Attachment #30013 for bug #50730

View | Details | Raw Unified | Return to bug 50730
Collapse All | Expand All





PORTNAME=	logcheck
PORTVERSION=	1.1.1
PORTREVISION=	1
CATEGORIES=	security
MASTER_SITES=	ftp://sensimilia.eu.org/pub/software/sys/ \
		http://www.ukc.mirror.ac.uk/sites/ftp.freebsd.org/pub/FreeBSD/ports/distfiles/ \
		http://www.psionic.com/downloads/ \
		http://people.FreeBSD.org/~foxfair/distfiles/
DISTNAME=	logsentry-${PORTVERSION}

MAINTAINER=	sergei@kolobov.com
COMMENT=	Auditing tool for system logs on Unix boxes

BROKEN=		"Changes permissions on /tmp to mode 0700"

USE_REINPLACE=	yes

WRKSRC=		${WRKDIR}/${PORTNAME}-${PORTVERSION}
PKGMESSAGE=	${WRKDIR}/MESSAGE

# Install binaries and config files readable to root only
BINMODE=	700
SHAREMODE=	600

LOGCHECK_TMP?=	/var/run/logcheck
PLIST_SUB+=	LOGCHECK_TMP=${LOGCHECK_TMP}

CONFIG_FILES=	logcheck.hacking logcheck.ignore \
		logcheck.violations logcheck.violations.ignore
DOCS=		CREDITS INSTALL README README.how.to.interpret README.keywords

do-build:
	cd ${WRKSRC}/src && ${CC} ${CFLAGS} -o logtail logtail.c
	${REINPLACE_CMD} -e 's!/usr/local/bin/logtail!${PREFIX}/bin/logtail!' \
		-e 's!/usr/local/etc/tmp!${LOGCHECK_TMP}!' \
		-e 's!/usr/local/etc/logcheck!${PREFIX}/etc/logcheck!' \
		${WRKSRC}/systems/freebsd/logcheck.sh
	${REINPLACE_CMD} -e "s@/bin/mkdir@${MKDIR}@g" ${WRKSRC}/Makefile

post-build:
	@${SED} -e 's,%%PREFIX%%,${PREFIX},g' ${PKGDIR}/pkg-message > ${PKGMESSAGE}

do-install:
	${INSTALL_PROGRAM} ${WRKSRC}/src/logtail ${PREFIX}/bin
	${INSTALL_SCRIPT} ${WRKSRC}/systems/freebsd/logcheck.sh ${PREFIX}/etc
	${MKDIR} ${EXAMPLESDIR}
	cd ${WRKSRC}/systems/freebsd && \
		${INSTALL_DATA} ${CONFIG_FILES} ${EXAMPLESDIR} && \
		${INSTALL_DATA} ${CONFIG_FILES} ${PREFIX}/etc
	${TEST} -d ${LOGCHECK_TMP} || ${MKDIR} -m 700 ${LOGCHECK_TMP}
	${CHOWN} root:wheel ${LOGCHECK_TMP}
.if !defined(NOPORTDOCS)
	${MKDIR} ${DOCSDIR}
	cd ${WRKSRC} && ${INSTALL_DATA} ${DOCS} ${DOCSDIR}
.endif

.include <bsd.port.mk>




Logcheck helps spot problems and security violations in your logfiles 
automatically and will send the results to you in e-mail.

It is a program created to help in the processing of UNIX system logfiles
generated by the various system daemons.  Logcheck also works very well at
reporting on other common operating system security violations and strange
events.
Systems Inc.(TIS). Logcheck also works very well at reporting on other 
common operating system security violations and strange events.

WWW: http://www.psionic.com/

- Dan Langille
dan@freebsddiary.org




bin/logtail
etc/logcheck.hacking.sample
etc/logcheck.ignore.sample
etc/logcheck.sh
etc/logcheck.hacking
etc/logcheck.ignore
etc/logcheck.violations
etc/logcheck.violations.ignore
%%EXAMPLESDIR%%/logcheck.hacking
%%EXAMPLESDIR%%/logcheck.ignore
%%EXAMPLESDIR%%/logcheck.violations.ignore
%%EXAMPLESDIR%%/logcheck.violations
@dirrm %%EXAMPLESDIR%%
%%PORTDOCS%%%%DOCSDIR%%/CREDITS
%%PORTDOCS%%%%DOCSDIR%%/INSTALL
%%PORTDOCS%%%%DOCSDIR%%/README
%%PORTDOCS%%%%DOCSDIR%%/README.how.to.interpret
%%PORTDOCS%%%%DOCSDIR%%/README.keywords
%%PORTDOCS%%@dirrm %%DOCSDIR%%
@cwd /
@exec test -d %%LOGCHECK_TMP%% || mkdir -m 700 %%LOGCHECK_TMP%% && chown root:wheel %%LOGCHECK_TMP%%
@unexec rmdir %%LOGCHECK_TMP%% 2>/dev/null || true

Return to bug 50730

Lines 7-38 Link Here

(-)Makefile (-14 / +32 lines)
7		7
8	PORTNAME= logcheck	8	PORTNAME= logcheck
9	PORTVERSION= 1.1.1	9	PORTVERSION= 1.1.1
		10	PORTREVISION= 1
10	CATEGORIES= security	11	CATEGORIES= security
11	MASTER_SITES= ftp://sensimilia.eu.org/pub/software/sys/ \	12	MASTER_SITES= ftp://sensimilia.eu.org/pub/software/sys/ \
12	http://www.ukc.mirror.ac.uk/sites/ftp.freebsd.org/pub/FreeBSD/ports/distfiles/ \	13	http://www.ukc.mirror.ac.uk/sites/ftp.freebsd.org/pub/FreeBSD/ports/distfiles/ \
13	http://www.psionic.com/downloads/ \
14	http://people.FreeBSD.org/~foxfair/distfiles/	14	http://people.FreeBSD.org/~foxfair/distfiles/
15	DISTNAME= logsentry-${PORTVERSION}	15	DISTNAME= logsentry-${PORTVERSION}
16		16
17	MAINTAINER= ports@FreeBSD.org	17	MAINTAINER= sergei@kolobov.com
18	COMMENT= Auditing tool for system logs on Unix boxes	18	COMMENT= Auditing tool for system logs on Unix boxes
19		19
20	BROKEN= "Changes permissions on /tmp to mode 0700"
21
22	USE_REINPLACE= yes	20	USE_REINPLACE= yes
		21
23	WRKSRC= ${WRKDIR}/${PORTNAME}-${PORTVERSION}	22	WRKSRC= ${WRKDIR}/${PORTNAME}-${PORTVERSION}
24	PKGMESSAGE= ${WRKDIR}/MESSAGE
25		23
26	pre-configure:	24	# Install binaries and config files readable to root only
27	${REINPLACE_CMD} -e "s@/usr/local/etc/tmp@/tmp@g; \	25	BINMODE= 700
28	s@/usr/local@${PREFIX}@" ${WRKSRC}/Makefile \	26	SHAREMODE= 600
		27
		28	LOGCHECK_TMP?= /var/run/logcheck
		29	PLIST_SUB+= LOGCHECK_TMP=${LOGCHECK_TMP}
		30
		31	CONFIG_FILES= logcheck.hacking logcheck.ignore \
		32	logcheck.violations logcheck.violations.ignore
		33	DOCS= CREDITS INSTALL README README.how.to.interpret README.keywords
		34
		35	do-build:
		36	cd ${WRKSRC}/src && ${CC} ${CFLAGS} -o logtail logtail.c
		37	${REINPLACE_CMD} -e 's!/usr/local/bin/logtail!${PREFIX}/bin/logtail!' \
		38	-e 's!/usr/local/etc/tmp!${LOGCHECK_TMP}!' \
		39	-e 's!/usr/local/etc/logcheck!${PREFIX}/etc/logcheck!' \
29	${WRKSRC}/systems/freebsd/logcheck.sh	40	${WRKSRC}/systems/freebsd/logcheck.sh
30	${REINPLACE_CMD} -e "s@/bin/mkdir@${MKDIR}@g" ${WRKSRC}/Makefile
31
32	post-build:
33	@${SED} -e 's,%%PREFIX%%,${PREFIX},g' ${PKGDIR}/pkg-message > ${PKGMESSAGE}
34		41
35	post-install:	42	do-install:
36	@${CAT} ${PKGMESSAGE}	43	${INSTALL_PROGRAM} ${WRKSRC}/src/logtail ${PREFIX}/bin
		44	${INSTALL_SCRIPT} ${WRKSRC}/systems/freebsd/logcheck.sh ${PREFIX}/etc
		45	${MKDIR} ${EXAMPLESDIR}
		46	cd ${WRKSRC}/systems/freebsd && \
		47	${INSTALL_DATA} ${CONFIG_FILES} ${EXAMPLESDIR} && \
		48	${INSTALL_DATA} ${CONFIG_FILES} ${PREFIX}/etc
		49	${TEST} -d ${LOGCHECK_TMP} \|\| ${MKDIR} -m 700 ${LOGCHECK_TMP}
		50	${CHOWN} root:wheel ${LOGCHECK_TMP}
		51	.if !defined(NOPORTDOCS)
		52	${MKDIR} ${DOCSDIR}
		53	cd ${WRKSRC} && ${INSTALL_DATA} ${DOCS} ${DOCSDIR}
		54	.endif
37		55
38	.include <bsd.port.mk>	56	.include <bsd.port.mk>

Lines 1-14 Link Here

(-)pkg-descr (-8 / +4 lines)
1	Logcheck helps spot problems and security violations in your logfiles	1	Logcheck helps spot problems and security violations in your logfiles
2	automatically and will send the results to you in e-mail.	2	automatically and will send the results to you in e-mail.
3		3
4	Logcheck is part of the Abacus Project of security tools. It is a program	4	It is a program created to help in the processing of UNIX system logfiles
5	created to help in the processing of UNIX system logfiles generated by the	5	generated by the various system daemons. Logcheck also works very well at
6	various Abacus Project tools, system daemons, Wietse Venema's TCP Wrapper	6	reporting on other common operating system security violations and strange
7	and Log Daemon packages, and the Firewall Toolkit(c) by Trusted Information	7	events.
8	Systems Inc.(TIS). Logcheck also works very well at reporting on other
9	common operating system security violations and strange events.
10
11	WWW: http://www.psionic.com/
12		8
13	- Dan Langille	9	- Dan Langille
14	dan@freebsddiary.org	10	dan@freebsddiary.org

Lines 1-8 Link Here

(-)pkg-plist (-6 / +18 lines)
1	bin/logtail	1	bin/logtail
2	etc/logcheck.hacking.sample
3	etc/logcheck.ignore.sample
4	etc/logcheck.sh	2	etc/logcheck.sh
5	etc/logcheck.violations.ignore.sample	3	etc/logcheck.hacking
6	etc/logcheck.violations.sample	4	etc/logcheck.ignore
7	@dirrm var/tmp	5	etc/logcheck.violations
8	@dirrm var	6	etc/logcheck.violations.ignore
		7	%%EXAMPLESDIR%%/logcheck.hacking
		8	%%EXAMPLESDIR%%/logcheck.ignore
		9	%%EXAMPLESDIR%%/logcheck.violations.ignore
		10	%%EXAMPLESDIR%%/logcheck.violations
		11	@dirrm %%EXAMPLESDIR%%
		12	%%PORTDOCS%%%%DOCSDIR%%/CREDITS
		13	%%PORTDOCS%%%%DOCSDIR%%/INSTALL
		14	%%PORTDOCS%%%%DOCSDIR%%/README
		15	%%PORTDOCS%%%%DOCSDIR%%/README.how.to.interpret
		16	%%PORTDOCS%%%%DOCSDIR%%/README.keywords
		17	%%PORTDOCS%%@dirrm %%DOCSDIR%%
		18	@cwd /
		19	@exec test -d %%LOGCHECK_TMP%% \|\| mkdir -m 700 %%LOGCHECK_TMP%% && chown root:wheel %%LOGCHECK_TMP%%
		20	@unexec rmdir %%LOGCHECK_TMP%% 2>/dev/null \|\| true