SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for plaso-base-20231224-1.10.noarch.rpm :

* Sat Jan 27 2024 Greg Freemyer - update to version 20231224- support python39, python310, and python311 packages simultaneously via multi-package building
* move the files that are NOT python version dependant out to a plaso-tools package- remove dependancy on python-future. That was meant for python 2 packages only.
* Tue Aug 01 2023 Greg Freemyer - use %{?sle15_python_module_pythons} for opensuse15.5 compatibility
* Wed Mar 08 2023 Greg Freemyer - update to version 20222129- remove Requires: python-efilter
* At some point python-efilter was apparently dropped as a requirement for plaso
* python-efilter has been dropped from factory- change libewf2 requirement from the stable branch to the libewf3 experimental branch
* Wed Nov 30 2022 Greg Freemyer - update to version 20220930- Add Requires python-libfsfat- Change Requires python-cffi-backend to python-cffi- Change Requires python-zmq to python-pyzmq- Remove Requires python-idma (no longer in openSUSE)- Remove Requires python-fnt (no longer in openSUSE)- Remove Requires python-yaml (no longer in openSUSE)
* Mon Sep 26 2022 Greg Freemyer - correct the name of the openSUSE timezone package. Should be python-pytz
* Mon Sep 19 2022 Greg Freemyer - update to version 20220724
* For Release Notes, see https://osdfir.blogspot.com/2022/08/plaso-20220724-released.html
* elasticsearch fully deprecated in favor of opensearch # totally untested in openSUSE- removed Recommends: python-elasticsearch- added Recommends: python-opensearch- updated numerous Requires statements, and added numerous others- changed from python39 to python310 as the underlying python release- removed Requires: python3-six
* This is untested as it is hard to have an opensuse install without python3-six at this point.
* Wed Jun 08 2022 Greg Freemyer -remove BuildRequires: %{python_module pbr} -- no longer needed-remove BuildRequires: %{python_module devel} -- no longer needed-add %if logic to allow PyYAML/bencode/etc to install on 15.4 and tumbleweed
* Wed Jun 01 2022 Greg Freemyer - update to version 20220428
* The 20220428 release did not come with release note. The previous 5 are at:
* https://osdfir.blogspot.com/2021/02/plaso-20210213-released.html
* https://osdfir.blogspot.com/2021/04/plaso-20210412-released.html
* https://osdfir.blogspot.com/2021/06/plaso-20210606-released.html
* https://osdfir.blogspot.com/2021/10/plaso-20211024-released.html
* https://osdfir.blogspot.com/2021/10/plaso-20211024-released.html
* Key notes from the above
* Beggining migration from elasticsearch to opensearch
* Initial support to directly read from Mac OS disk images (.dmg, .sparseimage, .sparsebundle) (#3540).- added requires python-defusedxml- remove references to non-existing folders from for loop that preps the source code folder.- add %define pythons python39 - python39 also works for opensuse 15.4 - - Trying to bulid python38, python39, python310 is failing for unknown reasons - - Wrap this in an if so only applies to tumbleweed or releases greater than 15.4
* Thu Dec 24 2020 Greg Freemyer - update to version 20201007
* The Elasticsearch output module now includes default type mappings thanks to AATTwilliam-billaud. This avoids fields containing both numbers and text being misinterpreted by Elasticsearch.
* A new parser containing initial support for Spotlight store database (store.db) files.
* libfsext/pytfsext has been added as an experimental feature to overcome shortcomings in the pytsk ext implementation. Use the `--vfs-back-end=fsext` option to use libfsext instead of SleuthKit.
* Log2timeline will now not attempt to extract events from MacOS sleep and swap files.- from version 20200630
* new unattended mode
* The linear status view now shows more information about the overall processing status
* Time zone handling was overhauled. There are now two separate timezone-related options: `--timezone` indicates the time zone of the source data, and will be used when Plaso can’t determine the appropriate time zone automatically. `--output_time_zone` specifies a time zone to use when outputting events. This is currently only supported by the ‘dynamic’ and ‘l2tcsv’ output modules.
* There are some new additions to the Windows and Linux tag files, courtesy of pyllyukkoAATT
* It’s now possible to specify an elasticsearch password on the command line thanks to new contributor william-billaudAATT. Note that this password will be visible to anyone who is able to list running processes, so be careful about using this on any shared system.
* New parsers / supported data formats: Apple\'s Transparency, Consent, and Control (TCC) SQlite database. Google Log (glog) files.
* Sun Apr 05 2020 Greg Freemyer - update to version 20200227
* Changes to handle multi string Windows computer name value #2819 (#2820)
* Removed 4n6time output modules #2809 (#2810)
* Changes Elasticsearch output module to support version 7 (#2830)
* Various small updates to file processors- add reguires python-libluksde
  
ICM