diff options
author | Guillermo Gomez S. (Gomix) <guillermo.gomez@gmail.com> | 2010-05-16 20:50:55 -0430 |
---|---|---|
committer | Guillermo Gomez S. (Gomix) <guillermo.gomez@gmail.com> | 2010-05-16 20:50:55 -0430 |
commit | 41c996e702b3fbcb8e285fc6dcd18b6121f2c41e (patch) | |
tree | 688da6e3d43ae330bc8f7c47f39714f856e46df9 | |
parent | 3aadb18fdecfe0f5e7d761534465846b2915305e (diff) | |
download | fwsnort-41c996e702b3fbcb8e285fc6dcd18b6121f2c41e.tar.gz fwsnort-41c996e702b3fbcb8e285fc6dcd18b6121f2c41e.tar.xz fwsnort-41c996e702b3fbcb8e285fc6dcd18b6121f2c41e.zip |
Nueva versión corrigiendo propiedad de /etc/logrotate.d y poniendo
Requires logrotate en sustitución.
-rw-r--r-- | 1.0.6-7/fc12/fwsnort-1.0.6-7.fc12.src.rpm (renamed from fwsnort-1.0.6-6.fc12.src.rpm) | bin | 546009 -> 546218 bytes | |||
-rw-r--r-- | 1.0.6-7/fc12/fwsnort.spec | 107 | ||||
-rw-r--r-- | fwsnort-1.0.6-7.fc12.src.rpm | bin | 0 -> 546218 bytes | |||
-rw-r--r-- | fwsnort.spec | 9 |
4 files changed, 113 insertions, 3 deletions
diff --git a/fwsnort-1.0.6-6.fc12.src.rpm b/1.0.6-7/fc12/fwsnort-1.0.6-7.fc12.src.rpm Binary files differindex 08c86aa..bc78cf3 100644 --- a/fwsnort-1.0.6-6.fc12.src.rpm +++ b/1.0.6-7/fc12/fwsnort-1.0.6-7.fc12.src.rpm diff --git a/1.0.6-7/fc12/fwsnort.spec b/1.0.6-7/fc12/fwsnort.spec new file mode 100644 index 0000000..0d9efd4 --- /dev/null +++ b/1.0.6-7/fc12/fwsnort.spec @@ -0,0 +1,107 @@ +%global fwsnortlogdir /var/log/fwsnort + +Summary: Translates Snort rules into equivalent iptables rules +Name: fwsnort +Version: 1.0.6 +Release: 7%{?dist} +License: GPLv2+ +Group: System Environment/Daemons +Url: http://www.cipherdyne.org/fwsnort/ +Source0: http://www.cipherdyne.org/fwsnort/download/fwsnort-1.0.6.tar.gz +Source1: logrotate.fwsnort +BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) +BuildArch: noarch +Requires: iptables, perl-Net-IPv4Addr, perl-IPTables-Parse, logrotate, perl(:MODULE_COMPAT_%(eval "`%{__perl} -V:version`"; echo $version)) + +%description +fwsnort translates Snort rules into equivalent iptables rules and generates +a Bourne shell script that implements the resulting iptables commands. + +In addition, fwsnort (optionally) uses the IPTables::Parse module to parse the +iptables ruleset on the machine to determine which Snort rules are applicable +to the specific iptables policy. + +fwsnort is able to translate approximately 60% of all rules from the +Snort-2.3.3 IDS into equivalent iptables rules. + +%prep +%setup -q +mv deps/snort_rules/VERSION SNORT-RULES-VERSION +cp -p %SOURCE1 . + +%build + +%install +rm -rf $RPM_BUILD_ROOT +### log directory +mkdir -p $RPM_BUILD_ROOT%fwsnortlogdir + +### fwsnort config +mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/fwsnort + +mkdir -p $RPM_BUILD_ROOT%{_bindir} +mkdir -p $RPM_BUILD_ROOT%{_mandir}/man8 +mkdir -p $RPM_BUILD_ROOT%{_sbindir} + +install -m 755 fwsnort $RPM_BUILD_ROOT%{_sbindir}/ +install -m 644 fwsnort.conf $RPM_BUILD_ROOT%{_sysconfdir}/fwsnort/ +install -m 644 fwsnort.8 $RPM_BUILD_ROOT%{_mandir}/man8/ + +### install snort rules files +cp -r deps/snort_rules $RPM_BUILD_ROOT%{_sysconfdir}/fwsnort + +mkdir -p $RPM_BUILD_ROOT/etc/logrotate.d +install -p -m 644 logrotate.fwsnort $RPM_BUILD_ROOT/etc/logrotate.d/fwsnort + +%clean +rm -rf $RPM_BUILD_ROOT + +%pre +### not used + +%post +### not used + +%preun +### not used + +%files +%defattr(-,root,root) +%doc LICENSE VERSION README CREDITS TODO SNORT-RULES-VERSION +%dir %fwsnortlogdir +%{_sbindir}/* +%{_mandir}/man8/* + +%dir %{_sysconfdir}/fwsnort +%config(noreplace) %{_sysconfdir}/fwsnort/fwsnort.conf + +%config(noreplace) %{_sysconfdir}/logrotate.d/fwsnort + +%dir %{_sysconfdir}/fwsnort/snort_rules +%config(noreplace) %{_sysconfdir}/fwsnort/snort_rules/* + +%changelog +* Sun May 16 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-7 +- Ownership of /etc/logrotate.d corrected and requires logrotate instead which + provides it + +* Sun Apr 25 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-6 +- Macros use improved for consistency + +* Thu Feb 04 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-5 +- Removed unnecesary macro definition + +* Thu Feb 04 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-4 +- Description shortened + +* Thu Feb 04 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-3 +- License adjusted to GPLv2+ + +* Wed Feb 03 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-2 +- documentation included, LICENSE VERSION README CREDITS TODO + SNORT-RULES-VERSION + +* Sat Jan 2 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-1 +- First Fedora spec compliant version, several modifications +- No deps included +- Free snort rules included diff --git a/fwsnort-1.0.6-7.fc12.src.rpm b/fwsnort-1.0.6-7.fc12.src.rpm Binary files differnew file mode 100644 index 0000000..bc78cf3 --- /dev/null +++ b/fwsnort-1.0.6-7.fc12.src.rpm diff --git a/fwsnort.spec b/fwsnort.spec index 11e654b..0d9efd4 100644 --- a/fwsnort.spec +++ b/fwsnort.spec @@ -3,7 +3,7 @@ Summary: Translates Snort rules into equivalent iptables rules Name: fwsnort Version: 1.0.6 -Release: 6%{?dist} +Release: 7%{?dist} License: GPLv2+ Group: System Environment/Daemons Url: http://www.cipherdyne.org/fwsnort/ @@ -11,7 +11,7 @@ Source0: http://www.cipherdyne.org/fwsnort/download/fwsnort-1.0.6.tar.gz Source1: logrotate.fwsnort BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) BuildArch: noarch -Requires: iptables,perl-Net-IPv4Addr, perl-IPTables-Parse, perl(:MODULE_COMPAT_%(eval "`%{__perl} -V:version`"; echo $version)) +Requires: iptables, perl-Net-IPv4Addr, perl-IPTables-Parse, logrotate, perl(:MODULE_COMPAT_%(eval "`%{__perl} -V:version`"; echo $version)) %description fwsnort translates Snort rules into equivalent iptables rules and generates @@ -75,13 +75,16 @@ rm -rf $RPM_BUILD_ROOT %dir %{_sysconfdir}/fwsnort %config(noreplace) %{_sysconfdir}/fwsnort/fwsnort.conf -%dir %{_sysconfdir}/logrotate.d %config(noreplace) %{_sysconfdir}/logrotate.d/fwsnort %dir %{_sysconfdir}/fwsnort/snort_rules %config(noreplace) %{_sysconfdir}/fwsnort/snort_rules/* %changelog +* Sun May 16 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-7 +- Ownership of /etc/logrotate.d corrected and requires logrotate instead which + provides it + * Sun Apr 25 2010 Guillermo Gómez <ggomez@neotechgw.com> - 1.0.6-6 - Macros use improved for consistency |