{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":1250204,"defaultBranch":"master","name":"Hawk-IDS-IPS","ownerLogin":"hackman","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2011-01-13T10:39:32.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/202760?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1701105409.0","currentOid":""},"activityList":{"items":[{"before":"97c9e3bd6b63f77bdba5033194723bbd9195da9a","after":"f9d72b7ec2c2635a1a2fe5ea6072366f5bf56f9d","ref":"refs/heads/master","pushedAt":"2023-11-27T17:16:46.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: Fixes for the install and upgrade processes\n\nDuring upgrade of hawk, we are deleting the hawk user, which deletes\nthe sqlite file, that was initially created during installation.\nIt also leaves the hawk group, which results in issues during upgrade\nand install.\n\nIn addition we were missing the creation of the cache dir, when we\nwere upgrading, because %postun was called without check if it was\nun upgrade or uninstall.\n\nThe fixes here try to solve the above provlems.","shortMessageHtmlLink":"builds/hawk-centos7.spec: Fixes for the install and upgrade processes"}},{"before":"de0d3b06b8703ac232a2031e8f9dad800e369dcb","after":"97c9e3bd6b63f77bdba5033194723bbd9195da9a","ref":"refs/heads/master","pushedAt":"2023-11-27T16:49:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: Now requires sqlite\nWe introuced the SQLite support and we need to update the build to\naccount for that.","shortMessageHtmlLink":"builds/hawk-centos7.spec: Now requires sqlite"}},{"before":"9326c3daeaadc9d64e5ca36d61dd6f5066f6a757","after":"de0d3b06b8703ac232a2031e8f9dad800e369dcb","ref":"refs/heads/master","pushedAt":"2023-11-27T16:42:40.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.pl: Increased version, because of the introduction of the WHM service detection","shortMessageHtmlLink":"hawk.pl: Increased version, because of the introduction of the WHM se…"}},{"before":"1a1b166d0590b9cb816cb6b345182fc6c91f4210","after":"9326c3daeaadc9d64e5ca36d61dd6f5066f6a757","ref":"refs/heads/master","pushedAt":"2023-11-27T16:41:59.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.conf: Added the new service id(9) for the WHM service\n\nSigned-off-by: Marian Marinov <mm@whc.ca>","shortMessageHtmlLink":"hawk.conf: Added the new service id(9) for the WHM service"}},{"before":"67c5aa889a29e3746fbde67c1efd221ed7f8e194","after":"7f788da415b9ac5536e165eec43e1e91aa604814","ref":"refs/heads/web-fixes","pushedAt":"2023-11-01T02:17:15.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"TODO: updates\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"TODO: updates"}},{"before":"fe645980893b5d9e7ad3bf038dcd45bea9a98fa1","after":"1a1b166d0590b9cb816cb6b345182fc6c91f4210","ref":"refs/heads/master","pushedAt":"2023-10-10T20:54:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.pl: Added handling of Dovecot SQL authentication failures\nIn setups where dovecot is used for authentication with sql,\ndovecot auth failure may have different format.\nThis change tries to capture this format.\n\nTo prevent any issues with assignments $_ is assigned to a named\nvariable.","shortMessageHtmlLink":"hawk.pl: Added handling of Dovecot SQL authentication failures"}},{"before":null,"after":"67c5aa889a29e3746fbde67c1efd221ed7f8e194","ref":"refs/heads/web-fixes","pushedAt":"2023-10-10T07:31:13.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk-web.pl: Fixed paths and config variables. Added DBD::SQLite.\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"hawk-web.pl: Fixed paths and config variables. Added DBD::SQLite."}},{"before":"1a07041f86324a31e84f6cd73b6e533e550fb820","after":"fe645980893b5d9e7ad3bf038dcd45bea9a98fa1","ref":"refs/heads/master","pushedAt":"2023-10-10T07:13:46.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"README: Added CentOS installation istructions\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"README: Added CentOS installation istructions"}},{"before":"1a07041f86324a31e84f6cd73b6e533e550fb820","after":null,"ref":"refs/heads/sqlite","pushedAt":"2023-10-10T07:07:28.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"}},{"before":"02be54889ddbdf1d1e4fb2ccec8ce0b00ef67fa3","after":"1a07041f86324a31e84f6cd73b6e533e550fb820","ref":"refs/heads/master","pushedAt":"2023-10-10T07:07:06.000Z","pushType":"push","commitsCount":33,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: Make sure we stop Hawk before uninstalling it\n\nIf we don't stop it, we get the following error when removing the package:\n\n  userdel: user hawk is currently used by process 9034\n  warning: %postun(hawk-7.1-1.noarch) scriptlet failed, exit status 8\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/hawk-centos7.spec: Make sure we stop Hawk before uninstalling it"}},{"before":"a1b84d13d7a279aef0dbfed61e6ab66ebd3c5b5b","after":"1a07041f86324a31e84f6cd73b6e533e550fb820","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T07:04:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: Make sure we stop Hawk before uninstalling it\n\nIf we don't stop it, we get the following error when removing the package:\n\n  userdel: user hawk is currently used by process 9034\n  warning: %postun(hawk-7.1-1.noarch) scriptlet failed, exit status 8\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/hawk-centos7.spec: Make sure we stop Hawk before uninstalling it"}},{"before":"a19951cb2a43640e8f02aad741a22fb2ab68e962","after":"a1b84d13d7a279aef0dbfed61e6ab66ebd3c5b5b","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T07:00:51.000Z","pushType":"push","commitsCount":5,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"bin/setup_iptables.sh: Make sure the chain is dynamic\n\nInstead of hardcoding the iptables chain, we get its name from\nhawk.conf and then apply it. If no chain is found in the config\nwe fall back to hardcoded in_hawk value.\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"bin/setup_iptables.sh: Make sure the chain is dynamic"}},{"before":"67cebfc9973037e784901d4b74b16e14915f9a8c","after":"a19951cb2a43640e8f02aad741a22fb2ab68e962","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:35:17.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/make_rpm.sh: Make sure that the old archive is deleted\nThis prevents errors during building of the package\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/make_rpm.sh: Make sure that the old archive is deleted"}},{"before":"1008b964b944095a7bc83ba658ea260d526f49a0","after":"67cebfc9973037e784901d4b74b16e14915f9a8c","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:28:40.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"bin/setup_iptables.sh: Fix the configuration file path\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"bin/setup_iptables.sh: Fix the configuration file path"}},{"before":"61a1c64f3434b5c96c5adcce92b4c45fa2f605e3","after":"1008b964b944095a7bc83ba658ea260d526f49a0","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:23:08.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: It actually fails with the systemd macros\n\nerror: Failed build dependencies:\n\tsystemd-rpm-macros is needed by hawk-7.1-1.noarch\n\nAnd on CentOS 7 there is no package systemd-rpm-macros\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/hawk-centos7.spec: It actually fails with the systemd macros"}},{"before":"be657ea4ba08b600c3242c412985a2e2a091701b","after":"61a1c64f3434b5c96c5adcce92b4c45fa2f605e3","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:21:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: Add a non-root user under which to run the daemon\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/hawk-centos7.spec: Add a non-root user under which to run the …"}},{"before":"929756a3cda6e2d3f9c6454f4374a63d6155a4fd","after":"be657ea4ba08b600c3242c412985a2e2a091701b","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:10:14.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.pl: Fixed wrong configuration file location\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"hawk.pl: Fixed wrong configuration file location"}},{"before":"0157f19538487c309fa20f1c97f38184b240e0ca","after":"929756a3cda6e2d3f9c6454f4374a63d6155a4fd","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:07:03.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/make_rpm.sh: Call the rpmbuild when the archive is ready\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/make_rpm.sh: Call the rpmbuild when the archive is ready"}},{"before":"60f46ccd4392d263fc750b090d74a34e8870d79b","after":"0157f19538487c309fa20f1c97f38184b240e0ca","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T06:03:01.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/hawk-centos7.spec: Major build fixes of the spec\n\n* Now it requires systemd-rpm-macros during build, so it can enable\nand disable the service during install/uninstall.\n* Added missing paths in the filelist\n* Fixed wrong paths in the installation step\n* Fixed path in the %post\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/hawk-centos7.spec: Major build fixes of the spec"}},{"before":"b06cbd71d3f505867d77bddf31b4a114ce536ad1","after":"60f46ccd4392d263fc750b090d74a34e8870d79b","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T05:42:49.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"builds/make_rpm.sh: Fix db file paths\n\nMake the script a bit more dynamic and also verify that we have\nrpmbuild dir and create it, if needed\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"builds/make_rpm.sh: Fix db file paths"}},{"before":"e12e580d157de670454f064c20387fbc86700618","after":"b06cbd71d3f505867d77bddf31b4a114ce536ad1","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T05:31:21.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.pl: Introducing SQLite handling in addition to PostgreSQL\n\nThis version allows Hawk to run as non-root user and also\nwithout PostgreSQL server, using SQLite as backend.\n\n* Version 7.0\n* Prevent starting of Hawk if neither SQLite nor Pg modules are\navailable.\n* Changed the lib dir to /usr/lib/hawk\n* Changed replaced sudo with full path, because we have cleared\nthe ENV and sudo is not found without this change.\n* Renamed the $username var to $block_info, because in some cases\nit may include more then the username or information that is not\na username as a whole.\n* Assigned $hack_attempt->{$attacked_service}->{$attacker_ip} to\n$failed_attepmts, to make it more clear what that holds.\n* Replaced dbuser and dbpass with db_user and db_pass.\n* In do_block()\n - moved the $config_ref as first paramter, to be the same as\n store_to_db()\n - removed $comment as it was used only once\n - added small TODO note, for future releases\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"hawk.pl: Introducing SQLite handling in addition to PostgreSQL"}},{"before":"b0bfb794e5086f8a7d1fa0b1784a5f2cf9e18f73","after":"e12e580d157de670454f064c20387fbc86700618","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T03:20:42.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"Rename the MySQL and PgSQL SQL files for better consistency\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"Rename the MySQL and PgSQL SQL files for better consistency"}},{"before":null,"after":"b0bfb794e5086f8a7d1fa0b1784a5f2cf9e18f73","ref":"refs/heads/sqlite","pushedAt":"2023-10-10T03:17:06.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"bin/hawk-unblock.sh: Significant changes\n\n* Changed the logic, went from if-else to case with functions.\nThis was done, to make the logic simpler to read and to allow for\nfurther addition of MySQL support.\n* sqlite variable is removed as it was replaced by db_type in the\nconfiguration file\n* The iptables chain that iptables rules are is now in the config,\nso we are now reading it from there.\n* Configuration file location is updated, because we moved the file\n* pgsql_ublock() now checks if DB name has been extracted from the\nconfig and fails if not present.\n* All awk commands within the pgsql_unblock() now redirect stderr\nto /dev/null, to prevent unintentional characters in the user, pass\nor db name variables.\n* db_name is now extracted from the configuration file, instead of\nbeing hardcoded in the script\n* Added option for MySQL but not finished.\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"bin/hawk-unblock.sh: Significant changes"}},{"before":"4d5e1e39dd870a60d17b93388bd2595ab0676167","after":"02be54889ddbdf1d1e4fb2ccec8ce0b00ef67fa3","ref":"refs/heads/master","pushedAt":"2023-10-08T07:08:10.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.pl: Make sure that the daemon can run as non-root user\n\nAdded sudo to the tail, iptables and ipset commands.\nThis will allow for more security aware setup.\n\nSigned-off-by: Marian Marinov <mm@yuhu.biz>","shortMessageHtmlLink":"hawk.pl: Make sure that the daemon can run as non-root user"}},{"before":"ecf6a752b2c9a6ed9ac9fbed99ff17920532666b","after":"4d5e1e39dd870a60d17b93388bd2595ab0676167","ref":"refs/heads/master","pushedAt":"2023-10-08T06:35:16.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.conf: Change the paths to the pidfile and blocklist file\nWhen we put the pid file in its own directory we can chown the\ndirectory to a specific user, thus reducing the need for root privs.\n\nThe block-list file is a configuration that is stored and reloaded,\nso it would be better suited in /etc","shortMessageHtmlLink":"hawk.conf: Change the paths to the pidfile and blocklist file"}},{"before":"058e75450de85e6f4d0e79d0f114d840faea9059","after":"ecf6a752b2c9a6ed9ac9fbed99ff17920532666b","ref":"refs/heads/master","pushedAt":"2023-09-24T07:51:45.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"hackman","name":"Marian Marinov","path":"/hackman","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/202760?s=80&v=4"},"commit":{"message":"hawk.pl: Change the search path for Hawk libs\n/usr/lib/hawk is more appropriate path for system libs.\n\nSigned-off-by: Marian Marinov <mm@whc.ca>","shortMessageHtmlLink":"hawk.pl: Change the search path for Hawk libs"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAADuPqTFAA","startCursor":null,"endCursor":null}},"title":"Activity · hackman/Hawk-IDS-IPS"}