noud
b7a5d8a3f8
Delete (published) event or attribute.
...
Previous, upon delete only on the local server the event or attribute
was deleted.
Now, if delete, look for same event or attribute (using it's uuid)
and delete on remote servers as well.
Also look and delete if not published, so no dangling/zombie copies
remain on remote servers.
2012-08-21 16:55:57 +02:00
Christophe Vandeplas
df46c4d93b
minor layout improvement on the export info page
2012-08-20 14:32:53 +02:00
Christophe Vandeplas
8bb3126aaa
improve accuracy of http hostname detection
2012-08-20 14:27:44 +02:00
noud
06580b6d18
Authkey validation bug and cleanup of fixed bugs list.
2012-08-17 08:43:19 +02:00
noud
44172d244b
Authkey validation.
...
An authkey with any length, so less then 40, could be entered.
Now authkey has to have a length of 40 (or higher).
2012-08-17 08:42:21 +02:00
noud
43d9f42032
HIDS exports sorted (and small indention correction).
2012-08-08 14:21:28 +02:00
noud
69ad48813f
Whitelist not on NidsExportComponent::urlRule.
...
In hindsight, an url should not be excluded given a host or domain name.
2012-08-07 12:54:49 +02:00
noud
17ed90ddc4
Correlation speedup using AttributesController i.s.o. EventsController.
...
We forgot to change some view things using the right controller.
2012-08-07 11:59:11 +02:00
noud
cdc7484944
REST edit Event implementation.
...
Now after publish, edit and (re)publish an event,
that event will be updated on the other servers.
2012-08-07 11:57:52 +02:00
noud
8dc4fa383b
Event.user_id.
...
Event.user_id was re-added but we still missed some,
so an added event would get user_id set to zero.
Now Event gets the correct user_id again from
the person logged in and adding.
(lateron this must not be used during sync.)
2012-08-06 14:27:55 +02:00
noud
b0614c5b95
Whitelist.
...
Mention the whitelist for NDIS export on Export page.
2012-08-06 10:44:16 +02:00
noud
b24acfb4a5
Whitelist.
...
An admin can maintain a whitelist of host, domain name and ip numbers.
In the NIDS export lines containing whitelist items are commented out.
2012-08-06 10:42:46 +02:00
noud
2dea0e347d
Correlation performance gain.
...
in Config/bootstrap.php add
Configure::write('CyDefSIG.correlation', 'sql');
possible values:
- default, like it was
- db, correlation in database
- sql, selection on attributes i.s.o. per attribute
(sql improvement possible if result conform db above)
Network activity, ip-src
30 class-C network ip addresses
(7650 tupels) (time in ms)
default db sql
all 25366 16601 15941
24839 16604 15611
paginated 16759 8447 6615
17734 8639 8846
this is used in both:
- events/view/<id>
- attributes/event/<id>
2012-08-03 12:00:16 +02:00
noud
fbd3ecc5b6
Bug, unknown server internet name and pull.
2012-08-01 10:23:23 +02:00
noud
01980dbe88
Fix to pulling from an unknown server.
...
- a server having a non-existing internet name gives
"php_network_getaddresses:
getaddrinfo failed: Name or service not known"
on pull.
2012-08-01 10:20:17 +02:00
noud
20d4e202e5
Sync Servers, error if server no MISP or non-existing hostname.
2012-08-01 09:07:20 +02:00
noud
0854e19439
Sync Servers, fix if server no MISP or non-existing hostname.
...
- a server containing no MISP gives "XML cannot be read." on publish.
- a server having a non-existing internet name gives
"php_network_getaddresses: getaddrinfo failed: Name or service not
known" on publish.
2012-08-01 09:06:39 +02:00
noud
bda5e56f9b
Export HIDS files with MD5 and SHA-1.
2012-07-27 15:19:40 +02:00
Andrzej Dereszowski
3ff180e898
Merge branch 'develop_0.2.2-0.2.3' into develop
...
Conflicts:
app/Config/Schema/schema_0.2.2.php
app/Config/routes.php
app/Controller/AppController.php
app/Controller/UsersController.php
app/Model/User.php
app/README.txt
2012-07-24 16:09:48 +02:00
git
8ba98a1e57
Rollback of pagination on event view
...
Comeback to previous event layout. This does not change the preformance issue so it is not worth to put in stable.
We will move it to the devel branch
2012-07-24 15:44:04 +02:00
noud
de89d28caa
Fix, paging on event with lots of attributes.
2012-07-20 13:27:55 +02:00
noud
c1ed9c5839
2 new bugs:
...
- event with lots of attributes has no paging.
- non-composite attribute and non-printable.
2012-07-20 08:51:20 +02:00
noud
e9234bcee7
Fixed non-printable in no-composite attribute.
2012-07-20 08:48:12 +02:00
noud
25d5ff4290
Show events with user.email if admin.
2012-07-19 14:53:12 +02:00
noud
78f629e6dd
Redo Event.user_id
2012-07-19 14:52:27 +02:00
noud
c086981676
Search Attributes fixed.
2012-07-19 11:41:04 +02:00
noud
29a67f4d96
Fixes the Search Attributes.
2012-07-19 11:41:04 +02:00
noud
8db00efdac
Remove extra dot between filename and ext when downloading attachment.
2012-07-19 11:41:04 +02:00
deresz
d879deb027
news: removed some old stuff
...
EventsController: contact mail display name from the config file
2012-07-19 09:48:45 +02:00
Andrzej Dereszowski
bf98f2db3c
Merge branch 'develop_0.2.2_fixes' into develop
...
Conflicts:
app/Model/Attribute.php
2012-07-11 16:15:27 +02:00
noud
e353c405e1
New bug.. type filename|md5, conform type md5 strtolower.
2012-07-11 14:37:04 +02:00
noud
5c1a8e22fb
Fix, do strtolower on types filename|md5 and filename|sha1 conform types
...
md5 and sha1.
2012-07-11 14:35:46 +02:00
deresz
ebec1d7f26
Make the documentation "brand-neutral" to be able to develop it in a community.
2012-07-11 11:03:18 +02:00
noud
25d33e3578
New bug, authError gets displayed before login.
2012-07-11 10:20:44 +02:00
noud
e67d9ebdec
Fix to authError getting displayed before login.
2012-07-11 10:19:57 +02:00
noud
50e24c7c56
Upload always ticked if malware-sample, always unticked if attachment.
2012-07-11 09:48:44 +02:00
noud
c1823b1cf4
Corrects the download in IE fix, to filename.ext.zip or filename.ext.
...
(Got filename.ext.zip.zip for attachment and filename.ext.ext for
malware given the previous fix)
2012-07-10 17:23:00 +02:00
noud
3f9e1d650b
New bug, Add User and validation error gives extra authkey not defined.
2012-07-10 15:39:08 +02:00
noud
a08842e7d4
Fix to New User, some validation error then authkey not defined.
2012-07-10 15:38:10 +02:00
noud
c1bc80ac61
Download attachment does not work on MS Internet Explorer.
...
This _can_ be a fix, not sure. If not, CakePHP bug #2554 or others.
2012-07-10 13:36:32 +02:00
noud
1f894119c7
One extra bug (IE download).
2012-07-10 11:42:35 +02:00
noud
8f4727e3ad
Correction to upload so zip only ticked when malware and not when
...
attachement.
2012-07-10 11:39:43 +02:00
noud
1a56db0aac
Do validation after edit attribute.
2012-07-09 15:13:54 +02:00
noud
aaefa228f0
Bug found.
2012-07-09 15:12:58 +02:00
noud
1143ee265d
Fix to: Add attribute, non-valid, correct, ´black-holed´.
2012-07-09 14:18:26 +02:00
noud
4ac501d54e
Only show categories with type attachment or malware-sample in Add
...
Attachement view. (this was..No possibility to upload if type
attachement or malware-sample is not in category.)
2012-07-09 14:14:55 +02:00
noud
e09c2c9160
2 extra bugs found.
2012-07-09 14:09:24 +02:00
noud
ed41233f2a
No possibility to upload if type attachement or malware-sample is not in
...
category.
2012-07-06 13:48:17 +02:00
noud
6c6086c5c8
List of outstanding and fixed bugs.
2012-07-06 13:45:31 +02:00
deresz
73e87f31e0
Use CyDefSIG.name from Config in alert e-mail subjects.
2012-07-04 17:15:01 +02:00