From 37989bceb21be05101d328d2d24cc5c3d90e5de2 Mon Sep 17 00:00:00 2001 From: Arun S A G Date: Apr 02 2016 18:50:42 +0000 Subject: Update to next gen ArpON --- diff --git a/.gitignore b/.gitignore index c045f04..c1dce56 100644 --- a/.gitignore +++ b/.gitignore @@ -1,3 +1,4 @@ ArpON-1.90.tar.gz /ArpON-2.6.tar.gz /ArpON-2.7.tar.gz +/ArpON-3.0-ng.tar.gz diff --git a/ArpON.spec b/ArpON.spec index f931c7d..cfa14c7 100644 --- a/ArpON.spec +++ b/ArpON.spec @@ -1,12 +1,11 @@ Name: ArpON -Version: 2.7 -Release: 11%{?dist} +Version: 3.0 +Release: 1%{?dist} Summary: ARP handler inspection License: BSD URL: http://arpon.sourceforge.net/ -Source0: http://downloads.sourceforge.net/project/arpon/arpon/ArpON-%{version}/ArpON-%{version}.tar.gz -Patch0: arpon.8.patch +Source0: http://downloads.sourceforge.net/project/arpon/arpon/ArpON-%{version}/ArpON-%{version}-ng.tar.gz BuildRequires: libpcap-devel BuildRequires: cmake @@ -14,14 +13,13 @@ BuildRequires: libnet-devel BuildRequires: libdnet-devel %description -ArpON is a portable handler daemon. It has a lot of features and it makes -ARP a bit safer. It uses static ARP inspection and dynamic ARP inspection -as two kinds of anti ARP poisoning techniques. +ArpON (ARP handler inspection) is a Host-based solution that make the ARP +standardized protocol secure in order to avoid the Man In The Middle (MITM) +attack through the ARP spoofing, ARP cache poisoning or ARP poison routing +attack. %prep -%setup -q -cd man8 -%patch0 -p3 +%setup -q -n %{name}-%{version}-ng %build %{__cmake} . @@ -37,6 +35,9 @@ cd man8 %{_mandir}/man8/arpon.8* %changelog +* Sat Apr 02 2016 Arun S A G - 3.0-1 +- New generation of ArpON + * Wed Feb 03 2016 Fedora Release Engineering - 2.7-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild @@ -105,7 +106,7 @@ cd man8 - Removed insignificant INSTALL file from binary package. - Changed build section to use Fedora project flags. -* Sat Dec 20 2009 Arun SAG - 1.90-1 +* Sun Dec 20 2009 Arun SAG - 1.90-1 - My initial release. * Tue Dec 01 2009 Sandro Mathys - 1.90-1 diff --git a/arpon.8.patch b/arpon.8.patch deleted file mode 100644 index 14ae48a..0000000 --- a/arpon.8.patch +++ /dev/null @@ -1,74 +0,0 @@ ---- /tmp/tmp.0HHb7ACpTO/arpon.8.bak 2012-09-11 11:39:01.398865230 +0200 -+++ /tmp/tmp.0HHb7ACpTO/arpon.8 2012-09-11 11:42:01.458887301 +0200 -@@ -212,7 +212,7 @@ arpon \- ARP handler inspection - .LP - ArpON (ARP handler inspection) is a portable handler daemon that make ARP protocol secure in order to avoid the Man In The Middle (MITM) attack through ARP Spoofing, ARP Cache Poisoning or ARP Poison Routing (APR) attacks. It blocks also the derived attacks by it, which Sniffing, Hijacking, Injection, Filtering & co attacks for more complex derived attacks, as: DNS Spoofing, WEB Spoofing, Session Hijacking and SSL/TLS Hijacking & co attacks. - .PP --This is possible using three kinds of anti ARP Spoofing tecniques: the first is based on SARPI or "Static ARP Inspection" in statically configured networks without DHCP; the second on DARPI or "Dynamic ARP Inspection" in dynamically configured networks having DHCP; the third on HARPI or "Hybrid ARP Inspection" in "hybrid" networks, that is in statically and dynamically (DHCP) configured networks together. -+This is possible using three kinds of anti ARP Spoofing techniques: the first is based on SARPI or "Static ARP Inspection" in statically configured networks without DHCP; the second on DARPI or "Dynamic ARP Inspection" in dynamically configured networks having DHCP; the third on HARPI or "Hybrid ARP Inspection" in "hybrid" networks, that is in statically and dynamically (DHCP) configured networks together. - .PP - ArpON is therefore a proactive Point-to-Point, Point-to-Multipoint and Multipoint based solution that requires a daemon in every host of the connection for authenticate each host through an authentication of type cooperative between the hosts and that doesn't modify the classic ARP standard base protocol by IETF, but rather sets precise policies by using SARPI for static networks, DARPI for dynamic networks and HARPI for hybrid networks thus making today's standardized protocol working and secure from any foreign intrusion. - .PP -@@ -234,7 +234,7 @@ ArpON is therefore a proactive Point-to- - .br - - Blocks the Man In The Middle (MITM) attack through: ARP Spoofing, ARP Cache Poisoning, ARP Poison Routing (APR) - .br --- Three kinds of anti ARP Spoofing tecniques: SARPI or Static ARP Inspection, DARPI or Dynamic ARP Inspection, HARPI or Hybrid ARP Inspection -+- Three kinds of anti ARP Spoofing techniques: SARPI or Static ARP Inspection, DARPI or Dynamic ARP Inspection, HARPI or Hybrid ARP Inspection - .br - - Blocks the derived attacks: Sniffing, Hijacking, Injection, Filtering & co attacks - .br -@@ -273,7 +273,7 @@ Works in logging mode. - .PP - ArpON is an ARP handler and it is able to handle network devices automatically (default) or manually, to print a list of up network interfaces of the system. - .PP --It identifies the interface's datalink layer you are using but it supports only Ethernet/Wireless as datalink. It sets the netowrk interface and check running, online ready and it deletes the PROMISCUE flag. The online ready checks unplug (virtual and physical), boot, hibernation and suspension OS' features for Ethernet/Wireless card. It handles these features and reset the network interface automatically when it will ready. -+It identifies the interface's datalink layer you are using but it supports only Ethernet/Wireless as datalink. It sets the network interface and check running, online ready and it deletes the PROMISCUE flag. The online ready checks unplug (virtual and physical), boot, hibernation and suspension OS' features for Ethernet/Wireless card. It handles these features and reset the network interface automatically when it will ready. - .PP - .PP - .TP -@@ -302,7 +302,7 @@ Finally, it's possible to use SARPI as a - Sets SARPI entries from file (Default: /etc/arpon.sarpi). - .TP - \-x (\--sarpi-timeout) --Sets SARPI Cache refresh timeout (Default: 5 minuts). -+Sets SARPI Cache refresh timeout (Default: 5 minutes). - .TP - \-S (\--sarpi) - Manages ARP Cache statically. -@@ -341,7 +341,7 @@ Finally, it's possible to use DARPI as a - Sets HARPI entries from file (Default: /etc/arpon.sarpi). - .TP - \-x (\--sarpi-timeout) --Sets HARPI Cache refresh timeout (Default: 5 minuts). -+Sets HARPI Cache refresh timeout (Default: 5 minutes). - .TP - \-y (\--darpi-timeout) - Sets HARPI entries response max timeout (Default: 5 seconds). -@@ -381,7 +381,7 @@ Prints help summary page. - \& 172.16.159.1 0:50:56:c0:0:8 - \% # - \& --\& With 1 minut of SARPI cache refresh timeout: -+\& With 1 minute of SARPI cache refresh timeout: - \& - \& riemann:build root# arpon -i en1 -x 1 -S - \& -@@ -448,7 +448,7 @@ Prints help summary page. - \& 172.16.159.1 0:50:56:c0:0:8 - \% # - \& --\& With 6 minuts of SARPI Cache refresh timeout and 1 second of DARPI entries response max timeout: -+\& With 6 minutes of SARPI Cache refresh timeout and 1 second of DARPI entries response max timeout: - \& - \& riemann:build root# arpon -i en1 -x 6 -y 1 -H - \& -@@ -481,7 +481,7 @@ Prints help summary page. - .PP - .SH AUTHOR - .TP --ArpON was writen by: -+ArpON was written by: - .Vb 1 - \& - \& Andrea Di Pasquale diff --git a/sources b/sources index 9f14f59..4cf6cfd 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -3c3230f6852b9ffd5618a35c2f25221c ArpON-2.7.tar.gz +a89ef9bc18e6f0fc9aa8a89aa676a281 ArpON-3.0-ng.tar.gz