| Port details |
- zeek System for detecting network intruders in real-time
- 3.0.1 security
 =0    3.0.1Version of this port present on the latest quarterly branch.- Maintainer: leres@FreeBSD.org
- Port Added: 2019-11-17 01:03:14
- Last Update: 2019-12-11 21:43:22
- SVN Revision: 519842
- License: BSD3CLAUSE
- Description:
- Zeek (formerly known as Bro) is an open-source, Unix-based Network
Intrusion Detection System (NIDS) that passively monitors network
traffic and looks for suspicious activity. Zeek detects intrusions
by first parsing network traffic to extract its application-level
semantics and then executing event-oriented analyzers that compare
the activity with patterns deemed troublesome. Its analysis includes
detection of specific attacks (including those defined by signatures,
but also those defined in terms of events) and unusual activities
(e.g., certain hosts connecting to certain services, or patterns
of failed connection attempts).
Zeek is documented in the USENIX 1998 Security Conference proceedings
(as Bro).
WWW: https://www.zeek.org/
- SVNWeb : Homepage
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- Conflicts:
- CONFLICTS:
- Conflicts Matches:
-
There are no Conflicts Matches for this port. This is usually an error.
- To install the port:
cd /usr/ports/security/zeek/ && make install clean - To add the package:
pkg install zeek - PKGNAME: zeek
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1576099434
SHA256 (zeek-3.0.1.tar.gz) = 79f4f3efd883c9c2960295778dc290372d10874380fd88450271652e829811d2
SIZE (zeek-3.0.1.tar.gz) = 29253371
SHA256 (bro-bro-netmap-f3620df_GH0.tar.gz) = e51f420781c9a01b0494f93d82f94a1b045725c1cff406c33887974a9940c655
SIZE (bro-bro-netmap-f3620df_GH0.tar.gz) = 24661
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- swig3.0 : devel/swig30
- ipsumdump : net/ipsumdump
- bash : shells/bash
- py36-sqlite3>0 : databases/py-sqlite3@py36
- swig3.0 : devel/swig30
- bison : devel/bison
- cmake : devel/cmake
- ninja : devel/ninja
- python3.6 : lang/python36
- perl5>=5.30.r1<5.31 : lang/perl5.30
- Runtime dependencies:
-
- ipsumdump : net/ipsumdump
- cf : sysutils/lbl-cf
- hf : sysutils/lbl-hf
- bash : shells/bash
- py36-sqlite3>0 : databases/py-sqlite3@py36
- python3.6 : lang/python36
- perl5>=5.30.r1<5.31 : lang/perl5.30
- Library dependencies:
-
- libmaxminddb.so : net/libmaxminddb
- libintl.so : devel/gettext-runtime
- There are no ports dependent upon this port
- Configuration Options
- ===> The following configuration options are available for zeek-3.0.1:
BROCCOLI=off: Build support for libbroccoli communications (DEPRECATED)
BROKER=on: Enable the Broker communication library
DEBUG=off: Build with debugging support
GEOIP2=on: Build with GeoIP2 (MaxMindDB) support
IPSUMDUMP=on: Enables traffic summaries
LBL_CF=on: Unix time to formated time/date filter support
LBL_HF=on: Address to hostname filter support
NETMAP=on: Native Netmap Packet IOSource for Bro
PERFTOOLS=off: Use Perftools to improve memory & CPU usage
ZEEKCTL=on: ZeekControl support (implies BROKER and IPSUMDUMP)
===> Use 'make config' to modify these settings
- USES:
- bison cmake compiler:c++11-lang gettext-runtime ninja perl5 python shebangfix ssl
- Master Sites:
- https://www.zeek.org/downloads/
|
Number of commits found: 2
| Commit History - (may be incomplete: see SVNWeb link above for full details) |
| Date | By | Description |
11 Dec 2019 21:43:22
  3.0.1
|
leres |
security/bro: Update to 3.0.1. As announced by Jon Siwek:
This is a bug-fix release that most notably addresses a JSON
logging performance regression in 3.0.0, but also fixes other
minor bugs. A list which details the changes can be found here:
https://github.com/zeek/zeek/releases/tag/v3.0.1
Approved by: ler (mentor, implicit) |
17 Nov 2019 01:03:04
3.0.0
|
leres |
security/zeek: This adds security/zeek, the new version of security/bro.
This is being done as svn copy instead of rename so that users of
security/bro can have some time to migrate. It also allows for
possible security updates to the old bro port which upstream has
indicated is possible for at least a few months.
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Differential Revision: https://reviews.freebsd.org/D22376 |
Number of commits found: 2
|
| Latest Vulnerabilities |
|
14 vulnerabilities affecting 178 ports have been reported in the past 14 days
|
|
* - modified, not new All vulnerabilities
Last updated:
2020-02-14 01:16:43
|
|
As an Amazon Associate I earn from qualifying purchases.