Snare for Solaris
-----------------

Copyright 1999-2006 InterSect Alliance Pty Ltd

Versions< 2.0:	- Internal customer releases.
2.0		- Initial public release
2.1		- More streamlined communications between the praudit process
		  and the core audit daemon, leading to up to 30% reduction in
		  CPU usage
		- The embedded web server now includes a capability that
		  facilitates user and group configuration auditing.
		  Users, groups, and group memberships are available through
		  the web server interface.
2.2		- Internal customer release
2.3		- Md5-based password 'encryption' in the snare config file.
		- Updated base64 decoding for userid/password checks.
		- Installation/removal process updated significantly,
		  to cope with Sun patch changes.
2.4		- Reverted to sledgehammer approach to class configuration.
2.5		- Syslog now supported using syslog=NUMBER terminology in
		  snare.conf (see web server for appropriate configuration
		  values)
		- Event match exclusion now working.
		- Sun Jass system configuration checker now supported.
2.5.1		- Able to read raw solaris BSM binary logs from the command
		  line, and parse them through the snare.conf objectives.
2.5.2		- Fixed 'hanging table' in Web pages.
		- Removed requirement for libcrypt
2.5.3		- Changed code around auditsvc to be more forgiving to
		  a variety of solaris bugs.
                - Changed Read/Write/Create to just Write/Create
                - Modifications to support Solaris 10.
2.5.4		- Added TCP support (Server clients only)
		- Added multihost support (Server clients only)
2.5.5		- Inserted a circular buffer between auditsvc and praudit
		  to deal with the audit subsystems inability to adequately
		  cope with a potentially 'blocking' reader, despite the
		  +CNT flag being set.
2.5.6		- Added "latest event" monitor to remote control interface
		- Added support for multiple restrict IPs, inc. dynamic IP
		  address lookups (Server clients only)
