Summary: | security/snort misplaces dynamic rules is you select snortsam. | ||||||
---|---|---|---|---|---|---|---|
Product: | Ports & Packages | Reporter: | Michael Scheidell <michael.scheidell> | ||||
Component: | Individual Port(s) | Assignee: | Cheng-Lung Sung <clsung> | ||||
Status: | Closed FIXED | ||||||
Severity: | Affects Only Me | ||||||
Priority: | Normal | ||||||
Version: | Latest | ||||||
Hardware: | Any | ||||||
OS: | Any | ||||||
Attachments: |
|
Description
Michael Scheidell
2010-12-16 17:50:12 UTC
Responsible Changed From-To: freebsd-ports-bugs->clsung Over to maintainer (via the GNATS Auto Assign Tool) maintainer: please close fixed in 153998 ______________________________________________________________________ This email has been scanned and certified safe by SpammerTrap(r). For Information please see http://www.secnap.com/products/spammertrap/ ______________________________________________________________________ this attached patch should replace the previous one. this patch is against current 2.8.6.1, applies cleanly, fixes the location of the dynamic libs/rules in pr 153224, fixes pr 129321. this patch takes the previous patch (thanks DEAN!) and addresses some issues with the patch. tested on 7.3 amd64 and 8.1 amd64. installs and deinstalls cleanly.. creates a clean ports package that can be installed and deinstalled. adds back in snortsam support (unofficial. not supported by snort/sourcefile. and this patch isn't the official one from snortsam.net.. yet) tested on 7.3 and 8.1 amd64. Note: have NOT yet tested new ipfw daq, but have tested snortsam/snort combination and it seems to work fine. further, it fixes the previous patch in that 1 port revision is not bumped (it should not be bumped on port major version upgrade) 2 master sites back to SF 3) options modified, some removed from 286: a flexresp (replaced by flexresp3) b targetbased and ipv6 off by default (like 286 was) c snortsam put back in (it was in 286, missing in above patch) d combined flexresp3 with flexreaction (can't have one without the other) pre_proc rules now installed. libnet needed for EVERYTHING, not just flexresp. needed for DAQ. daq dependency bumped, needs daq 0.5_1 added build and run depends (needed to build a ports package binary) snortsam being hosted at secnap.com till it is available from snortsam.net pre-configure: if ! IPV6, edit snort.conf-sample, change ipvar to var, take noamize_ip6/ipcmp6 out of sample conf. post install: the fix for pr 153224 (I can't figure out what snortsam patch does to conf files, so I just move the affected files, pkg-plist wants them there!) remove pkg-message-dynamicplugin (not needed.. port won't build without dynamic plugin support anyway) snort.rc.in: added in extra_commands reload. port options build SIGHUP support into snort now. pkg-plist: add in new binaries new for 286+ fix 2903 pkg-plist that was deleting critical files which were parts of other ports fix 2903 pkg-plist that was deleting users custom snort.conf file. add in removal of sample or untouched preproc_rules. I did not yet change maintainer from clsung@FreeBSD.org as that does not seem to be finalized yet. any problems, might check snort-users group, or if problems specific to port, open a pr . ______________________________________________________________________ This email has been scanned and certified safe by SpammerTrap(r). For Information please see http://www.secnap.com/products/spammertrap/ ______________________________________________________________________ State Changed From-To: open->closed Closed by ports/154514. Thank you. |