Initial imports and version bump

4 files changed, 133 insertions, 0 deletions

diff --git a/net-analyzer/snorticus/ChangeLog b/net-analyzer/snorticus/ChangeLog
new file mode 100644
index 000000000000..d865d42ce267
--- /dev/null
+++ b/net-analyzer/snorticus/ChangeLog
@@ -0,0 +1,8 @@
+# ChangeLog for net-analyzer/snorticus
+# Copyright 2002-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snorticus/ChangeLog,v 1.1 2003/02/13 10:19:02 aliz Exp $
+
+*snorticus-1.0.4 (13 Feb 2003)
+
+  13 Feb 2003; Daniel Ahlberg <aliz@gentoo.org> :
+  Initial import. Ebuild submitted by Paul Belt <gaarde@yahoo.com> in #8714.
diff --git a/net-analyzer/snorticus/files/digest-snorticus-1.0.4 b/net-analyzer/snorticus/files/digest-snorticus-1.0.4
new file mode 100644
index 000000000000..38b5a781dcd3
--- /dev/null
+++ b/net-analyzer/snorticus/files/digest-snorticus-1.0.4
@@ -0,0 +1 @@
+MD5 c6caaa4bc1da36c976003267f2637625 snorticus-1.0.4.tar.gz 20697
diff --git a/net-analyzer/snorticus/files/snorticus-1.0.4-gentoo.patch b/net-analyzer/snorticus/files/snorticus-1.0.4-gentoo.patch
new file mode 100644
index 000000000000..13ee2d218014
--- /dev/null
+++ b/net-analyzer/snorticus/files/snorticus-1.0.4-gentoo.patch
@@ -0,0 +1,68 @@
+--- push_rules.sh.old	2002-09-30 17:25:22.000000000 -0400
++++ push_rules.sh	2002-09-30 17:26:27.000000000 -0400
+32c32
+< set rules_directory='/home/snort/rules'
+---
+> set rules_directory='/etc/snort/rules'
+--- hourly_wrapup.sh.old	2002-09-30 17:25:22.000000000 -0400
++++ hourly_wrapup.sh	2002-09-30 17:26:27.000000000 -0400
+@@ -60,18 +60,18 @@
+ # This variable should be set to the directory
+ # that contains the rule sets you want used for each 
+ # network block you want snort to watch.
+-set rules_directory='/home/snort/rules'
++set rules_directory='/etc/snort'
+ 
+ # This variable should be set to the directory where
+ # snort should log everything to.  It is the 'root' directory
+ # where snort will create hourly log directories, and then
+ # tar/gzip the hourly directories when the hour ends.
+-set log_directory='/home/snort/LOGS'
++set log_directory='/usr/lib/snort/addons/snorticus/LOGS'
+ 
+ # This variable should be set to the directory and filename
+ # of the configuration file containing the network blocks
+ # snort should watch.
+-set network_list_file='/home/snort/network.cfg'
++set network_list_file='/etc/snort/addons/network.cfg'
+ 
+ # END USER CONFIGURABLE SECTION
+ # END USER CONFIGURABLE SECTION
+--- retrieve_wrapup.sh.old	2002-09-30 18:34:39.000000000 -0400
++++ retrieve_wrapup.sh	2002-09-30 18:37:19.000000000 -0400
+@@ -41,7 +41,7 @@
+ # place the data into the appropriate site 
+ # subdirectory in this directory.  It is also
+ # used when retrieving data from the sensor.
+-set log_directory='/home/snort/LOGS'
++set log_directory='/usr/lib/snort/addons/snorticus/LOGS'
+ 
+ # This should be set to the number of days the data
+ # should reside on this server until it is deleted
+@@ -52,7 +52,7 @@
+ # SnortSnarf perl script can be found ('snortsnarf.pl').
+ # Or you can use this to point to whatever script you 
+ # choose to use for processing the retrieved log data.
+-set snortsnarf_path='/home/snort/scripts'
++set snortsnarf_path='/usr/bin'
+ 
+ # This variable should be set to include any extra features
+ # of snortsnarf that you want to use.
+@@ -67,7 +67,7 @@
+ # FLAVORS OF UNIX. WHEN DEALING WITH MULTIPLE PLATFORMS
+ # YOU MAY WANT TO 'ln -s /usr/bin/date /usr/local/date'
+ # ON THE LINUX BOXES.
+-set gnudate_path='/usr/local/bin'
++set gnudate_path='/bin'
+ 
+ # This is the account to use when scp'ing the wrapup
+ # files from the sensors.
+@@ -104,7 +104,7 @@
+ # determine the proper settings/commands for Linux.
+ # They vary slightly between Linux and Solaris.
+ if (`uname -s` == 'Linux') then
+-        set tar_flags='xvfP'
++        set tar_flags='xvPf'
+ else
+         # Until others give me the proper settings
+         # (if there are any other differences)
diff --git a/net-analyzer/snorticus/snorticus-1.0.4.ebuild b/net-analyzer/snorticus/snorticus-1.0.4.ebuild
new file mode 100644
index 000000000000..765d01a06989
--- /dev/null
+++ b/net-analyzer/snorticus/snorticus-1.0.4.ebuild
@@ -0,0 +1,56 @@
+# Copyright 1999-2003 Gentoo Technologies, Inc.
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/snorticus/snorticus-1.0.4.ebuild,v 1.1 2003/02/13 10:19:02 aliz Exp $
+
+DESCRIPTION="Snorticus is a collection of shell scripts designed to allow easy
+managment of Snort sensors."
+
+HOMEPAGE="http://snorticus.baysoft.net/"
+SRC_URI="http://snorticus.baysoft.net/snorticus/${P}.tar.gz"
+LICENSE="GPL-2"
+SLOT="0"
+KEYWORDS="~x86"
+IUSE=""
+
+RDEPEND="virtual/glibc
+	net-analyzer/snort
+	net-analyzer/snortsnarf
+	sys-apps/sh-utils
+	net-misc/openssh"
+
+DEPEND="${RDEPEND}"
+
+src_unpack() {
+	unpack ${A}
+	cd ${S}
+
+	patch -p0 < ${FILESDIR}/${P}-gentoo.patch || die
+}
+
+src_compile() {
+	return 0
+}
+
+src_install () {
+	dodoc COPYING 
+	dohtml snorticus.html
+
+	dodir /etc/snort/addons/
+	dodir /usr/lib/snort/addons/snorticus/
+
+	insinto /usr/lib/snort/addons/snorticus	
+	doins hourly_wrapup.sh push_rules.sh retrieve_wrapup.sh
+
+	dodir /home/httpd/htdocs/snorticus
+	dosym /home/httpd/htdocs/snorticus /usr/lib/snort/addons/snorticus/LOGS
+}
+
+src_postinst() {
+	einfo 'Add the following into a cronjob somewhere for a sensor box.'
+	einfo ''
+	einfo '01 * * * * /usr/lib/snort/addons/snorticus/hourly_wrapup.sh > /dev/null 2>&1'
+	einfo ''
+	einfo 'Add the following into a cronjob somewhere for an analyst box.'
+	einfo ''
+	einfo '15 * * * * /usr/lib/snort/addons/snorticus/retrieve_wrapup.sh MySite1 mysensor.blah.blah > /dev/null 2>&1'
+}