ossec-hids-mysql-2.9.0-49.suse13.1.art$>MV@v\-;Py>96?6xd ) Olp      b dlv@,lp(8m9@m:mG4H4 I4(X4,Y44\4`]4h^4b4d5'e5,f51l53u5Dv5Lw6x6 y6(Cossec-hids-mysql2.9.049.suse13.1.artThe OSSEC HIDS Server mysql connectorMysql connector for OSSECXrloggerhead.atomicorp.com0Fhttp://www.ossec.netGPLAtomicorp System Environment/Daemonshttp://www.ossec.net/linuxi386 $ThXrXr59346510cbee34ab0429fdd5d0c241f756c4c97c73c2803d1532d911213f892drootrootrootrootossec-hids-2.9.0-49.suse13.1.art.src.rpmossec-hids-mysqlossec-hids-mysql(x86-32)@@@@@@@@@@@@@@@@@@@@   libGeoIP.so.1libc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.2)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libc.so.6(GLIBC_2.7)libcrypto.so.1.0.0libdl.so.2libm.so.6libmysqlclient.so.18libmysqlclient.so.18(libmysqlclient_18)libpthread.so.0libpthread.so.0(GLIBC_2.0)libpthread.so.0(GLIBC_2.2)libssl.so.1.0.0libz.so.1ossec-hids-serverrpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)2.9.0-49.suse13.1.art3.0.4-14.0-14.4.6-1ossec-hids-postgres4.11.1XYX@TT @SSS[S@R@R@RʚR@R@RrF@Ri RR@Q@QY@Q@@QQ@Q@Qu&@Qu&@QkQg@Q\PDPP@PP@OiO@OЗOЗO O OpZ@NNS@NK@N;@N;@N6@N-ZNMMM@M@M@M?MM>MUM@M PL~L8LΫLΫLʷ@LeL@L{LL@LA@LLLzL~@@L|LvW@LmLa?@LRL4l@LT@KtK͗@KKK@K[K@K8@K@K@K@J@JJJ@JJJn@JL@JI@J2C@J2C@J/@J&eI@Io@I)@I4IܑISupport - 2.9.0-49Support - 2.9.0-48Support - 2.8.1-47Support - 2.8.0-46Support - 2.8.0-45.1Support - 2.8.0-45Support - 2.7.1-44Support - 2.7.1-43Support - 2.7.1-42Support - 2.7.1-41Support - 2.7.1-40Support - 2.7.1-36Support - 2.7.1-35Support - 2.7-34Support - 2.7-33Support - 2.7-32Support - 2.7-31Support - 2.7-30Support - 2.7-29Support - 2.7-28Support - 2.7-27Support - 2.7-26Support - 2.7-25Support - 2.7-24Support - 2.7-23Support - 2.7-22Support - 2.7-21Support - 2.7-20Support - 2.7-19Support - 2.7-17Support - 2.6-16Support - 2.6-15Support - 2.6-14Support - 2.6-13Support - 2.6-12Support - 2.6-11Support - 2.6-10Support - 2.6-9Support - 2.6-8Support - 2.6-7Support - 2.6-6Support - 2.6-5Support - 2.6-4Support - 2.6-3Support - 2.6-2Support - 2.6-1Support - 2.6.0-0.10Support - 2.6.0-0.9Support - 2.6.0-0.8Support - 2.6.0-0.7Support - 2.6.0-0.6Support - 2.6.0-0.5Support - 2.6.0-0.4Support - 2.6.0-0.3Support - 2.6.0-0.1Support - 2.5.1-10Support - 2.5.1-9Support - 2.5.1-8Support - 2.5.1-7Support - 2.5.1-6Support - 2.5.1-5Support - 2.5.1-4Support - 2.5.1-3Support - 2.5.1-2Support - 2.5.1-1Support - 2.5-1Support - 2.5-0.9Support - 2.5-0.8Support - 2.5-0.7Support - 2.5-0.6Support - 2.5-0.1Support - 2.4.1-11.2Support - 2.4.1-11.1Support - 2.4.1-10Support - 2.4.1-9Support - 2.4.1-8Support - 2.4.1-7Support - 2.4.1-6Support - 2.4.1-5Support - 2.4.1-4Scott R. Shinn - 2.4.1-1Scott R. Shinn - 2.4-5Scott R. Shinn - 2.4-4Scott R. Shinn - 2.4-1Scott R. Shinn - 2.4-0.2Scott R. Shinn - 2.4-0.1Scott R. Shinn - 2.3-8Scott R. Shinn - 2.3-7Scott R. Shinn - 2.3-6Scott R. Shinn - 2.3-1Scott R. Shinn - 2.2-5Scott R. Shinn - 2.2-4Scott R. Shinn - 2.2-3Scott R. Shinn - 2.2.0.beta2.1Scott R. Shinn - 2.2.0.beta1.1Scott R. Shinn - 2.1.1-5Scott R. Shinn - 2.1.1-3Scott R. Shinn - 2.1.1-1Scott R. Shinn - 2.1-3Scott R. Shinn - 2.1-1Scott R. Shinn - 2.0-11Scott R. Shinn - 2.0-10Scott R. Shinn - 2.0-9Scott R. Shinn - 2.0-8Scott R. Shinn - 2.0-7Scott R. Shinn - 2.0-6Scott R. Shinn - 2.0-5Scott R. Shinn - 2.0-4Scott R. Shinn - 2.0-2- Update to Ossec 2.9.0 Final- Update to Ossec 2.9.0- Update to 2.8.1. This is identical to 2.8.0-46, the only change is the hosts.deny CVE-2014-5284 is merged in.- Revert BR#1596 - Add Bugfix for hosts.deny race condition (CVE-2014-5284)- BR #1596, Add fork limiting patch (max 10) for execd to prevent DoS conditions- Upgrade to 2.8.0- Feature Request #1512, speed up shuns in execd, move sqlite down- Relink against native mysql- Add ar-tracking active response- Placeholder for null exclusion rules. Legacy support- ASL 4 version with new database format- Add support for Fedora 20 - Modify optimization flags for FORTIFY- Update to 2.7.1 - Add independent rules.d/decoders.d ossec-rules package- FR#772, add rule 3360 for postfix slow brute force - add dovecot-decoder.patch for cpanel dovecot - Update 9702, 9753 for dovecot brute force - FR#773, add rule 11308 for pure-ftp slow brute force - FR#1347, Update for courier v4 decoder (pop3s) - FR#1359, Update horde decoder for v5- Disable ossec-dbd signature table (replaced by aslw_rules). This was very slow- Break ossec-dbd into separate package - FR#1321, update courier-imap decoder for version 4.0- Bugfix #XXX, prevent truncating last character on ossec-dbd database inserts on the alerts/data table- Add tld column to alert table w/ index- Deprecate internal id generation in dbd - update schema to autoincrement, increase id space to int- Add is_hidden to mysql schema- Add if exists to mysql schema- Add os_dbd-mysql-replace-query.patch to consolidate SELECT/UPDATE into REPLACE sql- Consolidate alert & data into a common table - Add ossec-authd init script- Add sqldelete command to execd - Update to clear sqlite db at startup- More minor updates to GeoIP tracking- Minor update to GeoIP tracking- Bugfix on permissions for files in shared/ directory for client installs - Add GeoIP support - Remove dependency on perl-DBD-SQLite - Update asl-shun to new non-perl based version. - Deprecate firewall-drop-update.patch - Add sqlite support to execd (/var/ossec/var/execd.sqlite)- Update to 2.7 final- Feature Request #XXX, revert duplicate detection in log events to help detect extremely fast brute force attacks - Add FORTIFY_SOURCE, PIE, and relro (full)- Update to 2.7-rc2- Update to 2.7-rc1- Move active response components under the common package- bugfix #xxx, correct ownership permissions on fts dir- Update to init script to suppress spurious execd output - Add alerts queue to server package with ossec/ossec permissions- Bugfix #XXX, correct any/agentd condition- Moved agentless packages under server- Drop timeid and cat_id indexes from schema- Add new index, timeid to alerts table.- Add cmoraes patch, Adds config options for enabling/disabling rootkit/syscheck options, and agent config profiles - Add ossec-memleaks patch - Add agentless directories, and agent.conf - Bugfix #XXX, ossec-hids.init will now return an exit code on status- Add prelink_cmd support- Bugfix #XXX, display multi-line events in data table correcty- Update to asl-shun.pl purge event to default to 24 hours.- Update to asl-shun.pl to change ordering of block rules - Revert from 0805 snapshot- Update to 0805 snapshot- Update to 0801 snapshot - Update asl-shun.pl to log to active-responses.log, blocks now go to the named chain ASL-ACTIVE-RESPONSE, and delete events are more redundant.- Update to OSSEC 2.6 Final- Update to snapshot 110711- Update to snapshot 110613- Update to snapshot 110609- Update to snapshot 110606 - Moved ossecr user creation event to the ossec-hids core package- Update to snapshot 110531- Update to snapshot 110526- Update to snapshot 110504- Bugfix #536, Increase the default sleep time for syscheck- Renamed to 2.6 branch- Add support for the rules/decoders dir system- Update to snapsot 110405 - Update asl-shun to support ossec alert ids- Changed asl-shun sqlite database to /var/ossec/var/blocklist3.sqlite - asl-shun database format now stores the full alertid- Update to snapshot 101203- Update to snapshot 101125- Added alertid support to os_dbd, this involves a schema update- Added dst ip, src prt, and dst prt capture support to os_dbd- Bugfix #XXX, manage_agents was built in client mode for the server package.- Add clamav decoder & ruleset- Update to 2.5.1 final- Update to 2.5 final- Update to 0928 snapshot- Extended no_ar into ossec-dbd- Add no_ar option to disable active response per rule- Update to snapshot 100920- Update snapshot to 100907- Snapshot 100901- Added test fix for os_dbd- Bugfix #376, ossec-control will now properly stop and reload- Update to 0809 snapshot- Relink against native mysql- Add minicon decoder from les fenison- Update to 100707 snapshot - Feature Request #371, add ossec.log to logrotate- Updated to 100615 snapshot- Updated init and ossec-server scripts to support the new reload feature.- Update to 2.4.1- Added zabbix reporting active response- Update to 2.4 final - Lowered courier rule 3910 (failures) from 6 over 240 to 10 over 10 - Lowered courier rule 3911 (success) from 10 over 60 to 30 over 20- Rebuilt for atomic repo- Update to CVS 100317- Update to CVS 100311 - Add decoder for denyhosts - Update asl_rules.xml to include denyhosts rules- Update to CVS 100309- Added new decoder for smtp_auth - Added rules to detect smtp_auth brute force attempts - Added rules to detect imap/pop brute force attempts- Updated ossec-server.conf to be in parity with the ASL config - Added templates dir for generating configs- Update to 2.3 release- Update to snapshot 091109- Update to snapshot 091008- Update to snapshot 090925 - Added timestamp field to the mysql schema - Bugfix #XXX, for the ossec-client.init script to call the correct (renamed) ossec syscheckd/logcollector daemons - Appologies for not updating the previous changelogs. Missed a few updates!- Update to snapshot 090827 - Feature Request #225, Added logrotate event to active-response log - Updated system_audit_rcl.txt to look for the correct php.ini file- Update to 090824, beta 1 release- Update to 090812 snapshot- Rebuild agent daemons with -DCLIENT, added symlink trickery- update to 2.1.1- update to 090630 snapshot, this has fixes for CentOS/RHEL 4 64-bit environments- update to 2.1 final- update to snapshot 090612- update to snapshot 090610- update to snapshot 090603- Disable postgresql support, to get around an undesirable dependency on EL4- Update to snapshot 090417- Update to snapshot 090413 (this adds in inotify support)- Update to snapshot 090410 (this adds in inotify support)- Update to snapshot 090408- Added authpsa rules back in, this is used to detect brute force attacks - Added conditional building support for ASL modifications2.9.0-49.suse13.1.art2.9.0-49.suse13.1.artmysql.schemaossec-dbd/usr/share/ossec/contrib//var/ossec/bin/-O2 -g -m32 -march=i486 -fmessage-length=0 -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tablesdrpmlzma5i386-suse-linuxASCII textELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.16, BuildID[sha1]=c97c804e857445cb6f69479b3f060409fc99897f, not strippedRRRRR RRRRRRR RRR RRR R R?p]"k% {Usgi:N-55CtAyǬԅ((4`7L2S=OD`9#Ivy/Xԓo|D/js)U#3Yg%'f2ɒ SN\ܬq|&jj? mn8ꇼ(bm$qWa!3]'"jɢzPo6cqi"lxVIBIiPΨ){Qj It>1ԟ:S)%[:P-#Uu:T\$#X 0lay `F" ĩn$QѢ 1HW:?WpaX x@=j\g_@źd{5nIZϢQ{&PʹWc ~|ZmjRQdIz)_)ߥ">u4t>y`-j&-H394rQP Hwrĭůx:al xS޸aŏ4 aB~&"rZ\2- g }aB#evkښ*gt1vHZ6Xi,[\ҀFZOz{Ewg:y[!E Q[VCVOk:¨kh+O>E^boC )!Q5U;!-㣰 a :&IP9|fIpKƁM-nEUQX1YDyvEiaszZ -߀B~^@{yo *d&U҉k%XF<0{ʪߟѰIvg8 0o04sr8H B_AЪ­CPA.޺ǞWp^ײ jrU2fe Jݕx֗A/:z|1&\y-0iot6&q>&q٫~aX.hۂ@+')_~;_邮? h<1i&Vw,Hsљ4vaU= *U'ʹ4]ޓva"9ޖ?r$KԿe5|KIUuIŤ}yQ8qzG _ſIDxCt"zº ՎLfrKSmv[EĶN.9Dݸ#M\cY }1ʺ$k:KJ?;o6nYo}'M{ZN~CHKA%!720oUGz#4j0F88r py{}%O?Q~Y~K]hʼnr=kru_]¼}Hj$YFXXQ[-OnB(5m .(JQ.x8lgw.Ē-%,{È#x, m ؖ+i67ó &Ў5 Lcb~ ƈ.\0!|Y9G,P #y*6+:3MHOj(2'8r 'z9aʆ>+!XE*ƍ$[#P~Dpo^AcH߄ct3vUM:nĶT@.H |0u0w \3QJS\(Ғ5Xq@#DsH*+epx/N@KiTu_1.hBc"9H=\Qzr t>CNWKX]rheszo{ pQY> eL mv:IG/*Qvd&ue_N5ket|@TT_:xLԍ7|{`m0k7ϼu<_9sS^84 mZ#Bz !yG Â$(|qb>Yhr2!B1p^'X.p1Ia.OH6$X1}+(;t\j.-ٞvtgI2ӷ~o0MF 2(Ik / ҐPʿߚE[˯00cyY1p6y( pJRɄ9RV" 4ͲlG Ӕ|;5)^:W3-K8dJm :[y)( /; 5o3b=^KKTƸT0/{zTAg BGQ^&-<틞/l4HM '<:$ X2CX:?ƞX7<[ybs.O8_]X;)('&M-júL_ח)nCOUmmb`A Vϊ JGA~2W|}]B>F*KX)*"%-=/Z%d3.yID% &ښ]3l 3v#PaQu#88!BbR!`sK0 @xu ^`:+ʥ8V{B+JFTe %,\Z ֲxmL3/p;{; W{5)Z0`-H3R`֛18'YQG]'LLGzl\L7nh*t 5_xGr;jW;-:-/.|7`{c5@C99!n;yï)n$qu0D,C]awmOOQXv5S0|\U}:SsTI/"zKhZvSv|!GʇF:]n4H yɝ%&ĉmqOIџGQʅ]~(MrU/{-?dkm%6W: nFGJCp:d#u0be}n,xpww??svPݣ! f",%,}m8LR跑U?#jÇȗg^jKa7sňc#7?/=f`._HV n1P/)l&JgCmhܲ,FO@ 3 q)bpP?FY? ~)ISGス%I22T>:k8| E6WY\K,Sӄ(K'rƂI:{}/f:_B(J̶M0>@)H Fw\Hih A 0a˯6|=wFTbgq$Wg:U?tYx@He^({ho>ej{ΔÏF; )|8"qxR pQL[8h ț(ѮUJc&t]~5u. VYxpfYZ0jJi./ 4A>.aԫ OeFj(zPg4ɭ(Dg\5X;J.M Yhp9bmehA؂53JǏ cm[O|9}P+QoЕrc0=HRy' ^9svrܧuB >(\?A^+,_dUϘ\wz1Lz}_ zׁUYYٓۆz!H2C暏U/-3=PlP堮a}/*PK !oΦ5O38c%ֹ~3򠩍=;6Rx0"эmG.>EVr+\N*e5wav܍=f+Av8NHp a7-ZʋWm|Ç{z{Yk \=z$^<ƳCDxoTWpURecMlo/e 89h7V>N\R75Ҵi6),5Ĕ}KWH:R/CN[_VN}+eڱJwCڝJ~+J4ܫ 4G 'Y1CSVJBFu)hFgy/Kek[QQ,U7]"kTkmTR3U.u[|.ǔ MǶP+M:W%:8'biM0Dmd ˦HGk! |o~F,YrndN%UDvr0SʳPi)#d1QX'_բsY)~zc]>z x^@e\<7-eeG]vcyB!{9wN*ʵ›ů~6vx_Q/4q!Cf{M:qYJnU\: