$Id: ChangeLog,v 1.36 2009/04/16 16:43:01 jayrfink Exp $ version 1.1 - Ported to NetBSD version 1.0 - Manual page - Better daemonization code - Threshold setting to cut down on logging - Added alternate config and logfile options - Config file support and parser - Added polling/interval to cut down on log entries - Logging support - Tore out all deniald stuff version 0.9 - Full Darwin support. - Uncovered nasty optimization bug in gcc. Cranked it down to -O2 which seems to have fixed portability issues. - Removed scoring file in favor of builtins/might add levels later - Fixed possible no logging by default in daemon mode bug. - Changed default logile to /var/log/netward.log (can be overridden) - Stress tested with -C and -W event handler scripts. - Timestamps are no longer optional. - Fixed message handler bug. Unassigned values were being passed to the message handler (even by default) causing strange segfaults. version 0.8 - Dropped support for `-f "tcpdump expr" (which is difficult for filters that need quotes) to using the rest of the argument string like: netward -d host foo.bar.net - Removed the need to use ncurses. - Cleaned up print and debug print messages to be more consistent - Made several limits into global constified variables - Reverted to regular opt/longopt due to unending parsing issues - Dropped private network option; use pcap filter for this version 0.7 - Now use a single filtering method; pcap style (netfilter) - Added call external script with the IP address as an automatic arg - Only report minoralerts in verbose mode - Dropped quiet support option since it is muted in daemon mode - Dropped ipf/ipfw redir support in favor of external exec call version 0.6 - New debug-gdb target using gdb DEBUG prints (does not work everywhere) Requires your OS has gdb (see HACKING file) - Dropped support for darwin *without* debug; darwin is having issues... - Migration to the NetWard project - Integrated packet printing into NetWard itself - Dropped nject (see README for testing) - Darwin compile/build support in place (still buggy) version 0.5 - Fixed message display routine bug - Added syslog support for daemon mode - Manual page added - Changed the nomenclature of Get_* to call_* - Tore out local log_file bits in denial - Replaced Realloc with nrealloc in denial - Fixed bug where user could specify polls in daemon mode - Fixed bug where user could still set npkts in daemon mode - Fixed bug where user could still set eflag in daemon mode - Fixed bug where user could still set vflag in daemon mode version 0.4 - Migration to Packet System software module or pksys version 0.3 - Install directives for nread and nject - Draft manual pages for nread and nject - Daemon mode implemented for nread - Wrote a basic packet injector for alarm testing - nject - Commoned up code where possible into common.c for nject and nread - Added a simple single error handler to manage logging/console prints - Changed the utils names to something easier to remember; n* version 0.2 - Articulated with options for libpcap filtering and target specifications - Added a better arguments vector copy (taken from tcpdump) version 0.1 - A bare bones sniffer that barely picked out tcp packets and often wedged a machine. It was known as packetkeeper.