Changelog:
- Only perform additional database request when using Sensor localtime:
this bring a performance improvement of about 36% on aggregated query,
when using either frontend localtime (the default), or UTC time.
- JQuery support: Port most of the javascript code to make use of JQuery.
Add show/hide effect to CSS popup. More filtering functionality in the
SensorListing view.
- Cleanup the Authentication class, so that uper Prewikka layer can act
depending whether the backend support user creation / deletion. Anonymous
authentication is nowa plugin.
- Better integration of CGI authentication allowing user listing and
deletion.
- Report template exception directly to the user.
- Fix exception if an alert analyzer name is empty.
- Fix problem when adding new Prewikka users (#262).
- Fix exception when user has no permission set.
- When changing password, we didn't try to match an empty 'current password'
(which is a minor issue since the user is already authenticated). Thanks
to Helmut Azbest <helmut.azbest@gmail.com> for the fix.
- Fix a typo making mod_python use the parent method (patch from
Helmut Azbest <helmut.azbest@gmail.com>).
- In the configuration file, recognize section even if there are whitespace
at the beginning of the line.
- Localization fixes, by Sebastien Tricaud <toady@gscore.org>, and
Bjoern Weiland.
PR: 117471
Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
Changelog prewikka 0.9.12.1:
- Implement an Auto-Refresh system (fix#231). (including code from
Paul Robert Marino <prmarino1@gmail.com>).
- Ability to filter on missing/offline/online/unknown agents. Make more
easier to read each agent status in collapsed mode.
- Fix filter load/save/delete issue with translation.
- New 'My account' tabs, under the Settings section (fix#241).
- New messageid and analyzerid parameters, allowing link to a Prewikka alert
from an external tool (previously required a database query in order to
retrieve the database event id).
- Don't redirect to user listing once an user preference are recorded. Fix
changing of another user language by an user with PERM_USER_MANAGEMENT.
Display target user language rather than current user language.
- Improve the timeline control table layout.
- Fix translation of string possibly using plural.
- Fix a template compilation problem with certain version of Cheetah
(Giandomenico De Tullio <ghisha at email.it>)
PR: ports/115234
Submitted by: maintainer (Robin Gruyters)
Changelog Prewikka:
- In case a database schema upgrade is required, or the Prewikka
database does not exist, make the error available from the Prewikka
console, rather than exiting badly (which previously required the
user to parse its web server log in order to find out the problem).
- Fix Apache CGI authentication. (Robin Gruyters)
- Fix incorrect locale switch when accessing certain pages.
PR: 113116
Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
Changlog:
- Improve database performance by reducing the number of query. (Paul Robert
Marino)
- Activate CleanOutput filtering (lot of escaping fixes).
- More action logging.
- Bug fixes with the error pages Back/Retry buttons.
- Fix error on group by user (#191).
- Fix template compilation error with Cheetah version 2 (#184).
PR: 108925
Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
Changelog prewikka-0.9.7:
- Use preludedb_delete_(alert|heartbeat)_from_list(). Require
libpreludedb 0.9.9. Provide a deletion performance improvement
of around 3000%.
- Handle multiple listed source/target properly. Separate
source/target in the message listing.
- Make host command/Information link available from the Sensor
listing.
- Always take care of the "external_link_new_window" configuration
parameter.
- Make external command handling more generic. Allow to specify
command line arguments.
- Allow to define unlimited number of external commands rather than
only a defined subset (fix#134).
- Avoid toggling several popup at once in the HeartbeatListing.
- Only provide lookup capability for known network address type (fix#76).
- New address and node name lookup provided through prelude-ids.com service.
- Link to new prelude-ids.com port lookup instead of broken portsdb
database (fix#162).
- Various bug fixes.
PR: ports/102140
Submitted by: maintainer (Robin Gruyters)
- CGI authentication module, from Tilman Baumann
<tilman.baumann@collax.com>.
- Correct libpreludedb runtime version check.
- Show multiple source/target in message listing/summary.
- Fix invalid use of socket.inet_ntoa() to read ICMP Gateway Address,
which is stored as string (#156).
- Fix aggregation on IDMEF-Path that are not string.
- Fix setup.py --root option (#166).
PR: ports/100961
Submitted by: Robin Gruyters (maintainer)
and filter events, and provides useful statistics about what's going on. It
provides a nice interface for the security analyst to see what's going on on
the monitored system.
WWW: http://www.prelude-ids.org/
PR: ports/95996
Submitted by: Robin Gruyters <r.gruyters@yirdis.nl>
