Attachment #209281 for bug #242110

View | Details | Raw Unified | Return to bug 242110
Collapse All | Expand All




# $FreeBSD$

.include "${.CURDIR}/version.mk"
PORTVERSION=	3.3.0
PORTREVISION=	0
CATEGORIES=	security

MAINTAINER=	dominik.lisiak@bemsoft.pl
COMMENT=	Security tool to monitor and check logs and intrusions

LICENSE=	GPLv2

RUN_DEPENDS=	ossec-hids-${OSSEC_TYPE}>=${PORTVERSION}:security/ossec-hids-${OSSEC_TYPE}

USES=		metaport

Line 0 Link Here

(-)security/ossec-hids/version.mk (+9 lines)
	1	PORTNAME= ossec-hids
	2	PORTVERSION= 3.5.0
	3	PORTREVISION?= 0
	4	CATEGORIES= security
	5
	6	MAINTAINER= dominik.lisiak@bemsoft.pl
	7	COMMENT?= Security tool to monitor and check logs and intrusions
	8
	9	LICENSE= GPLv2

Lines 1-5 Link Here

(-)security/ossec-hids-agent/Makefile (+1 lines)
1	# $FreeBSD$	1	# $FreeBSD$
2		2
		3	COMMENT= Security tool to monitor and check logs and intrusions - agent installation
3	OSSEC_TYPE= agent	4	OSSEC_TYPE= agent
4		5
5	MASTERDIR= ${.CURDIR}/../ossec-hids-local	6	MASTERDIR= ${.CURDIR}/../ossec-hids-local




# $FreeBSD$

PKGNAMESUFFIX?=	-${OSSEC_TYPE}
COMMENT?=	Security tool to monitor and check logs and intrusions - local (standalone) installation
OSSEC_TYPE?=	local
CATEGORIES=	security
PKGNAMESUFFIX=	-${OSSEC_TYPE}

.include "${.CURDIR}/../ossec-hids/version.mk"
COMMENT=	Security tool to monitor and check logs and intrusions

LICENSE=	GPLv2
LICENSE_FILE=	${WRKSRC}/LICENSE

USES=		compiler gmake ssl

OSSEC_TYPE?=	local

.if ${OSSEC_TYPE} == local
CONFLICTS_INSTALL=	ossec-hids-client-* \
			ossec-hids-agent-* \

			ossec-hids-local-*
.endif

LIB_DEPENDS=	libpcre2-8.so:devel/pcre2 libevent.so:devel/libevent
.if ${OSSEC_TYPE} != agent
RUN_DEPENDS=	expect:lang/expect
.endif


INOTIFY_USES=	pkgconfig
LUA_USES=	readline
MYSQL_USE=	mysql
PGSQL_USES=	pgsql

USE_GITHUB=	yes

IPFILTER_BIN=		${OSSEC_HOME}/active-response/bin/ipfilter.sh
RESTART_OSSEC_BIN=	${OSSEC_HOME}/active-response/bin/restart-ossec.sh
SHARED_DIR=		${OSSEC_HOME}/etc/shared
INTERNAL_OPTS_CONF=	${OSSEC_HOME}/etc/local_internal_options.conf

SAMPLE_FILES=		${OSSEC_HOME}/etc/local_internal_options.conf \
			${OSSEC_HOME}/active-response/bin/cloudflare-ban.sh \
			${OSSEC_HOME}/active-response/bin/ossec-pagerduty.sh \
			${OSSEC_HOME}/active-response/bin/ossec-slack.sh \
			${OSSEC_HOME}/active-response/bin/ossec-tweeter.sh

.if empty(USER)
USER=$$(${ID} -un)
.endif

INOTIFY_LDFLAGS=$$(${PKG_CONFIG} --libs libinotify)

OSSEC_ARGS+=	TARGET=${OSSEC_TYPE} PCRE2_SYSTEM=yes INSTALL_LOCALTIME=no INSTALL_RESOLVCONF=no
.if defined(OSSEC_MAX_AGENTS)
OSSEC_ARGS+=	MAXAGENTS=${OSSEC_MAX_AGENTS}
.endif
.if !defined(MAINTAINER_MODE)
OSSEC_ARGS+=	INSTALL_CMD=install
.endif

	@cd ${WRKSRC}/src; ${SETENV} ${MAKE_ENV} ${MAKE_CMD} ${INSTALL_ARGS} install

post-install:
.for file_path in ${SAMPLE_FILES}
	@${MV} -f ${STAGEDIR}${file_path} ${STAGEDIR}${file_path}.sample
.endfor
	@${MV} -f ${STAGEDIR}${FIREWALL_DROP_BIN} ${STAGEDIR}${IPFILTER_BIN}
	@${CP} ${WRKDIR}/restart-ossec.sh ${STAGEDIR}${RESTART_OSSEC_BIN}
	@${CHMOD} 550 ${STAGEDIR}${RESTART_OSSEC_BIN}

Lines 1-3 Link Here

(-)security/ossec-hids-local/distinfo (-3 / +3 lines)
1	TIMESTAMP = 1555773447	1	TIMESTAMP = 1574094213
2	SHA256 (ossec-ossec-hids-3.3.0_GH0.tar.gz) = 34fac7664548ddfeea96cb0567df4eda7515cc107625eb25315a5c3522954197	2	SHA256 (ossec-ossec-hids-3.5.0_GH0.tar.gz) = 720458e7da9fb1437efab3030a3bd42ca84dc652dd1931dedce745456d40e1ad
3	SIZE (ossec-ossec-hids-3.3.0_GH0.tar.gz) = 1900070	3	SIZE (ossec-ossec-hids-3.5.0_GH0.tar.gz) = 1920232

Lines 13-19 Link Here

(-)security/ossec-hids-local/files/ossec-hids.in (-2 / +2 lines)
13	# Default: NO	13	# Default: NO
14	# ossec_hids_fetch_connect_time (int): Time in seconds to wait for the download of the shared configuration to start.	14	# ossec_hids_fetch_connect_time (int): Time in seconds to wait for the download of the shared configuration to start.
15	# Used only by agent installation.	15	# Used only by agent installation.
16	# Default: 30	16	# Default: 40
17	# ossec_hids_fetch_read_time (int): Time in seconds to wait for subsequent download chunks of the shared configuration.	17	# ossec_hids_fetch_read_time (int): Time in seconds to wait for subsequent download chunks of the shared configuration.
18	# Used only by agent installation.	18	# Used only by agent installation.
19	# Default: 10	19	# Default: 10
Lines 28-34 Link Here
28	: ${ossec_hids_enable="NO"}	28	: ${ossec_hids_enable="NO"}
29	: ${ossec_hids_clear_log="NO"}	29	: ${ossec_hids_clear_log="NO"}
30	: ${ossec_hids_clear_ar_log="NO"}	30	: ${ossec_hids_clear_ar_log="NO"}
31	: ${ossec_hids_fetch_connect_time=30}	31	: ${ossec_hids_fetch_connect_time=40}
32	: ${ossec_hids_fetch_read_time=10}	32	: ${ossec_hids_fetch_read_time=10}
33		33
34	ossec_type="%%OSSEC_TYPE%%"	34	ossec_type="%%OSSEC_TYPE%%"




@dir(,ossec,0550) %%OSSEC_HOME%%
@dir(,ossec,0550) %%OSSEC_HOME%%/active-response
@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/cloudflare-ban.sh.sample
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh

@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh.sample
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh.sample
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh.sample
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh




@dir(,ossec,0550) %%OSSEC_HOME%%
@dir(,ossec,0550) %%OSSEC_HOME%%/active-response
@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/cloudflare-ban.sh.sample
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh

@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh.sample
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh.sample
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh.sample
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh




@dir(,ossec,0550) %%OSSEC_HOME%%
@dir(,ossec,0550) %%OSSEC_HOME%%/active-response
@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/cloudflare-ban.sh.sample
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh

@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh.sample
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh.sample
@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh.sample
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh
@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh

Lines 27-30 Link Here

(-)security/ossec-hids-local/scripts/plist.conf (-1 / +5 lines)
27	fi	27	fi
28		28
29	sample_paths="	29	sample_paths="
30	/etc/local_internal_options.conf.sample"	30	/etc/local_internal_options.conf.sample
		31	/active-response/bin/cloudflare-ban.sh.sample
		32	/active-response/bin/ossec-pagerduty.sh.sample
		33	/active-response/bin/ossec-slack.sh.sample
		34	/active-response/bin/ossec-tweeter.sh.sample"




# $FreeBSD$

PKGNAMESUFFIX?=	-${OSSEC_TYPE}-config
COMMENT?=	Configuration manager for ossec-hids-${OSSEC_TYPE}
OSSEC_TYPE?=	local
CATEGORIES=	security
PKGNAMESUFFIX=	-${OSSEC_TYPE}-config

.include "${.CURDIR}/../ossec-hids/version.mk"
COMMENT=	Configuration manager for ossec-hids

LICENSE=	GPLv2

OSSEC_TYPE?=	local

MASTERDIR?=	${.CURDIR}
DISTINFO_FILE?=	${MASTERDIR}/../ossec-hids-local/distinfo

.if ${OSSEC_TYPE} == local
CONFLICTS_INSTALL=	ossec-hids-client-* \

Lines 1-3 Link Here

(-)security/ossec-hids-local-config/distinfo (-3 lines)
1	TIMESTAMP = 1555773476
2	SHA256 (ossec-ossec-hids-3.3.0_GH0.tar.gz) = 34fac7664548ddfeea96cb0567df4eda7515cc107625eb25315a5c3522954197
3	SIZE (ossec-ossec-hids-3.3.0_GH0.tar.gz) = 1900070

Lines 1-5 Link Here

(-)security/ossec-hids-server/Makefile (+1 lines)
1	# $FreeBSD$	1	# $FreeBSD$
2		2
		3	COMMENT= Security tool to monitor and check logs and intrusions - server installation
3	OSSEC_TYPE= server	4	OSSEC_TYPE= server
4		5
5	MASTERDIR= ${.CURDIR}/../ossec-hids-local	6	MASTERDIR= ${.CURDIR}/../ossec-hids-local

Return to bug 242110

Lines 1-15 Link Here

(-)security/ossec-hids/Makefile (-9 / +1 lines)
1	# $FreeBSD$	1	# $FreeBSD$
2		2
3	PORTNAME= ossec-hids	3	.include "${.CURDIR}/version.mk"
4	PORTVERSION= 3.3.0
5	PORTREVISION= 0
6	CATEGORIES= security
7		4
8	MAINTAINER= dominik.lisiak@bemsoft.pl
9	COMMENT= Security tool to monitor and check logs and intrusions
10
11	LICENSE= GPLv2
12
13	RUN_DEPENDS= ossec-hids-${OSSEC_TYPE}>=${PORTVERSION}:security/ossec-hids-${OSSEC_TYPE}	5	RUN_DEPENDS= ossec-hids-${OSSEC_TYPE}>=${PORTVERSION}:security/ossec-hids-${OSSEC_TYPE}
14		6
15	USES= metaport	7	USES= metaport

Lines 1-21 Link Here

(-)security/ossec-hids-local/Makefile (-14 / +18 lines)
1	# $FreeBSD$	1	# $FreeBSD$
2		2
3	PORTNAME= ossec-hids	3	PKGNAMESUFFIX?= -${OSSEC_TYPE}
4	PORTVERSION= 3.3.0	4	COMMENT?= Security tool to monitor and check logs and intrusions - local (standalone) installation
5	PORTREVISION= 0	5	OSSEC_TYPE?= local
6	CATEGORIES= security
7	PKGNAMESUFFIX= -${OSSEC_TYPE}
8		6
9	MAINTAINER= dominik.lisiak@bemsoft.pl	7	.include "${.CURDIR}/../ossec-hids/version.mk"
10	COMMENT= Security tool to monitor and check logs and intrusions
11		8
12	LICENSE= GPLv2
13	LICENSE_FILE= ${WRKSRC}/LICENSE	9	LICENSE_FILE= ${WRKSRC}/LICENSE
14		10
15	USES= compiler gmake ssl	11	USES= compiler gmake ssl
16		12
17	OSSEC_TYPE?= local
18
19	.if ${OSSEC_TYPE} == local	13	.if ${OSSEC_TYPE} == local
20	CONFLICTS_INSTALL= ossec-hids-client-* \	14	CONFLICTS_INSTALL= ossec-hids-client-* \
21	ossec-hids-agent-* \	15	ossec-hids-agent-* \
Lines 30-36 Link Here
30	ossec-hids-local-*	24	ossec-hids-local-*
31	.endif	25	.endif
32		26
33	LIB_DEPENDS= libpcre2-8.so:devel/pcre2	27	LIB_DEPENDS= libpcre2-8.so:devel/pcre2 libevent.so:devel/libevent
34	.if ${OSSEC_TYPE} != agent	28	.if ${OSSEC_TYPE} != agent
35	RUN_DEPENDS= expect:lang/expect	29	RUN_DEPENDS= expect:lang/expect
36	.endif	30	.endif
Lines 41-47 Link Here
41		35
42	INOTIFY_USES= pkgconfig	36	INOTIFY_USES= pkgconfig
43	LUA_USES= readline	37	LUA_USES= readline
44	MYSQL_USES= mysql	38	MYSQL_USE= mysql
45	PGSQL_USES= pgsql	39	PGSQL_USES= pgsql
46		40
47	USE_GITHUB= yes	41	USE_GITHUB= yes
Lines 135-142 Link Here
135	IPFILTER_BIN= ${OSSEC_HOME}/active-response/bin/ipfilter.sh	129	IPFILTER_BIN= ${OSSEC_HOME}/active-response/bin/ipfilter.sh
136	RESTART_OSSEC_BIN= ${OSSEC_HOME}/active-response/bin/restart-ossec.sh	130	RESTART_OSSEC_BIN= ${OSSEC_HOME}/active-response/bin/restart-ossec.sh
137	SHARED_DIR= ${OSSEC_HOME}/etc/shared	131	SHARED_DIR= ${OSSEC_HOME}/etc/shared
138	INTERNAL_OPTS_CONF= ${OSSEC_HOME}/etc/local_internal_options.conf
139		132
		133	SAMPLE_FILES= ${OSSEC_HOME}/etc/local_internal_options.conf \
		134	${OSSEC_HOME}/active-response/bin/cloudflare-ban.sh \
		135	${OSSEC_HOME}/active-response/bin/ossec-pagerduty.sh \
		136	${OSSEC_HOME}/active-response/bin/ossec-slack.sh \
		137	${OSSEC_HOME}/active-response/bin/ossec-tweeter.sh
		138
140	.if empty(USER)	139	.if empty(USER)
141	USER=$$(${ID} -un)	140	USER=$$(${ID} -un)
142	.endif	141	.endif
Lines 187-192 Link Here
187	INOTIFY_LDFLAGS=$$(${PKG_CONFIG} --libs libinotify)	186	INOTIFY_LDFLAGS=$$(${PKG_CONFIG} --libs libinotify)
188		187
189	OSSEC_ARGS+= TARGET=${OSSEC_TYPE} PCRE2_SYSTEM=yes INSTALL_LOCALTIME=no INSTALL_RESOLVCONF=no	188	OSSEC_ARGS+= TARGET=${OSSEC_TYPE} PCRE2_SYSTEM=yes INSTALL_LOCALTIME=no INSTALL_RESOLVCONF=no
		189	.if defined(OSSEC_MAX_AGENTS)
		190	OSSEC_ARGS+= MAXAGENTS=${OSSEC_MAX_AGENTS}
		191	.endif
190	.if !defined(MAINTAINER_MODE)	192	.if !defined(MAINTAINER_MODE)
191	OSSEC_ARGS+= INSTALL_CMD=install	193	OSSEC_ARGS+= INSTALL_CMD=install
192	.endif	194	.endif
Lines 212-218 Link Here
212	@cd ${WRKSRC}/src; ${SETENV} ${MAKE_ENV} ${MAKE_CMD} ${INSTALL_ARGS} install	214	@cd ${WRKSRC}/src; ${SETENV} ${MAKE_ENV} ${MAKE_CMD} ${INSTALL_ARGS} install
213		215
214	post-install:	216	post-install:
215	@${MV} -f ${STAGEDIR}${INTERNAL_OPTS_CONF} ${STAGEDIR}${INTERNAL_OPTS_CONF}.sample	217	.for file_path in ${SAMPLE_FILES}
		218	@${MV} -f ${STAGEDIR}${file_path} ${STAGEDIR}${file_path}.sample
		219	.endfor
216	@${MV} -f ${STAGEDIR}${FIREWALL_DROP_BIN} ${STAGEDIR}${IPFILTER_BIN}	220	@${MV} -f ${STAGEDIR}${FIREWALL_DROP_BIN} ${STAGEDIR}${IPFILTER_BIN}
217	@${CP} ${WRKDIR}/restart-ossec.sh ${STAGEDIR}${RESTART_OSSEC_BIN}	221	@${CP} ${WRKDIR}/restart-ossec.sh ${STAGEDIR}${RESTART_OSSEC_BIN}
218	@${CHMOD} 550 ${STAGEDIR}${RESTART_OSSEC_BIN}	222	@${CHMOD} 550 ${STAGEDIR}${RESTART_OSSEC_BIN}

Lines 1-6 Link Here

(-)security/ossec-hids-local/pkg-plist-agent (-3 / +4 lines)
1	@dir(,ossec,0550) %%OSSEC_HOME%%	1	@dir(,ossec,0550) %%OSSEC_HOME%%
2	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response	2	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response
3	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin	3	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin
		4	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/cloudflare-ban.sh.sample
4	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh	5	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh
5	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh	6	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh
6	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh	7	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh
Lines 9-17 Link Here
9	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh	10	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh
10	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh	11	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh
11	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh	12	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh
12	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh	13	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh.sample
13	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh	14	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh.sample
14	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh	15	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh.sample
15	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh	16	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh
16	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh	17	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh
17	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh	18	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh

Lines 1-6 Link Here

(-)security/ossec-hids-local/pkg-plist-local (-3 / +4 lines)
1	@dir(,ossec,0550) %%OSSEC_HOME%%	1	@dir(,ossec,0550) %%OSSEC_HOME%%
2	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response	2	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response
3	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin	3	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin
		4	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/cloudflare-ban.sh.sample
4	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh	5	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh
5	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh	6	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh
6	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh	7	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh
Lines 9-17 Link Here
9	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh	10	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh
10	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh	11	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh
11	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh	12	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh
12	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh	13	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh.sample
13	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh	14	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh.sample
14	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh	15	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh.sample
15	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh	16	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh
16	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh	17	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh
17	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh	18	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh

Lines 1-6 Link Here

(-)security/ossec-hids-local/pkg-plist-server (-3 / +4 lines)
1	@dir(,ossec,0550) %%OSSEC_HOME%%	1	@dir(,ossec,0550) %%OSSEC_HOME%%
2	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response	2	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response
3	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin	3	@dir(,ossec,0550) %%OSSEC_HOME%%/active-response/bin
		4	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/cloudflare-ban.sh.sample
4	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh	5	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/disable-account.sh
5	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh	6	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/firewalld-drop.sh
6	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh	7	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/host-deny.sh
Lines 9-17 Link Here
9	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh	10	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw.sh
10	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh	11	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ipfw_mac.sh
11	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh	12	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/npf.sh
12	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh	13	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-pagerduty.sh.sample
13	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh	14	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-slack.sh.sample
14	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh	15	@sample(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/ossec-tweeter.sh.sample
15	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh	16	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/pf.sh
16	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh	17	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/restart-ossec.sh
17	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh	18	@(,ossec,0550) %%OSSEC_HOME%%/active-response/bin/route-null.sh

Lines 1-19 Link Here

(-)security/ossec-hids-local-config/Makefile (-11 / +5 lines)
1	# $FreeBSD$	1	# $FreeBSD$
2		2
3	PORTNAME= ossec-hids	3	PKGNAMESUFFIX?= -${OSSEC_TYPE}-config
4	PORTVERSION= 3.3.0	4	COMMENT?= Configuration manager for ossec-hids-${OSSEC_TYPE}
5	PORTREVISION= 0	5	OSSEC_TYPE?= local
6	CATEGORIES= security
7	PKGNAMESUFFIX= -${OSSEC_TYPE}-config
8		6
9	MAINTAINER= dominik.lisiak@bemsoft.pl	7	.include "${.CURDIR}/../ossec-hids/version.mk"
10	COMMENT= Configuration manager for ossec-hids
11		8
12	LICENSE= GPLv2
13
14	OSSEC_TYPE?= local
15
16	MASTERDIR?= ${.CURDIR}	9	MASTERDIR?= ${.CURDIR}
		10	DISTINFO_FILE?= ${MASTERDIR}/../ossec-hids-local/distinfo
17		11
18	.if ${OSSEC_TYPE} == local	12	.if ${OSSEC_TYPE} == local
19	CONFLICTS_INSTALL= ossec-hids-client-* \	13	CONFLICTS_INSTALL= ossec-hids-client-* \