[ANNOUNCE]: firestorm 0.5.3

aka "Cornish Rams Bladders",
aka "Finally, TCP stream reassembly!",
aka "Finally, a GUI!".

Firestorm is a GPL network intrusion detection system and can be found at: http://www.scaramanga.co.uk/firestorm/ screenshot at http://www.scaramanga.co.uk/firestorm/screenshots/gnome-20030317.png (531KB).

This release has many more goodies than just those mentioned as you can see from the details below. This release is not recommended for stable environments due to the sheer amount of new stuff to play with, actually it is mainly targeted at testers and hackers as it is pretty much just a CVS snapshot but it's been so long between releases that I thought what the hell.

So can we have success reports and bug reports please :)

 BUGS FIXED

• Fix bug in IPX decoder which could cause tcpdump converter to fail
• Many portability fixes, should fully build on FreeBSD now
• Fix prelude plugin bitrot
• Fixed longstanding bugs in dsize matcher
• Snort compatible 'offset' modifier
• Fix bug in log plugin displaying IP addresses in ipfrag alerts
• Fix crash bug in ipfrag (when reassembly times out)
• Don't alert on retransmit of SYN packets

 NEW FEATURES

• Balance alerts between alert spools
• Setwise string matching (MASSIVE performance increase)
• Rule ordering is preserved
• Basic GUI for reading elogs
• Increased disk performance for logging and disk capture
• Patch for ethereal to read elogs
• Intelligent TCP stream reassembly
• Greatly improved HTTP decode facility
• IPX snort rule support

Thank you and farewell.

-- 
// Gianni Tedesco (gianni at scaramanga dot co dot uk)
lynx --source www.scaramanga.co.uk/gianni-at-ecsc.asc | gpg --import
8646BE7D: 6D9F 2287 870E A2C9 8F60 3A3C 91B5 7669 8646 BE7D

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek