Project

General

Profile

Actions
Copy link

Bug #14979

closed

Snort generates an invalid $EXTERNAL_NET variable in snort.conf due to a missing escape character in the PHP code

Added by Bill Meeks about 2 years ago. Updated about 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Snort
Target version:
-
Start date:
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Affected Version:
2.7.x
Affected Plus Version:
23.09
Affected Architecture:
All

Description

The recent 4.1.6_12 Snort GUI package update contained a typo in /usr/local/pkg/snort/snort_generate_conf . A backslash escape character was omitted when constructing the $EXTERNAL_NET variable. The variable should be defined as [!$HOME_NET], but because of the missing escape character, the $HOME_NET portion is interpreted by PHP as an actual variable, and since the actual value of that variable is NULL, the end result is the invalid string [!] is written to snort.conf.

Actions
Copy link
 #1

Updated by Bill Meeks about 2 years ago

Two different pull requests have been submitted to correct this bug: 1 each for the 2.7.0 CE Release and 2.8.0 CE DEVEL branches. The requests are https://github.com/pfsense/FreeBSD-ports/pull/1321 and https://github.com/pfsense/FreeBSD-ports/pull/1322.

This issue can be marked "Resolved" when those pull requests are merged.

Actions
Copy link
 #2

Updated by Jim Pingle about 2 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

PR Merged, thanks!

Actions
Copy link

Also available in: Atom PDF