From mboxrd@z Thu Jan 1 00:00:00 1970 From: Stefan Schantl To: development@lists.ipfire.org Subject: Betatest Guardian 2.0 Date: Mon, 18 Jul 2016 16:01:06 +0200 Message-ID: <1468850466.4663.63.camel@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============8892889033188734590==" List-Id: --===============8892889033188734590== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit Hello mailing list followers, this is the official release announcement for the first beta release of the new Guardian 2.0 approach. - What are the differences to the current version of guardian (legacy) and the first approach of guardian 2.0? The most important difference is, that the new version of Guardian 2.0 completely has been re-written from scratch and released under the terms of the GPLv3. The legacy version of guardian is not maintained anymore by it's developer and the software has been released without any license details at all. Guardian 2.0 has a very modular code base and has been designed as a multi-threaded application. This allows a parallel parsing of all monitored logfiles and faster actions, if one of the used modules detects an attack. A very important difference to the legacy version is the support of configuring and managing the entire service through the IPFire webinterface. The entire configuration, managing of current blocked hosts, unblocking them or editing the ignored hosts list now can be done in a graphical way.  The legacy version of guardian only supported parsing snort alerts. HTTPD and SSH support has been patched by the IPFire development team some time ago. Guardian 2.0 supports all of them out of the box and includes a filter to detect owncloud login brute-force attempts. As a benefit of the new modular design, additional filters easily can be added. Guardian 2.0 is able to reload it's configuration, reloading the ignore list during runtime and handle, if the logfiles will get rotated by logrotate. This actions can be called by using the webinterface or from the command line interface by using "guardianctrl". These are just a handful of the changes and benefits which comes with Guardian 2.0, a complete list would be to long for this mailing list. - How to join testing? To get part of the testing team, simple navigate to http://people.ipfir e.org/~stevee/guardian-2.0/ and download the latest tarball (currently 002). Please take care to download the correct one, based on your used architecture. The i585 packages are for 32Bit installations of IPFire, the x86_64 packages only can be used on 64Bit installations. Put the downloaded file on your IPFire test system and extract the package by using "tar -xvf guardian-2.0-002..tar.gz -C /". The final installation step would be to regenerate the language cache by executing "update-lang-cache" on the console. >>From now you can find a new menu item called "Guardian" in your "Service" menu after you have logged-in into your IPFire's webinterface. Documentation can be found on the IPFire wiki: http://wiki.ipfire.org/e n/addons/guardian/start#the_guardian_20_addon - Where to post bugs reports or provide feedback? If you find any bugs, please report them as usual on the IPFire bugtracker, which can be found at https://bugzilla.ipfire.org. To provide feedback or to join a discussion, please send your mails to "development(a)lists.ipfire.org" (Please register first at http://lists.i pfire.org if not yet done). The source code can be found at http://git.ipfire.org/?p=people/stevee/ guardian.git;a=summary Happy testing, -Stefan --===============8892889033188734590== Content-Type: application/pgp-signature Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="signature.asc" MIME-Version: 1.0 LS0tLS1CRUdJTiBQR1AgU0lHTkFUVVJFLS0tLS0KVmVyc2lvbjogR251UEcgdjIKCmlRSWNCQUFC Q2dBR0JRSlhqT0VpQUFvSkVFN1hUaFdQazdMZUNwb1FBSUI5MFhYRjFHUEJ1Q2hkMG9hYmhoMVAK eFBZQ3RrWWVjVmpUZ0dVUmt0NjJvZlhpTDNzaHg1M2JJOWxrbXIzQWVjMFlPK2JZWUpVNEFYVFpU VVZic1FxRgpMVHMrOXFTUEo1ZW5XNTQxNWRKNzEwcTRvU1FvY0h0OWdrTnZGVVFzVzZpOFA4WVJ0 cXNEbWNpUlAyM2F4dVhECmhvbFdpc2hnK05uVXAxWEcrdkwrRFk0MTR4Q0dhQ0x3VFFCOHk2bVBQ em5obC93SUYyZ1pxV2tSeXJCVlF4SFAKNS8wSURCTHZKZlhBRUtNaGxKK0ZreXNraVhCTDZrcEJu OWZMVEFlY2NSN0R2S25ueTNCMkMwWUk4cVoxbDdEcwp4WmtKSEpRT2ZPWUNHYWl1ZHJLa2pnanFS VHpuQlIyb1dueW93Q2RkUnVtOVZzcGxsbU1KbHFsd2JXR2IwcmJ5Ck5xNkJzWFUzYzFtbTdtcFdD aSsxT1drNmtvVDJXNE1IYU1iRUh0aEFtMlNzQnNCdm1IZDZSUm01Rkl2N3RhdzIKbUw3WWZsaHJt UkozUXE1MnpkRXFEWFRSQ2c5NFVHemhPTjFXNzRES25BRldsZnhFb3lIT3FFbm4yd1Eva3ZISwpi K3BlVzdQQmF4bG40U3pGcTFFeWV1SThtVXRWMFRScWIxSjRkd284VCs5Qmc0M25GTVhISXRnNzZV WDdvWi9XCmc4RVdjbWxKUnRKMWYrMnlUV1ptSjE1K0hMQ3B2eEl3Z3dKaVBldXZVTVVFRHhRTUtZ Z1kvWW56TVo0M3JCSGgKTUJlM3lGL25PSEh0VWRKQm8wcTIyeDZCMVAyY3p5a25Hd3E5VWpIMjJm OEt4N05uS3VIY2FCTElzR2F5Um1JTwpReUZ2ancwU1RlTktXQUJ5c1M0dQo9akc4cQotLS0tLUVO RCBQR1AgU0lHTkFUVVJFLS0tLS0K --===============8892889033188734590==--