iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net
History
Steve Grubb 5bdb988680 [PATCH] promiscuous mode 
Hi,

When a network interface goes into promiscuous mode, its an important security
issue. The attached patch is intended to capture that action and send an
event to the audit system.

The patch carves out a new block of numbers for kernel detected anomalies.
These are events that may indicate suspicious activity. Other examples of
potential kernel anomalies would be: exceeding disk quota, rlimit violations,
changes to syscall entry table.

Signed-off-by: Steve Grubb <sgrubb@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
2006-03-20 14:08:55 -05:00
..
802
[P8023]: Fix tainting of kernel.
2006-02-13 15:38:42 -08:00
8021q
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
appletalk
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
atm
[ATM]: keep atmsvc failure messages quiet
2006-03-04 21:06:25 -08:00
ax25
[AX.25]: Fix potencial memory hole.
2006-03-19 13:20:06 -08:00
bluetooth
[Bluetooth] Fix NULL pointer dereferences of the HCI socket
2006-02-13 11:40:03 +01:00
bridge
[NETFILTER]: Fix wrong option spelling in Makefile for CONFIG_BRIDGE_EBT_ULOG
2006-03-11 18:51:25 -08:00
core
[PATCH] promiscuous mode
2006-03-20 14:08:55 -05:00
dccp
[DCCP] ccid3: Divide by zero fix
2006-03-04 21:06:29 -08:00
decnet
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
econet
[ECONET]: Use macro for spinlock_t definition.
2006-01-04 13:56:08 -08:00
ethernet
[NET] ethernet: Fix first packet goes out with MAC 00:00:00:00:00:00
2006-02-23 16:18:01 -08:00
ieee80211
[PATCH] ieee80211: Fix QoS is not active problem
2006-03-15 16:16:07 -05:00
ipv4
[NETFILTER]: arp_tables: fix NULL pointer dereference
2006-03-12 20:40:43 -08:00
ipv6
[TCP]: Fix zero port problem in IPv6
2006-03-13 14:26:12 -08:00
ipx
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
irda
[IRDA]: out of range array access
2006-02-09 16:59:48 -08:00
key
[XFRM]: Eliminate refcounting confusion by creating __xfrm_state_put().
2006-02-23 16:10:53 -08:00
lapb
[NET]: Kill skb->list
2005-08-29 15:31:14 -07:00
llc
[NET]: Add a dev_ioctl() fallback to sock_ioctl()
2006-01-03 14:18:33 -08:00
netfilter
[NETFILTER]: nfnetlink_queue: fix possible NULL-ptr dereference
2006-03-12 20:39:35 -08:00
netlink
[NETLINK]: Fix use-after-free in netlink_recvmsg
2006-03-12 20:39:38 -08:00
netrom
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
packet
[NET]: Fix some whitespace issues in af_packet.c
2006-01-23 16:28:02 -08:00
rose
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
rxrpc
[NET]: "signed long" -> "long"
2006-01-17 13:03:54 -08:00
sched
[NET_SCHED]: act_api: fix skb leak in error path
2006-03-12 20:39:36 -08:00
sctp
[SCTP]: Fix 'fast retransmit' to send a TSN only once.
2006-02-02 16:57:31 -08:00
sunrpc
[PATCH] SUNRPC: Fix potential deadlock in RPC code
2006-03-14 07:57:18 -08:00
tipc
[TIPC] Avoid polluting the global namespace
2006-01-18 00:45:16 +01:00
unix
[PATCH] fix file counting
2006-03-08 14:14:01 -08:00
wanrouter
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
x25
[PATCH] capable/capability.h (net/)
2006-01-11 18:42:14 -08:00
xfrm
[IPSEC]: Kill post_input hook and do NAT-T in esp_input directly
2006-02-27 13:00:40 -08:00
compat.c
[PATCH] Fix 32bit sendmsg() flaw
2005-09-08 08:14:11 -07:00
Kconfig
[NET]: Add CONFIG_NETDEBUG to suppress bad packet messages.
2006-02-02 20:40:09 -08:00
Makefile
[TIPC] Initial merge
2006-01-12 14:06:31 -08:00
nonet.c
[NET]: Fix sock_init() return value.
2006-01-03 13:11:17 -08:00
socket.c
[PATCH] percpu data: only iterate over possible CPUs
2006-02-05 11:06:51 -08:00
sysctl_net.c
[NET]: Fix "sysctl_net.c:36: error: 'core_table' undeclared here"
2005-10-03 14:16:34 -07:00
TUNABLE
Linux-2.6.12-rc2
2005-04-16 15:20:36 -07:00