mirror of
https://github.com/pentoo/pentoo-overlay
synced 2026-04-16 20:01:31 +02:00
samhain: v4.2.2 bump
This commit is contained in:
blshkv
parent
2a69b0d798
commit
5c97ef8b00
3 changed files with 214 additions and 1 deletions
|
|
@ -1 +1,2 @@
|
|||
DIST samhain_signed-4.1.4.tar.gz 2206332 SHA256 32ee7477af11d9f2f64f30b9cb316c351897c1c994c7b98b0ef17fc0ca5e1d1a SHA512 72e75e7a34705fa61d48c82e4c0ab1ac523c9bd5480c9335e305230e04d7c6295094ef616d9fca05b091d99659982d130812be36e9676ede68d743a4a1c46013 WHIRLPOOL 515e5d2c297e2ca2e0d69d0bad200eb4bc81449a907346c9976124381a9ab910a6fca6024853ce76d21928d12281aa236b5ed76ac3df511cef3b4f5766a865fc
|
||||
DIST samhain_signed-4.2.2.tar.gz 2148749 SHA256 0f3e64afb3f00064c9b136d34a72d580cd41248c5941eba0452f364a109003c7 SHA512 c57916020f45652ac63356d811ab597f7e47d6eaea4398aa882c3f90c7d333e6a9c28f2a80a5118af822d051e222914d8df87c6efb430923acab83d7d5fa406e WHIRLPOOL 4feb568dad112fae4d689c0171bd7de276680421cc8912242204076d17d48160bfbf8eed7d599433de4e939b72fdd604d1b5740466a320552153ff7ad7922a7f
|
||||
|
|
|
|||
|
|
@ -128,7 +128,7 @@ src_configure() {
|
|||
use suidcheck && myconf="${myconf} --enable-suidcheck"
|
||||
use userfiles && myconf="${myconf} --enable-userfiles"
|
||||
|
||||
myconf="${myconf} --localstatedir=/var"
|
||||
myconf="${myconf} --localstatedir=/var --disable-asm"
|
||||
|
||||
econf ${myconf} || die "configure failed"
|
||||
# make || die "compile failed"
|
||||
|
|
|
|||
212
app-forensics/samhain/samhain-4.2.2.ebuild
Normal file
212
app-forensics/samhain/samhain-4.2.2.ebuild
Normal file
|
|
@ -0,0 +1,212 @@
|
|||
# Copyright 1999-2016 Gentoo Foundation
|
||||
# Distributed under the terms of the GNU General Public License v2
|
||||
# $Id$
|
||||
|
||||
EAPI=5
|
||||
|
||||
DESCRIPTION="Advanced file integrity and intrusion detection tool."
|
||||
HOMEPAGE="http://la-samhna.de/samhain/"
|
||||
SRC_URI="http://la-samhna.de/archive/samhain_signed-${PV}.tar.gz"
|
||||
|
||||
KEYWORDS="~amd64 ~x86"
|
||||
LICENSE="GPL-2"
|
||||
SLOT="0"
|
||||
IUSE="crypt debug login-watch mounts-check mysql netclient netserver postgres static suidcheck userfiles xml"
|
||||
|
||||
DEPEND="crypt? ( >=app-crypt/gnupg-1.2 )
|
||||
mysql? ( dev-db/mysql )
|
||||
postgres? ( dev-db/postgresql )
|
||||
>=sys-apps/sed-4
|
||||
app-arch/tar
|
||||
app-arch/gzip"
|
||||
|
||||
# Samhain stealth mode options
|
||||
#
|
||||
# If you would like to enable stealth mode, please set and uncomment the
|
||||
# following options or pass them as enviroment variables when emerging
|
||||
# the package (like INSTALL_NAME="asd" emerge samhain).
|
||||
# If you set the variables here, don't forget to redigest the ebuild by
|
||||
# issuing 'ebuild samhain-<thisversion>.ebuild digest', also remember that with
|
||||
# your next emerge sync, the changes to the ebuild will be lost!
|
||||
#
|
||||
# Read the Samhain manual for additional information.
|
||||
#
|
||||
# STEALTH should be set to either 'full' or 'micro' (mandatory)
|
||||
#STEALTH=""
|
||||
#
|
||||
# XOR_VALUE should be a whole number from 128 to 255 (mandatory)
|
||||
#XOR_VALUE=""
|
||||
#
|
||||
# INSTALL_NAME can be set to change the name of the Samhain binaries
|
||||
# to the name you specify (optional)
|
||||
#INSTALL_NAME=""
|
||||
|
||||
if [[ "${STEALTH}" == "full" ]] ; then
|
||||
RDEPEND="media-gfx/imagemagick"
|
||||
fi
|
||||
|
||||
pkg_setup() {
|
||||
if use static ; then
|
||||
if use postgres ; then
|
||||
ewarn "At the moment it isn't possible to build a static Samhain with"
|
||||
ewarn "PostgreSQL support on Gentoo, the compilation"
|
||||
ewarn "fails during the linking process."
|
||||
echo
|
||||
ewarn "This will be looked at and fixed in the future, in the meantime,"
|
||||
ewarn "patches to fix this are always welcome and appreciated! ;)"
|
||||
ewarn "(Open a bug on bugs.gentoo.org for them or send them to"
|
||||
ewarn "the maintainer directly, thanks!)"
|
||||
die "Please turn the 'postgres' USE flags off when building with 'static'"
|
||||
fi
|
||||
fi
|
||||
|
||||
if use mysql && use postgres ; then
|
||||
ewarn "You cannot compile both database backends into Samhain at once,"
|
||||
ewarn "you need to choose between MySQL or PostgreSQL and disable the"
|
||||
ewarn "one you don't want to use."
|
||||
die "Please choose between 'mysql' or 'postgres' USE flags"
|
||||
fi
|
||||
}
|
||||
|
||||
src_unpack() {
|
||||
unpack ${A}
|
||||
tar -xzf "samhain-${PV}.tar.gz"
|
||||
cd "${S}"
|
||||
}
|
||||
|
||||
src_prepare() {
|
||||
sed -i -e 's/INSTALL_PROGRAM = @INSTALL@ -s/INSTALL_PROGRAM = @INSTALL@/' Makefile.in || die "Failed to patch Makefile"
|
||||
}
|
||||
|
||||
src_configure() {
|
||||
local myconf
|
||||
|
||||
if use crypt ; then
|
||||
myconf="${myconf} --with-gpg=/usr/bin/gpg --with-checksum=no"
|
||||
|
||||
if [[ -n "${KEY_FPR}" ]] ; then
|
||||
einfo "Setting built-in key fingerprint to ${KEY_FPR}"
|
||||
FPR=`echo ${KEY_FPR} | sed "s/ //g"`
|
||||
myconf="${myconf} --with-fp=${FPR}"
|
||||
fi
|
||||
fi
|
||||
|
||||
if [[ -n "${STEALTH}" ]] ; then
|
||||
[[ -z "${XOR_VALUE}" ]] && die "Variable XOR_VALUE must be set for stealth mode"
|
||||
echo
|
||||
einfo "Enabling stealth mode '${STEALTH}', setting XOR_VALUE to ${XOR_VALUE}"
|
||||
|
||||
if [[ "${STEALTH}" == "full" ]] ; then
|
||||
myconf="${myconf} --enable-stealth=${XOR_VALUE}"
|
||||
sed -e "s:STEGIN=@stegin_prg@:STEGIN=:g" -i samhain-install.sh.in
|
||||
elif [[ "${STEALTH}" == "micro" ]] ; then
|
||||
myconf="${myconf} --enable-micro-stealth=${XOR_VALUE}"
|
||||
else
|
||||
die "STEALTH must be set to either 'full' or 'micro'"
|
||||
fi
|
||||
|
||||
if [[ -n "${INSTALL_NAME}" ]] ; then
|
||||
echo
|
||||
einfo "Setting alternative samhain name to ${INSTALL_NAME}"
|
||||
echo
|
||||
myconf="${myconf} --enable-install-name=${INSTALL_NAME}"
|
||||
fi
|
||||
fi
|
||||
|
||||
use mysql && myconf="${myconf} --with-database=mysql --enable-xml-log"
|
||||
use postgres && myconf="${myconf} --with-database=postgresql --enable-xml-log"
|
||||
# use prelude && myconf="${myconf} --with-prelude --with-libprelude-prefix=/usr"
|
||||
use xml && myconf="${myconf} --enable-xml-log"
|
||||
use static && myconf="${myconf} --enable-static"
|
||||
use debug && myconf="${myconf} --enable-debug"
|
||||
|
||||
use netclient && myconf="${myconf} --enable-network=client"
|
||||
use netserver && myconf="${myconf} --enable-network=server"
|
||||
|
||||
use login-watch && myconf="${myconf} --enable-login-watch"
|
||||
use mounts-check && myconf="${myconf} --enable-mounts-check"
|
||||
use suidcheck && myconf="${myconf} --enable-suidcheck"
|
||||
use userfiles && myconf="${myconf} --enable-userfiles"
|
||||
|
||||
myconf="${myconf} --localstatedir=/var --disable-asm"
|
||||
|
||||
econf ${myconf}
|
||||
}
|
||||
|
||||
src_install() {
|
||||
make DESTDIR="${D}" install || die "make install failed"
|
||||
|
||||
rm -Rf "${D}/var/log"
|
||||
rm -Rf "${D}/var/run"
|
||||
rm -Rf "${D}/var/state"
|
||||
|
||||
if [[ -n "${STEALTH}" ]] ; then
|
||||
rm -Rf "${D}/usr/share"
|
||||
else
|
||||
dodoc docs/BUGS docs/MANUAL* docs/README* docs/*.txt
|
||||
dohtml docs/*.html
|
||||
# docinto scripts
|
||||
# dodoc scripts/*
|
||||
insinto /etc
|
||||
insopts -m0600
|
||||
newins samhainrc.linux samhainrc
|
||||
newinitd init/samhain.startGentoo samhain
|
||||
keepdir "/var/lib/samhain"
|
||||
fi
|
||||
|
||||
if use netserver ; then
|
||||
keepdir "/var/lib/yule"
|
||||
chown daemon:daemon "${D}/var/lib/yule"
|
||||
keepdir "/var/log/yule"
|
||||
chown daemon:daemon "${D}/var/log/yule"
|
||||
fi
|
||||
}
|
||||
|
||||
pkg_postinst() {
|
||||
if [[ -n "${STEALTH}" ]] ; then
|
||||
elog
|
||||
elog "Manual pages, documentation, and init script were NOT installed in order to"
|
||||
elog "obscure Samhain's presence. You should also remove samhain's installation"
|
||||
elog "traces from /var/cache/edb/world and /var/db/pkg."
|
||||
fi
|
||||
|
||||
if [[ "${STEALTH}" == "full" ]] ; then
|
||||
elog
|
||||
elog "In stealth mode, the configuration file must be steganographically hidden"
|
||||
elog "in a postscript image file. The sample config has been created this way by"
|
||||
elog "the installation process. Use the samhain_stealth utility to modify or"
|
||||
elog "create your own configuration file."
|
||||
fi
|
||||
|
||||
if [[ -z "${KEY_FPR}" ]] ; then
|
||||
elog
|
||||
ewarn "GnuPG support has been enabled, but fingerprint verification will be"
|
||||
ewarn "ignored. To enable fingerprint verification (strongly recommended),"
|
||||
ewarn "you must re-emerge this package with the KEY_FPR variable set to"
|
||||
ewarn "your default signing key fingerprint."
|
||||
ewarn "Please read the Samhain manual for more details."
|
||||
elog
|
||||
elog "Enabling GnuPG support in Samhain requires that you sign your configuration"
|
||||
elog "and database files. Please run the following commands as root:"
|
||||
elog
|
||||
elog " gpg -a --clearsign --not-dash-escaped /etc/samhainrc"
|
||||
elog " mv /etc/samhainrc.asc /etc/samhainrc"
|
||||
elog " chmod 600 /etc/samhainrc"
|
||||
elog
|
||||
elog "Run the same commands on /var/lib/samhain/samhain_file after initialization."
|
||||
fi
|
||||
|
||||
elog
|
||||
elog "Be sure to check your settings in /etc/samhainrc. When ready, run:"
|
||||
elog " samhain -t init"
|
||||
elog "to initialize Samhain."
|
||||
|
||||
elog
|
||||
elog "Samhain stealth-mode options are also available. Please view the comments"
|
||||
elog "in the Samhain ebuild for further configuration instructions."
|
||||
|
||||
elog
|
||||
ewarn "Please be sure to read the Samhain manual to understand and correctly"
|
||||
ewarn "configure the Samhain utility."
|
||||
ewarn "HTML version available for viewing at http://la-samhna.de/samhain/manual/ ."
|
||||
}
|
||||
Loading…
Reference in a new issue