Michael Rash, Security Researcher

Software Release - psad-1.4.0

The 1.4.0 release of psad is ready for download. Here is an excerpt from the ChangeLog:
  • Added p0f-style passive OS fingerprinting through the use of the OPT field in iptables log messages (which is only logged through the use of the --log-tcp-options command line arg to iptables).
  • Bugfix for iptables log messages that include tcp sequence numbers (see the iptables --log-tcp-sequence command line argument).
  • Bugfix for O_RDONLY open flag when kmsgsd receives a HUP signal.