diff options
| author |   Seemant Kulleen <seemant@gentoo.org> | 2003-09-18 23:55:15 +0000 |
|---|---|---|
| committer | Seemant Kulleen <seemant@gentoo.org> | 2003-09-18 23:55:15 +0000 |
| commit | d2c1af1f9f80c8daa1a32dfd42f1d09162019928 (patch) | |
| tree | 43e858ea9ad29e609cdf8efb27787b095d199c39 /net-firewall | |
| parent | move bastille to app-admin (diff) | |
| download | historical-d2c1af1f9f80c8daa1a32dfd42f1d09162019928.tar.gz historical-d2c1af1f9f80c8daa1a32dfd42f1d09162019928.tar.bz2 historical-d2c1af1f9f80c8daa1a32dfd42f1d09162019928.zip | |
move bastille to app-admin
Diffstat (limited to 'net-firewall')
| -rw-r--r-- | net-firewall/bastille/ChangeLog | 26 | ||||
| -rw-r--r-- | net-firewall/bastille/Manifest | 4 | ||||
| -rw-r--r-- | net-firewall/bastille/bastille-2.1.1.ebuild | 126 | ||||
| -rw-r--r-- | net-firewall/bastille/files/digest-bastille-2.1.1 | 2 | ||||
| -rw-r--r-- | net-firewall/bastille/metadata.xml | 10 | ||||
| -rw-r--r-- | net-firewall/psad/psad-1.2.3.ebuild | 99 |
6 files changed, 99 insertions, 168 deletions
diff --git a/net-firewall/bastille/ChangeLog b/net-firewall/bastille/ChangeLog deleted file mode 100644 index fba94751b42d..000000000000 --- a/net-firewall/bastille/ChangeLog +++ /dev/null @@ -1,26 +0,0 @@ -# ChangeLog for net-firewall/bastille -# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-firewall/bastille/ChangeLog,v 1.6 2003/09/05 21:22:33 seemant Exp $ - - 05 Sep 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild: - using the X flag instead of tcltk - - 26 Aug 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild: - updated patch from Battousai. Fixes for program and config file - locations. - - 03 Aug 2003; Seemant Kulleen <seemant@gentoo.org> : - Added iptables and logrotate to RDEPEND. Thanks to Wingedone - - 02 Aug 2003; <solar@gentoo.org> bastille-2.1.1.ebuild: - Added support for console only building. Server installs are a place - that I think most admins/users would want the functionality of something - like bastille without having to install X - -*bastille-2.1.1 (02 Aug 2003) - - 02 Aug 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild, - files/bastille-2.1.1.patch: - initial import. This was patched heavily to work with Gentoo (gentooficated) - by the venerable: Bryan Stine <admin@kentonet.net> - diff --git a/net-firewall/bastille/Manifest b/net-firewall/bastille/Manifest deleted file mode 100644 index fe847fe8791c..000000000000 --- a/net-firewall/bastille/Manifest +++ /dev/null @@ -1,4 +0,0 @@ -MD5 9df2b3b973a7c6ce4f68981ae3f6e7fe bastille-2.1.1.ebuild 3097 -MD5 ee53f40c48547443f014514ad228fce5 ChangeLog 1130 -MD5 624441f5e21afa19251eedc583e0c4e7 metadata.xml 433 -MD5 5952693da32f1292a5b6013e8e755799 files/digest-bastille-2.1.1 146 diff --git a/net-firewall/bastille/bastille-2.1.1.ebuild b/net-firewall/bastille/bastille-2.1.1.ebuild deleted file mode 100644 index eadc65b0b261..000000000000 --- a/net-firewall/bastille/bastille-2.1.1.ebuild +++ /dev/null @@ -1,126 +0,0 @@ -# Copyright 1999-2003 Gentoo Technologies, Inc. -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-firewall/bastille/bastille-2.1.1.ebuild,v 1.8 2003/09/05 21:23:17 seemant Exp $ - -inherit perl-module - -IUSE="X" - -MY_PN=${PN/b/B} -MY_P=${MY_PN}-${PV} -S=${WORKDIR}/${MY_PN} -DESCRIPTION="Bastille-Linux is a security hardening tool" -HOMEPAGE="http://bastille-linux.org/" -SRC_URI="mirror://sourceforge/${PN}-linux/${MY_P}.tar.bz2 - mirror://gentoo/${P}-gentoo-0.1.patch.bz2" - -SLOT="0" -LICENSE="GPL-2" -KEYWORDS="~x86 ~ppc ~sparc ~alpha ~mips ~hppa" - - -RDEPEND="net-firewall/iptables - app-admin/logrotate - dev-perl/Curses - X? ( dev-perl/perl-tk )" - -src_unpack() { - unpack ${A} - epatch ${WORKDIR}/${P}-gentoo-0.1.patch -} - -src_compile() { - - cd ${S}/psad/Psad.pm - SRC_PREP="no" perl-module_src_compile - emake test - - cd ${S}/psad/Unix-Syslog-0.98 - SRC_PREP="no" perl-module_src_compile - emake test - - cd ${S}/psad/whois-4.5.29 - emake || die - - cd ${S} -} - -src_install() { - - keepdir /var/log/psad /var/lib/psad /var/run/psad /var/lock/subsys/${PN} - dodir /etc/Bastille - - cd ${S}/psad/Psad.pm - perl-module_src_install - - cd ${S}/psad/Unix-Syslog-0.98 - perl-module_src_install - - cd ${S} - into /usr - dosbin bastille AutomatedBastille InteractiveBastille \ - BastilleBackEnd RevertBastille *.pl - - dosym RevertBastille /usr/sbin/UndoBastille - - insinto /usr/share/Bastille - doins Questions* Credits bastille-* *.xbm *.config - - insinto /usr/share/Bastille - doins Questions.txt Credits complete.xbm incomplete.xbm \ - ifup-local hosts.allow - - exeinto /usr/share/Bastille - doexe bastille-firewall* bastille-tmpdir* \ - bastille-ipchains bastille-netfilter \ - firewall/*.sh - - perlinfo - insinto ${SITE_LIB} - doins Bastille_Curses.pm - use X && doins Bastille_Tk.pm - insinto ${SITE_LIB}/Curses - doins Curses/Widgets.pm - - doman docs/bastille.1m - dodoc docs/* firewall/*.txt - - cd ${S}/psad - insinto /usr/share/Bastille - doins psad psadwatchd kmsgsd diskmond psad-init - doman psad.8 - - insinto /etc/psad - doins psad_signatures psad_auto_ips psad.conf - - cd ${S}/psad/whois-4.5.29 - exeinto /usr/share/Bastille - doexe whois - - cd ${S}/Bastille - - insinto /usr/lib/Bastille - doins AccountSecurity.pm Apache.pm API.pm OSX_API.pm BootSecurity.pm \ - ConfigureMiscPAM.pm DisableUserTools.pm DNS.pm \ - FilePermissions.pm FTP.pm Firewall.pm HP_API.pm HP_UX.pm \ - IOLoader.pm Patches.pm Logging.pm \ - MiscellaneousDaemons.pm PatchDownload.pm Printing.pm PSAD.pm \ - RemoteAccess.pm SecureInetd.pm Sendmail.pm TMPDIR.pm \ - test_AccountSecurity.pm test_Apache.pm test_DNS.pm \ - test_FTP.pm test_HP_UX.pm test_MiscellaneousDaemons.pm \ - test_SecureInetd.pm test_Sendmail.pm TestAPI.pm IPFilter.pm - - # Documentation - cd ${S} - dodoc *.txt COPYING BUGS Change* README* -} - -pkg_postinst() { - if [ -z ${ROOT}/var/log/psadfifo ] - then - ebegin "Creating FIFO device for PSAD..." - mknod -m 600 ${ROOT}/var/log/psadfifo p - eend $? - fi - use X || einfo "When not using the Tk interface you will need to start use the -c flag when calling ${PN} from command line. example ${PN} -c --os GE1.4" -} diff --git a/net-firewall/bastille/files/digest-bastille-2.1.1 b/net-firewall/bastille/files/digest-bastille-2.1.1 deleted file mode 100644 index bd17a91ead93..000000000000 --- a/net-firewall/bastille/files/digest-bastille-2.1.1 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 67b4d6a110fbe833bfc14dc46e75fa83 Bastille-2.1.1.tar.bz2 338227 -MD5 4742d81524cfe07f00c4bab66b17371f bastille-2.1.1-gentoo-0.1.patch.bz2 15312 diff --git a/net-firewall/bastille/metadata.xml b/net-firewall/bastille/metadata.xml deleted file mode 100644 index cefbc16f77a9..000000000000 --- a/net-firewall/bastille/metadata.xml +++ /dev/null @@ -1,10 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> -<pkgmetadata> - <herd>hardened</herd> - <maintainer> - <email>hardened@gentoo.org</email> - <description>Bastille Currently Has No Primary Gentoo Maintainer</description> - </maintainer> - <longdescription>The Bastille Hardening System attempts to "harden" or "tighten" Unix operating systems.</longdescription> -</pkgmetadata> diff --git a/net-firewall/psad/psad-1.2.3.ebuild b/net-firewall/psad/psad-1.2.3.ebuild new file mode 100644 index 000000000000..75b04d85844b --- /dev/null +++ b/net-firewall/psad/psad-1.2.3.ebuild @@ -0,0 +1,99 @@ +# Copyright 1999-2003 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-firewall/psad/psad-1.2.3.ebuild,v 1.1 2003/09/18 23:55:15 seemant Exp $ + +inherit eutils +inherit perl-module + +IUSE="" + +LICENSE="GPL-2" + +S=${WORKDIR}/${P} +DESCRIPTION="Port Scannning Attack Detection daemon" +SRC_URI="http://www.cipherdyne.org/psad/download/psad-${PV}.tar.gz" +HOMEPAGE="http://www.cipherdyne.org/psad" + +SLOT="0" +KEYWORDS="~x86 ~amd64 ~ppc ~alpha ~sparc" + +DEPEND="${DEPEND} + dev-lang/perl" + +#"( app-admin/metalog || (app-admin/sysklogd || app-admin/msyslog || app-admin/syslog-ng ) +RDEPEND="dev-perl/Unix-Syslog + dev-perl/Date-Calc + net-mail/mailx + net-firewall/iptables" + +src_compile() { + cd ${S}/Psad + SRC_PREP="no" perl-module_src_compile + emake test + + cd ${S}/Net-IPv4Addr + SRC_PREP="no" perl-module_src_compile + emake test + + cd ${S}/IPTables/Parse + SRC_PREP="no" perl-module_src_compile + emake test + + cd ${S}/whois + emake || die + + cd ${S} + # We'll use the C binaries until we see them break + emake || die +} + +src_install() { + keepdir /var/lib/psad /var/log/psad /var/run/psad /var/lock/subsys/${PN} + dodir /etc/psad + cd ${S}/Psad + perl-module_src_install + + cd ${S}/Net-IPv4Addr + perl-module_src_install + + cd ${S}/IPTables/Parse + perl-module_src_install + + cd ${S}/whois + # Makefile seems borken, do install by hand... + insinto /usr + newbin whois whois_psad + newman whois.1 whois_psad.1 + + cd ${S} + insinto /usr + dosbin diskmond kmsgsd psad psadwatchd + dobin pscan + + cd ${S} + insinto /etc/psad + doins *.conf + + cd ${S}/snort_rules + dodir /etc/psad/snort_rules + insinto /etc/psad/snort_rules + doins *.rules + + dodoc BENCHMARK CREDITS Change* FW_EXAMPLE_RULES README LICENSE SCAN_LOG +} + +pkg_postinst() { + if [ ! -p ${ROOT}/var/lib/psad/psadfifo ] + then + ebegin "Creating syslog FIFO for PSAD" + mknod -m 600 ${ROOT}/var/lib/psad/psadfifo p + eend $? + fi + echo + einfo "Several programs in the PSAD package are in the process of being converted to" + einfo "compiled C from PERL. If you have any problems, please notify the PSAD" + einfo "maintainers. Please do not take PSAD issues to the Bastille-Linux team." + echo + ewarn "Please be sure to edit /etc/psad/psad.conf to reflect your system's configuration" + ewarn "or it may not work correctly or start up." +} |