# ChangeLog for net-analyzer/snort
# Copyright 2002-2007 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/ChangeLog,v 1.128 2007/04/22 05:55:08 dragonheart Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/ChangeLog,v 1.129 2007/04/22 06:21:15 dragonheart Exp $
-*snort-2.6.1.4-r1 (22 Apr 2007)
-
- 22 Apr 2007; Daniel Black <dragonheart@gentoo.org> +snort-2.6.1.4-r1.ebuild,
- files/snort.rc9:
- now includes priv drop thanks to <drear> on irc. Default config file now
- x86_64 friendly with library paths too.
+ 22 Apr 2007; Daniel Black <dragonheart@gentoo.org> +files/snort.rc7,
+ -files/snort.rc9, +snort-2.4.5.ebuild, snort-2.6.1.4.ebuild,
+ -snort-2.6.1.4-r1.ebuild:
+ snort.conf default to install to /etc/snort/snort.conf.distrib like the init
+ script says. No includes proper amd64 library paths too
07 Apr 2007; Raphael Marichez <falco@gentoo.org>
+files/snort-2.6.1.4-libdnet-ip6.patch, snort-2.6.1.4.ebuild:
MD5 446f8d2b3435b8a6be738da978670605 files/snort.confd 423
RMD160 8312bad7b271cc20a9eeb8f08f0cba5cd330eb2f files/snort.confd 423
SHA256 d504cb31ffcce9acc8fc7b68123a31a53b491444c52730339ea9a4e986521f71 files/snort.confd 423
+AUX snort.rc7 746 RMD160 d060f5295261d989cc62186c55645b3b17d0a12d SHA1 d666b77b90f3555b7dd56188cc121c71f4df8791 SHA256 629d984fd2876defc6d0179919ed8c9f68a5308a2c5c3d90c026ab246108066c
+MD5 f1c3d7f70ee525f4ef15850e0fff2171 files/snort.rc7 746
+RMD160 d060f5295261d989cc62186c55645b3b17d0a12d files/snort.rc7 746
+SHA256 629d984fd2876defc6d0179919ed8c9f68a5308a2c5c3d90c026ab246108066c files/snort.rc7 746
AUX snort.rc8 764 RMD160 37ca479a48a97dfcade39f4756cadc15fa31b971 SHA1 f4b79149468ceb694526972da36bb1221c72b19d SHA256 b657ad099ce1df24cbc4c5b1f48718572bec65a14cd52c9f29b87e4f7f549693
MD5 c7aa5ee74c08a1a5223a818f4b47248c files/snort.rc8 764
RMD160 37ca479a48a97dfcade39f4756cadc15fa31b971 files/snort.rc8 764
SHA256 b657ad099ce1df24cbc4c5b1f48718572bec65a14cd52c9f29b87e4f7f549693 files/snort.rc8 764
-AUX snort.rc9 789 RMD160 23822ae1771de0a840e889fe32b68935f8a1d72e SHA1 6c1d4c6c77ae7c2078ced9adcab547e84ec00901 SHA256 57b86fa18f008549620d05d12887dff98bfe0f282214d566273aa1ce739e3e70
-MD5 daddf6fbef484d7fedb101cae4884063 files/snort.rc9 789
-RMD160 23822ae1771de0a840e889fe32b68935f8a1d72e files/snort.rc9 789
-SHA256 57b86fa18f008549620d05d12887dff98bfe0f282214d566273aa1ce739e3e70 files/snort.rc9 789
DIST Community-Rules-2.4.tar.gz 110044 RMD160 ecfb4444cb0152545d823692eb6e5e2347151b54 SHA1 cbb5e5e8183608145642b3a47eb0be7fc06423f6 SHA256 4c82f90c960626aae5804c2375540f2d7241524c31ae3c7ab69df6c46e295c4c
+DIST Community-Rules.tar.gz 11678 RMD160 a65b656e4dbf29f1c807622e865e945f509fe0c5 SHA1 de02fd44c58529795e0ab59b65aa08a608cffd95 SHA256 fd37a897455dcb4bace1f7f0af11747b5360e0e3896cd0b9649e5d19281bb2cf
+DIST snort-2.4.0-genpatches.tar.bz2 6475 RMD160 9ea99c71892a2cbf409ead3514ae792210bdf3d0 SHA1 23d7ac5fb3e3fca5340a4f45ff6d64c4a4214e42 SHA256 8bf51a47b2a0db9ccad83a27105994befd9be381b41aeb02561882308f4c6dff
+DIST snort-2.4.5.tar.gz 2817837 RMD160 1b697ccd84e1c10406ac20ccc0c46f79ea661e11 SHA1 3ba7dae8058aecf4e4eb1c7a816a7c8a4fb7c550 SHA256 84eb84da542d23e9f1c29b8eb319614c509fb19a745f1fa2a88d07c740645184
DIST snort-2.6.1.3.tar.gz 3700149 RMD160 0c390bd7cdbe705ba43ce8c8894bfec53c3179f6 SHA1 cb944d74ab6c254f88d356d45e4492ba560dfc3c SHA256 8cc112d6e0a55b0a7e0802428abbd1b7815e0d01a1240c84a726ecc563629a79
DIST snort-2.6.1.4.tar.gz 3716052 RMD160 b9768992698fd9967b66b89938d38555260660ab SHA1 2709f1ef0953029a8b9a23c94dea81bcd42b2906 SHA256 5f830d3c95b6fb96b8abaa5539e71c3cdcfd8df95b376c77323149436f7bbf70
DIST snortrules-pr-2.4.tar.gz 789097 RMD160 dd2179b3ce8a55699d2e1b857426e5489191a121 SHA1 b8b59754ccb59b1dcf324d2faa399326117a60e9 SHA256 19d2545a2a150dff8b4dbcbd0def389b6865c4c70f5084172d08a7b151e1a504
DIST snortsam-20050110.tar.gz 29395 RMD160 ec80ce024ed7a013da35444ef1098ba3faa6cfc3 SHA1 46a274abeeea4e808849c65b9d510a5b5a221ba6 SHA256 dc428458f3c47684aabb89036ca7e601a6aa92864dbf23b31f33732b76c2a01e
+EBUILD snort-2.4.5.ebuild 4439 RMD160 dc182b0740699a4ac238ef6431165f04cdf4df76 SHA1 8e1dc8436b8e83419fa98a96cb5bc81887a94d28 SHA256 cf825c74720eec85834c37ca8d414b03f1c9507020310372701e1657fd331d45
+MD5 aeb13afaf4afa8f0fa754e55f5d19514 snort-2.4.5.ebuild 4439
+RMD160 dc182b0740699a4ac238ef6431165f04cdf4df76 snort-2.4.5.ebuild 4439
+SHA256 cf825c74720eec85834c37ca8d414b03f1c9507020310372701e1657fd331d45 snort-2.4.5.ebuild 4439
EBUILD snort-2.6.1.3-r1.ebuild 5907 RMD160 e291e085d9b1fe1da3f6e48f522039ddc35ae9b1 SHA1 a2b77b8b706bffb0b856c1d39767e2fb51d8761c SHA256 93f28bc63690ff05a202b6bff5e50be38be6c7386165e632860d1b198fedd53c
MD5 47ffbc85772ccf7095b71ced3d2d7fd0 snort-2.6.1.3-r1.ebuild 5907
RMD160 e291e085d9b1fe1da3f6e48f522039ddc35ae9b1 snort-2.6.1.3-r1.ebuild 5907
SHA256 93f28bc63690ff05a202b6bff5e50be38be6c7386165e632860d1b198fedd53c snort-2.6.1.3-r1.ebuild 5907
-EBUILD snort-2.6.1.4-r1.ebuild 5988 RMD160 c41c5b10178ef43f270020b65be62ebab1af3916 SHA1 f7c13658e68d8f9c5afeb0bf189e761ab51e541f SHA256 64ae0e2b4ba9bcd460bfc6170377640ff5c184a6fdd93f60fc330a224da42c98
-MD5 1d39642f32d9345f29c5403760f3c0b4 snort-2.6.1.4-r1.ebuild 5988
-RMD160 c41c5b10178ef43f270020b65be62ebab1af3916 snort-2.6.1.4-r1.ebuild 5988
-SHA256 64ae0e2b4ba9bcd460bfc6170377640ff5c184a6fdd93f60fc330a224da42c98 snort-2.6.1.4-r1.ebuild 5988
-EBUILD snort-2.6.1.4.ebuild 5947 RMD160 8bc74b81c4c47ab9080031b1f5dda428c7c58f34 SHA1 bb7d91d4443d4de22aaec5f4f32676ce0107615a SHA256 82bda250ebabcae3b5b42aacaed9f1ab9f6312fe0933c8414d6352c11ddf423d
-MD5 ecd5db1dc4479f31445e4162ab0a65a5 snort-2.6.1.4.ebuild 5947
-RMD160 8bc74b81c4c47ab9080031b1f5dda428c7c58f34 snort-2.6.1.4.ebuild 5947
-SHA256 82bda250ebabcae3b5b42aacaed9f1ab9f6312fe0933c8414d6352c11ddf423d snort-2.6.1.4.ebuild 5947
-MISC ChangeLog 22947 RMD160 cf6db4fa22e0736188a69246331b9de636f8a282 SHA1 83e1e45ea0786dbf09cfdfba0e7473503af2875c SHA256 ad885522393ba28de3cba398beb645d5448fd51de23c4caaea7ea94949025c7c
-MD5 c67458355197454b7df7f2d97828ba27 ChangeLog 22947
-RMD160 cf6db4fa22e0736188a69246331b9de636f8a282 ChangeLog 22947
-SHA256 ad885522393ba28de3cba398beb645d5448fd51de23c4caaea7ea94949025c7c ChangeLog 22947
+EBUILD snort-2.6.1.4.ebuild 6001 RMD160 eb79bf4074c0b02856a525024c085ce19f609521 SHA1 a102824c96918b3b2c9270cc26099fa6842d3973 SHA256 d25b828ffd843171a501d9289f10abf9568b11159716e538c9059d7a1bc7e3d9
+MD5 0a6200bf6beee09deb9ddd3d7faa3042 snort-2.6.1.4.ebuild 6001
+RMD160 eb79bf4074c0b02856a525024c085ce19f609521 snort-2.6.1.4.ebuild 6001
+SHA256 d25b828ffd843171a501d9289f10abf9568b11159716e538c9059d7a1bc7e3d9 snort-2.6.1.4.ebuild 6001
+MISC ChangeLog 22998 RMD160 5d789b425252d395d1592c25fed065a29ebc5312 SHA1 e9252987b9d5af8cbc0c0b59311368490c5c07b1 SHA256 4d7d7526762e6cbf458309f27e54567c25f050c3da9724e110477bde104d7c0d
+MD5 e30e0c252e0f5e75dc749aa54b834723 ChangeLog 22998
+RMD160 5d789b425252d395d1592c25fed065a29ebc5312 ChangeLog 22998
+SHA256 4d7d7526762e6cbf458309f27e54567c25f050c3da9724e110477bde104d7c0d ChangeLog 22998
MISC metadata.xml 246 RMD160 427cf3e9767d777650d905a7b4fcad57259908bb SHA1 470a19ab011412f7f219d654304b7a43876082ae SHA256 843ac8d26d6f2f01b254d963268d1b4dc7ec515e5ce16daf47f7c68f2c47584e
MD5 53edc4328d9adeaf087c65ea94b1594b metadata.xml 246
RMD160 427cf3e9767d777650d905a7b4fcad57259908bb metadata.xml 246
SHA256 843ac8d26d6f2f01b254d963268d1b4dc7ec515e5ce16daf47f7c68f2c47584e metadata.xml 246
+MD5 8ab79a3b3485b8028ffc95ef22f0e4a7 files/digest-snort-2.4.5 1250
+RMD160 9f1bbc6e281b0a46b8dad256d91b2c7898d21d4e files/digest-snort-2.4.5 1250
+SHA256 eca549eac2e372a4307f224ffb2150f9fd940540134ecae1c73621c81f61d826 files/digest-snort-2.4.5 1250
MD5 e7cdd3d5ed52e8d17a5f3f284439d5aa files/digest-snort-2.6.1.3-r1 1006
RMD160 05f6c24285518a6fb48e50b7d1b4314c9693cc75 files/digest-snort-2.6.1.3-r1 1006
SHA256 4bd85630e9420e683d70be000370bcc0c5cf927c25c4ed1406c585d6481f1f9e files/digest-snort-2.6.1.3-r1 1006
MD5 0a41105e90aae43a766364d2f7822a41 files/digest-snort-2.6.1.4 1006
RMD160 8046913eb94ba65bf1e82402e64bb4572fd326dd files/digest-snort-2.6.1.4 1006
SHA256 78dac29646fdafa52b5fca59970c439aa43fb3ecf689390e56e7ab011e58af21 files/digest-snort-2.6.1.4 1006
-MD5 0a41105e90aae43a766364d2f7822a41 files/digest-snort-2.6.1.4-r1 1006
-RMD160 8046913eb94ba65bf1e82402e64bb4572fd326dd files/digest-snort-2.6.1.4-r1 1006
-SHA256 78dac29646fdafa52b5fca59970c439aa43fb3ecf689390e56e7ab011e58af21 files/digest-snort-2.6.1.4-r1 1006
--- /dev/null
+MD5 39d8250f47a33aaec4712e29c0dcd1d0 Community-Rules.tar.gz 11678
+RMD160 a65b656e4dbf29f1c807622e865e945f509fe0c5 Community-Rules.tar.gz 11678
+SHA256 fd37a897455dcb4bace1f7f0af11747b5360e0e3896cd0b9649e5d19281bb2cf Community-Rules.tar.gz 11678
+MD5 316f28cf52efeddfd899552f3b26cd8d snort-2.4.0-genpatches.tar.bz2 6475
+RMD160 9ea99c71892a2cbf409ead3514ae792210bdf3d0 snort-2.4.0-genpatches.tar.bz2 6475
+SHA256 8bf51a47b2a0db9ccad83a27105994befd9be381b41aeb02561882308f4c6dff snort-2.4.0-genpatches.tar.bz2 6475
+MD5 108b3c20dcbaf3cdb17ea9203342eaaa snort-2.4.5.tar.gz 2817837
+RMD160 1b697ccd84e1c10406ac20ccc0c46f79ea661e11 snort-2.4.5.tar.gz 2817837
+SHA256 84eb84da542d23e9f1c29b8eb319614c509fb19a745f1fa2a88d07c740645184 snort-2.4.5.tar.gz 2817837
+MD5 35d9a2486f8c0280bb493aa03c011927 snortrules-pr-2.4.tar.gz 789097
+RMD160 dd2179b3ce8a55699d2e1b857426e5489191a121 snortrules-pr-2.4.tar.gz 789097
+SHA256 19d2545a2a150dff8b4dbcbd0def389b6865c4c70f5084172d08a7b151e1a504 snortrules-pr-2.4.tar.gz 789097
+MD5 2eeef1a7a040d67c3afaf9d749905e47 snortsam-20050110.tar.gz 29395
+RMD160 ec80ce024ed7a013da35444ef1098ba3faa6cfc3 snortsam-20050110.tar.gz 29395
+SHA256 dc428458f3c47684aabb89036ca7e601a6aa92864dbf23b31f33732b76c2a01e snortsam-20050110.tar.gz 29395
+++ /dev/null
-MD5 52c0c6bc60d7123cb048e562d25bc34a Community-Rules-2.4.tar.gz 110044
-RMD160 ecfb4444cb0152545d823692eb6e5e2347151b54 Community-Rules-2.4.tar.gz 110044
-SHA256 4c82f90c960626aae5804c2375540f2d7241524c31ae3c7ab69df6c46e295c4c Community-Rules-2.4.tar.gz 110044
-MD5 70e7f297c9fcf1f46d6fa3e1bb4aae49 snort-2.6.1.4.tar.gz 3716052
-RMD160 b9768992698fd9967b66b89938d38555260660ab snort-2.6.1.4.tar.gz 3716052
-SHA256 5f830d3c95b6fb96b8abaa5539e71c3cdcfd8df95b376c77323149436f7bbf70 snort-2.6.1.4.tar.gz 3716052
-MD5 35d9a2486f8c0280bb493aa03c011927 snortrules-pr-2.4.tar.gz 789097
-RMD160 dd2179b3ce8a55699d2e1b857426e5489191a121 snortrules-pr-2.4.tar.gz 789097
-SHA256 19d2545a2a150dff8b4dbcbd0def389b6865c4c70f5084172d08a7b151e1a504 snortrules-pr-2.4.tar.gz 789097
-MD5 2eeef1a7a040d67c3afaf9d749905e47 snortsam-20050110.tar.gz 29395
-RMD160 ec80ce024ed7a013da35444ef1098ba3faa6cfc3 snortsam-20050110.tar.gz 29395
-SHA256 dc428458f3c47684aabb89036ca7e601a6aa92864dbf23b31f33732b76c2a01e snortsam-20050110.tar.gz 29395
#!/sbin/runscript
# Copyright 1999-2004 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/files/snort.rc9,v 1.1 2007/04/22 05:55:08 dragonheart Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/files/snort.rc7,v 1.3 2007/04/22 06:21:15 dragonheart Exp $
depend() {
need net
- after mysql
- after postgresql
}
checkconfig() {
ebegin "Starting snort"
start-stop-daemon --start --quiet --exec /usr/bin/snort \
--pidfile ${PIDFILE} \
- -- ${SNORT_OPTS} -u snort -g snort >/dev/null 2>&1
+ -- ${SNORT_OPTS} >/dev/null 2>&1
eend $?
}
--- /dev/null
+# Copyright 1999-2007 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/snort-2.4.5.ebuild,v 1.11 2007/04/22 06:21:15 dragonheart Exp $
+
+WANT_AUTOCONF="latest"
+WANT_AUTOMAKE="latest"
+inherit eutils flag-o-matic autotools
+
+DESCRIPTION="Libpcap-based packet sniffer/logger/lightweight IDS"
+HOMEPAGE="http://www.snort.org/"
+SRC_URI="http://www.snort.org/dl/current/${P}.tar.gz
+ mirror://gentoo/snort-2.4.0-genpatches.tar.bz2
+ http://www.snort.org/pub-bin/downloads.cgi/Download/comm_rules/Community-Rules.tar.gz
+ http://www.snort.org/pub-bin/downloads.cgi/Download/vrt_pr/snortrules-pr-2.4.tar.gz
+ snortsam? ( mirror://gentoo/snortsam-20050110.tar.gz )"
+
+LICENSE="GPL-2"
+SLOT="0"
+KEYWORDS="-alpha amd64 ppc ppc64 -sparc x86"
+IUSE="ssl postgres mysql flexresp selinux snortsam odbc prelude inline sguil"
+
+DEPEND="virtual/libc
+ >=dev-libs/libpcre-4.2-r1
+ virtual/libpcap
+ flexresp? ( ~net-libs/libnet-1.0.2a )
+ postgres? ( || ( dev-db/postgresql dev-db/libpq ) )
+ mysql? ( virtual/mysql )
+ ssl? ( dev-libs/openssl )
+ prelude? ( >=dev-libs/libprelude-0.9.0 )
+ odbc? ( dev-db/unixODBC )
+ inline? (
+ ~net-libs/libnet-1.0.2a
+ net-firewall/iptables
+ )"
+
+RDEPEND="${DEPEND}
+ dev-lang/perl
+ selinux? ( sec-policy/selinux-snort )
+ snortsam? ( net-analyzer/snortsam )"
+
+pkg_setup() {
+ enewgroup snort
+ enewuser snort -1 -1 /dev/null snort
+}
+
+src_unpack() {
+ unpack ${A}
+ cd "${S}"
+
+ if use flexresp || use inline ; then
+ epatch "${WORKDIR}/2.4.0-libnet-1.0.patch"
+ fi
+
+ sed -i "s:var RULE_PATH ../rules:var RULE_PATH /etc/snort/rules:" \
+ etc/snort.conf || die "sed snort.conf failed"
+
+ if use prelude ; then
+ sed -i -e "s:AC_PROG_RANLIB:AC_PROG_LIBTOOL:" configure.in \
+ || die "sed configure.in failed"
+ fi
+
+ if use sguil ; then
+ epatch "${WORKDIR}/2.4.0-spp_portscan_sguil.patch"
+ epatch "${WORKDIR}/2.4.0-spp_stream4_sguil.patch"
+ fi
+
+ if use snortsam ; then
+ cd ..
+ einfo "Applying snortsam patch"
+ ./patchsnort.sh "${S}" || die "snortsam patch failed"
+ cd "${S}"
+ fi
+
+ einfo "Regenerating autoconf/automake files"
+ AT_M4DIR=m4 eautoreconf
+}
+
+src_compile() {
+ local myconf
+
+ # bug #149496
+ append-flags -fno-strict-aliasing
+
+ # There is no --disable-flexresp, cannot use use_enable
+ use flexresp && myconf="${myconf} --enable-flexresp"
+
+ use inline && append-flags -I/usr/include/libipq
+
+ econf \
+ $(use_with postgres postgresql) \
+ $(use_with mysql) \
+ $(use_with ssl openssl) \
+ $(use_with odbc) \
+ --without-oracle \
+ $(use_enable prelude) \
+ $(use_with sguil) \
+ $(use_enable inline) \
+ ${myconf} || die "bad ./configure"
+
+ emake || die "compile problem"
+}
+
+src_install() {
+ make DESTDIR="${D}" install || die "make install failed"
+
+ keepdir /var/log/snort/
+
+ dodoc doc/*
+ docinto schemas ; dodoc schemas/*
+
+ insinto /etc/snort
+ doins etc/reference.config etc/classification.config \
+ etc/*.map etc/threshold.conf
+ newins etc/snort.conf snort.conf
+ if use sguil ; then
+ sed -i -e "/^# output log_unified/s:# ::" \
+ -e "s:snort.log:snort_unified.log:" \
+ "${D}/etc/snort/snort.conf" || die "sed failed"
+ fi
+
+ newinitd "${FILESDIR}/snort.rc7" snort
+ newconfd "${FILESDIR}/snort.confd" snort
+ if use sguil ; then
+ sed -i -e "s:/var/log/snort:/var/lib/sguil/$(hostname):" \
+ -e "/^SNORT_OPTS/s%-u snort%-m 122 -u sguil -g sguil -A none%" \
+ "${D}/etc/conf.d/snort" || die "sed failed"
+ fi
+
+ fowners snort:snort /var/log/snort
+ fperms 0770 /var/log/snort
+
+ # install rules
+ dodir /etc/snort/rules
+ mv "${WORKDIR}"/rules/* "${D}/etc/snort/rules/"
+}
+
+pkg_postinst() {
+ if use mysql || use postgres || use odbc ; then
+ einfo "To use a database as a backend for snort you will have to"
+ einfo "import the correct tables to the database."
+ einfo "You will have to setup a database called snort first."
+ einfo
+ use mysql && \
+ einfo " MySQL: zcat /usr/share/doc/${PF}/schemas/create_mysql.gz | mysql -p snort"
+ use postgres && \
+ einfo " PostgreSQL: import /usr/share/doc/${PF}/schemas/create_postgresql.gz"
+ use odbc && einfo "SQL tables need to be created - look at /usr/share/doc/${PF}/schemas/"
+ einfo
+ einfo "Also, read the following Gentoo forums article:"
+ einfo ' http://forums.gentoo.org/viewtopic-t-399801.html'
+ fi
+ einfo
+ ewarn "Only a basic set of rules was installed."
+ ewarn "Please add your other sets of rules to /etc/snort/rules."
+ ewarn "For more information on rules, visit ${HOMEPAGE}."
+}
+++ /dev/null
-# Copyright 1999-2007 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/snort-2.6.1.4-r1.ebuild,v 1.1 2007/04/22 05:55:08 dragonheart Exp $
-
-WANT_AUTOCONF="latest"
-WANT_AUTOMAKE="latest"
-AT_M4DIR=m4
-
-inherit eutils autotools
-
-DESCRIPTION="Libpcap-based packet sniffer/logger/lightweight IDS"
-HOMEPAGE="http://www.snort.org/"
-SRC_URI="http://www.snort.org/dl/current/${P}.tar.gz
- http://www.snort.org/pub-bin/downloads.cgi/Download/comm_rules/Community-Rules-2.4.tar.gz
- http://www.snort.org/pub-bin/downloads.cgi/Download/vrt_pr/snortrules-pr-2.4.tar.gz
- snortsam? ( mirror://gentoo/snortsam-20050110.tar.gz )"
-
-LICENSE="GPL-2"
-SLOT="0"
-KEYWORDS="~alpha ~amd64 ~ppc ~ppc64 -sparc ~x86"
-IUSE="postgres mysql flexresp selinux snortsam odbc prelude inline dynamicplugin
-timestats perfprofiling linux-smp-stats flexresp2 react sguil gre"
-
-DEPEND="virtual/libc
- >=dev-libs/libpcre-4.2-r1
- virtual/libpcap
- flexresp? ( ~net-libs/libnet-1.0.2a )
- flexresp2? ( dev-libs/libdnet )
- react? ( ~net-libs/libnet-1.0.2a )
- postgres? ( || ( dev-db/postgresql dev-db/libpq ) )
- mysql? ( virtual/mysql )
- prelude? ( >=dev-libs/libprelude-0.9.0 )
- odbc? ( dev-db/unixODBC )
- >=sys-devel/libtool-1.4
- inline? (
- ~net-libs/libnet-1.0.2a
- net-firewall/iptables
- )"
-
-RDEPEND="${DEPEND}
- dev-lang/perl
- selinux? ( sec-policy/selinux-snort )
- snortsam? ( net-analyzer/snortsam )"
-
-pkg_setup() {
- enewgroup snort
- enewuser snort -1 -1 /dev/null snort
-
- if use flexresp && use flexresp2 ; then
- ewarn
- ewarn "You have both the 'flexresp' and 'flexresp2' USE"
- ewarn "flags set. You can use 'flexresp' or 'flexresp2'"
- ewarn "but not both."
- ewarn
- ewarn "Defaulting to flexresp2..."
- fi
-}
-
-src_unpack() {
- unpack ${A}
- cd "${S}"
-
- epatch "${FILESDIR}/${PN}-2.6.1.2-libdir.patch"
- epatch "${FILESDIR}/${PN}-2.6.1.1-libnet.patch"
- epatch "${FILESDIR}/${P}-libdnet-ip6.patch"
- use react && epatch "${FILESDIR}/${PN}-2.6.1.2-react.patch"
- sed -i "s:var RULE_PATH ../rules:var RULE_PATH /etc/snort/rules:" \
- etc/snort.conf
-
- if use prelude ; then
- sed -i -e "s:AC_PROG_RANLIB:AC_PROG_LIBTOOL:" configure.in
- fi
-
- if use snortsam ; then
- cd ..
- einfo "Applying snortsam patch"
- sed -i "s/PLUGIN_FWSAM/PLUGIN_FWSAM,/" snortpatch9 || die "sed failed"
- ./patchsnort.sh "${S}" || die "snortsam patch failed"
- cd "${S}"
- fi
-
- einfo "Regenerating autoconf/automake files"
- eautoreconf
-}
-
-src_compile() {
- local myconf
-
- if use flexresp2; then
- myconf="${myconf} --enable-flexresp2"
- elif use flexresp; then
- myconf="${myconf} --enable-flexresp"
- fi
-
- if use react && ! use flexresp; then
- myconf="${myconf} --enable-react"
- fi
-
- use gre && myconf="${myconf} --enable-gre"
-
- myconf="${myconf} --with-libipq-includes=/usr/include/libipq"
-
- econf \
- --without-oracle \
- $(use_with postgres postgresql) \
- $(use_with mysql) \
- $(use_with odbc) \
- $(use_enable prelude) \
- $(use_enable inline) \
- $(use_enable dynamicplugin) \
- $(use_enable timestats) \
- $(use_enable perfprofiling) \
- $(use_enable linux-smp-stats) \
- ${myconf} || die "econf failed"
-
- # limit to single as reported by jforman on irc
- emake -j1 || die "emake failed"
-}
-
-src_install() {
- emake DESTDIR="${D}" install || die "make install failed"
-
- keepdir /var/log/snort/
-
- dodoc doc/*
- dodoc ./RELEASE.NOTES
- docinto schemas ; dodoc schemas/*
-
- insinto /etc/snort
- doins etc/reference.config etc/classification.config \
- etc/*.map etc/threshold.conf
- use dynamicplugin || sed -i -e 's:^dynamic:# dynamic:g' etc/snort.conf
- sed -e "s:/usr/local/lib:/usr/$(get_libdir):g" -e 's:/usr/local/:/usr/:g' \
- etc/snort.conf > ${D}/etc/snort.conf
-
- newinitd "${FILESDIR}/snort.rc9" snort
- newconfd "${FILESDIR}/snort.confd" snort
-
- fowners snort:snort /var/log/snort
- fperms 0770 /var/log/snort
-
- # install rules
- insinto /etc/snort/rules
- doins -r "${WORKDIR}"/rules/*
-}
-
-pkg_postinst() {
- ewarn
- ewarn "Users upgrading from snort 2.4.x should take care when updating"
- ewarn "their snort.conf. A number of significant changes have been"
- ewarn "have been added to snort 2.6 including the addition of"
- ewarn "dynamically loadable preprocessors, detection engine and rules."
- ewarn "Snort 2.6 also includes the addition of performance profiling"
- ewarn "for rules & preprocessors and uses a new default pattern matcher"
- ewarn "which provides faster matching at the expense of being very"
- ewarn "memory intensive."
- ewarn
- ewarn "If you find that snort is using too much memory, your system"
- ewarn "freezes, or snort crashes after a few minutes try adding the"
- ewarn "following to your snort.conf..."
- ewarn
- ewarn "'config detection: search-method ac-sparsebands'"
- ewarn
- ewarn "This will provide high pattern matching performance at a much"
- ewarn "lower cost to memory. For more information on the new features"
- ewarn "in snort 2.6, please take a look at the release notes located in..."
- ewarn
- ewarn " /usr/share/doc/${PF}/RELEASE.NOTES.bz2"
- ewarn
- einfo "To use a database as a backend for snort you will have to"
- einfo "import the correct tables to the database."
- einfo "You will have to setup a database called snort before doing the"
- einfo "following..."
- einfo
- einfo " MySQL: zcat /usr/share/doc/${PF}/schemas/create_mysql.gz | mysql -p snort"
- einfo
- einfo " PostgreSQL: import /usr/share/doc/${PF}/schemas/create_postgresql.gz"
- einfo
- einfo " ODBC: look at /usr/share/doc/${PF}/schemas/"
- einfo
- einfo "Users using the unified output plugin and barnyard do not need to"
- einfo "compile database support into snort, but still need to set up their"
- einfo "database as shown above."
- einfo
- ewarn "Only a basic set of rules was installed."
- ewarn "Please add your other sets of rules to /etc/snort/rules."
- ewarn "For more information on rules, visit ${HOMEPAGE}."
- if use sguil ; then
- elog "SGUIL needs to catch up with snort 2.6.x. If you plan on using SGUIL"
- elog "you should unmerge ${P} and emerge snort-2.4.x"
- fi
-}
# Copyright 1999-2007 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/snort-2.6.1.4.ebuild,v 1.2 2007/04/07 00:47:12 falco Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snort/snort-2.6.1.4.ebuild,v 1.3 2007/04/22 06:21:15 dragonheart Exp $
WANT_AUTOCONF="latest"
WANT_AUTOMAKE="latest"
doins etc/reference.config etc/classification.config \
etc/*.map etc/threshold.conf
use dynamicplugin || sed -i -e 's:^dynamic:# dynamic:g' etc/snort.conf
- sed -i -e 's:/usr/local/:/usr/:g' etc/snort.conf
- newins etc/snort.conf snort.conf
+ sed -e "s:/usr/local/lib:/usr/$(get_libdir):g" -e 's:/usr/local/:/usr/:g' \
+ etc/snort.conf > "${D}"/etc/snort/snort.conf.distrib
newinitd "${FILESDIR}/snort.rc8" snort
newconfd "${FILESDIR}/snort.confd" snort
projects / gentoo.git / commitdiff