It's my great pleasure to finally announce the next stable release of barnyard2 v2-1.10 build(310).
After almost 20 months of development and continuous testing from the
community we are happy to get this one out to the masses (without the
This development cycle has seen a lot of changes, refinements and
fixes. This will be the last version build arround the old database
The next release of barnyard2 will come with new database output that
only support the new schema, native IPv6 support and FULL unified2
support for all output plugin.
I could go on about the changes, but the wait has been long enough.
Here's a summary of the more notable changes:
- spo_database. Support of encrypted connections to postgresql
is now available. See README.database for the appropriate options.
- spo_sguil. Fixed issue with duplication of alerts.
- Completely re-written database plugin for performance
optimisation against the original DB schema.
NOTE: If you have intentions of running this new version we
highly recommended you to clean two databases table for better
performance: reference and sig_reference, not doing so will not
break anything but could slow the startup caching process).
- New Bro output plugin (thanks to Seth Hall)
- A new syslog plugin (syslog_full) that support local and remote
TCP and UDP syslog.
- Improved support against the latest Unified 2 format. Extended
headers are read, however no plugins use the information currently.
- Improved core IPv6 support.
- Compile under cygwin
- And many, many bugfixes.
You can download the source in a number of ways:
- https://github.com/firnsy/barnyard2/tags (as a zip/tarball)
- git://github.com/firnsy/barnyard2.git (via a git clone)
I would like to pay a special thanks to Eric Lauzon (the newest member
of the core development team) and the many people who have helped along
the road: Russell Fulton, Tim Shelton, JJ Cummings. Michael Steele,
Brett Edgar, Bill Parker, Miguel Alvarez, Martin Holste, Jason Haar and
any others who I may have missed.