diff options
-rw-r--r-- | app-admin/bastille/ChangeLog | 32 | ||||
-rw-r--r-- | app-admin/bastille/Manifest | 6 | ||||
-rw-r--r-- | app-admin/bastille/bastille-2.1.1-r1.ebuild | 92 | ||||
-rw-r--r-- | app-admin/bastille/bastille-2.1.1.ebuild | 126 | ||||
-rw-r--r-- | app-admin/bastille/files/digest-bastille-2.1.1 | 2 | ||||
-rw-r--r-- | app-admin/bastille/files/digest-bastille-2.1.1-r1 | 2 | ||||
-rw-r--r-- | app-admin/bastille/metadata.xml | 10 |
7 files changed, 267 insertions, 3 deletions
diff --git a/app-admin/bastille/ChangeLog b/app-admin/bastille/ChangeLog new file mode 100644 index 000000000000..530f7d0269ef --- /dev/null +++ b/app-admin/bastille/ChangeLog @@ -0,0 +1,32 @@ +# ChangeLog for app-admin/bastille +# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/ChangeLog,v 1.1 2003/09/18 23:56:21 seemant Exp $ + +*bastille-2.1.1 (17 Sep 2003) + + 17 Sep 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild, + metadata.xml: + moved from net-firewall to app-admin + + 05 Sep 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild: + using the X flag instead of tcltk + + 26 Aug 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild: + updated patch from Battousai. Fixes for program and config file + locations. + + 03 Aug 2003; Seemant Kulleen <seemant@gentoo.org> : + Added iptables and logrotate to RDEPEND. Thanks to Wingedone + + 02 Aug 2003; <solar@gentoo.org> bastille-2.1.1.ebuild: + Added support for console only building. Server installs are a place + that I think most admins/users would want the functionality of something + like bastille without having to install X + +*bastille-2.1.1 (02 Aug 2003) + + 02 Aug 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild, + files/bastille-2.1.1.patch: + initial import. This was patched heavily to work with Gentoo (gentooficated) + by the venerable: Bryan Stine <admin@kentonet.net> + diff --git a/app-admin/bastille/Manifest b/app-admin/bastille/Manifest index f3489c38996d..b4771654b38c 100644 --- a/app-admin/bastille/Manifest +++ b/app-admin/bastille/Manifest @@ -1,6 +1,6 @@ -MD5 9df2b3b973a7c6ce4f68981ae3f6e7fe bastille-2.1.1.ebuild 3097 -MD5 a0bd5892db7a3385854d3e8a3e15ac5b bastille-2.1.1-r1.ebuild 2404 -MD5 c465abd3840652bcd5cbc49c617dd479 ChangeLog 1289 +MD5 1b44f1b1ca25c306324078b603a1ca08 bastille-2.1.1.ebuild 3094 +MD5 cb5441a1e97abcdd0ea1520b9562ae9c bastille-2.1.1-r1.ebuild 2404 +MD5 137fefe9fe4182cc6a5c9e7c138d27de ChangeLog 1286 MD5 624441f5e21afa19251eedc583e0c4e7 metadata.xml 433 MD5 5952693da32f1292a5b6013e8e755799 files/digest-bastille-2.1.1-r1 146 MD5 5952693da32f1292a5b6013e8e755799 files/digest-bastille-2.1.1 146 diff --git a/app-admin/bastille/bastille-2.1.1-r1.ebuild b/app-admin/bastille/bastille-2.1.1-r1.ebuild new file mode 100644 index 000000000000..deb07cff44c7 --- /dev/null +++ b/app-admin/bastille/bastille-2.1.1-r1.ebuild @@ -0,0 +1,92 @@ +# Copyright 1999-2003 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-2.1.1-r1.ebuild,v 1.1 2003/09/18 23:56:21 seemant Exp $ + +inherit perl-module + +IUSE="X" + +PATCHVER=0.1 +MY_PN=${PN/b/B} +MY_P=${MY_PN}-${PV} +S=${WORKDIR}/${MY_PN} +DESCRIPTION="Bastille-Linux is a security hardening tool" +HOMEPAGE="http://bastille-linux.org/" +SRC_URI="mirror://sourceforge/${PN}-linux/${MY_P}.tar.bz2 + mirror://gentoo/${P}-gentoo-${PATCHVER}.patch.bz2" + +SLOT="0" +LICENSE="GPL-2" +KEYWORDS="~x86 ~ppc ~sparc ~alpha ~mips ~hppa" + + +RDEPEND="net-firewall/iptables + app-admin/logrotate + dev-perl/Curses + net-firewall/psad + X? ( dev-perl/perl-tk )" + +src_unpack() { + unpack ${A} + epatch ${WORKDIR}/${P}-gentoo-${PATCHVER}.patch +} + +src_compile() { + cd ${S} +} + +src_install() { + + keepdir /var/lock/subsys/${PN} + dodir /etc/Bastille + + cd ${S} + into /usr + dosbin bastille AutomatedBastille InteractiveBastille \ + BastilleBackEnd RevertBastille *.pl + + dosym RevertBastille /usr/sbin/UndoBastille + + insinto /usr/share/Bastille + doins Questions* Credits bastille-* *.xbm *.config + + insinto /usr/share/Bastille + doins Questions.txt Credits complete.xbm incomplete.xbm \ + ifup-local hosts.allow + + exeinto /usr/share/Bastille + doexe bastille-firewall* bastille-tmpdir* \ + bastille-ipchains bastille-netfilter \ + firewall/*.sh + + perlinfo + insinto ${SITE_LIB} + doins Bastille_Curses.pm + use X && doins Bastille_Tk.pm + insinto ${SITE_LIB}/Curses + doins Curses/Widgets.pm + + doman docs/bastille.1m + dodoc docs/* firewall/*.txt + + cd ${S}/Bastille + + insinto /usr/lib/Bastille + doins AccountSecurity.pm Apache.pm API.pm OSX_API.pm BootSecurity.pm \ + ConfigureMiscPAM.pm DisableUserTools.pm DNS.pm \ + FilePermissions.pm FTP.pm Firewall.pm HP_API.pm HP_UX.pm \ + IOLoader.pm Patches.pm Logging.pm \ + MiscellaneousDaemons.pm PatchDownload.pm Printing.pm \ + RemoteAccess.pm SecureInetd.pm Sendmail.pm TMPDIR.pm \ + test_AccountSecurity.pm test_Apache.pm test_DNS.pm \ + test_FTP.pm test_HP_UX.pm test_MiscellaneousDaemons.pm \ + test_SecureInetd.pm test_Sendmail.pm TestAPI.pm IPFilter.pm + + # Documentation + cd ${S} + dodoc *.txt COPYING BUGS Change* README* +} + +pkg_postinst() { + use X || einfo "When not using the Tk interface you will need to start use the -c flag when calling ${PN} from command line. example ${PN} -c --os GE1.4" +} diff --git a/app-admin/bastille/bastille-2.1.1.ebuild b/app-admin/bastille/bastille-2.1.1.ebuild new file mode 100644 index 000000000000..5e4decd0a078 --- /dev/null +++ b/app-admin/bastille/bastille-2.1.1.ebuild @@ -0,0 +1,126 @@ +# Copyright 1999-2003 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-2.1.1.ebuild,v 1.1 2003/09/18 23:56:21 seemant Exp $ + +inherit perl-module + +IUSE="X" + +MY_PN=${PN/b/B} +MY_P=${MY_PN}-${PV} +S=${WORKDIR}/${MY_PN} +DESCRIPTION="Bastille-Linux is a security hardening tool" +HOMEPAGE="http://bastille-linux.org/" +SRC_URI="mirror://sourceforge/${PN}-linux/${MY_P}.tar.bz2 + mirror://gentoo/${P}-gentoo-0.1.patch.bz2" + +SLOT="0" +LICENSE="GPL-2" +KEYWORDS="~x86 ~ppc ~sparc ~alpha ~mips ~hppa" + + +RDEPEND="net-firewall/iptables + app-admin/logrotate + dev-perl/Curses + X? ( dev-perl/perl-tk )" + +src_unpack() { + unpack ${A} + epatch ${WORKDIR}/${P}-gentoo-0.1.patch +} + +src_compile() { + + cd ${S}/psad/Psad.pm + SRC_PREP="no" perl-module_src_compile + emake test + + cd ${S}/psad/Unix-Syslog-0.98 + SRC_PREP="no" perl-module_src_compile + emake test + + cd ${S}/psad/whois-4.5.29 + emake || die + + cd ${S} +} + +src_install() { + + keepdir /var/log/psad /var/lib/psad /var/run/psad /var/lock/subsys/${PN} + dodir /etc/Bastille + + cd ${S}/psad/Psad.pm + perl-module_src_install + + cd ${S}/psad/Unix-Syslog-0.98 + perl-module_src_install + + cd ${S} + into /usr + dosbin bastille AutomatedBastille InteractiveBastille \ + BastilleBackEnd RevertBastille *.pl + + dosym RevertBastille /usr/sbin/UndoBastille + + insinto /usr/share/Bastille + doins Questions* Credits bastille-* *.xbm *.config + + insinto /usr/share/Bastille + doins Questions.txt Credits complete.xbm incomplete.xbm \ + ifup-local hosts.allow + + exeinto /usr/share/Bastille + doexe bastille-firewall* bastille-tmpdir* \ + bastille-ipchains bastille-netfilter \ + firewall/*.sh + + perlinfo + insinto ${SITE_LIB} + doins Bastille_Curses.pm + use X && doins Bastille_Tk.pm + insinto ${SITE_LIB}/Curses + doins Curses/Widgets.pm + + doman docs/bastille.1m + dodoc docs/* firewall/*.txt + + cd ${S}/psad + insinto /usr/share/Bastille + doins psad psadwatchd kmsgsd diskmond psad-init + doman psad.8 + + insinto /etc/psad + doins psad_signatures psad_auto_ips psad.conf + + cd ${S}/psad/whois-4.5.29 + exeinto /usr/share/Bastille + doexe whois + + cd ${S}/Bastille + + insinto /usr/lib/Bastille + doins AccountSecurity.pm Apache.pm API.pm OSX_API.pm BootSecurity.pm \ + ConfigureMiscPAM.pm DisableUserTools.pm DNS.pm \ + FilePermissions.pm FTP.pm Firewall.pm HP_API.pm HP_UX.pm \ + IOLoader.pm Patches.pm Logging.pm \ + MiscellaneousDaemons.pm PatchDownload.pm Printing.pm PSAD.pm \ + RemoteAccess.pm SecureInetd.pm Sendmail.pm TMPDIR.pm \ + test_AccountSecurity.pm test_Apache.pm test_DNS.pm \ + test_FTP.pm test_HP_UX.pm test_MiscellaneousDaemons.pm \ + test_SecureInetd.pm test_Sendmail.pm TestAPI.pm IPFilter.pm + + # Documentation + cd ${S} + dodoc *.txt COPYING BUGS Change* README* +} + +pkg_postinst() { + if [ -z ${ROOT}/var/log/psadfifo ] + then + ebegin "Creating FIFO device for PSAD..." + mknod -m 600 ${ROOT}/var/log/psadfifo p + eend $? + fi + use X || einfo "When not using the Tk interface you will need to start use the -c flag when calling ${PN} from command line. example ${PN} -c --os GE1.4" +} diff --git a/app-admin/bastille/files/digest-bastille-2.1.1 b/app-admin/bastille/files/digest-bastille-2.1.1 new file mode 100644 index 000000000000..bd17a91ead93 --- /dev/null +++ b/app-admin/bastille/files/digest-bastille-2.1.1 @@ -0,0 +1,2 @@ +MD5 67b4d6a110fbe833bfc14dc46e75fa83 Bastille-2.1.1.tar.bz2 338227 +MD5 4742d81524cfe07f00c4bab66b17371f bastille-2.1.1-gentoo-0.1.patch.bz2 15312 diff --git a/app-admin/bastille/files/digest-bastille-2.1.1-r1 b/app-admin/bastille/files/digest-bastille-2.1.1-r1 new file mode 100644 index 000000000000..bd17a91ead93 --- /dev/null +++ b/app-admin/bastille/files/digest-bastille-2.1.1-r1 @@ -0,0 +1,2 @@ +MD5 67b4d6a110fbe833bfc14dc46e75fa83 Bastille-2.1.1.tar.bz2 338227 +MD5 4742d81524cfe07f00c4bab66b17371f bastille-2.1.1-gentoo-0.1.patch.bz2 15312 diff --git a/app-admin/bastille/metadata.xml b/app-admin/bastille/metadata.xml new file mode 100644 index 000000000000..cefbc16f77a9 --- /dev/null +++ b/app-admin/bastille/metadata.xml @@ -0,0 +1,10 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> +<pkgmetadata> + <herd>hardened</herd> + <maintainer> + <email>hardened@gentoo.org</email> + <description>Bastille Currently Has No Primary Gentoo Maintainer</description> + </maintainer> + <longdescription>The Bastille Hardening System attempts to "harden" or "tighten" Unix operating systems.</longdescription> +</pkgmetadata> |