Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: prelude-correlator | Distribution: SUSE Linux Enterprise 15 SP5 |
Version: 5.2.0 | Vendor: openSUSE |
Release: bp155.1.6 | Build date: Mon May 22 13:04:23 2023 |
Group: Productivity/Networking/Security | Build host: lamb09 |
Size: 765263 | Source RPM: prelude-correlator-5.2.0-bp155.1.6.src.rpm |
Packager: https://bugs.opensuse.org | |
Url: https://www.prelude-siem.org | |
Summary: Real time correlator of events received by Prelude Manager |
Prelude-Correlator allows conducting multi-stream correlations thanks to a powerful programming language for writing correlation rules. With any type of alert able to be correlated, event analysis becomes simpler, quicker and more incisive. This correlation alert then appears within the Prewikka interface and indicates the potential target information via the set of correlation rules.
GPL-2.0-or-later
* Wed Oct 20 2021 Johannes Segitz <jsegitz@suse.com> - Added hardening to systemd service(s) (bsc#1181400). Modified: * prelude-correlator.service * Sun Oct 25 2020 Andreas Stieger <andreas.stieger@gmx.de> - prelude-correlator 5.2.0: * Take timeout into account for CTI data * Fix DownloadCache initialization * Add SELinux rule for service startup * Add 'CTI' in CTI related alerts * Change 300s to 20s for CTI correlation rules * Fix grouping option with listed path * Avoid undefined analyzerid when referencing alerts - add upstream signing key and verify source signature * Mon Feb 03 2020 Dominique Leuenberger <dimstar@opensuse.org> - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut through the -mini flavors. * Fri Oct 25 2019 thomas.andrejak@gmail.com Bump version 5.1.0 - Fully support Python 3 - Update internal frameworks - Fix various bugs - Add new option for grouping correlation contexts - Add metadata for rules - Bump spec copyright to 2019 - Remove Python2 support - Python 2 will be removed step by step in all Linux distributions - Rename packages from %{name}-core to python3-%{name} - Force deleting __pycache__ directory - It contains pyc files - Remove patch prelude-correlator-ez_setup.patch - Fixed upstream * Wed Oct 04 2017 thomas.andrejak@gmail.com - Update to 4.0.0 - Rename source prelude-correlator.run to prelude-correlator-tmpfiles.conf - Clean prelude-correlator.service - Create python2-prelude-correlator and python3-prelude-correlator packages since prelude-correlator is python 3 compatible - Move to Python Singlespec * Fri Feb 10 2017 thomas.andrejak@gmail.com - Update to 3.1.0 (Prelude 3.1.0 released on 14 Sept 2016) - Remove unnecessary patches (prelude-correlator-main_py.patch) - Remove unnecessary spool directory - Spec-Cleaner * Sun Sep 04 2016 thomas.andrejak@gmail.com Remove Selinux since it should be directly in Security:SELinux * Tue May 03 2016 thomas.andrejak@gmail.com Initial import Add patchs : * prelude-correlator-ez_setup.patch * Support old setuptools * prelude-correlator-main_py.patch * Wrong shebang Add systemd files because it is a daemon. Also package SELinux files.
/etc/prelude-correlator /etc/prelude-correlator/conf.d /etc/prelude-correlator/conf.d/README /etc/prelude-correlator/prelude-correlator.conf /etc/prelude-correlator/rules /etc/prelude-correlator/rules/python /etc/prelude-correlator/rules/python/BruteForcePlugin.py /etc/prelude-correlator/rules/python/BusinessHourPlugin.py /etc/prelude-correlator/rules/python/CIArmyPlugin.py /etc/prelude-correlator/rules/python/DshieldPlugin.py /etc/prelude-correlator/rules/python/EventScanPlugin.py /etc/prelude-correlator/rules/python/EventStormPlugin.py /etc/prelude-correlator/rules/python/EventSweepPlugin.py /etc/prelude-correlator/rules/python/FirewallPlugin.py /etc/prelude-correlator/rules/python/OpenSSHAuthPlugin.py /etc/prelude-correlator/rules/python/SpamhausDropPlugin.py /etc/prelude-correlator/rules/python/WormPlugin.py /etc/prelude-correlator/rules/python/__init__.py /run/prelude-correlator /usr/lib/systemd/system/prelude-correlator.service /usr/lib/tmpfiles.d /usr/lib/tmpfiles.d/prelude-correlator.conf /usr/sbin/rcprelude-correlator /usr/share/doc/packages/prelude-correlator /usr/share/doc/packages/prelude-correlator/AUTHORS /usr/share/doc/packages/prelude-correlator/HACKING.README /usr/share/doc/packages/prelude-correlator/NEWS /usr/share/licenses/prelude-correlator /usr/share/licenses/prelude-correlator/COPYING /var/lib/prelude-correlator /var/lib/prelude-correlator/prelude-correlator /var/lib/prelude-correlator/prelude-correlator/ciarmy.dat /var/lib/prelude-correlator/prelude-correlator/dshield.dat /var/lib/prelude-correlator/prelude-correlator/spamhaus_drop.dat
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Jul 9 18:05:00 2024