iglocska
9db3a36103
Small fixes
...
- filename fix
- per event download fixed
2015-05-20 16:28:59 +02:00
iglocska
2afea61ea0
Added the missing ways to exploit the rpz functionality
...
- rpz added to exports, both old-style and with background workers
- per event rpz functionality added
2015-05-20 16:23:42 +02:00
iglocska
dedc9f5ef2
First revision of the RPZ export complete
...
- documented in automation view
- right now it follows the simple rule of user > admin settings > default values when generating the export
- Parameters can be passed via url / JSON object / XML object
- filters include filter on event ID, date range, tags
TODO:
- buttons for a per event download via the UI
- introduce new export option for normal users (via background workers and the old style export)
2015-05-20 15:04:41 +02:00
iglocska
81bd84af11
Further progress, still rough around the edges
...
- server settings and validation work
- configurable template via settings
- configurable via API as well
- Also trying to define the structure for future Plugin settings
- The idea is to have them in a separate tab all prepended with the plugin name
- since this is not yet part of the future flexible plugin system, it is still kept in the main codebase, but the idea is to get the naming conventions ready for the future version
2015-05-19 15:25:45 +02:00
iglocska
c02aeb8802
Fix to copy pasta issue breaking from/to filters in exports, fixes #494
2015-05-16 01:31:18 +02:00
iglocska
99f79ec318
First version of the RPZ export
...
- still undocumented
- very naive policy settings
- limit per event / tags / date range
2015-05-15 14:58:53 +02:00
iglocska
7fb6e2f95e
Fixed issue with proxy settings attempted to be added in synctool, even if not set
2015-05-15 09:25:07 +02:00
iglocska
88d4a2da83
Merge branch 'certauth' into hotfix-2.3.64
2015-05-13 17:20:15 +02:00
iglocska
962a21e3c6
Left off a file
2015-05-13 17:04:09 +02:00
iglocska
0851f44764
PGP key lookup for lazy MISP instance admins, fixes #492
...
- Added a button for the add user / edit user views that fetches the entered e-mail addresses pgp key from pgp.mit.edu
2015-05-13 17:01:56 +02:00
iglocska
35134a7f2e
Implemented correct from / to api parameter checks
...
- based on stevengoossensB's pull request
2015-05-13 16:12:06 +02:00
iglocska
644b0cd512
Password reset fix
2015-05-12 11:28:36 +02:00
iglocska
b144831b4d
Removed debug
2015-05-04 19:02:50 +02:00
iglocska
d9f4e996f2
Parse authorization headers for a valid MISP auth key, fixes #478
...
- Keeps parsing until a valid auth key is found
2015-05-04 19:01:12 +02:00
Guilherme Capilé
3055d153f8
minor typo in the unset -- should be ['User']['gpgkey']
2015-04-28 11:32:20 -03:00
Guilherme Capilé
d2eaccec31
removed session handling from plugin and moved to AppController
2015-04-28 11:25:13 -03:00
Guilherme Capilé
7a40b124a8
Merge remote-tracking branch 'upstream/master'
2015-04-28 10:45:17 -03:00
Aaron Kaplan
85ea03803b
Merge branch 'master' of https://github.com/MISP/MISP
2015-04-21 06:57:18 +02:00
David André
d03fecdc59
Fix for #467
...
Fix for issue #467
Changed the label of IDS checkbox for proposals
2015-04-20 13:43:36 +02:00
Guilherme Capilé
6de2541c9a
added user defaults to plugin
2015-04-16 22:14:43 -03:00
Guilherme Capilé
9179a2263f
Added client SSL certificate authentication as a CakePHP plugin
2015-04-16 22:14:43 -03:00
Guilherme Capilé
d0c3b44e34
Added client SSL certificate authentication as a CakePHP plugin
2015-04-16 22:14:43 -03:00
Iglocska
699e5a9d17
Small fix to editing an event via the api
...
- adding attributes without a uuid will cause the edit to fail
- attributes without a uuid will now be added as a new attribute
2015-04-16 23:16:15 +02:00
Aaron Kaplan
782be3bd0b
Merge branch 'master' of https://github.com/MISP/MISP
2015-04-14 15:38:52 +02:00
Iglocska
e339f0e646
Fixed various issues with the attribute REST api
...
- also updated the sample curl scripts
2015-04-14 13:50:51 +02:00
Iglocska
e8bcab19db
Background job for pull incorrectly checks the push flag on the server, fixes #457
...
- Issue fixed: When background jobs are enabled the wrong flag is checked when attemptying to enqueue a pull
2015-04-13 14:40:42 +02:00
Iglocska
116bf8e425
Fix to an issue with the caching
...
- CSV caching was saving to file on each attribute, creating extremely high amounts of I/O
- reduced it to saving to file / event
- fixed incorrect pathing
2015-04-08 22:47:28 +02:00
Iglocska
1ff0ade5cb
Merge branch 'triple-dots' into hotfix-2.3.59
2015-04-08 22:41:54 +02:00
Iglocska
35976ac847
Merge branch 'cakephp-update' into hotfix-2.3.59
2015-04-08 22:38:18 +02:00
Iglocska
9f09d6d7e5
Merge branch 'cakeresque-queues' into hotfix-2.3.59
2015-04-08 22:37:30 +02:00
Iglocska
06f8a9bbd6
Merge branch 'proxy' into hotfix-2.3.59
2015-04-08 22:36:13 +02:00
Iglocska
c2d5a5f1fc
Merge branch 'stix_no_random_ids' into hotfix-2.3.59
2015-04-08 22:30:39 +02:00
Iglocska
348923691f
Merge branch 'stix-info' into hotfix-2.3.59
2015-04-08 22:29:36 +02:00
Iglocska
094f932616
Merge branch 'disallow_unpublished_events' into hotfix-2.3.59
2015-04-08 22:22:22 +02:00
Richard van den Berg
c49c387337
Only truncate string if adding ... will make it shorter
2015-04-08 14:08:38 +02:00
Iglocska
cc5c32fca2
Sync update issue fixed
...
- attributes were not correctly updated during a manual push due to an incorrect conditional
- re-publishing was unaffected
2015-04-02 00:14:36 +02:00
Richard van den Berg
9b8a3e9873
Removed extraneous dash
2015-03-24 14:28:59 +01:00
Richard van den Berg
0306912271
Remove gitlink for app/Plugin/CakeResque
...
CakeResque is installed with composer.phar
Removing the gitlink gets rid of this annoying error message:
No submodule mapping found in .gitmodules for path 'app/Plugin/CakeResque'
2015-03-24 10:27:13 +01:00
Richard van den Berg
056b21ff6f
Update cakephp to latest 2.6 branch
2015-03-24 10:03:17 +01:00
Richard van den Berg
1a8960b480
Use correct CakeResque queue
2015-03-23 18:02:17 +01:00
Richard van den Berg
fa112d77c3
Use correct CakeResque queues
2015-03-23 17:58:41 +01:00
Richard van den Berg
75f93641dc
Use isOK() for version check
2015-03-19 15:09:54 +01:00
Richard van den Berg
850e4bd19f
Catch HTTP error codes
2015-03-19 14:05:10 +01:00
Richard van den Berg
2f58fdec0d
Catch invalid proxy configuration
2015-03-19 13:33:17 +01:00
Richard van den Berg
106b6cb06b
Allow SyncTool with empty $server
2015-03-19 13:03:16 +01:00
Richard van den Berg
05bc4c4389
Allow SyncTool to be used for generic HTTP(S) connections
2015-03-19 12:57:46 +01:00
Richard van den Berg
0e66ff140f
Use SyncTool for diagnostics
2015-03-19 12:31:35 +01:00
Richard van den Berg
b62032fc7b
Fix typo
2015-03-19 12:20:16 +01:00
Richard van den Berg
2ccab722d7
Add proxy section to server diagnostics
2015-03-19 12:15:28 +01:00
Richard van den Berg
0d242d8549
configProxy() checks for empty arguments, no need to do it twice
2015-03-19 10:03:40 +01:00
Richard van den Berg
9e7ea8fe74
Add proxy support to SyncTool
2015-03-19 10:03:25 +01:00
Iglocska
c9d1badaa3
Organization field in Servers too short to fit valid organisation identifiers, fixes #436
...
- updated the MYSQL.sql file for future MISP installations
- added admin script to do the update from the web interface
2015-03-17 00:06:59 +01:00
Iglocska
b29e8fdada
Site admins can now create proposals, fixes #417
...
- site admins can now create proposals to an event / attribute as long as the event does not belong to their organisation
- new icon for proposals to differentiate them from edits
2015-03-14 09:01:20 +01:00
Iglocska
524871ab52
Sync users should default to termsaccepted and no password change required, fixes #432
2015-03-14 08:35:24 +01:00
Iglocska
50a03e897d
Search in logs fixed, fixes #434
...
- The log search incorrectly set the search terms for empty fields, meaning that any log entries that had unfilled columns, such as it is the case with admin_email would never return results
2015-03-14 08:29:19 +01:00
iglocska
6763159e87
Security fix
...
- filenames are now enclosed by quotes instead of double quotes while executing the zip command via exec
2015-03-10 10:58:15 +01:00
Richard van den Berg
7f201fdf81
Consistent timestamps for STIX objects
2015-03-05 13:26:13 +01:00
Richard van den Berg
2a56a00e88
Consistent id's for malware-sample artifacts
2015-03-04 17:28:44 +01:00
Richard van den Berg
bff42361ef
Consistent id's for observable compositions
2015-03-04 17:07:32 +01:00
Richard van den Berg
a4fd3b957a
Use property class name in object ID
2015-02-25 09:50:00 +01:00
Richard van den Berg
8b89caf5b9
Use attribute uuid for cybox id's
2015-02-24 18:02:51 +01:00
iglocska
66db71e835
json view fixed, fixes #411
2015-02-24 15:46:42 +01:00
iglocska
8dad666b38
Disabled the animation in the MISP logo
...
- it was quite heavy on CPU usage and it was too subtle to notice anyway
2015-02-20 11:11:00 +01:00
iglocska
4239edffc9
Org admins editing privileged users demotes the privileged user to a lower permission level, fixes #408
...
- an org admin now correctly can select the previously assigned privileged role for a user that he/she is editing
2015-02-20 09:17:25 +01:00
Richard van den Berg
d2556ff91d
Use org name and baseurl in XML namespace for STIX
2015-02-19 15:46:54 +01:00
Richard van den Berg
c9bd754adc
More informative CIQ titles
2015-02-19 15:46:45 +01:00
Richard van den Berg
3c205c66f7
More informative STIX titles
2015-02-19 15:46:34 +01:00
iglocska
6782159b53
API search incorrectly generating JSON with several events, fixes #407
...
- also fixed the edit button on the index
2015-02-18 11:45:15 +01:00
iglocska
0dd8318fb3
Further work on the exports
...
- Performance improvements for the event search exports
- JSON view code moved to Lib
- Fixed an issue that didn't restrict the dates correctly with the from / to parameters
2015-02-16 17:31:32 +01:00
iglocska
fbca80d680
Added more contextual info for the CSV exports, fixes #391
2015-02-16 14:47:21 +01:00
iglocska
b5be1a36fb
Correlation disabled for http-method, fixes #406
2015-02-16 13:30:15 +01:00
iglocska
eed95b1129
Missing json view file added
...
- return attributes fails when requesting the results in JSON
- added missing view file
2015-02-16 13:14:05 +01:00
iglocska
54a86732e4
Relaxed the auth key requirement for nids exports
...
- incorrect check on the nids exports blocked logged in users from downloading the snort/suricata rules of an event
- check removed
2015-02-16 08:59:53 +01:00
iglocska
701160acd9
Fixed an issue with the free-text import failing on more than ~100 parsed values, fixes #389
...
- Caused by a 1k variable / form limit imposed by php since 5.3.9
- Form data now collected by JS and passed as a single JSON in the POST request
- Allows massive IOC lists to be imported
- improved performance
2015-02-10 14:42:24 +01:00
Richard van den Berg
d5e556ee1e
Fixed missing parentheses
2015-02-05 17:40:56 +01:00
iglocska
12d7025bce
Patch fixing json download, fixes #387
...
- World's smallest patch
2015-02-05 17:25:40 +01:00
Richard van den Berg
12dc5b6579
Make unpublished events private if MISP.unpublishedprivate == true
2015-02-05 17:16:40 +01:00
Richard van den Berg
d3c0144b25
Merge remote-tracking branch 'upstream/master'
2015-02-05 14:17:10 +01:00
iglocska
2aa902cd4b
Removed the old documentation, fixes #378 and some small fixes
...
- resolved an issue of warnings being generated when an event without attributes / relations gets XML exported.
- added new dump of the documentation
2015-02-05 10:11:29 +01:00
Aaron Kaplan
335d5b1492
Merge branch 'master' of https://github.com/MISP/MISP
2015-02-04 11:45:59 +01:00
iglocska
2401cedfdc
Left off file in previous hotfix added
...
- added a file that was not pushed during the last hotfix
- some improvements to the XML export to lower memory usage
2015-02-04 11:06:41 +01:00
iglocska
8c30115f12
Documentation fail fixes #384
2015-02-03 21:53:03 +01:00
iglocska
fddb06b3c2
Small change to the XML export
...
- won't write to file after all, simply keeps adding to a string in memory. Should still resolve the XML conversion taking up high amounts of memory issue.
2015-02-03 17:29:46 +01:00
iglocska
f0aa849d04
Various improvements to the exports
...
- Unified the way exports accept negated parameters
- Fixed the documentation
- Most exports are now restrictable by the event date (From/To parameters)
- none cached XML export now writes to file after converting each event, clearing the memory and resolving any potential memory issues
2015-02-03 17:06:05 +01:00
iglocska
98f65aae09
Merging several pull requests and a few other changes
...
- Pull request by RichieB2B: CentOS 6 & 7 installation instructions
- Pull request by RichieB2B: STIX exports now include comments for indicators
- Pull request by RichieB2B: Issue fixed with md5 type attributes not generating observables correctly during a STIX export
- Password policy change-able by a site admin via a regex and a min char requirement. Old functionality assumed if not set.
- bug fixed with incorrect jobs being created appearing during a scheduled pull (designates a push)
- slight changes to the installation instructions
- database.default.php now uses localhost instead of 127.0.0.1 and the default MySQL port
2015-02-02 13:12:15 +01:00
iglocska
be0fbfd108
Merge branch 'RichieB2B-ncsc-nl/stix_indicator_comments' into hotfix-2.3.41
2015-02-02 10:41:28 +01:00
Richard van den Berg
c3615eff32
Pretify some comments
2015-01-29 17:24:44 +01:00
Richard van den Berg
e6e66f3f1c
Fixed typo
2015-01-29 17:21:54 +01:00
Richard van den Berg
883fe07861
Fixed typo
2015-01-29 17:20:57 +01:00
Richard van den Berg
0aa09fec4d
Fix string assignments to StructuredText
2015-01-29 17:19:10 +01:00
Richard van den Berg
09511986e7
Map most MISP attribute comments into STIX
2015-01-28 17:48:11 +01:00
Richard van den Berg
b4ceff477f
Fixed typo
2015-01-28 14:01:30 +01:00
Richard van den Berg
2ef361d21a
Also respect GnuPG.bodyonlyencrypted for posts alerts
2015-01-28 13:51:15 +01:00
Richard van den Berg
c7671d0b41
Merge branch 'ncsc-nl/posts-alerts' into ncsc-nl/email_body_only_encrypted
2015-01-28 13:41:39 +01:00
Richard van den Berg
83a3903ec3
Fix whitespaces
2015-01-28 13:24:51 +01:00
Richard van den Berg
11052d85ce
Fix posts alerts
2015-01-28 13:24:51 +01:00
Richard van den Berg
506e1fcb0d
Send E-mail notifications for new posts in discussion and event threads
2015-01-28 13:24:51 +01:00
iglocska
0dd4304719
Merge branch 'RichieB2B-ncsc-nl/stix_md5_hash' into hotfix-2.3.41
2015-01-27 11:05:59 +01:00
iglocska
2018f822ec
Fixed a bug with the way scheduled syncs are logged
2015-01-27 10:42:31 +01:00
iglocska
1b4f2a6408
Password complexity definable by admin
...
- administrators can use a regex and a length setting to define password requirements
- old behavior used if left untouched
2015-01-27 10:41:43 +01:00
Richard van den Berg
253e579307
Disallow unpublished events
2015-01-27 10:10:22 +01:00
Richard van den Berg
05cfbde5e7
Export md5 hashes without file name in STIX
2015-01-27 09:58:13 +01:00
Richard van den Berg
728e8cd29e
Preserve indicator comments in STIX export
2015-01-27 09:54:52 +01:00
Richard van den Berg
886d36438e
Do not send details of events unencrypted
2015-01-27 09:26:25 +01:00
Aaron Kaplan
461d2a36ab
Merge branch 'master' of https://github.com/aaronkaplan/MISP
2015-01-18 20:57:38 +01:00
Aaron Kaplan
4a118cc28b
should read if (defined(...))
2015-01-18 20:56:30 +01:00
Aaron Kaplan
8e12004dbe
Merge branch 'master' of https://github.com/MISP/MISP
2015-01-18 20:53:58 +01:00
iglocska
6b6c62bd53
Fix to the new sync issues since 2.3.39, fixing #365
...
Incorrectly trying to look up authenticated user in the model fixed
2015-01-15 13:46:11 +01:00
iglocska
cedaac360a
Fixes to the scheduled tasks and some documentation issues
...
- Scheduled pulls should work correctly now
- Scheduled pushes and pulls correctly display in the logs
- Scheduled caching correctly sets the next date of execution
2015-01-12 17:35:08 +01:00
Aaron Kaplan
a2e9c60802
Merge branch 'master' of https://github.com/aaronkaplan/MISP
2014-12-21 23:55:31 +01:00
L. Aaron Kaplan
9baa9a9116
move CERT.at logo file
2014-12-21 23:55:14 +01:00
Aaron Kaplan
ab4debd9f6
Merge https://github.com/MISP/MISP
2014-12-21 23:38:59 +01:00
iglocska
43e283a7e0
Copy pasta fail
2014-12-19 15:36:36 +01:00
iglocska
85e7f66ada
Added missing view
2014-12-19 15:18:34 +01:00
iglocska
bb642579b6
Remote attribute deletion removed
...
- Deleting attributes on connected MISP instances can cause serious performance issues on multiple interconnected instnaces, temporarily removed
- Version number incremented
2014-12-19 15:01:14 +01:00
iglocska
f4723e06ff
Update to the automation page
...
- new parameters for the text export explained
2014-12-19 14:59:34 +01:00
iglocska
92679f6b69
New way to download a single event
...
- The event export buttons have been unified into a single download as... button
- clicking it loads a popup with all of the export formats
- added snort, suricata, text dump to the export options
- added the option for an extra setting for some exports (such as including non IDS flagged attributes, encoding attachments)
- easily extendable system
- moved the hidden popup divs into the general layout, can be easily reused anywhere
- removed the auth refresh option that was re-enabled recently as it seems to sometimes cause issues
- text exports now allow "all" to be specified as type, which will dump all attribute values that the user can see
- text exports now allow restricting the results based on event id
2014-12-19 13:32:16 +01:00
Aaron Kaplan
b40b0ec2ea
Merge https://github.com/MISP/MISP
2014-12-16 22:56:37 +01:00
iglocska
3723119d83
Logging of admin emails and auth refresh
...
- admin emails now generate log entries
- authentication is refreshed on activity
2014-12-12 10:42:12 +01:00
iglocska
f14a26444b
Fix to some event altering actions not updating the timestamp
2014-12-10 14:08:08 +01:00
iglocska
3353b206b0
Small fix
2014-12-10 13:48:01 +01:00
iglocska
6e7554a26f
Freetext import tool enhancement
...
- mass edit types where applicable
- ip-src/ip-dst type will create two attributes, one for each
2014-12-10 13:06:52 +01:00
iglocska
12692284fa
Changed the annoying click to view feature on each row on certain index pages to double clicks
2014-12-05 15:27:54 +01:00
iglocska
67aa9d9859
Admin contact user menu moved next to new/list user buttons, recipient e-mails are now sorted alphabetically
2014-12-05 15:15:28 +01:00
iglocska
9e77393ee6
Empty filter options were not that obvious to some users in the event/user index filter popup.
2014-12-05 15:11:29 +01:00
iglocska
78edbc11d3
Long filename overlapping with malware button on attachment upload, fixes #357
2014-12-05 10:41:56 +01:00
iglocska
2e1dfca943
Attribute search now correctly searches attribute comments too for contained expressions, fixes #342
2014-12-05 10:13:07 +01:00
iglocska
2e28dd2dde
Added tooltip for event ID in attribute search results, fixes #351
2014-12-03 17:23:32 +01:00
iglocska
d895fb1834
Changed wording of warning message when entering a targeting type attribute, fixes #355
2014-12-03 17:17:40 +01:00
iglocska
800c550cc9
STIX export now correctly uses a custom namespace instead of the default "example", fixes #301
2014-12-03 16:23:30 +01:00
iglocska
1346f7e931
Fix to an issue with the markings in the STIX export
...
- xpath describing the current node and descendants is incorrect
2014-12-02 16:13:29 +01:00
iglocska
71d36b9c64
Several issues fixed
...
- MYSQL.sql file now correctly includes the task entries
- GenerateCorrelation admin task is now a background job
- Organisation of events pulled now get the org in the server object as the owner instead of the one who initiates the pull
- Small fix to wrapping text in the pivot graph
2014-11-27 14:47:13 +01:00
iglocska
dc98d6f1d3
Some freetext import tweaks, fixes #330 , fixes #334
...
- freetext import now optionally allows setting the comment field
- removing rows in the freetext import result redirects to the event view if all rows are gone
2014-11-25 15:56:32 +01:00
iglocska
7c6000ec21
Incorrect flash message on successfu freetext import fixed, fixes #322
2014-11-25 13:40:24 +01:00
iglocska
9e8803c6eb
Confidence mapping changed to boolean in stix export, fixes #326
2014-11-25 13:37:22 +01:00
iglocska
9fae7a2193
Alternate event org display
...
- shows both orgc and org to normal users
- naming convention changed (orgc => source org, org => member org)
- this should allow users to see if an event was generated on their instance or not.
2014-11-25 13:21:25 +01:00
iglocska
2c7b7415b9
Improvements to the attribute search
...
- case insensitivity
- tag searches
also, generatecorrelation is now a background job
2014-11-20 10:40:24 +01:00
iglocska
53c1ef40b0
Fix to the CSRF protection blocking a proposal add
2014-11-19 10:24:46 +01:00
iglocska
aa492066d8
Diagnostics check fails on PGP check if the server's key is a sign only key
2014-11-14 13:12:40 +01:00
iglocska
bfdeda99dc
Further corner case fixed (shadow attribute to attribute, not event)
2014-11-14 11:59:38 +01:00
iglocska
01fd0b93ce
Comments also sanitized
2014-11-14 11:28:42 +01:00
iglocska
c67af817e0
Related events not correctly sanitized in the xml export
2014-11-14 11:15:52 +01:00
iglocska
7a31e03021
Added to the caching mechanism
2014-11-14 11:05:37 +01:00
iglocska
ad77555daa
Stronger escaping of special characters in the XML exports
2014-11-14 09:04:36 +01:00
iglocska
4b7e56a43c
Fix to an issue with the CSV export
...
- missing linebreak after header row added
- fixed an issue with quotes in the value field not being escaped properly
2014-11-12 15:36:07 +01:00
iglocska
4e116a8afe
Fixes issue with file attachments not being downloadable for users of another org
2014-11-05 16:25:17 +01:00
iglocska
ff606fc991
Document referencing deprecated way of passing authkey in url
2014-11-03 09:59:58 +01:00
iglocska
9b935d14ce
Added flag to mimic the quickfilter of the event view to the API
...
- search on any sub-string match in the event info, orgc, attribute value, attribute comment via the API
2014-11-03 09:55:44 +01:00
iglocska
85166481b7
Fix to the missing accept terms button
2014-10-31 14:59:49 +01:00
iglocska
7fcbca5a7d
Quick filter tool, some further tweaks to the filters
...
- quick filter on the event index
- finds events with a sub-string match on event info, orgc, attribute value, attribute comment
2014-10-31 14:44:10 +01:00
iglocska
6fba4308af
Added new functionality to the filters
...
- users can now search on attributes
- attribute search returns any event that has a a sub-string match on the entered attribute
- can also be used to negate (e.g: don't show me any events that have a sub-string match on any of its attributes)
2014-10-30 15:07:57 +01:00
iglocska
a879f3fc89
Left off from previous commit
2014-10-30 13:05:27 +01:00
iglocska
89b611f28a
Font change caused some misalignment
2014-10-30 12:55:15 +01:00
iglocska
a98dd9b489
Fix to the STIX export fixes #311 and a temporary fix to an OpenIOC import issue
...
- STIX export had 2 issues as pointed out by RichieB2B:
- Incorrect name assigned to incidents due to copy-pasta fail
- Historyitems incorrectly handled
- For the OpenIOC import:
- Mapping DnsEntryItem/Host to hostname
- Mapping of hostnames to Network activity failed due to incorrect capitalistion
- Temporarily removed the ignore function on certain indicators. Ignoring an element in an AND-ed branch happens without a pruning of the element IDs
2014-10-30 10:30:55 +01:00
iglocska
02ca52bea6
Small visual fix
2014-10-29 15:58:48 +01:00
iglocska
4568589044
File management added and various small changes
...
- Important! Logo images have now moved to a different location! Make sure that you update your settings!
- Site admins can now manage the uploaded image files and the terms of use file via the server settings interface
- add, link, delete files directly from the interface
2014-10-29 15:20:30 +01:00
iglocska
15fa296fdb
Update to the terms and conditions
...
- use terms file as before if nothing else specified
- specify a file in the app/files/terms directory via the server settings tool
- specify whether to show it inline or create a download link for users instead
- by default everything is the same as before, except that the MISP installation path is no longer exposed by a non-existing terms file
2014-10-28 15:11:40 +01:00
iglocska
035dfc8b12
Made the version check exclusive to the diagnostics tab
2014-10-27 17:21:57 +01:00
iglocska
a87d88e049
Event attribute pagination is persistent through edits / deletes
2014-10-27 16:51:23 +01:00
iglocska
6d73409b90
Version check tool added
...
- check the latest tag on github and compare it to the local version
- from here on all hotfix, minor, major releases should be tagged apropriately.
2014-10-27 16:03:43 +01:00
iglocska
efc580c938
Changing an attribute's field on the fly now requires a double click
2014-10-24 15:10:46 +02:00
iglocska
d0b441132b
Fix to the capitalisation in the user index filter and fix to the scripts tmp folder not being created on git clone
2014-10-24 14:17:58 +02:00
iglocska
4fec5d041f
Added missing empty file
2014-10-23 15:59:38 +02:00
iglocska
b7da6019f1
Further work on the manual, fix to the user filter
2014-10-23 14:09:50 +02:00
iglocska
fc7ca7dcbe
Work on the documentation and font change
...
- Adding all the new features to the documentation
- removed Robotolight from css to fix issues with chrome/firefox on Windows
2014-10-23 11:31:07 +02:00
iglocska
def146b7a5
Merge branch 'hotfix-2.3.10'
2014-10-22 13:17:22 +02:00
iglocska
c8cc55b243
Fix to the filters
2014-10-21 10:29:14 +02:00
iglocska
2ed9c18068
Fix to the filters
2014-10-21 10:27:55 +02:00
iglocska
e6e72e7f29
Fix to the filter
2014-10-21 10:10:36 +02:00
iglocska
504527d36b
Fixes to the proposal ajax mechanism for newer cakephp versions
2014-10-15 15:39:28 +02:00
iglocska
8f92361d4e
Copy pasta fail breaking the proposal accept button fixed, fixes #293
2014-10-15 11:10:10 +02:00
iglocska
dcc028516d
Further improvements to the freetext regex to remove unprintable chars
2014-10-14 14:29:06 +02:00
iglocska
53d295868f
Remove non printable characters from free text import
2014-10-14 10:59:12 +02:00
iglocska
c7ec328fcf
Better split on linebreaks for the freetext import
2014-10-13 17:43:31 +02:00
iglocska
de4ec4885a
Fix to the previous patch
2014-10-13 13:51:27 +02:00
iglocska
1abfe6120d
Fixes issues with the event filters
...
- tags not filtered correctly
- status bar showing current filters now shows actual strings for tags / analysis / distribution / threat level instead of the IDs
2014-10-13 13:47:58 +02:00
iglocska
caeba7fb91
CIDR now recognised by freetext import
2014-10-13 09:16:09 +02:00
iglocska
8235e8710d
Updates to the documentation
2014-10-07 17:53:22 +02:00
iglocska
c2a4a993ba
Incorrect script tmp directory checked in the health tool
2014-10-07 15:55:40 +02:00
iglocska
06ef98af40
Another change to the baseurl check
2014-10-02 11:06:08 +02:00
iglocska
0e2d8e9a55
Update to the baseurl check in the health tool
...
- https was checked incorrectly before
2014-10-02 11:00:30 +02:00
iglocska
50b1676fe8
Small fix for the statistics
2014-10-02 10:48:43 +02:00
iglocska
a0e9e304bd
Removed unused column in the health tool
2014-10-01 14:31:48 +02:00
iglocska
259954a5aa
Performance improvements
...
- faster load time of the event view by not using Cake's Js generation
2014-10-01 14:30:23 +02:00
iglocska
45cb52ca3f
Cleanup of the worker health tool
2014-09-26 14:28:52 +02:00
iglocska
e532e3561f
Moved the eventattributerow element back directly into eventattribute
...
- Removed serious performance issue on large events
2014-09-25 16:28:51 +02:00
iglocska
6949f98d89
Update to the event view, attribute rows still had parts of the old forms in them hurting performance
2014-09-24 17:29:45 +02:00
iglocska
e6bf73761e
UI redesign of the template and worker health
...
- UI of templates a bit clearer
- Worker health tool added to the server settings tool
2014-09-24 15:35:25 +02:00
iglocska
2fe729535d
Error fixed in the url generation for the filter event index popover
2014-09-16 14:52:03 +02:00
iglocska
5f69830d0b
Incorrect naming fixed
2014-09-15 12:33:21 +02:00
iglocska
eac25e3d3a
Added the option to take ownership of an event uploaded via the Add MISP XML button
...
- server setting has to be enabled to allow for this
- can cause issues if the event gets synchronised with an instance that has a different creator organisation for the same event
- it is recommended not to use this, but in some cases it can be very helpful - the setting for it in the configuration is called MISP.take_ownership_xml_import
2014-09-15 12:30:26 +02:00
iglocska
cb251c69ab
Merge branch 'hotfix-2.2.40' into develop
2014-09-12 13:33:55 +02:00
iglocska
d51fa92206
Changes to CakeResque installation fixes #287
...
- CakeResque's installation instructions changed
2014-09-12 13:29:30 +02:00
iglocska
b5dbc71baf
Issue with the new csrf protection with the new ajax fields
2014-09-11 17:40:58 +02:00
iglocska
fc806b8919
Some missing tests added
2014-09-11 17:28:57 +02:00
iglocska
931bf75409
Merge branch 'feature/health' into develop
2014-09-11 14:55:05 +02:00
iglocska
b69e51e867
No feedback from the failed numeric test for incorrect server settings
2014-09-11 13:02:38 +02:00
iglocska
fa367febfa
Download of the settings/diagnostics results implemented
...
- Should help with trouble shooting, administrators can now download a json file containing all the settings and issues shown by the tool.
2014-09-11 11:30:32 +02:00
iglocska
1058e418b9
Added the new server settings to the menues
2014-09-11 10:07:06 +02:00
iglocska
34cc73b21a
Several changes for the diagnostic tool
...
- Added extra diagnostic tools
2014-09-10 16:55:34 +02:00