Module Name:	pkgsrc
Committed By:	shannonjr
Date:		Tue Jan 31 10:46:31 UTC 2006

Modified Files:
	pkgsrc/security/prelude-lml: Makefile distinfo
	pkgsrc/security/prelude-lml/files: preludelml.sh

Log Message:
Update to 0.9.2. Changes:
- Get rid of the 1024 characters per line limitation (defined as per
  the syslog RFC), since LML is not limited to parsing input from syslog
  anymore.
- Handle events in Clamav logging format as well as syslog.
- Abstracted Squid chain regex to allow parsing of data directly
  from Squid log files.
- Introduced support for openhostapd.
- Began expanding rulesets with additional_data and vendor-specific
  classification data.
- Various ruleset updates and bug fixes.

Prelude-LML is a signature based log analyzer monitoring logfile and
received syslog messages for suspicious activity. It handle events
generated by a large set of components, including but not limited to:
BigIP, Grsecurity, Honeyd, ipchains, Netfilter, ipfw, Nokia ipso,
Nagios, Norton Antivirus Corporate Edition, NTsyslog, PAM, Portsentry,
Postfix, Proftpd, ssh, etc.


To generate a diff of this commit:
cvs rdiff -r1.1.1.1 -r1.2 pkgsrc/security/prelude-lml/Makefile \
    pkgsrc/security/prelude-lml/distinfo
cvs rdiff -r1.1.1.1 -r1.2 pkgsrc/security/prelude-lml/files/preludelml.sh

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.