summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--app-admin/bastille/ChangeLog32
-rw-r--r--app-admin/bastille/Manifest6
-rw-r--r--app-admin/bastille/bastille-2.1.1-r1.ebuild92
-rw-r--r--app-admin/bastille/bastille-2.1.1.ebuild126
-rw-r--r--app-admin/bastille/files/digest-bastille-2.1.12
-rw-r--r--app-admin/bastille/files/digest-bastille-2.1.1-r12
-rw-r--r--app-admin/bastille/metadata.xml10
7 files changed, 267 insertions, 3 deletions
diff --git a/app-admin/bastille/ChangeLog b/app-admin/bastille/ChangeLog
new file mode 100644
index 000000000000..530f7d0269ef
--- /dev/null
+++ b/app-admin/bastille/ChangeLog
@@ -0,0 +1,32 @@
+# ChangeLog for app-admin/bastille
+# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
+# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/ChangeLog,v 1.1 2003/09/18 23:56:21 seemant Exp $
+
+*bastille-2.1.1 (17 Sep 2003)
+
+ 17 Sep 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild,
+ metadata.xml:
+ moved from net-firewall to app-admin
+
+ 05 Sep 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild:
+ using the X flag instead of tcltk
+
+ 26 Aug 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild:
+ updated patch from Battousai. Fixes for program and config file
+ locations.
+
+ 03 Aug 2003; Seemant Kulleen <seemant@gentoo.org> :
+ Added iptables and logrotate to RDEPEND. Thanks to Wingedone
+
+ 02 Aug 2003; <solar@gentoo.org> bastille-2.1.1.ebuild:
+ Added support for console only building. Server installs are a place
+ that I think most admins/users would want the functionality of something
+ like bastille without having to install X
+
+*bastille-2.1.1 (02 Aug 2003)
+
+ 02 Aug 2003; Seemant Kulleen <seemant@gentoo.org> bastille-2.1.1.ebuild,
+ files/bastille-2.1.1.patch:
+ initial import. This was patched heavily to work with Gentoo (gentooficated)
+ by the venerable: Bryan Stine <admin@kentonet.net>
+
diff --git a/app-admin/bastille/Manifest b/app-admin/bastille/Manifest
index f3489c38996d..b4771654b38c 100644
--- a/app-admin/bastille/Manifest
+++ b/app-admin/bastille/Manifest
@@ -1,6 +1,6 @@
-MD5 9df2b3b973a7c6ce4f68981ae3f6e7fe bastille-2.1.1.ebuild 3097
-MD5 a0bd5892db7a3385854d3e8a3e15ac5b bastille-2.1.1-r1.ebuild 2404
-MD5 c465abd3840652bcd5cbc49c617dd479 ChangeLog 1289
+MD5 1b44f1b1ca25c306324078b603a1ca08 bastille-2.1.1.ebuild 3094
+MD5 cb5441a1e97abcdd0ea1520b9562ae9c bastille-2.1.1-r1.ebuild 2404
+MD5 137fefe9fe4182cc6a5c9e7c138d27de ChangeLog 1286
MD5 624441f5e21afa19251eedc583e0c4e7 metadata.xml 433
MD5 5952693da32f1292a5b6013e8e755799 files/digest-bastille-2.1.1-r1 146
MD5 5952693da32f1292a5b6013e8e755799 files/digest-bastille-2.1.1 146
diff --git a/app-admin/bastille/bastille-2.1.1-r1.ebuild b/app-admin/bastille/bastille-2.1.1-r1.ebuild
new file mode 100644
index 000000000000..deb07cff44c7
--- /dev/null
+++ b/app-admin/bastille/bastille-2.1.1-r1.ebuild
@@ -0,0 +1,92 @@
+# Copyright 1999-2003 Gentoo Technologies, Inc.
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-2.1.1-r1.ebuild,v 1.1 2003/09/18 23:56:21 seemant Exp $
+
+inherit perl-module
+
+IUSE="X"
+
+PATCHVER=0.1
+MY_PN=${PN/b/B}
+MY_P=${MY_PN}-${PV}
+S=${WORKDIR}/${MY_PN}
+DESCRIPTION="Bastille-Linux is a security hardening tool"
+HOMEPAGE="http://bastille-linux.org/"
+SRC_URI="mirror://sourceforge/${PN}-linux/${MY_P}.tar.bz2
+ mirror://gentoo/${P}-gentoo-${PATCHVER}.patch.bz2"
+
+SLOT="0"
+LICENSE="GPL-2"
+KEYWORDS="~x86 ~ppc ~sparc ~alpha ~mips ~hppa"
+
+
+RDEPEND="net-firewall/iptables
+ app-admin/logrotate
+ dev-perl/Curses
+ net-firewall/psad
+ X? ( dev-perl/perl-tk )"
+
+src_unpack() {
+ unpack ${A}
+ epatch ${WORKDIR}/${P}-gentoo-${PATCHVER}.patch
+}
+
+src_compile() {
+ cd ${S}
+}
+
+src_install() {
+
+ keepdir /var/lock/subsys/${PN}
+ dodir /etc/Bastille
+
+ cd ${S}
+ into /usr
+ dosbin bastille AutomatedBastille InteractiveBastille \
+ BastilleBackEnd RevertBastille *.pl
+
+ dosym RevertBastille /usr/sbin/UndoBastille
+
+ insinto /usr/share/Bastille
+ doins Questions* Credits bastille-* *.xbm *.config
+
+ insinto /usr/share/Bastille
+ doins Questions.txt Credits complete.xbm incomplete.xbm \
+ ifup-local hosts.allow
+
+ exeinto /usr/share/Bastille
+ doexe bastille-firewall* bastille-tmpdir* \
+ bastille-ipchains bastille-netfilter \
+ firewall/*.sh
+
+ perlinfo
+ insinto ${SITE_LIB}
+ doins Bastille_Curses.pm
+ use X && doins Bastille_Tk.pm
+ insinto ${SITE_LIB}/Curses
+ doins Curses/Widgets.pm
+
+ doman docs/bastille.1m
+ dodoc docs/* firewall/*.txt
+
+ cd ${S}/Bastille
+
+ insinto /usr/lib/Bastille
+ doins AccountSecurity.pm Apache.pm API.pm OSX_API.pm BootSecurity.pm \
+ ConfigureMiscPAM.pm DisableUserTools.pm DNS.pm \
+ FilePermissions.pm FTP.pm Firewall.pm HP_API.pm HP_UX.pm \
+ IOLoader.pm Patches.pm Logging.pm \
+ MiscellaneousDaemons.pm PatchDownload.pm Printing.pm \
+ RemoteAccess.pm SecureInetd.pm Sendmail.pm TMPDIR.pm \
+ test_AccountSecurity.pm test_Apache.pm test_DNS.pm \
+ test_FTP.pm test_HP_UX.pm test_MiscellaneousDaemons.pm \
+ test_SecureInetd.pm test_Sendmail.pm TestAPI.pm IPFilter.pm
+
+ # Documentation
+ cd ${S}
+ dodoc *.txt COPYING BUGS Change* README*
+}
+
+pkg_postinst() {
+ use X || einfo "When not using the Tk interface you will need to start use the -c flag when calling ${PN} from command line. example ${PN} -c --os GE1.4"
+}
diff --git a/app-admin/bastille/bastille-2.1.1.ebuild b/app-admin/bastille/bastille-2.1.1.ebuild
new file mode 100644
index 000000000000..5e4decd0a078
--- /dev/null
+++ b/app-admin/bastille/bastille-2.1.1.ebuild
@@ -0,0 +1,126 @@
+# Copyright 1999-2003 Gentoo Technologies, Inc.
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-2.1.1.ebuild,v 1.1 2003/09/18 23:56:21 seemant Exp $
+
+inherit perl-module
+
+IUSE="X"
+
+MY_PN=${PN/b/B}
+MY_P=${MY_PN}-${PV}
+S=${WORKDIR}/${MY_PN}
+DESCRIPTION="Bastille-Linux is a security hardening tool"
+HOMEPAGE="http://bastille-linux.org/"
+SRC_URI="mirror://sourceforge/${PN}-linux/${MY_P}.tar.bz2
+ mirror://gentoo/${P}-gentoo-0.1.patch.bz2"
+
+SLOT="0"
+LICENSE="GPL-2"
+KEYWORDS="~x86 ~ppc ~sparc ~alpha ~mips ~hppa"
+
+
+RDEPEND="net-firewall/iptables
+ app-admin/logrotate
+ dev-perl/Curses
+ X? ( dev-perl/perl-tk )"
+
+src_unpack() {
+ unpack ${A}
+ epatch ${WORKDIR}/${P}-gentoo-0.1.patch
+}
+
+src_compile() {
+
+ cd ${S}/psad/Psad.pm
+ SRC_PREP="no" perl-module_src_compile
+ emake test
+
+ cd ${S}/psad/Unix-Syslog-0.98
+ SRC_PREP="no" perl-module_src_compile
+ emake test
+
+ cd ${S}/psad/whois-4.5.29
+ emake || die
+
+ cd ${S}
+}
+
+src_install() {
+
+ keepdir /var/log/psad /var/lib/psad /var/run/psad /var/lock/subsys/${PN}
+ dodir /etc/Bastille
+
+ cd ${S}/psad/Psad.pm
+ perl-module_src_install
+
+ cd ${S}/psad/Unix-Syslog-0.98
+ perl-module_src_install
+
+ cd ${S}
+ into /usr
+ dosbin bastille AutomatedBastille InteractiveBastille \
+ BastilleBackEnd RevertBastille *.pl
+
+ dosym RevertBastille /usr/sbin/UndoBastille
+
+ insinto /usr/share/Bastille
+ doins Questions* Credits bastille-* *.xbm *.config
+
+ insinto /usr/share/Bastille
+ doins Questions.txt Credits complete.xbm incomplete.xbm \
+ ifup-local hosts.allow
+
+ exeinto /usr/share/Bastille
+ doexe bastille-firewall* bastille-tmpdir* \
+ bastille-ipchains bastille-netfilter \
+ firewall/*.sh
+
+ perlinfo
+ insinto ${SITE_LIB}
+ doins Bastille_Curses.pm
+ use X && doins Bastille_Tk.pm
+ insinto ${SITE_LIB}/Curses
+ doins Curses/Widgets.pm
+
+ doman docs/bastille.1m
+ dodoc docs/* firewall/*.txt
+
+ cd ${S}/psad
+ insinto /usr/share/Bastille
+ doins psad psadwatchd kmsgsd diskmond psad-init
+ doman psad.8
+
+ insinto /etc/psad
+ doins psad_signatures psad_auto_ips psad.conf
+
+ cd ${S}/psad/whois-4.5.29
+ exeinto /usr/share/Bastille
+ doexe whois
+
+ cd ${S}/Bastille
+
+ insinto /usr/lib/Bastille
+ doins AccountSecurity.pm Apache.pm API.pm OSX_API.pm BootSecurity.pm \
+ ConfigureMiscPAM.pm DisableUserTools.pm DNS.pm \
+ FilePermissions.pm FTP.pm Firewall.pm HP_API.pm HP_UX.pm \
+ IOLoader.pm Patches.pm Logging.pm \
+ MiscellaneousDaemons.pm PatchDownload.pm Printing.pm PSAD.pm \
+ RemoteAccess.pm SecureInetd.pm Sendmail.pm TMPDIR.pm \
+ test_AccountSecurity.pm test_Apache.pm test_DNS.pm \
+ test_FTP.pm test_HP_UX.pm test_MiscellaneousDaemons.pm \
+ test_SecureInetd.pm test_Sendmail.pm TestAPI.pm IPFilter.pm
+
+ # Documentation
+ cd ${S}
+ dodoc *.txt COPYING BUGS Change* README*
+}
+
+pkg_postinst() {
+ if [ -z ${ROOT}/var/log/psadfifo ]
+ then
+ ebegin "Creating FIFO device for PSAD..."
+ mknod -m 600 ${ROOT}/var/log/psadfifo p
+ eend $?
+ fi
+ use X || einfo "When not using the Tk interface you will need to start use the -c flag when calling ${PN} from command line. example ${PN} -c --os GE1.4"
+}
diff --git a/app-admin/bastille/files/digest-bastille-2.1.1 b/app-admin/bastille/files/digest-bastille-2.1.1
new file mode 100644
index 000000000000..bd17a91ead93
--- /dev/null
+++ b/app-admin/bastille/files/digest-bastille-2.1.1
@@ -0,0 +1,2 @@
+MD5 67b4d6a110fbe833bfc14dc46e75fa83 Bastille-2.1.1.tar.bz2 338227
+MD5 4742d81524cfe07f00c4bab66b17371f bastille-2.1.1-gentoo-0.1.patch.bz2 15312
diff --git a/app-admin/bastille/files/digest-bastille-2.1.1-r1 b/app-admin/bastille/files/digest-bastille-2.1.1-r1
new file mode 100644
index 000000000000..bd17a91ead93
--- /dev/null
+++ b/app-admin/bastille/files/digest-bastille-2.1.1-r1
@@ -0,0 +1,2 @@
+MD5 67b4d6a110fbe833bfc14dc46e75fa83 Bastille-2.1.1.tar.bz2 338227
+MD5 4742d81524cfe07f00c4bab66b17371f bastille-2.1.1-gentoo-0.1.patch.bz2 15312
diff --git a/app-admin/bastille/metadata.xml b/app-admin/bastille/metadata.xml
new file mode 100644
index 000000000000..cefbc16f77a9
--- /dev/null
+++ b/app-admin/bastille/metadata.xml
@@ -0,0 +1,10 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+ <herd>hardened</herd>
+ <maintainer>
+ <email>hardened@gentoo.org</email>
+ <description>Bastille Currently Has No Primary Gentoo Maintainer</description>
+ </maintainer>
+ <longdescription>The Bastille Hardening System attempts to "harden" or "tighten" Unix operating systems.</longdescription>
+</pkgmetadata>