Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

prelude-correlator-5.2.0-bp155.1.6 RPM for noarch

From OpenSuSE Leap 15.5 for noarch

Name: prelude-correlator Distribution: SUSE Linux Enterprise 15 SP5
Version: 5.2.0 Vendor: openSUSE
Release: bp155.1.6 Build date: Mon May 22 13:04:23 2023
Group: Productivity/Networking/Security Build host: lamb09
Size: 765263 Source RPM: prelude-correlator-5.2.0-bp155.1.6.src.rpm
Packager: https://bugs.opensuse.org
Url: https://www.prelude-siem.org
Summary: Real time correlator of events received by Prelude Manager
Prelude-Correlator allows conducting multi-stream correlations
thanks to a powerful programming language for writing correlation
rules. With any type of alert able to be correlated, event
analysis becomes simpler, quicker and more incisive. This
correlation alert then appears within the Prewikka interface
and indicates the potential target information via the set of
correlation rules.

Provides

Requires

License

GPL-2.0-or-later

Changelog

* Wed Oct 20 2021 Johannes Segitz <jsegitz@suse.com>
  - Added hardening to systemd service(s) (bsc#1181400). Modified:
    * prelude-correlator.service
* Sun Oct 25 2020 Andreas Stieger <andreas.stieger@gmx.de>
  - prelude-correlator 5.2.0:
    * Take timeout into account for CTI data
    * Fix DownloadCache initialization
    * Add SELinux rule for service startup
    * Add 'CTI' in CTI related alerts
    * Change 300s to 20s for CTI correlation rules
    * Fix grouping option with listed path
    * Avoid undefined analyzerid when referencing alerts
  - add upstream signing key and verify source signature
* Mon Feb 03 2020 Dominique Leuenberger <dimstar@opensuse.org>
  - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to
    shortcut through the -mini flavors.
* Fri Oct 25 2019 thomas.andrejak@gmail.com
  Bump version 5.1.0
    - Fully support Python 3
    - Update internal frameworks
    - Fix various bugs
    - Add new option for grouping correlation contexts
    - Add metadata for rules
  - Bump spec copyright to 2019
  - Remove Python2 support
    - Python 2 will be removed step by step in all Linux distributions
    - Rename packages from %{name}-core to python3-%{name}
  - Force deleting __pycache__ directory
    - It contains pyc files
  - Remove patch prelude-correlator-ez_setup.patch
    - Fixed upstream
* Wed Oct 04 2017 thomas.andrejak@gmail.com
  - Update to 4.0.0
  - Rename source prelude-correlator.run to prelude-correlator-tmpfiles.conf
  - Clean prelude-correlator.service
  - Create python2-prelude-correlator and python3-prelude-correlator
    packages since prelude-correlator is python 3 compatible
  - Move to Python Singlespec
* Fri Feb 10 2017 thomas.andrejak@gmail.com
  - Update to 3.1.0 (Prelude 3.1.0 released on 14 Sept 2016)
  - Remove unnecessary patches (prelude-correlator-main_py.patch)
  - Remove unnecessary spool directory
  - Spec-Cleaner
* Sun Sep 04 2016 thomas.andrejak@gmail.com
  Remove Selinux since it should be directly in Security:SELinux
* Tue May 03 2016 thomas.andrejak@gmail.com
  Initial import
    Add patchs :
    * prelude-correlator-ez_setup.patch
    * Support old setuptools
    * prelude-correlator-main_py.patch
    * Wrong shebang
    Add systemd files because it is a daemon.
    Also package SELinux files.

Files

/etc/prelude-correlator
/etc/prelude-correlator/conf.d
/etc/prelude-correlator/conf.d/README
/etc/prelude-correlator/prelude-correlator.conf
/etc/prelude-correlator/rules
/etc/prelude-correlator/rules/python
/etc/prelude-correlator/rules/python/BruteForcePlugin.py
/etc/prelude-correlator/rules/python/BusinessHourPlugin.py
/etc/prelude-correlator/rules/python/CIArmyPlugin.py
/etc/prelude-correlator/rules/python/DshieldPlugin.py
/etc/prelude-correlator/rules/python/EventScanPlugin.py
/etc/prelude-correlator/rules/python/EventStormPlugin.py
/etc/prelude-correlator/rules/python/EventSweepPlugin.py
/etc/prelude-correlator/rules/python/FirewallPlugin.py
/etc/prelude-correlator/rules/python/OpenSSHAuthPlugin.py
/etc/prelude-correlator/rules/python/SpamhausDropPlugin.py
/etc/prelude-correlator/rules/python/WormPlugin.py
/etc/prelude-correlator/rules/python/__init__.py
/run/prelude-correlator
/usr/lib/systemd/system/prelude-correlator.service
/usr/lib/tmpfiles.d
/usr/lib/tmpfiles.d/prelude-correlator.conf
/usr/sbin/rcprelude-correlator
/usr/share/doc/packages/prelude-correlator
/usr/share/doc/packages/prelude-correlator/AUTHORS
/usr/share/doc/packages/prelude-correlator/HACKING.README
/usr/share/doc/packages/prelude-correlator/NEWS
/usr/share/licenses/prelude-correlator
/usr/share/licenses/prelude-correlator/COPYING
/var/lib/prelude-correlator
/var/lib/prelude-correlator/prelude-correlator
/var/lib/prelude-correlator/prelude-correlator/ciarmy.dat
/var/lib/prelude-correlator/prelude-correlator/dshield.dat
/var/lib/prelude-correlator/prelude-correlator/spamhaus_drop.dat


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 18:05:00 2024