# $Id: CHANGELOG,v 1.12 2010/04/10 15:16:34 jlh Exp $

####
##    4.4 (2010-04-10)

Per request from Soner Tari (SonicWall maintainer):
- add the -d option to set a dumpfile where dumps will be written instead
  of using syslog
- add the -v option to show the version on command line
- improve snort2pf.8 manpage

####
##    4.3 (2007-11-29)

- add the -t option to use a table instead of an anchor
- improve manpages

####
##    4.2 (2007-11-27)

- double amnesty time for recidivists
- add whitelist support
- dump status in syslog as LOG_DEBUG when SIGUSR1 is received

####
##    4.1 (2007-11-14)

- rewrite idpsinfo it can run without /usr
- top(1)-style behaviour is now optional and uses the same syntax as systat(1)
- don't use sudo(8) inside the script, let the user choose if he needs to
- rename it to snort2pfmon meanwhile

####
##    4.0 (2007-10-11)

- make snort2pf work on alert_fast as well as alert_full
- take over blocked hosts from previous instance
- kill states associated to the offending host along with blocking it
- extend amnesty when a new alert affects an already blocked host
- handle alert file rotation
- log everything to syslog using LOG_DAEMON facility
- store PID in /var/run/snort2pf.pid
- improve amnesty processing efficiency from O(n) to O(1)
- use Getopt::Std instead of hand-rolled command-line parsing

####
##    3.4 (2005-01-03)

- I apologize for being a really lazy slackass
- fixed snort2pf and idpsinfo to work with OpenBSD 3.6's pf-code
- this release is not compatible with OpenBSD 3.5 and prior

####
##    3.3 (2004-05-24)

- fixed typo in idpsinfo(1)
- generalised regex for attack-detection (reported by c.harford)

####  
##    3.2 (2004-04-10)

- fixed/improved regex for portscan-detection (reported by dinoc)
- `ps|grep -i snort2pf` shows status information now
- install.sh won't touch /etc/changelist anymore           \\
- idpsinfo(1) wastes much less ressources                   \\_
- README.de added                                       .---(')
- --> happy easter                               jgs  o( )_-\_

####
##    3.1 (2004-03-24)

- fixed a bug I introduced in v3.0 (hosts won't unblock)
- added idsinfo script
- added CHANGELOG, README and LICENSE files
- added enterprise-ready install.sh script
- made a bit marketing for this release
  (deadly.org, daemonnews.org, symlink.ch, thinknerd.org, sf.net
  securityfocus.com, gnu.org/directory, freshmeat.net, ...) 

####
##    3.0 (2004-01-21)

- replaced logtail with tail(1)
- added manpage
- added -s and -f switches
- removed "never block these IPs"-feature
  This can and should be done via pf.conf(5).
- updated article on "OpenBSD Dokumentations Projekt"

####
##    2.1 (2003-07-21)

- changed %bad_hosts from 'time:ip, ip, ip' to 'ip:time'
- article on "OpenBSD Journal" (deadly.org)

####
##    2.0 (2003-??-??)

- using anchors now

####
##    1.2 (2003-??-??)

- added 'unblock after X seconds'-feature
- article on "OpenBSD Dokumentations Projekt" (unixscout.de)

####
##    1.1 (2003-??-??)

- added 'never block these IPs"-feature

####
##    1.0 (2003-??-??)

- first public release
