| 1 |
commit: 8232d44dffa0cdb0608068af0cb937da2f264bf0 |
| 2 |
Author: Patrick Lauer <patrick <AT> gentoo <DOT> org> |
| 3 |
AuthorDate: Thu Mar 31 08:26:27 2016 +0000 |
| 4 |
Commit: Patrick Lauer <patrick <AT> gentoo <DOT> org> |
| 5 |
CommitDate: Thu Mar 31 08:26:40 2016 +0000 |
| 6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8232d44d |
| 7 |
|
| 8 |
net-analyzer/snort: Bump |
| 9 |
|
| 10 |
Package-Manager: portage-2.2.28 |
| 11 |
|
| 12 |
net-analyzer/snort/Manifest | 5 +- |
| 13 |
net-analyzer/snort/snort-2.9.5.6.ebuild | 251 -------------------- |
| 14 |
net-analyzer/snort/snort-2.9.6.0.ebuild | 252 --------------------- |
| 15 |
net-analyzer/snort/snort-2.9.6.1.ebuild | 252 --------------------- |
| 16 |
.../{snort-2.9.6.2.ebuild => snort-2.9.8.2.ebuild} | 12 +- |
| 17 |
5 files changed, 6 insertions(+), 766 deletions(-) |
| 18 |
|
| 19 |
diff --git a/net-analyzer/snort/Manifest b/net-analyzer/snort/Manifest |
| 20 |
index c64d2f5..e054f55 100644 |
| 21 |
--- a/net-analyzer/snort/Manifest |
| 22 |
+++ b/net-analyzer/snort/Manifest |
| 23 |
@@ -1,10 +1,7 @@ |
| 24 |
DIST snort-2.9.4.6.tar.gz 5338762 SHA256 cfaa5390b1840aaaa68a6c05a7077dd92cb916e6186a014baa451d43cdb0b3bc SHA512 e35e22cab3b98bbd42ffb4b88c4c4cc9b1c11e35952a9f3f4f684c02c81ca8604b45d16f42b3d0a6c792eeab86a8e319d8ebdd7b1a5215f93ec0e70b6ef53f98 WHIRLPOOL d029b7519e4ea2d9039fba289bf3785f60edaa22da643196b44772a99c1c9833431840845c51c627d7fce3c77758ea68f205df1a2e32a779440c3a651d2f06a3 |
| 25 |
-DIST snort-2.9.5.6.tar.gz 5049188 SHA256 69ed09077c1fa2268f814c8eff6e613b7fe8876a138df1cd6579cffbb747db55 SHA512 2a77c25f4eddd82315ea55efe046bd002f35d808fdaef2ed60d8944818e24019f9819ec2042252485b0f8dd793b6a7f52ee3f721ea4446025a81ea6147c49311 WHIRLPOOL 2dafec6f4929fe9d5a31387dcbea810fb51a7cb58af0fd1a5c34be13923efd5dcc2670f88e57038a9db9a4da568f90966dca1403295afc0ddb1a0e840ded1740 |
| 26 |
-DIST snort-2.9.6.0.tar.gz 5189146 SHA256 3cc6c8a9b52f4c863a5736a73b4012aff340b50b5e002771b04d4877f47cd19e SHA512 8af7ce53019c3a13745d2a92b4e8fd93d32431349cd3265034ad8e4a7312c73c034d6773e63eaa96e909c4b9d2a8c2c275533b9cc661cbc02375fb9cf815f995 WHIRLPOOL 3c1b77f5436b8513037e575465d77b6522ac57407a0704a051753aac0d7b2c5698c205efe3d7a50ccba07a936251798e943f8665707376b6e89c0a99a8e43773 |
| 27 |
-DIST snort-2.9.6.1.tar.gz 5226869 SHA256 119e4c5df83fe36a8d465e72a0347fe31e7771704da286f04115b0c5baa5f7b8 SHA512 455b92900efa098ca85f81290f2b4bfff756d6db1b7f85352f3d17e24e4139c69bde27b4d250aa1291146773f54b891dc8ed877d1bb82fa354bd3e5b8db572a7 WHIRLPOOL 0803e9c3d19fd731820d8d95c81aabdf409db9300c72c5d94384c0e1066bbdd1a4c05cac8b8fa66455358f76e4de24a30b86d4df3992c0c9336def3f6e67d738 |
| 28 |
-DIST snort-2.9.6.2.tar.gz 5229232 SHA256 8e1d7fc5e1523a786d845ca0102cc474abfcebfcc7e964a1653680034b5b5d77 SHA512 f7ed5dc7777fb330c048d3b14c6fa4b13988ecb3bea7990e04e496dcca7ba28eae976e60838504198a98b9fd3992e021aece5c3142385efebb05a33014afb1c4 WHIRLPOOL fed94a69c69bf5b0e456c272512f77452247168f0a29d5a4bcec43f9b596fe631df3669cea0b90165e573ac875f3d0e1408449d7c99803ef07b1238f4c5ba5a0 |
| 29 |
DIST snort-2.9.7.0.tar.gz 6340553 SHA256 9738afea45d20b7f77997cc00055e7dd70f6aea0101209d87efec4bc4eace49b SHA512 f2cbdd2cf2ad15bd4cf3f8658c2a4880ee2069589db89c11aaea637984dde270ef6242c6dd43d5e12f829ed2464388950ee791dbbfa8df796843942c415fbc2f WHIRLPOOL d018f7f4cc9820057642bc691c0812866083a54f9399421f1b6eedfdb55e8cdfd42b0088c12e15facbfbeccd76a6df6351b0103eac35b5d5ca43900521ee274a |
| 30 |
DIST snort-2.9.7.2.tar.gz 6352738 SHA256 db57c532919d9ababac127f29dbdc05ed832394880e46cad81a5dde713ccb4be SHA512 4732014d0049671b1a81857e25a5ffbc3cbccb698be2b3406f69a45603a6b9f34343469ee14fa513199cf9b890a278cc777b42493850cff6fcb3493bb9b73dce WHIRLPOOL 2eec2345e0b945ff504025b2e552729bb5542d351bf1d92e2806be0f1e8d251283d4f984d89058731f5a0150bb1c2a7dd012e9bfbfbd0a3596bfc50321a93cb9 |
| 31 |
DIST snort-2.9.7.3.tar.gz 6300073 SHA256 8cc3613b888fc54947a2beec773c76d9a20368f2659b31d45a9f0b11e66cc229 SHA512 949213d44d08c7f70bd45bc4947c9c35bfcd2ca3a54ec8a28d0c03e3868a485d2c208ec7850398f69d706c74fbad1389af445eb1107e678ff95714b5696f27b7 WHIRLPOOL 6d6e2da52f7f141bf6702c8604855ef351c055dbce2805341af16deafa5a0e288266e9632f770e29d209a59cce0d9c17f017bfb612f870dbf5b88c8c0d75e46d |
| 32 |
DIST snort-2.9.7.5.tar.gz 6312847 SHA256 ad03f11b5301b16642199a86aa90388eaa53f5003f83b0c5595745a490047be1 SHA512 fa1b299c72a44a8cb64361e8dab9fad5bfec36bbb05ebed2407002b2c5d97256d7d67599cb1f29406b5ee0916f2f85a173610d403cd34c57f74f7049c10eb038 WHIRLPOOL 6c7270d7edfc552f074fa2fb8ed067a12a48e4e159ceaa4be1f3c877996df5630aa42721aa637a846701072834e167445a67bbfa2deb93933048b1e4f70a8e1b |
| 33 |
DIST snort-2.9.8.0.tar.gz 6323095 SHA256 bddd5d01d10d20c182836fa0199cd3549239b7a9d0fd5bbb10226feb8b42d231 SHA512 46e5f19be5eccad2d5b4d3d55ce42fe616cd5f605b7178ed98e86cc8f2f4cf0f796fad80033d81b71bea7da2abfb6d0b340815ee158190f9b974f671045bf002 WHIRLPOOL 1e15ec4e2e54bd878f654484d7617249f5e34bc5c87bd0022ee923e0bab15e1733841ad234817d5209c0063c76d3e4e3db2343130eb77450260945324862ba12 |
| 34 |
+DIST snort-2.9.8.2.tar.gz 6311793 SHA256 4075012d350dfa47a0200b7a920323f15cb7c370790f2a47367c03aba4009333 SHA512 60f660b2093ae88211dcef9256edf35441c0ffc61ec8240b6d25e947b55b0fdb23482913246e2288a8a533dbaff4e5ea2d8f51298ab9aa67baa1ab74d1c4f7a4 WHIRLPOOL 1b12bb4c65d98d5dc0bb37f1bc329d23238b95afcbf911ed7040da4de5116f3b0dd907539f6a6a418820d399cbe7830ea05dd894cfa83a71656ae7b0325d1f92 |
| 35 |
|
| 36 |
diff --git a/net-analyzer/snort/snort-2.9.5.6.ebuild b/net-analyzer/snort/snort-2.9.5.6.ebuild |
| 37 |
deleted file mode 100644 |
| 38 |
index e3e37f7..0000000 |
| 39 |
--- a/net-analyzer/snort/snort-2.9.5.6.ebuild |
| 40 |
+++ /dev/null |
| 41 |
@@ -1,251 +0,0 @@ |
| 42 |
-# Copyright 1999-2014 Gentoo Foundation |
| 43 |
-# Distributed under the terms of the GNU General Public License v2 |
| 44 |
-# $Id$ |
| 45 |
- |
| 46 |
-EAPI="5" |
| 47 |
-inherit autotools multilib user |
| 48 |
- |
| 49 |
-DESCRIPTION="The de facto standard for intrusion detection/prevention" |
| 50 |
-HOMEPAGE="http://www.snort.org/" |
| 51 |
-SRC_URI="http://snort.org/downloads/2665 -> ${P}.tar.gz" |
| 52 |
-LICENSE="GPL-2" |
| 53 |
-SLOT="0" |
| 54 |
-KEYWORDS="~amd64 ~arm ~mips ~ppc ~ppc64 ~sparc ~x86" |
| 55 |
-IUSE="static +zlib +gre +mpls +targetbased +ppm +perfprofiling |
| 56 |
-+non-ether-decoders control-socket high-availability shared-rep |
| 57 |
-side-channel sourcefire linux-smp-stats inline-init-failopen |
| 58 |
-+threads debug +active-response +normalizer reload-error-restart |
| 59 |
-+react +flexresp3 large-pcap-64bit selinux" |
| 60 |
- |
| 61 |
-DEPEND=">=net-libs/libpcap-1.3.0 |
| 62 |
- >=net-libs/daq-2.0.1 |
| 63 |
- >=dev-libs/libpcre-8.33 |
| 64 |
- dev-libs/libdnet |
| 65 |
- zlib? ( sys-libs/zlib )" |
| 66 |
- |
| 67 |
-RDEPEND="${DEPEND} |
| 68 |
- selinux? ( sec-policy/selinux-snort )" |
| 69 |
- |
| 70 |
-REQUIRED_USE="!kernel_linux? ( !shared-rep )" |
| 71 |
- |
| 72 |
-pkg_setup() { |
| 73 |
- |
| 74 |
- # pre_inst() is a better place to put this |
| 75 |
- # but we need it here for the 'fowners' statements in src_install() |
| 76 |
- enewgroup snort |
| 77 |
- enewuser snort -1 -1 /dev/null snort |
| 78 |
- |
| 79 |
-} |
| 80 |
- |
| 81 |
-src_prepare() { |
| 82 |
- |
| 83 |
- # Multilib fix for the sf_engine |
| 84 |
- ebegin "Applying multilib fix" |
| 85 |
- sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 86 |
- "${WORKDIR}/${P}/src/dynamic-plugins/sf_engine/Makefile.am" \ |
| 87 |
- || die "sed for sf_engine failed" |
| 88 |
- |
| 89 |
- # Multilib fix for the curent set of dynamic-preprocessors |
| 90 |
- for i in ftptelnet smtp ssh dns ssl dcerpc2 sdf imap pop rzb_saac sip reputation gtp modbus dnp3; do |
| 91 |
- sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 92 |
- "${WORKDIR}/${P}/src/dynamic-preprocessors/$i/Makefile.am" \ |
| 93 |
- || die "sed for $i failed." |
| 94 |
- done |
| 95 |
- eend |
| 96 |
- |
| 97 |
- AT_M4DIR=m4 eautoreconf |
| 98 |
-} |
| 99 |
- |
| 100 |
-src_configure() { |
| 101 |
- |
| 102 |
- econf \ |
| 103 |
- $(use_enable !static shared) \ |
| 104 |
- $(use_enable static) \ |
| 105 |
- $(use_enable static so-with-static-lib) \ |
| 106 |
- $(use_enable zlib) \ |
| 107 |
- $(use_enable gre) \ |
| 108 |
- $(use_enable mpls) \ |
| 109 |
- $(use_enable targetbased) \ |
| 110 |
- $(use_enable control-socket) \ |
| 111 |
- $(use_enable high-availability ha) \ |
| 112 |
- $(use_enable non-ether-decoders) \ |
| 113 |
- $(use_enable shared-rep) \ |
| 114 |
- $(use_enable side-channel) \ |
| 115 |
- $(use_enable sourcefire) \ |
| 116 |
- $(use_enable ppm) \ |
| 117 |
- $(use_enable perfprofiling) \ |
| 118 |
- $(use_enable linux-smp-stats) \ |
| 119 |
- $(use_enable inline-init-failopen) \ |
| 120 |
- $(use_enable threads pthread) \ |
| 121 |
- $(use_enable debug) \ |
| 122 |
- $(use_enable debug debug-msgs) \ |
| 123 |
- $(use_enable debug corefiles) \ |
| 124 |
- $(use_enable !debug dlclose) \ |
| 125 |
- $(use_enable active-response) \ |
| 126 |
- $(use_enable normalizer) \ |
| 127 |
- $(use_enable reload-error-restart) \ |
| 128 |
- $(use_enable react) \ |
| 129 |
- $(use_enable flexresp3) \ |
| 130 |
- $(use_enable large-pcap-64bit large-pcap) \ |
| 131 |
- --enable-reload \ |
| 132 |
- --disable-build-dynamic-examples \ |
| 133 |
- --disable-profile \ |
| 134 |
- --disable-ppm-test \ |
| 135 |
- --disable-intel-soft-cpm \ |
| 136 |
- --disable-static-daq \ |
| 137 |
- --disable-rzb-saac |
| 138 |
-} |
| 139 |
- |
| 140 |
-src_install() { |
| 141 |
- |
| 142 |
- emake DESTDIR="${D}" install |
| 143 |
- |
| 144 |
- dodir /var/log/snort \ |
| 145 |
- /var/run/snort \ |
| 146 |
- /etc/snort/rules \ |
| 147 |
- /etc/snort/so_rules \ |
| 148 |
- /usr/$(get_libdir)/snort_dynamicrules |
| 149 |
- |
| 150 |
- # config.log and build.log are needed by Sourcefire |
| 151 |
- # to trouble shoot build problems and bug reports so we are |
| 152 |
- # perserving them incase the user needs upstream support. |
| 153 |
- dodoc RELEASE.NOTES ChangeLog \ |
| 154 |
- doc/* \ |
| 155 |
- tools/u2boat/README.u2boat |
| 156 |
- |
| 157 |
- insinto /etc/snort |
| 158 |
- doins etc/attribute_table.dtd \ |
| 159 |
- etc/classification.config \ |
| 160 |
- etc/gen-msg.map \ |
| 161 |
- etc/reference.config \ |
| 162 |
- etc/threshold.conf \ |
| 163 |
- etc/unicode.map |
| 164 |
- |
| 165 |
- # We use snort.conf.distrib because the config file is complicated |
| 166 |
- # and the one shipped with snort can change drastically between versions. |
| 167 |
- # Users should migrate setting by hand and not with etc-update. |
| 168 |
- newins etc/snort.conf snort.conf.distrib |
| 169 |
- |
| 170 |
- # config.log and build.log are needed by Sourcefire |
| 171 |
- # to troubleshoot build problems and bug reports so we are |
| 172 |
- # preserving them incase the user needs upstream support. |
| 173 |
- if [ -f "${WORKDIR}/${PF}/config.log" ]; then |
| 174 |
- dodoc "${WORKDIR}/${PF}/config.log" |
| 175 |
- fi |
| 176 |
- if [ -f "${T}/build.log" ]; then |
| 177 |
- dodoc "${T}/build.log" |
| 178 |
- fi |
| 179 |
- |
| 180 |
- insinto /etc/snort/preproc_rules |
| 181 |
- doins preproc_rules/decoder.rules \ |
| 182 |
- preproc_rules/preprocessor.rules \ |
| 183 |
- preproc_rules/sensitive-data.rules |
| 184 |
- |
| 185 |
- fowners -R snort:snort \ |
| 186 |
- /var/log/snort \ |
| 187 |
- /var/run/snort \ |
| 188 |
- /etc/snort |
| 189 |
- |
| 190 |
- newinitd "${FILESDIR}/snort.rc12" snort |
| 191 |
- newconfd "${FILESDIR}/snort.confd.2" snort |
| 192 |
- |
| 193 |
- # Sourcefire uses Makefiles to install docs causing Bug #297190. |
| 194 |
- # This removes the unwanted doc directory and rogue Makefiles. |
| 195 |
- rm -rf "${D}"usr/share/doc/snort || die "Failed to remove SF doc directories" |
| 196 |
- rm "${D}"usr/share/doc/"${PF}"/Makefile* || die "Failed to remove doc make files" |
| 197 |
- |
| 198 |
- # Remove unneeded .la files (Bug #382863) |
| 199 |
- rm "${D}"usr/$(get_libdir)/snort_dynamicengine/libsf_engine.la || die |
| 200 |
- rm "${D}"usr/$(get_libdir)/snort_dynamicpreprocessor/libsf_*_preproc.la || die "Failed to remove libsf_?_preproc.la" |
| 201 |
- |
| 202 |
- # Set the correct lib path for dynamicengine, dynamicpreprocessor, and dynamicdetection |
| 203 |
- sed -i -e 's|/usr/local/lib|/usr/'$(get_libdir)'|g' \ |
| 204 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 205 |
- |
| 206 |
- # Set the correct rule location in the config |
| 207 |
- sed -i -e 's|RULE_PATH ../rules|RULE_PATH /etc/snort/rules|g' \ |
| 208 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 209 |
- |
| 210 |
- # Set the correct preprocessor/decoder rule location in the config |
| 211 |
- sed -i -e 's|PREPROC_RULE_PATH ../preproc_rules|PREPROC_RULE_PATH /etc/snort/preproc_rules|g' \ |
| 212 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 213 |
- |
| 214 |
- # Enable the preprocessor/decoder rules |
| 215 |
- sed -i -e 's|^# include $PREPROC_RULE_PATH|include $PREPROC_RULE_PATH|g' \ |
| 216 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 217 |
- |
| 218 |
- sed -i -e 's|^# dynamicdetection directory|dynamicdetection directory|g' \ |
| 219 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 220 |
- |
| 221 |
- # Just some clean up of trailing /'s in the config |
| 222 |
- sed -i -e 's|snort_dynamicpreprocessor/$|snort_dynamicpreprocessor|g' \ |
| 223 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 224 |
- |
| 225 |
- # Make it clear in the config where these are... |
| 226 |
- sed -i -e 's|^include classification.config|include /etc/snort/classification.config|g' \ |
| 227 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 228 |
- |
| 229 |
- sed -i -e 's|^include reference.config|include /etc/snort/reference.config|g' \ |
| 230 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 231 |
- |
| 232 |
- # Disable all rule files by default. |
| 233 |
- sed -i -e 's|^include $RULE_PATH|# include $RULE_PATH|g' \ |
| 234 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 235 |
- |
| 236 |
- # Disable normalizer preprocessor config if normalizer USE flag not set. |
| 237 |
- if ! use normalizer; then |
| 238 |
- sed -i -e 's|^preprocessor normalize|#preprocessor normalize|g' \ |
| 239 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 240 |
- fi |
| 241 |
- |
| 242 |
- # Set the configured DAQ to afpacket |
| 243 |
- sed -i -e 's|^# config daq: <type>|config daq: afpacket|g' \ |
| 244 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 245 |
- |
| 246 |
- # Set the location of the DAQ modules |
| 247 |
- sed -i -e 's|^# config daq_dir: <dir>|config daq_dir: /usr/'$(get_libdir)'/daq|g' \ |
| 248 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 249 |
- |
| 250 |
- # Set the DAQ mode to passive |
| 251 |
- sed -i -e 's|^# config daq_mode: <mode>|config daq_mode: passive|g' \ |
| 252 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 253 |
- |
| 254 |
- # Set snort to run as snort:snort |
| 255 |
- sed -i -e 's|^# config set_gid:|config set_gid: snort|g' \ |
| 256 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 257 |
- sed -i -e 's|^# config set_uid:|config set_uid: snort|g' \ |
| 258 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 259 |
- |
| 260 |
- # Set the default log dir |
| 261 |
- sed -i -e 's|^# config logdir:|config logdir: /var/log/snort/|g' \ |
| 262 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 263 |
- |
| 264 |
- # Set the correct so_rule location in the config |
| 265 |
- sed -i -e 's|SO_RULE_PATH ../so_rules|SO_RULE_PATH /etc/snort/so_rules|g' \ |
| 266 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 267 |
-} |
| 268 |
- |
| 269 |
-pkg_postinst() { |
| 270 |
- |
| 271 |
- einfo "There have been a number of improvements and new features" |
| 272 |
- einfo "added to ${P}. Please review the RELEASE.NOTES and" |
| 273 |
- einfo "ChangLog located in /usr/share/doc/${PF}." |
| 274 |
- einfo |
| 275 |
- elog "The Sourcefire Vulnerability Research Team (VRT) recommends that" |
| 276 |
- elog "users migrate their snort.conf customizations to the latest config" |
| 277 |
- elog "file released by the VRT. You can find the latest version of the" |
| 278 |
- elog "Snort config file in /etc/snort/snort.conf.distrib." |
| 279 |
- elog |
| 280 |
- elog "!! It is important that you migrate to this new snort.conf file !!" |
| 281 |
- elog |
| 282 |
- elog "This version of the ebuild includes an updated init.d file and" |
| 283 |
- elog "conf.d file that rely on options found in the latest Snort" |
| 284 |
- elog "config file provided by the VRT." |
| 285 |
- |
| 286 |
- if use debug; then |
| 287 |
- elog "You have the 'debug' USE flag enabled. If this has been done to" |
| 288 |
- elog "troubleshoot an issue by producing a core dump or a back trace," |
| 289 |
- elog "then you need to also ensure the FEATURES variable in make.conf" |
| 290 |
- elog "contains the 'nostrip' option." |
| 291 |
- fi |
| 292 |
-} |
| 293 |
|
| 294 |
diff --git a/net-analyzer/snort/snort-2.9.6.0.ebuild b/net-analyzer/snort/snort-2.9.6.0.ebuild |
| 295 |
deleted file mode 100644 |
| 296 |
index 1783372..0000000 |
| 297 |
--- a/net-analyzer/snort/snort-2.9.6.0.ebuild |
| 298 |
+++ /dev/null |
| 299 |
@@ -1,252 +0,0 @@ |
| 300 |
-# Copyright 1999-2014 Gentoo Foundation |
| 301 |
-# Distributed under the terms of the GNU General Public License v2 |
| 302 |
-# $Id$ |
| 303 |
- |
| 304 |
-EAPI="5" |
| 305 |
-inherit autotools multilib user |
| 306 |
- |
| 307 |
-DESCRIPTION="The de facto standard for intrusion detection/prevention" |
| 308 |
-HOMEPAGE="http://www.snort.org/" |
| 309 |
-SRC_URI="http://snort.org/downloads/2787 -> ${P}.tar.gz" |
| 310 |
-LICENSE="GPL-2" |
| 311 |
-SLOT="0" |
| 312 |
-KEYWORDS="~amd64 ~arm ~mips ~ppc ~ppc64 ~sparc ~x86" |
| 313 |
-IUSE="static +zlib +gre +mpls +targetbased +ppm +perfprofiling |
| 314 |
-+non-ether-decoders control-socket file-inspect high-availability |
| 315 |
-shared-rep side-channel sourcefire linux-smp-stats inline-init-failopen |
| 316 |
-+threads debug +active-response +normalizer reload-error-restart |
| 317 |
-+react +flexresp3 large-pcap-64bit selinux" |
| 318 |
- |
| 319 |
-DEPEND=">=net-libs/libpcap-1.3.0 |
| 320 |
- >=net-libs/daq-2.0.2 |
| 321 |
- >=dev-libs/libpcre-8.33 |
| 322 |
- dev-libs/libdnet |
| 323 |
- zlib? ( sys-libs/zlib )" |
| 324 |
- |
| 325 |
-RDEPEND="${DEPEND} |
| 326 |
- selinux? ( sec-policy/selinux-snort )" |
| 327 |
- |
| 328 |
-REQUIRED_USE="!kernel_linux? ( !shared-rep )" |
| 329 |
- |
| 330 |
-pkg_setup() { |
| 331 |
- |
| 332 |
- # pre_inst() is a better place to put this |
| 333 |
- # but we need it here for the 'fowners' statements in src_install() |
| 334 |
- enewgroup snort |
| 335 |
- enewuser snort -1 -1 /dev/null snort |
| 336 |
- |
| 337 |
-} |
| 338 |
- |
| 339 |
-src_prepare() { |
| 340 |
- |
| 341 |
- # Multilib fix for the sf_engine |
| 342 |
- ebegin "Applying multilib fix" |
| 343 |
- sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 344 |
- "${WORKDIR}/${P}/src/dynamic-plugins/sf_engine/Makefile.am" \ |
| 345 |
- || die "sed for sf_engine failed" |
| 346 |
- |
| 347 |
- # Multilib fix for the curent set of dynamic-preprocessors |
| 348 |
- for i in file ftptelnet smtp ssh dns ssl dcerpc2 sdf imap pop rzb_saac sip reputation gtp modbus dnp3; do |
| 349 |
- sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 350 |
- "${WORKDIR}/${P}/src/dynamic-preprocessors/$i/Makefile.am" \ |
| 351 |
- || die "sed for $i failed." |
| 352 |
- done |
| 353 |
- eend |
| 354 |
- |
| 355 |
- AT_M4DIR=m4 eautoreconf |
| 356 |
-} |
| 357 |
- |
| 358 |
-src_configure() { |
| 359 |
- |
| 360 |
- econf \ |
| 361 |
- $(use_enable !static shared) \ |
| 362 |
- $(use_enable static) \ |
| 363 |
- $(use_enable static so-with-static-lib) \ |
| 364 |
- $(use_enable zlib) \ |
| 365 |
- $(use_enable gre) \ |
| 366 |
- $(use_enable mpls) \ |
| 367 |
- $(use_enable targetbased) \ |
| 368 |
- $(use_enable control-socket) \ |
| 369 |
- $(use_enable file-inspect) \ |
| 370 |
- $(use_enable high-availability ha) \ |
| 371 |
- $(use_enable non-ether-decoders) \ |
| 372 |
- $(use_enable shared-rep) \ |
| 373 |
- $(use_enable side-channel) \ |
| 374 |
- $(use_enable sourcefire) \ |
| 375 |
- $(use_enable ppm) \ |
| 376 |
- $(use_enable perfprofiling) \ |
| 377 |
- $(use_enable linux-smp-stats) \ |
| 378 |
- $(use_enable inline-init-failopen) \ |
| 379 |
- $(use_enable threads pthread) \ |
| 380 |
- $(use_enable debug) \ |
| 381 |
- $(use_enable debug debug-msgs) \ |
| 382 |
- $(use_enable debug corefiles) \ |
| 383 |
- $(use_enable !debug dlclose) \ |
| 384 |
- $(use_enable active-response) \ |
| 385 |
- $(use_enable normalizer) \ |
| 386 |
- $(use_enable reload-error-restart) \ |
| 387 |
- $(use_enable react) \ |
| 388 |
- $(use_enable flexresp3) \ |
| 389 |
- $(use_enable large-pcap-64bit large-pcap) \ |
| 390 |
- --enable-reload \ |
| 391 |
- --disable-build-dynamic-examples \ |
| 392 |
- --disable-profile \ |
| 393 |
- --disable-ppm-test \ |
| 394 |
- --disable-intel-soft-cpm \ |
| 395 |
- --disable-static-daq \ |
| 396 |
- --disable-rzb-saac |
| 397 |
-} |
| 398 |
- |
| 399 |
-src_install() { |
| 400 |
- |
| 401 |
- emake DESTDIR="${D}" install |
| 402 |
- |
| 403 |
- dodir /var/log/snort \ |
| 404 |
- /var/run/snort \ |
| 405 |
- /etc/snort/rules \ |
| 406 |
- /etc/snort/so_rules \ |
| 407 |
- /usr/$(get_libdir)/snort_dynamicrules |
| 408 |
- |
| 409 |
- # config.log and build.log are needed by Sourcefire |
| 410 |
- # to trouble shoot build problems and bug reports so we are |
| 411 |
- # perserving them incase the user needs upstream support. |
| 412 |
- dodoc RELEASE.NOTES ChangeLog \ |
| 413 |
- doc/* \ |
| 414 |
- tools/u2boat/README.u2boat |
| 415 |
- |
| 416 |
- insinto /etc/snort |
| 417 |
- doins etc/attribute_table.dtd \ |
| 418 |
- etc/classification.config \ |
| 419 |
- etc/gen-msg.map \ |
| 420 |
- etc/reference.config \ |
| 421 |
- etc/threshold.conf \ |
| 422 |
- etc/unicode.map |
| 423 |
- |
| 424 |
- # We use snort.conf.distrib because the config file is complicated |
| 425 |
- # and the one shipped with snort can change drastically between versions. |
| 426 |
- # Users should migrate setting by hand and not with etc-update. |
| 427 |
- newins etc/snort.conf snort.conf.distrib |
| 428 |
- |
| 429 |
- # config.log and build.log are needed by Sourcefire |
| 430 |
- # to troubleshoot build problems and bug reports so we are |
| 431 |
- # preserving them incase the user needs upstream support. |
| 432 |
- if [ -f "${WORKDIR}/${PF}/config.log" ]; then |
| 433 |
- dodoc "${WORKDIR}/${PF}/config.log" |
| 434 |
- fi |
| 435 |
- if [ -f "${T}/build.log" ]; then |
| 436 |
- dodoc "${T}/build.log" |
| 437 |
- fi |
| 438 |
- |
| 439 |
- insinto /etc/snort/preproc_rules |
| 440 |
- doins preproc_rules/decoder.rules \ |
| 441 |
- preproc_rules/preprocessor.rules \ |
| 442 |
- preproc_rules/sensitive-data.rules |
| 443 |
- |
| 444 |
- fowners -R snort:snort \ |
| 445 |
- /var/log/snort \ |
| 446 |
- /var/run/snort \ |
| 447 |
- /etc/snort |
| 448 |
- |
| 449 |
- newinitd "${FILESDIR}/snort.rc12" snort |
| 450 |
- newconfd "${FILESDIR}/snort.confd.2" snort |
| 451 |
- |
| 452 |
- # Sourcefire uses Makefiles to install docs causing Bug #297190. |
| 453 |
- # This removes the unwanted doc directory and rogue Makefiles. |
| 454 |
- rm -rf "${D}"usr/share/doc/snort || die "Failed to remove SF doc directories" |
| 455 |
- rm "${D}"usr/share/doc/"${PF}"/Makefile* || die "Failed to remove doc make files" |
| 456 |
- |
| 457 |
- # Remove unneeded .la files (Bug #382863) |
| 458 |
- rm "${D}"usr/$(get_libdir)/snort_dynamicengine/libsf_engine.la || die |
| 459 |
- rm "${D}"usr/$(get_libdir)/snort_dynamicpreprocessor/libsf_*_preproc.la || die "Failed to remove libsf_?_preproc.la" |
| 460 |
- |
| 461 |
- # Set the correct lib path for dynamicengine, dynamicpreprocessor, and dynamicdetection |
| 462 |
- sed -i -e 's|/usr/local/lib|/usr/'$(get_libdir)'|g' \ |
| 463 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 464 |
- |
| 465 |
- # Set the correct rule location in the config |
| 466 |
- sed -i -e 's|RULE_PATH ../rules|RULE_PATH /etc/snort/rules|g' \ |
| 467 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 468 |
- |
| 469 |
- # Set the correct preprocessor/decoder rule location in the config |
| 470 |
- sed -i -e 's|PREPROC_RULE_PATH ../preproc_rules|PREPROC_RULE_PATH /etc/snort/preproc_rules|g' \ |
| 471 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 472 |
- |
| 473 |
- # Enable the preprocessor/decoder rules |
| 474 |
- sed -i -e 's|^# include $PREPROC_RULE_PATH|include $PREPROC_RULE_PATH|g' \ |
| 475 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 476 |
- |
| 477 |
- sed -i -e 's|^# dynamicdetection directory|dynamicdetection directory|g' \ |
| 478 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 479 |
- |
| 480 |
- # Just some clean up of trailing /'s in the config |
| 481 |
- sed -i -e 's|snort_dynamicpreprocessor/$|snort_dynamicpreprocessor|g' \ |
| 482 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 483 |
- |
| 484 |
- # Make it clear in the config where these are... |
| 485 |
- sed -i -e 's|^include classification.config|include /etc/snort/classification.config|g' \ |
| 486 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 487 |
- |
| 488 |
- sed -i -e 's|^include reference.config|include /etc/snort/reference.config|g' \ |
| 489 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 490 |
- |
| 491 |
- # Disable all rule files by default. |
| 492 |
- sed -i -e 's|^include $RULE_PATH|# include $RULE_PATH|g' \ |
| 493 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 494 |
- |
| 495 |
- # Disable normalizer preprocessor config if normalizer USE flag not set. |
| 496 |
- if ! use normalizer; then |
| 497 |
- sed -i -e 's|^preprocessor normalize|#preprocessor normalize|g' \ |
| 498 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 499 |
- fi |
| 500 |
- |
| 501 |
- # Set the configured DAQ to afpacket |
| 502 |
- sed -i -e 's|^# config daq: <type>|config daq: afpacket|g' \ |
| 503 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 504 |
- |
| 505 |
- # Set the location of the DAQ modules |
| 506 |
- sed -i -e 's|^# config daq_dir: <dir>|config daq_dir: /usr/'$(get_libdir)'/daq|g' \ |
| 507 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 508 |
- |
| 509 |
- # Set the DAQ mode to passive |
| 510 |
- sed -i -e 's|^# config daq_mode: <mode>|config daq_mode: passive|g' \ |
| 511 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 512 |
- |
| 513 |
- # Set snort to run as snort:snort |
| 514 |
- sed -i -e 's|^# config set_gid:|config set_gid: snort|g' \ |
| 515 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 516 |
- sed -i -e 's|^# config set_uid:|config set_uid: snort|g' \ |
| 517 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 518 |
- |
| 519 |
- # Set the default log dir |
| 520 |
- sed -i -e 's|^# config logdir:|config logdir: /var/log/snort/|g' \ |
| 521 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 522 |
- |
| 523 |
- # Set the correct so_rule location in the config |
| 524 |
- sed -i -e 's|SO_RULE_PATH ../so_rules|SO_RULE_PATH /etc/snort/so_rules|g' \ |
| 525 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 526 |
-} |
| 527 |
- |
| 528 |
-pkg_postinst() { |
| 529 |
- |
| 530 |
- einfo "There have been a number of improvements and new features" |
| 531 |
- einfo "added to ${P}. Please review the RELEASE.NOTES and" |
| 532 |
- einfo "ChangLog located in /usr/share/doc/${PF}." |
| 533 |
- einfo |
| 534 |
- elog "The Sourcefire Vulnerability Research Team (VRT) recommends that" |
| 535 |
- elog "users migrate their snort.conf customizations to the latest config" |
| 536 |
- elog "file released by the VRT. You can find the latest version of the" |
| 537 |
- elog "Snort config file in /etc/snort/snort.conf.distrib." |
| 538 |
- elog |
| 539 |
- elog "!! It is important that you migrate to this new snort.conf file !!" |
| 540 |
- elog |
| 541 |
- elog "This version of the ebuild includes an updated init.d file and" |
| 542 |
- elog "conf.d file that rely on options found in the latest Snort" |
| 543 |
- elog "config file provided by the VRT." |
| 544 |
- |
| 545 |
- if use debug; then |
| 546 |
- elog "You have the 'debug' USE flag enabled. If this has been done to" |
| 547 |
- elog "troubleshoot an issue by producing a core dump or a back trace," |
| 548 |
- elog "then you need to also ensure the FEATURES variable in make.conf" |
| 549 |
- elog "contains the 'nostrip' option." |
| 550 |
- fi |
| 551 |
-} |
| 552 |
|
| 553 |
diff --git a/net-analyzer/snort/snort-2.9.6.1.ebuild b/net-analyzer/snort/snort-2.9.6.1.ebuild |
| 554 |
deleted file mode 100644 |
| 555 |
index 0bb53d7..0000000 |
| 556 |
--- a/net-analyzer/snort/snort-2.9.6.1.ebuild |
| 557 |
+++ /dev/null |
| 558 |
@@ -1,252 +0,0 @@ |
| 559 |
-# Copyright 1999-2014 Gentoo Foundation |
| 560 |
-# Distributed under the terms of the GNU General Public License v2 |
| 561 |
-# $Id$ |
| 562 |
- |
| 563 |
-EAPI="5" |
| 564 |
-inherit autotools multilib user |
| 565 |
- |
| 566 |
-DESCRIPTION="The de facto standard for intrusion detection/prevention" |
| 567 |
-HOMEPAGE="http://www.snort.org/" |
| 568 |
-SRC_URI="http://snort.org/downloads/2911 -> ${P}.tar.gz" |
| 569 |
-LICENSE="GPL-2" |
| 570 |
-SLOT="0" |
| 571 |
-KEYWORDS="~amd64 ~arm ~mips ~ppc ~ppc64 ~sparc ~x86" |
| 572 |
-IUSE="static +zlib +gre +mpls +targetbased +ppm +perfprofiling |
| 573 |
-+non-ether-decoders control-socket file-inspect high-availability |
| 574 |
-shared-rep side-channel sourcefire linux-smp-stats inline-init-failopen |
| 575 |
-+threads debug +active-response +normalizer reload-error-restart |
| 576 |
-+react +flexresp3 large-pcap-64bit selinux" |
| 577 |
- |
| 578 |
-DEPEND=">=net-libs/libpcap-1.3.0 |
| 579 |
- >=net-libs/daq-2.0.2 |
| 580 |
- >=dev-libs/libpcre-8.33 |
| 581 |
- dev-libs/libdnet |
| 582 |
- zlib? ( sys-libs/zlib )" |
| 583 |
- |
| 584 |
-RDEPEND="${DEPEND} |
| 585 |
- selinux? ( sec-policy/selinux-snort )" |
| 586 |
- |
| 587 |
-REQUIRED_USE="!kernel_linux? ( !shared-rep )" |
| 588 |
- |
| 589 |
-pkg_setup() { |
| 590 |
- |
| 591 |
- # pre_inst() is a better place to put this |
| 592 |
- # but we need it here for the 'fowners' statements in src_install() |
| 593 |
- enewgroup snort |
| 594 |
- enewuser snort -1 -1 /dev/null snort |
| 595 |
- |
| 596 |
-} |
| 597 |
- |
| 598 |
-src_prepare() { |
| 599 |
- |
| 600 |
- # Multilib fix for the sf_engine |
| 601 |
- ebegin "Applying multilib fix" |
| 602 |
- sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 603 |
- "${WORKDIR}/${P}/src/dynamic-plugins/sf_engine/Makefile.am" \ |
| 604 |
- || die "sed for sf_engine failed" |
| 605 |
- |
| 606 |
- # Multilib fix for the curent set of dynamic-preprocessors |
| 607 |
- for i in file ftptelnet smtp ssh dns ssl dcerpc2 sdf imap pop rzb_saac sip reputation gtp modbus dnp3; do |
| 608 |
- sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 609 |
- "${WORKDIR}/${P}/src/dynamic-preprocessors/$i/Makefile.am" \ |
| 610 |
- || die "sed for $i failed." |
| 611 |
- done |
| 612 |
- eend |
| 613 |
- |
| 614 |
- AT_M4DIR=m4 eautoreconf |
| 615 |
-} |
| 616 |
- |
| 617 |
-src_configure() { |
| 618 |
- |
| 619 |
- econf \ |
| 620 |
- $(use_enable !static shared) \ |
| 621 |
- $(use_enable static) \ |
| 622 |
- $(use_enable static so-with-static-lib) \ |
| 623 |
- $(use_enable zlib) \ |
| 624 |
- $(use_enable gre) \ |
| 625 |
- $(use_enable mpls) \ |
| 626 |
- $(use_enable targetbased) \ |
| 627 |
- $(use_enable control-socket) \ |
| 628 |
- $(use_enable file-inspect) \ |
| 629 |
- $(use_enable high-availability ha) \ |
| 630 |
- $(use_enable non-ether-decoders) \ |
| 631 |
- $(use_enable shared-rep) \ |
| 632 |
- $(use_enable side-channel) \ |
| 633 |
- $(use_enable sourcefire) \ |
| 634 |
- $(use_enable ppm) \ |
| 635 |
- $(use_enable perfprofiling) \ |
| 636 |
- $(use_enable linux-smp-stats) \ |
| 637 |
- $(use_enable inline-init-failopen) \ |
| 638 |
- $(use_enable threads pthread) \ |
| 639 |
- $(use_enable debug) \ |
| 640 |
- $(use_enable debug debug-msgs) \ |
| 641 |
- $(use_enable debug corefiles) \ |
| 642 |
- $(use_enable !debug dlclose) \ |
| 643 |
- $(use_enable active-response) \ |
| 644 |
- $(use_enable normalizer) \ |
| 645 |
- $(use_enable reload-error-restart) \ |
| 646 |
- $(use_enable react) \ |
| 647 |
- $(use_enable flexresp3) \ |
| 648 |
- $(use_enable large-pcap-64bit large-pcap) \ |
| 649 |
- --enable-reload \ |
| 650 |
- --disable-build-dynamic-examples \ |
| 651 |
- --disable-profile \ |
| 652 |
- --disable-ppm-test \ |
| 653 |
- --disable-intel-soft-cpm \ |
| 654 |
- --disable-static-daq \ |
| 655 |
- --disable-rzb-saac |
| 656 |
-} |
| 657 |
- |
| 658 |
-src_install() { |
| 659 |
- |
| 660 |
- emake DESTDIR="${D}" install |
| 661 |
- |
| 662 |
- dodir /var/log/snort \ |
| 663 |
- /var/run/snort \ |
| 664 |
- /etc/snort/rules \ |
| 665 |
- /etc/snort/so_rules \ |
| 666 |
- /usr/$(get_libdir)/snort_dynamicrules |
| 667 |
- |
| 668 |
- # config.log and build.log are needed by Sourcefire |
| 669 |
- # to trouble shoot build problems and bug reports so we are |
| 670 |
- # perserving them incase the user needs upstream support. |
| 671 |
- dodoc RELEASE.NOTES ChangeLog \ |
| 672 |
- doc/* \ |
| 673 |
- tools/u2boat/README.u2boat |
| 674 |
- |
| 675 |
- insinto /etc/snort |
| 676 |
- doins etc/attribute_table.dtd \ |
| 677 |
- etc/classification.config \ |
| 678 |
- etc/gen-msg.map \ |
| 679 |
- etc/reference.config \ |
| 680 |
- etc/threshold.conf \ |
| 681 |
- etc/unicode.map |
| 682 |
- |
| 683 |
- # We use snort.conf.distrib because the config file is complicated |
| 684 |
- # and the one shipped with snort can change drastically between versions. |
| 685 |
- # Users should migrate setting by hand and not with etc-update. |
| 686 |
- newins etc/snort.conf snort.conf.distrib |
| 687 |
- |
| 688 |
- # config.log and build.log are needed by Sourcefire |
| 689 |
- # to troubleshoot build problems and bug reports so we are |
| 690 |
- # preserving them incase the user needs upstream support. |
| 691 |
- if [ -f "${WORKDIR}/${PF}/config.log" ]; then |
| 692 |
- dodoc "${WORKDIR}/${PF}/config.log" |
| 693 |
- fi |
| 694 |
- if [ -f "${T}/build.log" ]; then |
| 695 |
- dodoc "${T}/build.log" |
| 696 |
- fi |
| 697 |
- |
| 698 |
- insinto /etc/snort/preproc_rules |
| 699 |
- doins preproc_rules/decoder.rules \ |
| 700 |
- preproc_rules/preprocessor.rules \ |
| 701 |
- preproc_rules/sensitive-data.rules |
| 702 |
- |
| 703 |
- fowners -R snort:snort \ |
| 704 |
- /var/log/snort \ |
| 705 |
- /var/run/snort \ |
| 706 |
- /etc/snort |
| 707 |
- |
| 708 |
- newinitd "${FILESDIR}/snort.rc12" snort |
| 709 |
- newconfd "${FILESDIR}/snort.confd.2" snort |
| 710 |
- |
| 711 |
- # Sourcefire uses Makefiles to install docs causing Bug #297190. |
| 712 |
- # This removes the unwanted doc directory and rogue Makefiles. |
| 713 |
- rm -rf "${D}"usr/share/doc/snort || die "Failed to remove SF doc directories" |
| 714 |
- rm "${D}"usr/share/doc/"${PF}"/Makefile* || die "Failed to remove doc make files" |
| 715 |
- |
| 716 |
- # Remove unneeded .la files (Bug #382863) |
| 717 |
- rm "${D}"usr/$(get_libdir)/snort_dynamicengine/libsf_engine.la || die |
| 718 |
- rm "${D}"usr/$(get_libdir)/snort_dynamicpreprocessor/libsf_*_preproc.la || die "Failed to remove libsf_?_preproc.la" |
| 719 |
- |
| 720 |
- # Set the correct lib path for dynamicengine, dynamicpreprocessor, and dynamicdetection |
| 721 |
- sed -i -e 's|/usr/local/lib|/usr/'$(get_libdir)'|g' \ |
| 722 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 723 |
- |
| 724 |
- # Set the correct rule location in the config |
| 725 |
- sed -i -e 's|RULE_PATH ../rules|RULE_PATH /etc/snort/rules|g' \ |
| 726 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 727 |
- |
| 728 |
- # Set the correct preprocessor/decoder rule location in the config |
| 729 |
- sed -i -e 's|PREPROC_RULE_PATH ../preproc_rules|PREPROC_RULE_PATH /etc/snort/preproc_rules|g' \ |
| 730 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 731 |
- |
| 732 |
- # Enable the preprocessor/decoder rules |
| 733 |
- sed -i -e 's|^# include $PREPROC_RULE_PATH|include $PREPROC_RULE_PATH|g' \ |
| 734 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 735 |
- |
| 736 |
- sed -i -e 's|^# dynamicdetection directory|dynamicdetection directory|g' \ |
| 737 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 738 |
- |
| 739 |
- # Just some clean up of trailing /'s in the config |
| 740 |
- sed -i -e 's|snort_dynamicpreprocessor/$|snort_dynamicpreprocessor|g' \ |
| 741 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 742 |
- |
| 743 |
- # Make it clear in the config where these are... |
| 744 |
- sed -i -e 's|^include classification.config|include /etc/snort/classification.config|g' \ |
| 745 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 746 |
- |
| 747 |
- sed -i -e 's|^include reference.config|include /etc/snort/reference.config|g' \ |
| 748 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 749 |
- |
| 750 |
- # Disable all rule files by default. |
| 751 |
- sed -i -e 's|^include $RULE_PATH|# include $RULE_PATH|g' \ |
| 752 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 753 |
- |
| 754 |
- # Disable normalizer preprocessor config if normalizer USE flag not set. |
| 755 |
- if ! use normalizer; then |
| 756 |
- sed -i -e 's|^preprocessor normalize|#preprocessor normalize|g' \ |
| 757 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 758 |
- fi |
| 759 |
- |
| 760 |
- # Set the configured DAQ to afpacket |
| 761 |
- sed -i -e 's|^# config daq: <type>|config daq: afpacket|g' \ |
| 762 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 763 |
- |
| 764 |
- # Set the location of the DAQ modules |
| 765 |
- sed -i -e 's|^# config daq_dir: <dir>|config daq_dir: /usr/'$(get_libdir)'/daq|g' \ |
| 766 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 767 |
- |
| 768 |
- # Set the DAQ mode to passive |
| 769 |
- sed -i -e 's|^# config daq_mode: <mode>|config daq_mode: passive|g' \ |
| 770 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 771 |
- |
| 772 |
- # Set snort to run as snort:snort |
| 773 |
- sed -i -e 's|^# config set_gid:|config set_gid: snort|g' \ |
| 774 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 775 |
- sed -i -e 's|^# config set_uid:|config set_uid: snort|g' \ |
| 776 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 777 |
- |
| 778 |
- # Set the default log dir |
| 779 |
- sed -i -e 's|^# config logdir:|config logdir: /var/log/snort/|g' \ |
| 780 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 781 |
- |
| 782 |
- # Set the correct so_rule location in the config |
| 783 |
- sed -i -e 's|SO_RULE_PATH ../so_rules|SO_RULE_PATH /etc/snort/so_rules|g' \ |
| 784 |
- "${D}etc/snort/snort.conf.distrib" || die |
| 785 |
-} |
| 786 |
- |
| 787 |
-pkg_postinst() { |
| 788 |
- |
| 789 |
- einfo "There have been a number of improvements and new features" |
| 790 |
- einfo "added to ${P}. Please review the RELEASE.NOTES and" |
| 791 |
- einfo "ChangLog located in /usr/share/doc/${PF}." |
| 792 |
- einfo |
| 793 |
- elog "The Sourcefire Vulnerability Research Team (VRT) recommends that" |
| 794 |
- elog "users migrate their snort.conf customizations to the latest config" |
| 795 |
- elog "file released by the VRT. You can find the latest version of the" |
| 796 |
- elog "Snort config file in /etc/snort/snort.conf.distrib." |
| 797 |
- elog |
| 798 |
- elog "!! It is important that you migrate to this new snort.conf file !!" |
| 799 |
- elog |
| 800 |
- elog "This version of the ebuild includes an updated init.d file and" |
| 801 |
- elog "conf.d file that rely on options found in the latest Snort" |
| 802 |
- elog "config file provided by the VRT." |
| 803 |
- |
| 804 |
- if use debug; then |
| 805 |
- elog "You have the 'debug' USE flag enabled. If this has been done to" |
| 806 |
- elog "troubleshoot an issue by producing a core dump or a back trace," |
| 807 |
- elog "then you need to also ensure the FEATURES variable in make.conf" |
| 808 |
- elog "contains the 'nostrip' option." |
| 809 |
- fi |
| 810 |
-} |
| 811 |
|
| 812 |
diff --git a/net-analyzer/snort/snort-2.9.6.2.ebuild b/net-analyzer/snort/snort-2.9.8.2.ebuild |
| 813 |
similarity index 96% |
| 814 |
rename from net-analyzer/snort/snort-2.9.6.2.ebuild |
| 815 |
rename to net-analyzer/snort/snort-2.9.8.2.ebuild |
| 816 |
index aa96708..dcc0152 100644 |
| 817 |
--- a/net-analyzer/snort/snort-2.9.6.2.ebuild |
| 818 |
+++ b/net-analyzer/snort/snort-2.9.8.2.ebuild |
| 819 |
@@ -1,4 +1,4 @@ |
| 820 |
-# Copyright 1999-2014 Gentoo Foundation |
| 821 |
+# Copyright 1999-2015 Gentoo Foundation |
| 822 |
# Distributed under the terms of the GNU General Public License v2 |
| 823 |
# $Id$ |
| 824 |
|
| 825 |
@@ -11,7 +11,7 @@ SRC_URI="https://www.snort.org/downloads/${PN}/${P}.tar.gz" |
| 826 |
LICENSE="GPL-2" |
| 827 |
SLOT="0" |
| 828 |
KEYWORDS="~amd64 ~arm ~mips ~ppc ~ppc64 ~sparc ~x86" |
| 829 |
-IUSE="static +zlib +gre +mpls +targetbased +ppm +perfprofiling |
| 830 |
+IUSE="static +gre +mpls +targetbased +ppm +perfprofiling |
| 831 |
+non-ether-decoders control-socket file-inspect high-availability |
| 832 |
shared-rep side-channel sourcefire linux-smp-stats inline-init-failopen |
| 833 |
+threads debug +active-response +normalizer reload-error-restart |
| 834 |
@@ -21,7 +21,7 @@ DEPEND=">=net-libs/libpcap-1.3.0 |
| 835 |
>=net-libs/daq-2.0.2 |
| 836 |
>=dev-libs/libpcre-8.33 |
| 837 |
dev-libs/libdnet |
| 838 |
- zlib? ( sys-libs/zlib )" |
| 839 |
+ sys-libs/zlib" |
| 840 |
|
| 841 |
RDEPEND="${DEPEND} |
| 842 |
selinux? ( sec-policy/selinux-snort )" |
| 843 |
@@ -46,7 +46,7 @@ src_prepare() { |
| 844 |
|| die "sed for sf_engine failed" |
| 845 |
|
| 846 |
# Multilib fix for the curent set of dynamic-preprocessors |
| 847 |
- for i in file ftptelnet smtp ssh dns ssl dcerpc2 sdf imap pop rzb_saac sip reputation gtp modbus dnp3; do |
| 848 |
+ for i in file ftptelnet smtp ssh dns ssl dcerpc2 sdf imap pop sip reputation gtp modbus dnp3; do |
| 849 |
sed -i -e 's|${exec_prefix}/lib|${exec_prefix}/'$(get_libdir)'|g' \ |
| 850 |
"${WORKDIR}/${P}/src/dynamic-preprocessors/$i/Makefile.am" \ |
| 851 |
|| die "sed for $i failed." |
| 852 |
@@ -62,7 +62,6 @@ src_configure() { |
| 853 |
$(use_enable !static shared) \ |
| 854 |
$(use_enable static) \ |
| 855 |
$(use_enable static so-with-static-lib) \ |
| 856 |
- $(use_enable zlib) \ |
| 857 |
$(use_enable gre) \ |
| 858 |
$(use_enable mpls) \ |
| 859 |
$(use_enable targetbased) \ |
| 860 |
@@ -93,8 +92,7 @@ src_configure() { |
| 861 |
--disable-profile \ |
| 862 |
--disable-ppm-test \ |
| 863 |
--disable-intel-soft-cpm \ |
| 864 |
- --disable-static-daq \ |
| 865 |
- --disable-rzb-saac |
| 866 |
+ --disable-static-daq |
| 867 |
} |
| 868 |
|
| 869 |
src_install() { |
Archives