
Broken 101
Deprecated 143
Ignore 390
Forbidden 3
Restricted 203
No CDROM 94
Vulnerable 21
Expired 1
Set to expire 136
Interactive 0
new 24 hours 10
new 48 hours12
new 7 days31
new fortnight42
new month127

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.