FreeBSD Bugzilla – Attachment 99276 Details for
Bug 138326
[New port] security/barnyard2: output system for Snort that parses unified2 files
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
barnyard2.shar
barnyard2.shar (text/plain), 7.77 KB, created by
pauls
on 2009-08-30 02:40:01 UTC
(
hide
)
Description:
barnyard2.shar
Filename:
MIME Type:
Creator:
pauls
Created:
2009-08-30 02:40:01 UTC
Size:
7.77 KB
patch
obsolete
># This is a shell archive. Save it in a file, remove anything before ># this line, and then unpack it by entering "sh file". Note, it may ># create directories; files and directories will be owned by you and ># have default permissions. ># ># This archive contains: ># ># barnyard2/ ># barnyard2/Makefile ># barnyard2/distinfo ># barnyard2/pkg-descr ># barnyard2/pkg-plist ># barnyard2/files ># barnyard2/files/pkg-message.in ># barnyard2/files/barnyard2.sh.in ># >echo c - barnyard2/ >mkdir -p barnyard2/ > /dev/null 2>&1 >echo x - barnyard2/Makefile >sed 's/^X//' >barnyard2/Makefile << 'a57ee9d8398663733d96101d438f29ba' >X# New ports collection makefile for: barnyard2 >X# Date created: 28 Aug 2009 >X# Whom: pauls >X# >X# $FreeBSD$ >X# >X >XPORTNAME= barnyard2 >XPORTVERSION= 1.6 >XCATEGORIES= security >XMASTER_SITES= http://www.securixlive.com/download/barnyard2/ >X >XMAINTAINER= pauls@utdallas.edu >XCOMMENT= An output system for Snort that parses unified2 files >X >XRUN_DEPENDS+= ${LOCALBASE}/bin/snort:${PORTSDIR}/security/snort >X >XOPTIONS= MYSQL "Enable MySQL support" on \ >X POSTGRESQL "Enable PostgreSQL support" off >X >XUSE_RC_SUBR= barnyard2.sh >XGNU_CONFIGURE= yes >XCONFIGURE_ENV= LDFLAGS="${LDFLAGS}" >XSUB_FILES= pkg-message >X >XPORTDOCS= INSTALL README README.aruba README.database README.sguil >X >X.include <bsd.port.pre.mk> >X >X.if defined(WITH_MYSQL) >XUSE_MYSQL= yes >XCONFIGURE_ARGS+= --with--mysql \ >X --with-mysql-includes=${LOCALBASE}/include/mysql \ >X --with-mysql-libraries=${LOCALBASE}/lib/mysql >X.endif >X >X.if defined(WITH_POSTGRESQL) >XUSE_PGSQL= yes >XCONFIGURE_ARGS+= --with-postgresql >X.endif >X >Xpost-install: >X >X.for f in barnyard2.conf >X ${INSTALL_DATA} ${WRKSRC}/etc/${f} ${PREFIX}/etc/${f}-sample >X [ -f ${PREFIX}/etc/${f} ] || \ >X ${INSTALL_DATA} ${WRKSRC}/etc/${f} ${PREFIX}/etc/${f} >X.endfor >X.if !defined(NOPORTDOCS) >X @${MKDIR} ${DOCSDIR} >X# cd ${WRKSRC} && ${INSTALL_DATA} ${DOCS} ${DOCSDIR} >X cd ${WRKSRC}/doc && ${INSTALL_DATA} ${PORTDOCS} ${DOCSDIR} >X.endif >X >X @${CAT} ${PKGMESSAGE} >X >X.include <bsd.port.post.mk> >a57ee9d8398663733d96101d438f29ba >echo x - barnyard2/distinfo >sed 's/^X//' >barnyard2/distinfo << '2e6eeb04a009a049aa831fbf1af3dee1' >XMD5 (barnyard2-1.6.tar.gz) = fe49fae09f585677af7dda53f3f4bedf >XSHA256 (barnyard2-1.6.tar.gz) = c8b9b58d48b420634c502d27f21cbdaf42df0205abeb2970f9ee7e114744433b >XSIZE (barnyard2-1.6.tar.gz) = 631471 >2e6eeb04a009a049aa831fbf1af3dee1 >echo x - barnyard2/pkg-descr >sed 's/^X//' >barnyard2/pkg-descr << '3f076fc757cf3651d9962cb53d801d48' >XBarnyard is a critical tool for the parsing of Snort's unified binary files, >Xprocessing and on-forwarding to a variety of output plugins. Unfortunately >Xit has not seen an updated in over 4 years and is not going to be maintained >Xby the original developers. With the new version of the unified format >X(ie. unified2) arriving we need something to bridge this gap. >X >XThe SXL team love barnyard. So much so that we want it to stay and have been >Xtinkering around with the code to give it a breath of new life. Here is what >Xwe have achieved to far for this reinvigorated code base: >X >X * Parsing of the new unified2 log files. >X * Maintaining majority of the command syntax of barnyard. >X * Addressed all associated bug reports and feature requests arising since >X barnyard-0.2.0. >X * Completely rewritten code based on the GPLv2 Snort making it entirely >X GPLv2. >X >XThis is an effort to fuse the awesome work of Snort and the original concept >Xof barnyard giving it a fresh update along the way. We've come a long way so >Xfar and have a very stable build that we've integrated into our NSMnow >Xframework. If you have any feature requests, bugs or gripes then send them >Xour way. >X >XWWW: http://www.securixlive.com/barnyard2/ >3f076fc757cf3651d9962cb53d801d48 >echo x - barnyard2/pkg-plist >sed 's/^X//' >barnyard2/pkg-plist << '29584d6ec5453f4d04ea928a8465c5bc' >Xbin/barnyard2 >X@unexec if [ -f %D/etc/barnyard2.conf ] && cmp -s %D/etc/barnyard2.conf %D/etc/barnyard2.conf-sample; then rm -f %D/etc/barnyard2.conf; fi >Xetc/barnyard2.conf-sample >X@exec if [ ! -f %D/etc/barnyard2.conf ] ; then cp -p %D/%F %B/barnyard2.conf; fi >29584d6ec5453f4d04ea928a8465c5bc >echo c - barnyard2/files >mkdir -p barnyard2/files > /dev/null 2>&1 >echo x - barnyard2/files/pkg-message.in >sed 's/^X//' >barnyard2/files/pkg-message.in << 'a26c3c5c6050e31ba94a7b52178a5248' >X************************************************************************ >X >XRead the notes in the barnyard2.conf file for how to configure >X%%PREFIX%%/etc/barnyard2.conf after installation. For addtional information >Xsee the Securixlive FAQ at http://www.securixlive.com/barnyard2/faq.php. >X >XIn order to enable barnyard2 to start on boot, you must edit /etc/rc.conf >Xwith the appropriate flags, etc. See the FreeBSD Handbook for syntax: >Xhttp://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/configtuning-rcng.html >X >XFor the various options available, type % barnyard2 -h after install or read >Xthe options in the startup script - in %%PREFIX%%/etc/rc.d. >X >X************************************************************************ >a26c3c5c6050e31ba94a7b52178a5248 >echo x - barnyard2/files/barnyard2.sh.in >sed 's/^X//' >barnyard2/files/barnyard2.sh.in << 'e4a3ed4cfba9044cd8e20afda2db7f0a' >X#!/bin/sh >X# >X >X# PROVIDE: barnyard2 >X# REQUIRE: DAEMON >X# BEFORE: LOGIN >X# KEYWORD: shutdown >X >X# Add the following lines to /etc/rc.conf to enable barnyard2: >X# barnyard2_enable (bool): Set to YES to enable barnyard2 >X# Default: NO >X# barnyard2_flags (str): Extra flags passed to barnyard2 >X# Default: -D >X# barnyard2_conf (str): Barnyard configuration file >X# Default: %%PREFIX%%/etc/barnyard2.conf >X# >X# USAGE: barnyard2 [-options] >X# >X# General Options: >X# -? Show this information >X# -c <file> Use configuration file <file> >X# -g <gname> Run barnyard gid as <gname> group (or gid) after initialization >X# -m <umask> Set umask = <umask> >X# -q Quiet. Don't show banner and status report >X# -u <uname> Run barnyard uid as <uname> user (or uid) after initialization >X# -v Be verbose >X# -C <file> Read the classification map from <file> >X# -D Run barnyard in background (daemon) mode >X# -G <file> Read the gen-msg map from <file> >X# -L <dir> Write output files in <dir> >X# -R <file> Read the reference map from <file> >X# -S <file> Read the sid-msg map from <file> >X# -T Test and report on the current configuration >X# -U Use UTC for timestamps >X# -V Show version and exit >X# >X# Continual Processing Options: >X# -a <dir> Archive processed files to <dir> >X# -f <base> Use <base> as the base filename pattern >X# -d <dir> Spool files from <dir> >X# -n Only process new events >X# -w <file> Enable bookmarking using <file> >X# >X# Batch Processing Mode Options: >X# -o Enable batch processing mode >X# >X# Longname options and their corresponding single char version >X# --reference <file> Same as -R >X# --classification <file> Same as -C >X# --gen-msg <file> Same as -G >X# --sid-msg <file> Same as -S >X# --pid-path <path> Specify the path for the barnyard PID file >X# --create-pidfile Create PID file, even when not in Daemon mode >X# --nolock-pidfile Do not try to lock barnyard PID file >X# --help Same as -? >X# --version Same as -V >X >X. %%RC_SUBR%% >X >Xname="barnyard2" >Xload_rc_config $name >Xrcvar=`set_rcvar` >X# set some defaults >X: ${barnyard2_enable="NO"} >X: ${barnyard2_conf="%%PREFIX%%/etc/barnyard2.conf"} >X: ${barnyard2_flags="-D"} >X >Xcommand="%%PREFIX%%/bin/barnyard2" >Xcommand_args="-c ${barnyard2_conf} ${barnyard2_flags}" >X >Xrun_rc_command "$1" >e4a3ed4cfba9044cd8e20afda2db7f0a >exit
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Actions:
View
Attachments on
bug 138326
: 99276