SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for yaf-2.2.2-1.fc17.i386.rpm :
Fri Mar 30 14:00:00 2012 Lawrence Rogers 2.2.2-1

* Release 2.2.2-1
Bug Fix for Vlan Tagging

Thu Mar 29 14:00:00 2012 Lawrence Rogers 2.2.1-3

* Release 2.2.1-3
Enabled -enable-ltdl-install=no to avoid conflicts with other packages

Thu Mar 29 14:00:00 2012 Lawrence Rogers 2.2.1-2

* Release 2.2.1-2
Enabled the following options:
- enable-applabel - enable the packet payload application label engine
- enable-p0fprinter - enable the p0f based OS finger printing capability
- enable-plugins - enable YAF to load plugin extensions

Thu Mar 8 13:00:00 2012 Lawrence Rogers 2.2.1-1

* Release 2.2.1-1
Bug Fixes

Sun Feb 19 13:00:00 2012 Lawrence Rogers 2.2.0-1

* Release 2.2.0-1
New Application Labels (MSNP, RTP, RTCP, Jabber)
Rolling Pcap output and pcap-per-flow option.
CERT p0f Fingerprints included.
New option to process out-of-sequence flows.
Several other bug fixes.

Tue Jan 3 13:00:00 2012 Lawrence Rogers 2.1.2-2

* Release 2.1.2-2
Rebuilt for libfixbuf-1.1.1

Fri Sep 23 14:00:00 2011 Lawrence Rogers 2.1.2-1

* Release 2.1.2-1
Added new --plugin-conf switch for adding a configuration file to a plugin
Added new --p0f-fingerprints switch to give location of p0f fingerprint files
Bug Fixes

Tue Sep 13 14:00:00 2011 Lawrence Rogers 2.1.1-2

* Release 2.1.1-2
Rebuilt for libfixbuf-1.0.2

Thu Aug 11 14:00:00 2011 Lawrence Rogers 2.1.1-1

* Release 2.1.1-1
Important bug fix for application labeling SSL plugin

Wed Jul 27 14:00:00 2011 Lawrence Rogers 2.1.0-1

* Release 2.1.0-1
New Information Element exported in every flow record, flowAttributes (CERT PEN 6871, IE 40).
YAF now checks if a flow has fixed-size packets and exports this flag using the new flowAttributes Information Element (see yaf)
Reset Application Label on UDP-uniflows for Deep Packet Inspection
Fixed yafscii invalid parameter bug that may have existed on certain platforms
Added VNC (RFB Protocol) application label
DPI Enhancements
FlowEndReason IPFIX field is now set to 31 for udp-uniflows
For Cygwin: Added support for getting the yaf config directory via the Windows Registry
Several other bug fixes

Mon Jun 13 14:00:00 2011 Lawrence Rogers 2.0.2.1

* Release 2.0.2-1
Improvements with Reassembly of TCP Fragments.
Bug Fix for DNS Deep Packet Inspection.
--no-frag switch now works.
Bug Fix for expiring flows that exceed the idle timeout when reading from a file.
Added the ability to configure YAF with WinPCAP.

Thu Apr 28 14:00:00 2011 Lawrence Rogers 2.0.1-1

* Release 2.0.1-1
Bug Fix for compile error with --enable-daginterface
Enhancement for SNMPv3 application labeler

Thu Apr 28 14:00:00 2011 Lawrence Rogers 2.0.0-1

* Release 2.0.0-1
This version requires libfixbuf-1.0.0 or greater.

Added Napatech Adapter Integration (requires libpcapexpress).
YAF now exports TCP, payload, finger printing, p0f, MAC, entropy, and DPI flow information within an IPFIX subTemplateMultiList data type.
Added the ability to export YAF capture statistics using IPFIX Options Templates.
The --stats or --no-stats were added to configure YAF stats output.
Added the ability to define Spread group types to use Spread as a manifold for flow export based on application, port, protocol, version, or vlan.
Added New Application Labels: DHCP, AIM, SOCKS, SMB, SNMP, NETBIOS.
Added a time-out buffer flush function.
Added SSL Certificate Capture.
Added DNS Resource Record Parsing.
Added Deep Packet Inspection for the MySQL protocol.
The --silk switch will maintain compatibility with SiLK by not nesting TCP information in the subTemplateMultiList data type.
Deep Packet Inspection elements are read from one configuration file.
Added the ability to create new DPI elements from configuration file.
Added UDP Export and Template Retransmission.
Many Bug fixes and other enhancements.

Thu Feb 3 13:00:00 2011 Lawrence Rogers 1.3.2-1

* Release 1.3.2-1
Bug fix for dnsplugin.c
Minor bug fix for fingerprint exporting.


  
ICM