./net/bro [network analysis and security monitoring framework]
[+] Add this package to your ports tracker

[ CVSweb ] [ Homepage ] [ RSS feed ]

Version: 4.0.4, Package name: zeek-4.0.4
Maintained by: Antoine Jacoutot
Master sites:
Description
Zeek (formerly known as "Bro") is a powerful framework for network analysis and
security monitoring.


Filesize: 30255.005 KB
Version History (View Complete History)
  • (2021-10-04) Updated to version: zeek-4.0.4
  • (2021-07-07) Updated to version: zeek-4.0.3
  • (2021-06-05) Updated to version: zeek-4.0.2
  • (2021-04-24) Updated to version: zeek-4.0.1
  • (2021-03-06) Updated to version: zeek-4.0.0
  • (2021-02-27) Updated to version: zeek-3.2.4
  • (2020-12-16) Updated to version: zeek-3.2.3
  • (2020-10-25) Updated to version: zeek-3.2.2
  • (2020-08-01) Updated to version: zeek-3.1.5
  • (2020-06-11) Updated to version: zeek-3.1.4
[show/hide] View available PLISTS (Can be a lot of data)

CVS Commit History:

   2021-10-03 13:57:47 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to zeek-4.0.4.
- Paths from log stream make it into system() unchecked, potentially leading
to commands being run on the system unintentionally. This requires either
bad scripting or a malicious package to be installed, and is considered
low severity.
- Fix potential unbounded state growth in the PIA analyzer when receiving a
connection with either a large number of zero-length packets, or one which
continues ack-ing unseen segments. It is possible to run Zeek out of memory
in these instances and cause it to crash. Due to the possibility of this
happening with packets received from the network, this is a potential DoS
vulnerability.
   2021-10-03 13:54:51 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
SECURITY update to zeek-4.0.4.
   2021-08-13 00:48:53 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
PORTROACH: skip development version.
   2021-07-07 03:42:06 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Update to zeek-4.0.3.
   2021-06-05 07:15:05 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Update to zeek-4.0.2.
   2021-05-02 11:57:18 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
Bump to be ahead of stable.
   2021-05-02 11:56:52 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to zeek-4.0.1.
   2021-04-24 05:37:10 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Update to zeek-4.0.1.
   2021-03-06 02:35:09 by Antoine Jacoutot | Files touched by this commit (14)
Log message:
Update to zeek-4.0.0 (LTS version).
The issue with cluster mode is still present unfortunately...
   2021-02-27 04:11:08 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Update to zeek-3.2.4.
   2021-02-23 12:39:53 by Stuart Henderson | Files touched by this commit (743)
Log message:
Reverse the polarity of MODPY_VERSION; default is now 3.x,
if a port needs 2.x then set MODPY_VERSION=${MODPY_DEFAULT_VERSION_2}.
This commit doesn't change any versions currently used; it may be that
some ports have MODPY_DEFAULT_VERSION_2 but don't require it, those
should be cleaned up in the course of updating ports where possible.
Python module ports providing py3-* packages should still use
FLAVOR=python3 so that we don't have a mixture of dependencies some
using ${MODPY_FLAVOR} and others not.
   2021-02-07 09:30:47 by Antoine Jacoutot | Files touched by this commit (6)
Log message:
Rework patches and garbage collect uneeded ones.
Still trying to figure out why we're not logging anything in cluster mode.
   2020-12-16 02:06:28 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Update to zeek-3.2.3.
   2020-10-25 03:16:10 by Antoine Jacoutot | Files touched by this commit (26)
Log message:
Update to zeek-3.2.2.
Committing early in the release process to give time to test this.
Please contact me if you see any regression.
   2020-10-09 12:37:29 by Jasper Lievisse Adriaanse | Files touched by this commit (2)
Log message:
fix typo in README; ok aja@
   2020-08-13 12:15:04 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Unbreak with clang >=10
   2020-07-31 10:27:06 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Update to zeek-3.1.5.
   2020-07-04 13:16:27 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Add support for DLT_LOOP.
Adapted from a patch by Matt Dunwoodie
   2020-07-03 11:20:09 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Don't use libexecinfo.
   2020-06-11 00:43:54 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Update to zeek-3.1.4.
   2020-05-14 06:15:11 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Update to zeek-3.1.3.
   2020-04-18 03:05:20 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to zeek-3.1.2.
   2020-04-10 09:00:56 by Charlene Wendling | Files touched by this commit (1)
Log message:
bro: don't require `-latomic' anymore on powerpc, since
this arch has been switched to clang
OK aja@ (maintainer)
   2020-03-14 11:58:47 by Antoine Jacoutot | Files touched by this commit (4)
Log message:
Update to zeek-3.1.1.
   2020-02-28 09:48:59 by Antoine Jacoutot | Files touched by this commit (10)
Log message:
Update to zeek-3.1.0.
   2020-01-25 04:57:02 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
Fix bogus bro symlink; reported by espie@
   2019-12-14 09:32:30 by Antoine Jacoutot | Files touched by this commit (15)
Log message:
Update to zeek-3.0.1.
- fix picking up libexecinfo (and failing when junking); reported by naddy
   2019-11-25 00:57:43 by Antoine Jacoutot | Files touched by this commit (21)
Log message:
Update to zeek-3.0.0.
- everything (utilities, rc.d scripts, configuration files etc.) has been
renamed from bro to zeek.
   2019-09-07 11:48:15 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
Bump to be ahead of stable. This is usually not needed but here we will
have a PKGNAME change between 6.5 and 6.6.
   2019-09-07 11:47:04 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
SECURITY update to bro-2.6.4.
- The NTLM analyzer did not properly handle AV Pair sequences that were
either empty or unterminated, resulting in invalid memory access or
heap buffer over-read.  The NTLM analyzer is enabled by default and
used in the analysis of SMB, DCE/RPC, and GSSAPI protocols.
   2019-09-07 11:40:54 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to zeek-2.6.4.
- The NTLM analyzer did not properly handle AV Pair sequences that were
either empty or unterminated, resulting in invalid memory access or
heap buffer over-read.  The NTLM analyzer is enabled by default and
used in the analysis of SMB, DCE/RPC, and GSSAPI protocols.
   2019-08-17 06:58:05 by Antoine Jacoutot | Files touched by this commit (6)
Log message:
Rename from Bro to Zeek since it's the new upstream name.
   2019-08-14 15:19:47 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
bro-2.6.3: SECURITY patch release to address potential Denial of Service
vulnerabilities; see https://github.com/zeek/zeek/blob/release/NEWS for
details
   2019-08-14 15:18:35 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
bro-2.6.3: SECURITY patch release to address potential Denial of Service
vulnerabilities; see https://github.com/zeek/zeek/blob/release/NEWS for
details
   2019-07-12 15:15:36 by Stuart Henderson | Files touched by this commit (54)
Log message:
replace simple PERMIT_PACKAGE_CDROM=Yes with PERMIT_PACKAGE=Yes
   2019-06-02 03:38:41 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
SECURITY update to bro-2.6.2
- CVE-2019-12175
   2019-06-01 17:22:41 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to bro-2.6.2.
- CVE-2019-12175
   2019-03-05 07:58:49 by Charlene Wendling | Files touched by this commit (1)
Log message:
bro: needs atomics on powerpc, and probably hppa.
Sucessfully tested on powerpc.
OK jca@
   2018-12-30 07:14:14 by Antoine Jacoutot | Files touched by this commit (20)
Log message:
Update to bro-2.6.1.
   2018-09-04 06:53:16 by Marc Espie | Files touched by this commit (33)
Log message:
and of course some would conflict... finish PKGSTEM changes manually
   2018-08-30 02:36:35 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to bro-2.5.5.
For details, see:
https://www.bro.org/sphinx/install/release-notes.html#bro-2-5-5
   2018-08-30 01:33:54 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Update to bro-2.5.5.
   2018-06-06 05:30:00 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Update to bro-2.5.4.
   2018-02-15 01:06:29 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
SECURITY update to bro-2.5.3.
- fix for an integer overflow in code generated by binpac
   2018-02-15 01:05:30 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
SECURITY update to bro-2.5.3.
- fix for an integer overflow in code generated by binpac
   2018-01-11 12:27:12 by Robert Peichaer | Files touched by this commit (624)
Log message:
Change the shebang line from /bin/sh to /bin/ksh in all ports rc.d
daemon scripts and bump subpackages that contain the *.rc scripts.
discussed with and OK aja@
OK tb
   2017-07-27 03:55:45 by Stuart Henderson | Files touched by this commit (62)
Log message:
add COMPILER_LIBCXX to WANTLIB and bump
   2017-06-28 03:56:09 by Antoine Jacoutot | Files touched by this commit (14)
Log message:
Update to bro-2.5.1.
   2017-05-31 02:08:18 by Marc Espie | Files touched by this commit (173)
Log message:
switch everything to new COMPILER idiom, even stuff that won't build with clang
yet, but at least that part is done.
   2017-05-13 03:49:51 by Marc Espie | Files touched by this commit (25)
Log message:
first batch of WANT_CXX
   2017-04-12 04:58:36 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Conflict with archivers/brotli.
   2017-01-30 22:19:52 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
The bundled sqlite seems to pick up ICU4C if present and will error out if
it gets junked during the build; I could not find a proper way to disable
it...
So just BDEP on textproc/icu4c for now and hope this will workaround the
issue.
breakage reported by naddy@ a couple of times
   2016-12-13 02:01:48 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Rename patch, from Daniel Thayer.
   2016-12-12 08:12:04 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Tweak.
   2016-12-09 06:14:02 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Make it possible to load dynamic plugins.
from Daniel Thayer (upstream)
   2016-12-02 03:05:06 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
Drop the setrlimit patch, it's not needed anymore; prodded by Daniel Thayer
http -> https in README while here.
   2016-12-01 02:08:37 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Needs gfind to run some of the bro scripts.
@sample local-logger.bro which was forgotten after the update to 2.5.
reported by Daniel Thayer, thanks!
   2016-11-19 05:02:37 by Antoine Jacoutot | Files touched by this commit (16)
Log message:
Update to bro-2.5.
   2016-10-10 02:06:38 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Add a small entry for 'broctl cron'.
   2016-10-07 07:34:56 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Handle the ${PREFIX}/share/broctl/scripts/broctl-config.sh symlink at
install time (@exec-add/@exec-delete). The target changes according to the
spooldir and "@comment no checksum" does not work for symlinks.
   2016-10-07 06:59:42 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Revert the cmake patch again and use LDFLAGS. We want to make sure libbind
is used to prevent conflicts.
   2016-10-07 04:05:16 by Antoine Jacoutot | Files touched by this commit (4)
Log message:
Use setrlimit() in broctl, at least 256 FDs are needed.
Fix rc_reload().
   2016-09-17 08:42:13 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Properly @sample local site files so that they can be modified by the admin.
Noticed by and input from semarie
   2016-09-08 02:16:12 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
512 openfiles seems to be enough.
   2016-09-07 08:50:18 by David Coppa | Files touched by this commit (2)
Log message:
Use the right cmake lingo to set a non-standard RPATH.
ok aja@
   2016-09-07 04:56:02 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Drop cmake/FindBIND.cmake and use LDFLAGS until I understand what magic is
needed to handle RPATH.
   2016-09-06 10:12:57 by Antoine Jacoutot | Files touched by this commit (5)
Log message:
Add a couple of build patches from Michael Shirk.
While here, fix a warning.
   2016-09-01 07:14:00 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
Make sure we pick up the correct python version.
reported by naddy@
   2016-08-31 01:58:01 by Antoine Jacoutot | Files touched by this commit (1)
Log message:
Missing bdep on bison.
   2016-08-27 06:58:07 by Antoine Jacoutot | Files touched by this commit (6)
Log message:
Depends on several GeoIP DBs.
Few tweaks while here.
   2016-08-27 02:18:42 by Antoine Jacoutot | Files touched by this commit (2)
Log message:
Tweak README a bit.
   2016-08-27 00:39:14 by Antoine Jacoutot | Files touched by this commit (19)
Log message:
Long overdue update to bro-2.4.1.
Take maintainer while here.
Only slightly tested so far; so may get a few tweaks in the next days if
needed.
   2016-02-29 17:07:18 by Stuart Henderson | Files touched by this commit (16)
Log message:
bump (GeoIP pkgpath change)
   2015-07-19 10:38:48 by Stuart Henderson | Files touched by this commit (3)
Log message:
change SSLv3_method to SSLv23_method, not tested but the former isn't
going to work anyway.
   2015-06-18 01:25:44 by Anthony J. Bentley | Files touched by this commit (1)
Log message:
Replace dead mirror and update homepage.
   2015-03-16 12:08:00 by Christian Weisgerber | Files touched by this commit (869)
Log message:
fold lib-only PFRAG.shared into PLIST, regen PLIST, and bump
   2015-01-20 23:23:36 by Anthony J. Bentley | Files touched by this commit (68)
Log message:
Remove Kevin Lo as maintainer, by request.
   2015-01-17 20:16:09 by Christian Weisgerber | Files touched by this commit (3349)
Log message:
Drop remaining MD5/RMD160/SHA1 checksums.
   2014-11-05 04:44:00 by Stuart Henderson | Files touched by this commit (26)
Log message:
sync WANTLIB
   2011-06-02 09:43:05 by Matthias Kilian | Files touched by this commit (1)
Log message:
Accept --disable-silent-rules.
ok naddy@
   2010-11-19 15:31:39 by Marc Espie | Files touched by this commit (372)
Log message:
new depends
   2010-11-11 04:54:09 by Marc Espie | Files touched by this commit (20)
Log message:
WANTLIB conversion
   2010-10-12 14:12:52 by Robert Nagy | Files touched by this commit (4)
Log message:
Fix OpenSSL update fallout by using a diff from bro ticket #247
which checks and uses the correct API