MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
259 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

259 Commits (06580b6d188088d91dbc72e21566b212412c9015)

Author SHA1 Message Date
noud 06580b6d18 Authkey validation bug and cleanup of fixed bugs list. 2012-08-17 08:43:19 +02:00
noud 44172d244b Authkey validation. 
An authkey with any length, so less then 40, could be entered.
Now authkey has to have a length of 40 (or higher).
 2012-08-17 08:42:21 +02:00
noud 43d9f42032 HIDS exports sorted (and small indention correction). 2012-08-08 14:21:28 +02:00
noud 69ad48813f Whitelist not on NidsExportComponent::urlRule. 
In hindsight, an url should not be excluded given a host or domain name.
 2012-08-07 12:54:49 +02:00
noud 17ed90ddc4 Correlation speedup using AttributesController i.s.o. EventsController. 
We forgot to change some view things using the right controller.
 2012-08-07 11:59:11 +02:00
noud cdc7484944 REST edit Event implementation. 
Now after publish, edit and (re)publish an event,
that event will be updated on the other servers.
 2012-08-07 11:57:52 +02:00
noud 8dc4fa383b Event.user_id. 
Event.user_id was re-added but we still missed some,
so an added event would get user_id set to zero.
Now Event gets the correct user_id again from
the person logged in and adding.
(lateron this must not be used during sync.)
 2012-08-06 14:27:55 +02:00
noud b0614c5b95 Whitelist. 
Mention the whitelist for NDIS export on Export page.
 2012-08-06 10:44:16 +02:00
noud b24acfb4a5 Whitelist. 
An admin can maintain a whitelist of host, domain name and ip numbers.
In the NIDS export lines containing whitelist items are commented out.
 2012-08-06 10:42:46 +02:00
noud 2dea0e347d Correlation performance gain. 
in Config/bootstrap.php add
Configure::write('CyDefSIG.correlation', 'sql');

possible values: 
- default, like it was
- db, correlation in database
- sql, selection on attributes i.s.o. per attribute
  (sql improvement possible if result conform db above)

Network activity, ip-src
30 class-C network ip addresses
(7650 tupels) (time in ms)

          default     db    sql
all         25366  16601  15941
            24839  16604  15611
paginated   16759   8447   6615
            17734   8639   8846

this is used in both:
- events/view/<id>
- attributes/event/<id>
 2012-08-03 12:00:16 +02:00
noud fbd3ecc5b6 Bug, unknown server internet name and pull. 2012-08-01 10:23:23 +02:00
noud 01980dbe88 Fix to pulling from an unknown server. 
- a server having a non-existing internet name gives
  "php_network_getaddresses:
  getaddrinfo failed: Name or service not known"
  on pull.
 2012-08-01 10:20:17 +02:00
noud 20d4e202e5 Sync Servers, error if server no MISP or non-existing hostname. 2012-08-01 09:07:20 +02:00
noud 0854e19439 Sync Servers, fix if server no MISP or non-existing hostname. 
- a server containing no MISP gives "XML cannot be read." on publish.
- a server having a non-existing internet name gives 
  "php_network_getaddresses: getaddrinfo failed: Name or service not
known" on publish.
 2012-08-01 09:06:39 +02:00
noud bda5e56f9b Export HIDS files with MD5 and SHA-1. 2012-07-27 15:19:40 +02:00
git 8ba98a1e57 Rollback of pagination on event view 
Comeback to previous event layout. This does not change the preformance issue so it is not worth to put in stable.
We will move it to the devel branch
 2012-07-24 15:44:04 +02:00
noud de89d28caa Fix, paging on event with lots of attributes. 2012-07-20 13:27:55 +02:00
noud c1ed9c5839 2 new bugs: 
- event with lots of attributes has no paging.
- non-composite attribute and non-printable.
 2012-07-20 08:51:20 +02:00
noud e9234bcee7 Fixed non-printable in no-composite attribute. 2012-07-20 08:48:12 +02:00
noud 25d5ff4290 Show events with user.email if admin. 2012-07-19 14:53:12 +02:00
noud 78f629e6dd Redo Event.user_id 2012-07-19 14:52:27 +02:00
noud c086981676 Search Attributes fixed. 2012-07-19 11:41:04 +02:00
noud 29a67f4d96 Fixes the Search Attributes. 2012-07-19 11:41:04 +02:00
noud 8db00efdac Remove extra dot between filename and ext when downloading attachment. 2012-07-19 11:41:04 +02:00
deresz d879deb027 news: removed some old stuff 
EventsController: contact mail display name from the config file
 2012-07-19 09:48:45 +02:00
Andrzej Dereszowski bf98f2db3c Merge branch 'develop_0.2.2_fixes' into develop 
Conflicts:
	app/Model/Attribute.php
 2012-07-11 16:15:27 +02:00
noud e353c405e1 New bug.. type filename|md5, conform type md5 strtolower. 2012-07-11 14:37:04 +02:00
noud 5c1a8e22fb Fix, do strtolower on types filename|md5 and filename|sha1 conform types 
md5 and sha1.
 2012-07-11 14:35:46 +02:00
deresz ebec1d7f26 Make the documentation "brand-neutral" to be able to develop it in a community. 2012-07-11 11:03:18 +02:00
noud 25d33e3578 New bug, authError gets displayed before login. 2012-07-11 10:20:44 +02:00
noud e67d9ebdec Fix to authError getting displayed before login. 2012-07-11 10:19:57 +02:00
noud 50e24c7c56 Upload always ticked if malware-sample, always unticked if attachment. 2012-07-11 09:48:44 +02:00
noud c1823b1cf4 Corrects the download in IE fix, to filename.ext.zip or filename.ext. 
(Got filename.ext.zip.zip for attachment and filename.ext.ext for
malware given the previous fix)
 2012-07-10 17:23:00 +02:00
noud 3f9e1d650b New bug, Add User and validation error gives extra authkey not defined. 2012-07-10 15:39:08 +02:00
noud a08842e7d4 Fix to New User, some validation error then authkey not defined. 2012-07-10 15:38:10 +02:00
noud c1bc80ac61 Download attachment does not work on MS Internet Explorer. 
This _can_ be a fix, not sure. If not, CakePHP bug #2554 or others.
 2012-07-10 13:36:32 +02:00
noud 1f894119c7 One extra bug (IE download). 2012-07-10 11:42:35 +02:00
noud 8f4727e3ad Correction to upload so zip only ticked when malware and not when 
attachement.
 2012-07-10 11:39:43 +02:00
noud 1a56db0aac Do validation after edit attribute. 2012-07-09 15:13:54 +02:00
noud aaefa228f0 Bug found. 2012-07-09 15:12:58 +02:00
noud 1143ee265d Fix to: Add attribute, non-valid, correct, ´black-holed´. 2012-07-09 14:18:26 +02:00
noud 4ac501d54e Only show categories with type attachment or malware-sample in Add 
Attachement view. (this was..No possibility to upload if type
attachement or malware-sample is not in category.)
 2012-07-09 14:14:55 +02:00
noud e09c2c9160 2 extra bugs found. 2012-07-09 14:09:24 +02:00
noud ed41233f2a No possibility to upload if type attachement or malware-sample is not in 
category.
 2012-07-06 13:48:17 +02:00
noud 6c6086c5c8 List of outstanding and fixed bugs. 2012-07-06 13:45:31 +02:00
deresz 73e87f31e0 Use CyDefSIG.name from Config in alert e-mail subjects. 2012-07-04 17:15:01 +02:00
deresz dbf7fafea8 Correction to "link" attribute type - links were not actually created. 
Also changed it to proper "cake" way.
 2012-07-04 15:51:19 +02:00
noud 63bdfe2961 Edit composite attribute to non-composite attribute fix. 2012-07-04 14:05:18 +02:00
deresz 50e3566f3a Some modifications to category/attribute matrix. MISP database is now compatible for sync with CyDefSIG. 2012-07-04 11:28:40 +02:00
Andrzej Dereszowski 2d8695732d Merge branch 'develop' of code.lab.modiss.be:cydefsig into develop_0.2.2_fixes 2012-07-02 17:11:38 +02:00