Lines 1-231
Link Here
|
1 |
--- src/Makefile.orig 2018-10-11 22:25:16 UTC |
|
|
2 |
+++ src/Makefile |
3 |
@@ -20,6 +20,9 @@ OSSEC_USER?=ossec |
4 |
OSSEC_USER_MAIL?=ossecm |
5 |
OSSEC_USER_REM?=ossecr |
6 |
|
7 |
+INSTALL_CMD?=install -m $(1) -o $(2) -g $(3) |
8 |
+INSTALL_LOCALTIME?=yes |
9 |
+ |
10 |
USE_PRELUDE?=no |
11 |
USE_ZEROMQ?=no |
12 |
USE_GEOIP?=no |
13 |
@@ -366,10 +369,10 @@ endif |
14 |
install: install-${TARGET} |
15 |
|
16 |
install-agent: install-common |
17 |
- install -m 0550 -o root -g 0 ossec-agentd ${PREFIX}/bin |
18 |
- install -m 0550 -o root -g 0 agent-auth ${PREFIX}/bin |
19 |
+ $(call INSTALL_CMD,0550,root,0) ossec-agentd ${PREFIX}/bin |
20 |
+ $(call INSTALL_CMD,0550,root,0) agent-auth ${PREFIX}/bin |
21 |
|
22 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/rids |
23 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/rids |
24 |
|
25 |
install-local: install-server-generic |
26 |
|
27 |
@@ -379,127 +382,129 @@ install-server: install-server-generic |
28 |
|
29 |
install-common: build |
30 |
./init/adduser.sh ${OSSEC_USER} ${OSSEC_USER_MAIL} ${OSSEC_USER_REM} ${OSSEC_GROUP} ${PREFIX} |
31 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/ |
32 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/logs |
33 |
- install -m 0660 -o ${OSSEC_USER} -g ${OSSEC_GROUP} /dev/null ${PREFIX}/logs/ossec.log |
34 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/ |
35 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs |
36 |
+ $(call INSTALL_CMD,0660,${OSSEC_USER},${OSSEC_GROUP}) /dev/null ${PREFIX}/logs/ossec.log |
37 |
|
38 |
- install -d -m 0550 -o root -g 0 ${PREFIX}/bin |
39 |
- install -m 0550 -o root -g 0 ossec-logcollector ${PREFIX}/bin |
40 |
- install -m 0550 -o root -g 0 ossec-syscheckd ${PREFIX}/bin |
41 |
- install -m 0550 -o root -g 0 ossec-execd ${PREFIX}/bin |
42 |
- install -m 0550 -o root -g 0 manage_agents ${PREFIX}/bin |
43 |
- install -m 0550 -o root -g 0 ../contrib/util.sh ${PREFIX}/bin/ |
44 |
- install -m 0550 -o root -g 0 ${OSSEC_CONTROL_SRC} ${PREFIX}/bin/ossec-control |
45 |
+ $(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/bin |
46 |
+ $(call INSTALL_CMD,0550,root,0) ossec-logcollector ${PREFIX}/bin |
47 |
+ $(call INSTALL_CMD,0550,root,0) ossec-syscheckd ${PREFIX}/bin |
48 |
+ $(call INSTALL_CMD,0550,root,0) ossec-execd ${PREFIX}/bin |
49 |
+ $(call INSTALL_CMD,0550,root,0) manage_agents ${PREFIX}/bin |
50 |
+ $(call INSTALL_CMD,0550,root,0) ../contrib/util.sh ${PREFIX}/bin/ |
51 |
+ $(call INSTALL_CMD,0550,root,0) ${OSSEC_CONTROL_SRC} ${PREFIX}/bin/ossec-control |
52 |
|
53 |
ifeq (${LUA_ENABLE},yes) |
54 |
- install -d -m 0550 -o root -g 0 ${PREFIX}/lua |
55 |
- install -d -m 0550 -o root -g 0 ${PREFIX}/lua/native |
56 |
- install -d -m 0550 -o root -g 0 ${PREFIX}/lua/compiled |
57 |
- install -m 0550 -o root -g 0 ${EXTERNAL_LUA}src/ossec-lua ${PREFIX}/bin/ |
58 |
- install -m 0550 -o root -g 0 ${EXTERNAL_LUA}src/ossec-luac ${PREFIX}/bin/ |
59 |
+ $(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/lua |
60 |
+ $(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/lua/native |
61 |
+ $(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/lua/compiled |
62 |
+ $(call INSTALL_CMD,0550,root,0) ${EXTERNAL_LUA}src/ossec-lua ${PREFIX}/bin/ |
63 |
+ $(call INSTALL_CMD,0550,root,0) ${EXTERNAL_LUA}src/ossec-luac ${PREFIX}/bin/ |
64 |
endif |
65 |
|
66 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/queue |
67 |
- install -d -m 0770 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/alerts |
68 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/ossec |
69 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/syscheck |
70 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/diff |
71 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/queue |
72 |
+ $(call INSTALL_CMD,0770,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/alerts |
73 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/ossec |
74 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/syscheck |
75 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/diff |
76 |
|
77 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/etc |
78 |
- install -m 0440 -o root -g ${OSSEC_GROUP} /etc/localtime ${PREFIX}/etc |
79 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/etc |
80 |
+ifeq (${INSTALL_LOCALTIME},yes) |
81 |
+ $(call INSTALL_CMD,0440,root,${OSSEC_GROUP}) /etc/localtime ${PREFIX}/etc |
82 |
+endif |
83 |
|
84 |
- install -d -m 1550 -o root -g ${OSSEC_GROUP} ${PREFIX}/tmp |
85 |
+ $(call INSTALL_CMD,1550,root,${OSSEC_GROUP}) -d ${PREFIX}/tmp |
86 |
|
87 |
ifneq (,$(wildcard /etc/TIMEZONE)) |
88 |
- install -m 440 -o root -g ${OSSEC_GROUP} /etc/TIMEZONE ${PREFIX}/etc/ |
89 |
+ $(call INSTALL_CMD,440,root,${OSSEC_GROUP}) /etc/TIMEZONE ${PREFIX}/etc/ |
90 |
endif |
91 |
# Solaris Needs some extra files |
92 |
ifeq (${uname_S},SunOS) |
93 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/usr/share/lib/zoneinfo/ |
94 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/usr/share/lib/zoneinfo/ |
95 |
cp -r /usr/share/lib/zoneinfo/* ${PREFIX}/usr/share/lib/zoneinfo/ |
96 |
endif |
97 |
- install -m 0640 -o root -g ${OSSEC_GROUP} -b ../etc/internal_options.conf ${PREFIX}/etc/ |
98 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) -b ../etc/internal_options.conf ${PREFIX}/etc/ |
99 |
ifeq (,$(wildcard ${PREFIX}/etc/local_internal_options.conf)) |
100 |
- install -m 0640 -o root -g ${OSSEC_GROUP} ../etc/local_internal_options.conf ${PREFIX}/etc/local_internal_options.conf |
101 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ../etc/local_internal_options.conf ${PREFIX}/etc/local_internal_options.conf |
102 |
endif |
103 |
ifeq (,$(wildcard ${PREFIX}/etc/client.keys)) |
104 |
- install -m 0640 -o root -g ${OSSEC_GROUP} /dev/null ${PREFIX}/etc/client.keys |
105 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) /dev/null ${PREFIX}/etc/client.keys |
106 |
endif |
107 |
ifeq (,$(wildcard ${PREFIX}/etc/ossec.conf)) |
108 |
ifneq (,$(wildcard ../etc/ossec.mc)) |
109 |
- install -m 0640 -o root -g ${OSSEC_GROUP} ../etc/ossec.mc ${PREFIX}/etc/ossec.conf |
110 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ../etc/ossec.mc ${PREFIX}/etc/ossec.conf |
111 |
else |
112 |
- install -m 0640 -o root -g ${OSSEC_GROUP} ${OSSEC_CONF_SRC} ${PREFIX}/etc/ossec.conf |
113 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ${OSSEC_CONF_SRC} ${PREFIX}/etc/ossec.conf |
114 |
endif |
115 |
endif |
116 |
|
117 |
- install -d -m 0770 -o root -g ${OSSEC_GROUP} ${PREFIX}/etc/shared |
118 |
- install -m 0640 -o ${OSSEC_USER} -g ${OSSEC_GROUP} rootcheck/db/*.txt ${PREFIX}/etc/shared/ |
119 |
+ $(call INSTALL_CMD,0770,root,${OSSEC_GROUP}) -d ${PREFIX}/etc/shared |
120 |
+ $(call INSTALL_CMD,0640,${OSSEC_USER},${OSSEC_GROUP}) rootcheck/db/*.txt ${PREFIX}/etc/shared/ |
121 |
|
122 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/active-response |
123 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/active-response/bin |
124 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/agentless |
125 |
- install -m 0550 -o root -g ${OSSEC_GROUP} agentlessd/scripts/* ${PREFIX}/agentless/ |
126 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/active-response |
127 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/active-response/bin |
128 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/agentless |
129 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) agentlessd/scripts/* ${PREFIX}/agentless/ |
130 |
|
131 |
- install -d -m 0700 -o root -g ${OSSEC_GROUP} ${PREFIX}/.ssh |
132 |
+ $(call INSTALL_CMD,0700,root,${OSSEC_GROUP}) -d ${PREFIX}/.ssh |
133 |
|
134 |
- install -m 0550 -o root -g ${OSSEC_GROUP} ../active-response/*.sh ${PREFIX}/active-response/bin/ |
135 |
- install -m 0550 -o root -g ${OSSEC_GROUP} ../active-response/firewalls/*.sh ${PREFIX}/active-response/bin/ |
136 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) ../active-response/*.sh ${PREFIX}/active-response/bin/ |
137 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) ../active-response/firewalls/*.sh ${PREFIX}/active-response/bin/ |
138 |
|
139 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/var |
140 |
- install -d -m 0770 -o root -g ${OSSEC_GROUP} ${PREFIX}/var/run |
141 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/var |
142 |
+ $(call INSTALL_CMD,0770,root,${OSSEC_GROUP}) -d ${PREFIX}/var/run |
143 |
|
144 |
./init/fw-check.sh execute |
145 |
|
146 |
|
147 |
|
148 |
install-server-generic: install-common |
149 |
- install -m 0660 -o ${OSSEC_USER} -g ${OSSEC_GROUP} /dev/null ${PREFIX}/logs/active-responses.log |
150 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/logs/archives |
151 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/logs/alerts |
152 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/logs/firewall |
153 |
+ $(call INSTALL_CMD,0660,${OSSEC_USER},${OSSEC_GROUP}) /dev/null ${PREFIX}/logs/active-responses.log |
154 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs/archives |
155 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs/alerts |
156 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs/firewall |
157 |
|
158 |
- install -m 0550 -o root -g 0 ossec-agentlessd ${PREFIX}/bin |
159 |
- install -m 0550 -o root -g 0 ossec-analysisd ${PREFIX}/bin |
160 |
- install -m 0550 -o root -g 0 ossec-monitord ${PREFIX}/bin |
161 |
- install -m 0550 -o root -g 0 ossec-reportd ${PREFIX}/bin |
162 |
- install -m 0550 -o root -g 0 ossec-maild ${PREFIX}/bin |
163 |
- install -m 0550 -o root -g 0 ossec-remoted ${PREFIX}/bin |
164 |
- install -m 0550 -o root -g 0 ossec-logtest ${PREFIX}/bin |
165 |
- install -m 0550 -o root -g 0 ossec-csyslogd ${PREFIX}/bin |
166 |
- install -m 0550 -o root -g 0 ossec-authd ${PREFIX}/bin |
167 |
- install -m 0550 -o root -g 0 ossec-dbd ${PREFIX}/bin |
168 |
- install -m 0550 -o root -g 0 ossec-makelists ${PREFIX}/bin |
169 |
- install -m 0550 -o root -g 0 verify-agent-conf ${PREFIX}/bin/ |
170 |
- install -m 0550 -o root -g 0 clear_stats ${PREFIX}/bin/ |
171 |
- install -m 0550 -o root -g 0 list_agents ${PREFIX}/bin/ |
172 |
- install -m 0550 -o root -g 0 ossec-regex ${PREFIX}/bin/ |
173 |
- install -m 0550 -o root -g 0 syscheck_update ${PREFIX}/bin/ |
174 |
- install -m 0550 -o root -g 0 agent_control ${PREFIX}/bin/ |
175 |
- install -m 0550 -o root -g 0 syscheck_control ${PREFIX}/bin/ |
176 |
- install -m 0550 -o root -g 0 rootcheck_control ${PREFIX}/bin/ |
177 |
+ $(call INSTALL_CMD,0550,root,0) ossec-agentlessd ${PREFIX}/bin |
178 |
+ $(call INSTALL_CMD,0550,root,0) ossec-analysisd ${PREFIX}/bin |
179 |
+ $(call INSTALL_CMD,0550,root,0) ossec-monitord ${PREFIX}/bin |
180 |
+ $(call INSTALL_CMD,0550,root,0) ossec-reportd ${PREFIX}/bin |
181 |
+ $(call INSTALL_CMD,0550,root,0) ossec-maild ${PREFIX}/bin |
182 |
+ $(call INSTALL_CMD,0550,root,0) ossec-remoted ${PREFIX}/bin |
183 |
+ $(call INSTALL_CMD,0550,root,0) ossec-logtest ${PREFIX}/bin |
184 |
+ $(call INSTALL_CMD,0550,root,0) ossec-csyslogd ${PREFIX}/bin |
185 |
+ $(call INSTALL_CMD,0550,root,0) ossec-authd ${PREFIX}/bin |
186 |
+ $(call INSTALL_CMD,0550,root,0) ossec-dbd ${PREFIX}/bin |
187 |
+ $(call INSTALL_CMD,0550,root,0) ossec-makelists ${PREFIX}/bin |
188 |
+ $(call INSTALL_CMD,0550,root,0) verify-agent-conf ${PREFIX}/bin/ |
189 |
+ $(call INSTALL_CMD,0550,root,0) clear_stats ${PREFIX}/bin/ |
190 |
+ $(call INSTALL_CMD,0550,root,0) list_agents ${PREFIX}/bin/ |
191 |
+ $(call INSTALL_CMD,0550,root,0) ossec-regex ${PREFIX}/bin/ |
192 |
+ $(call INSTALL_CMD,0550,root,0) syscheck_update ${PREFIX}/bin/ |
193 |
+ $(call INSTALL_CMD,0550,root,0) agent_control ${PREFIX}/bin/ |
194 |
+ $(call INSTALL_CMD,0550,root,0) syscheck_control ${PREFIX}/bin/ |
195 |
+ $(call INSTALL_CMD,0550,root,0) rootcheck_control ${PREFIX}/bin/ |
196 |
|
197 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/stats |
198 |
- install -d -m 0550 -o root -g ${OSSEC_GROUP} ${PREFIX}/rules |
199 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/stats |
200 |
+ $(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/rules |
201 |
ifneq (,$(wildcard ${PREFIX}/rules/local_rules.xml)) |
202 |
cp ${PREFIX}/rules/local_rules.xml ${PREFIX}/rules/local_rules.xml.installbackup |
203 |
- install -m 0640 -o root -g ${OSSEC_GROUP} -b ../etc/rules/*.xml ${PREFIX}/rules |
204 |
- install -m 0640 -o root -g ${OSSEC_GROUP} ${PREFIX}/rules/local_rules.xml.installbackup ${PREFIX}/rules/local_rules.xml |
205 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) -b ../etc/rules/*.xml ${PREFIX}/rules |
206 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ${PREFIX}/rules/local_rules.xml.installbackup ${PREFIX}/rules/local_rules.xml |
207 |
rm ${PREFIX}/rules/local_rules.xml.installbackup |
208 |
else |
209 |
- install -m 0640 -o root -g ${OSSEC_GROUP} -b ../etc/rules/*.xml ${PREFIX}/rules |
210 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) -b ../etc/rules/*.xml ${PREFIX}/rules |
211 |
endif |
212 |
|
213 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/fts |
214 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/fts |
215 |
|
216 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/rootcheck |
217 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/rootcheck |
218 |
|
219 |
- install -d -m 0750 -o ${OSSEC_USER_REM} -g ${OSSEC_GROUP} ${PREFIX}/queue/agent-info |
220 |
- install -d -m 0750 -o ${OSSEC_USER} -g ${OSSEC_GROUP} ${PREFIX}/queue/agentless |
221 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER_REM},${OSSEC_GROUP}) -d ${PREFIX}/queue/agent-info |
222 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/agentless |
223 |
|
224 |
- install -d -m 0750 -o ${OSSEC_USER_REM} -g ${OSSEC_GROUP} ${PREFIX}/queue/rids |
225 |
+ $(call INSTALL_CMD,0750,${OSSEC_USER_REM},${OSSEC_GROUP}) -d ${PREFIX}/queue/rids |
226 |
|
227 |
- install -m 0640 -o root -g ${OSSEC_GROUP} ../etc/decoder.xml ${PREFIX}/etc/ |
228 |
+ $(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ../etc/decoder.xml ${PREFIX}/etc/ |
229 |
|
230 |
rm -f ${PREFIX}/etc/shared/merged.mg |
231 |
|