diff options
author | K. de Jong <kjong+dev@neobits.nl> | 2021-08-25 14:08:54 +0200 |
---|---|---|
committer | K. de Jong <kjong+dev@neobits.nl> | 2021-08-25 14:08:54 +0200 |
commit | 57822699d15f3b53de17ab56052c71165970fbc4 (patch) | |
tree | 2be346626504994278acfd1062f93235f47053f7 | |
parent | 41ab3f80459588198e4f52f5cf07f60d4b562ff4 (diff) | |
download | rpmbuild-57822699d15f3b53de17ab56052c71165970fbc4.tar.gz rpmbuild-57822699d15f3b53de17ab56052c71165970fbc4.tar.xz rpmbuild-57822699d15f3b53de17ab56052c71165970fbc4.zip |
added tlog
-rw-r--r-- | SPECS/mdtm.spec | 64 | ||||
-rw-r--r-- | SPECS/mdtmftp.spec | 38 | ||||
-rw-r--r-- | SPECS/sudosh.spec | 84 | ||||
-rw-r--r-- | SPECS/tlog.spec | 298 | ||||
-rw-r--r-- | SRPMS/mdtm-1.0.5-1.fc34.src.rpm | bin | 0 -> 793174 bytes | |||
-rw-r--r-- | SRPMS/sudosh2-1.0.7-1.el5.src.rpm | bin | 0 -> 156596 bytes | |||
-rw-r--r-- | SRPMS/tlog-11-2.fc34.src.rpm | bin | 0 -> 627157 bytes | |||
-rw-r--r-- | SRPMS/tlog-11-3.fc34.src.rpm | bin | 0 -> 627099 bytes | |||
-rw-r--r-- | tlog-11-2.fc34.src.rpm | bin | 0 -> 625634 bytes |
9 files changed, 484 insertions, 0 deletions
diff --git a/SPECS/mdtm.spec b/SPECS/mdtm.spec new file mode 100644 index 0000000..392a3c0 --- /dev/null +++ b/SPECS/mdtm.spec @@ -0,0 +1,64 @@ +Name: mdtm +Version: 1.0.5 +Release: 1%{?dist} +Summary: Multicore-aware Data Transfer Middleware + +License: GPL +URL: https://mdtm.fnal.gov +Source0: %{url}/downloads/%{name}-%{version}.tar.gz + +BuildRequires: gcc +BuildRequires: gcc-c++ +BuildRequires: make +BuildRequires: autoconf +BuildRequires: automake +BuildRequires: libtool +BuildRequires: m4 +BuildRequires: numactl-devel +BuildRequires: hwloc-devel +BuildRequires: lvm2-devel +BuildRequires: libblkid-devel +BuildRequires: openssl-devel +BuildRequires: mosquitto-devel +BuildRequires: json-c-devel +BuildRequires: krb5-devel +BuildRequires: libtool-ltdl-devel +BuildRequires: ncurses-devel +BuildRequires: libuuid-devel +BuildRequires: rrdtool-devel + +Requires: hwloc >= 1.5 +Requires: bitmask +Requires: cpuset +Requires: /etc/mime.types + +%description + + +%prep +%autosetup + + +%build +%configure \ + --libdir=%{_libdir} \ + --sysconfdir=%{_sysconfdir} \ + --includedir=%{_includedir} \ + --libexecdir=%{_libdir} + +%make_build + + +%install +%make_install + + +%files +%license add-license-file-here +%doc add-docs-here + + + +%changelog +* Wed Jun 23 2021 K. de Jong <keesdejong@fedoraproject.org> +- diff --git a/SPECS/mdtmftp.spec b/SPECS/mdtmftp.spec new file mode 100644 index 0000000..785d9ab --- /dev/null +++ b/SPECS/mdtmftp.spec @@ -0,0 +1,38 @@ +Name: mdtmftp +Version: 1.1.1 +Release: 1%{?dist} +Summary: An implementation of high peroformance FTP using MDTM middleware + +License: GPL +URL: https://mdtm.fnal.gov +Source0: %{url}/dist/mdtm/%{name}-%{version}-%{release}.tar.gz + +BuildRequires: +Requires: + +%description + + +%prep +%autosetup + + +%build +%configure +%make_build + + +%install +rm -rf $RPM_BUILD_ROOT +%make_install + + +%files +%license add-license-file-here +%doc add-docs-here + + + +%changelog +* Wed Jun 23 2021 K. de Jong <keesdejong@fedoraproject.org> +- diff --git a/SPECS/sudosh.spec b/SPECS/sudosh.spec new file mode 100644 index 0000000..1077edf --- /dev/null +++ b/SPECS/sudosh.spec @@ -0,0 +1,84 @@ +# $Id: sudosh.spec,v 1.2 2010/07/09 20:05:53 squash Exp $ +# +%define origname sudosh2 +%define name sudosh2 +%define version 1.0.7 +%define release 1.el5 + +Name: %{name} +Version: %{version} +Release: %{release} +Summary: Logged root shell that can be used for auditing + +Group: System/SDL-custom +License: OSL +URL: http://sourceforge.net/projects/sudosh2/ +Source: http://sudosh2.sourceforge.net/sudosh2-%{version}.tar.gz + +Packager: John Barton <jbarton@technicalworks.net> +BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root +# BuildArch: i386 +Requires: sudo +Provides: %{origname} = %{version}-%{release}, %{name} = %{version}-%{release} + +%description +sudosh2 works directly with sudo to provide a fully functional shell that +users may use to obtain full root access. Unlike providing a team of system +administrators full root access through sudo, it guarantees that detailed +logs are kept. It uses the script command in conjunction with a secure FIFO +and comes with a utility to view sessions and drill down deeper and see the +actual session output. + +%prep +%setup -q -n %{origname}-%{version} + +%{__cat} <<EOF >sudosh.conf.tmp +# Sudosh Configuration File +logdir = /var/log/sudosh +default shell = /bin/bash +delimiter = - +syslog.priority = LOG_NOTICE +syslog.facility = LOG_DAEMON + +# Allow Sudosh to execute -c arguements? If so, what? +-c arg allow = scp +-c arg allow = sftp +-c arg allow = /usr/libexec/openssh/sftp-server +# -c arg allow = rsync +EOF + +%build +%configure \ + --program-prefix="%{?_program_prefix}" +%{__make} %{?_smp_mflags} + +%install +%{__rm} -rf %{buildroot} +%makeinstall +mkdir -p %{buildroot}/var/log/sudosh +install -m 0744 sudosh.conf.tmp %{buildroot}/etc/sudosh.conf + +%clean +%{__rm} -rf %{buildroot} + + +%files +%defattr(-, root, root, 0755) +%doc AUTHORS ChangeLog COPYING INSTALL NEWS README +%doc %{_mandir}/man1/sudosh.1* +%doc %{_mandir}/man5/sudosh.conf* +%doc %{_mandir}/man8/sudosh-replay.8* +%{_bindir}/sudosh +%{_bindir}/sudosh-replay +%config(noreplace) %{_sysconfdir}/sudosh.conf +%dir %attr(0733 root root) /var/log/sudosh + +%changelog +* Tue Jul 16 2019 - 1.0.7 +- Fixed ompilation errors for newer gcc +- Version bumped to 1.0.7 +* Wed Apr 29 2015 - 1.0.6 +- Version bumped to 1.0.6 +* Fri Jul 09 2010 John Barton <jbarton@technicalworks.net> - 1.0.4-1 +- Update for version 1.0.4 + diff --git a/SPECS/tlog.spec b/SPECS/tlog.spec new file mode 100644 index 0000000..2422e5c --- /dev/null +++ b/SPECS/tlog.spec @@ -0,0 +1,298 @@ +%global _hardened_build 1 + +Name: tlog +Version: 11 +Release: 3%{?dist} +Summary: Terminal I/O logger + +License: GPLv2+ +URL: https://github.com/Scribery/%{name} +Source: %{url}/releases/download/v%{version}/%{name}-%{version}.tar.gz +Source1: %{name}-tmpfiles.conf + +BuildRequires: gcc +BuildRequires: libutempter-devel +BuildRequires: m4 +BuildRequires: make +BuildRequires: pkgconfig(json-c) +BuildRequires: pkgconfig(libcurl) +BuildRequires: pkgconfig(libsystemd) +BuildRequires: systemd-rpm-macros + +%description +Tlog is a terminal I/O recording program similar to "script", but used in +place of a user's shell, starting the recording and executing the real user's +shell afterwards. The recorded I/O can then be forwarded to a logging server +in JSON format. + + +%prep +%setup -q + + +%build +%configure --disable-rpath --disable-static --enable-utempter --docdir=%{_defaultdocdir}/%{name} +%make_build + + +%check +%make_build check + + +%install +%make_install +rm %{buildroot}/%{_libdir}/*.la + +# Remove development files as we're not doing a devel package yet +rm %{buildroot}/%{_libdir}/*.so +rm --recursive %{buildroot}/usr/include/%{name} + +mkdir --parents %{buildroot}%{_tmpfilesdir} +install --preserve-timestamps --mode 0644 %{SOURCE1} %{buildroot}%{_tmpfilesdir}/%{name}.conf + + +%files +%license COPYING +%doc %{_defaultdocdir}/%{name} +%attr(6755,%{name},%{name}) %{_bindir}/%{name}-rec-session +%{_bindir}/%{name}-rec +%{_bindir}/%{name}-play +%{_libdir}/lib%{name}.so* +%{_datadir}/%{name} +%{_mandir}/man5/* +%{_mandir}/man8/* +%{_tmpfilesdir}/%{name}.conf +%dir %{_sysconfdir}/%{name} +%config(noreplace) %{_sysconfdir}/%{name}/%{name}-rec.conf +%config(noreplace) %{_sysconfdir}/%{name}/%{name}-rec-session.conf +%config(noreplace) %{_sysconfdir}/%{name}/%{name}-play.conf + + +%pre +getent group %{name} >/dev/null || + groupadd --system %{name} + +getent passwd %{name} >/dev/null || + useradd --system --gid %{name} --home-dir %{_localstatedir}/run/%{name} \ + --shell /sbin/nologin --comment "Tlog terminal I/O logger" %{name} + + +%post +%if 0%{?el7} +# For RHEL7 Linux distributions, creation doesn't happen automatically +%tmpfiles_create %{name}.conf +%endif + + +%changelog +* Wed Aug 25 2021 K. de Jong <keesdejong@fedoraproject.org> - 11-3 +- Removed EL6 support +- Removed "with systemd" build conditions +- Removed debbuild conditions +- Removed tmpfilesdir conditions, added systemd-rpm-macros as build requirement +- Replacing short command options with the long notation, e.g. -m is now --mode +- Removed compatibility marcros, not needed anymore +- Cleaned up build dependencies +- Replaced ldconfig commands from post and postun + +* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> - 11-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild + +* Tue Oct 13 2020 Justin Stephenson <jstephen@redhat.com> - 9-1 +- Release v9 +- Add libutempter support +- Require journal match filter +- Add file reader match functionality +- Restore cursor visibility and color attributes on tlog-play exit +- Add "time" real clock timestamp message field +- Various upstream CI improvements + +* Wed Jul 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 8-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild + +* Fri May 22 2020 Justin Stephenson <jstephen@redhat.com> - 8-2 +- Minor test fixups + +* Tue May 19 2020 Justin Stephenson <jstephen@redhat.com> - 8-1 +- Release v8 +- Spec file fixes for EL6 +- Spec file improvements for Debian/Ubuntu pkg-config +- Tlog-play improve authentication options +- Handle piped in I/O from stdin and improve the main recording + transfer exit condition. +- Use empty string on hostname resolution failure + +* Tue Apr 21 2020 Björn Esser <besser82@fedoraproject.org> - 7-3 +- Rebuild (json-c) + +* Fri Jan 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 7-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild + +* Sun Jan 19 2020 Justin Stephenson <jstephen@redhat.com> - 11-1 +- Release v11 +- Fire SIGCHLD after utempter_add_record since it probably eats it. + +* Wed Jan 8 2020 Justin Stephenson <jstephen@redhat.com> - 10-1 +- Release v10 +- Correct suse rpmbuild +- Update debbuild for travis CI + +* Tue Nov 12 2019 Justin Stephenson <jstephen@redhat.com> - 7-1 +- Release v7 +- Allow tlog-play redirection of stdout +- Add -i/--interactive option to tlog-rec-session. Allows login + programs to call tlog-rec-session more transparently. +- Make in_txt/out_txt fields optional. This handles missing fields + when reading from Elasticsearch or other backends. + +* Sat Jul 27 2019 Fedora Release Engineering <releng@fedoraproject.org> - 6-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild + +* Tue May 28 2019 Justin Stephenson <jstephen@redhat.com> - 6-1 +- Release v6. Added features and implemented fixes follow. See README.md and + manpages for documentation of new features. +- Add integration tests for end-to-end test coverage. +- Fix compiler type comparison error with json-c json_object_array_length + return value. +- Fix a distribution issue causing incorrect M4_CONF_PATH expansion. +- Log more detailed error when systemd journal is not present. + +* Sun Feb 03 2019 Fedora Release Engineering <releng@fedoraproject.org> - 5-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild + +* Wed Dec 5 2018 Kirill Glebov <kgliebov@redhat.com> - 5-1 +- Release v5. Added features and implemented fixes follow. See README.md and + manpages for documentation of new features. +- Implement support for --configuration option for all programs. + The option makes the program output its configuration in JSON and then + exit. +- Add BuildDependencies to allow yum-builddep. +- Open JSON writer file with euid/egid. To allow creating protected log files + with tlog-rec-session, open the JSON writer's file with the EUID and + GUID the program was started with. +- Installing Packages with the APT Addon instead of apt-get. +- Switch to using TLOG_ERRS_RAISE macros. +- Fix tlog-play cleanup-path segfault. +- Modify command-line option parsing. +- Remove "fields" field from ES query URL to fix compatibility with + Elasticsearch 5. +- Remove unused _source parameter from ES query URL. +- Fix tlog-rec-session file permissions bug. +- Use CLOCK_MONOTONIC for rate-limiting writing. +- Filter out some more input control sequences. + +* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 4-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild + +* Tue Mar 06 2018 Björn Esser <besser82@fedoraproject.org> - 4-3 +- Rebuilt for libjson-c.so.4 (json-c v0.13.1) + +* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 4-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild + +* Wed Jan 24 2018 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 4-1 +- Release v4. Added features and implemented fixes follow. See README.md and + manpages for documentation of new features. +- Extract user session recording functionality from tlog-rec into a new tool: + tlog-rec-session. It should be used as the user's login shell now, and + tlog-rec should be used as a general recording and testing tool. +- Add (optional) support for writing to and reading from Systemd Journal - the + "journal" reader and writer. +- Make tlog-rec default to "file" writer, and tlog-rec-session to "journal", + if built with Journal support, and to "syslog" otherwise. +- Add "-o" option to tlog-rec as an alias to "--file-path". +- Add "-i" option to tlog-play as an alias to "--file-path". +- Assume locale charset is UTF-8, if ASCII charset is detected, since that is + a likely indication the locale settings were lost. E.g. upon console login + or "su -" on Fedora and RHEL. +- Switch the "ver" JSON field type to string. Now it should be two numbers + separated by a dot. The increase of the first number indicates + forward-incompatible changes, the increase of the second number - + forward-compatible. If the dot and the second number are omitted, the second + number is considered to be zero. Bump the format version to "2". +- Add a new JSON field: "rec", containing an opaque host-unique recording ID. + Bump the format version to "2.1". +- Add support for playback controls, both through the command line and via + playback-time control keys, including: speed adjustment, pause/resume, + fast-forward to a time, and packet-by-packet stepping through the recording. +- Add optional rate-limiting of logged messages. Both throttling and dropping + messages are supported. +- Add "--lax" option to tlog-play to allow playing back recordings with + missing messages. +- Fix input being ignored when there is a lot of output, while recording. +- Remove addition of tlog-rec (tlog-rec-session) to /etc/shells from RPM + packaging to prevent users from changing their shells themselves once it has + been assigned. +- Add support for specifying the shell to start via the tlog-rec-session + executable name. E.g. by making a tlog-rec-session-shell-zsh -> + tlog-rec-session symlink and executing it. That can be used to specify + particular shells to be recorded for specific users by assigning these + symlinks as their login shells. +- Make error messages from all the tools a bit less noisy and more readable. + +* Sun Dec 10 2017 Björn Esser <besser82@fedoraproject.org> - 3-4 +- Rebuilt for libjson-c.so.3 + +* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 3-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild + +* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 3-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild + +* Wed Feb 22 2017 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 3-1 +- Release v3. Added features and implemented fixes follow. +- Make each JSON message timing data start with window size. + This makes it possible to pick up the stream from any message and also + combine messages, with window size known and preserved at all times. +- Add "term" field to JSON messages, specifying terminal type. +- Add "ver" field to JSON messages, specifying message format version. +- Set "SHELL" environment variable to actual user shell in tlog-rec. +- Check for locale's charset and abort tlog-rec if it's anything but the only + supported UTF-8. +- Add -v/--version option support to tlog-rec and tlog-play. +- Fix tlog-rec and tlog-play error output by accumulating error messages and + outputting them only after terminal settings are restored, on exit. Output + startup warnings before switching to raw terminal settings. +- Output a newline after restoring terminal settings in tlog-rec and + tlog-play, so that following output is not stuck to the end of the last line + of the raw output. +- Add an Elasticsearch mapping to documentation directory. +- Disable input logging by default to avoid storing passwords. Please enable + it explicitly in configuration, or on the command line, if necessary. +- Close log file written by tlog-rec on executing the shell in the child to + prevent log modification by the recorded user. +- Support running tlog-rec SUID/SGID to prevent recorded users from killing or + modifying it. Make tlog-rec SUID/SGID to user "tlog" in the RPM package. +- Add session locking to tlog-rec. This prevents tlog-rec from recording if + the audit session is already recorded by creating per-audit-session lock + files in /var/run/tlog. This only makes sense with tlog-rec SUID/SGID. + When certain failures occur while creating a lock file, session is assumed + unlocked and is recorded anyway, as it is safer to record a session than + not. Add corresponding setup to the RPM package. +- Reproduce the recorded program (shell) exit status in tlog-rec similarly to + how Bash reproduces the last executed command status. +- Update and expand README.md to describe secure log message filtering with + rsyslog, and playback directly from Elasticsearch, among other, smaller + additions. + +* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild + +* Wed Apr 6 2016 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 2-1 +- Release v2. Not ready for production. Following features are added. +- Fully-fledged command-line interface to tlog-play, along with config file + and man pages. +- Support for playback from file in tlog-play. +- Make tlog-play follow mode controllable and off by default. +- Get tlog-rec shell also from TLOG_REC_SHELL environment variable. +- Support non-TTY stdin/stdout in tlog-rec, allowing its use with + non-interactive SSH sessions. +- Support building on and packaging for EPEL5. + +* Thu Feb 25 2016 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 1-1 +- Release v1. Not ready for production. Following features are included. +- Recording of user input, program output and window size changes. +- Support for writing into syslog and files. +- Tlog-rec configuration through system-wide configuration file + /etc/tlog/tlog-rec.conf, environment variables and command line. +- Very basic playback directly from ElasticSearch. diff --git a/SRPMS/mdtm-1.0.5-1.fc34.src.rpm b/SRPMS/mdtm-1.0.5-1.fc34.src.rpm Binary files differnew file mode 100644 index 0000000..73fec02 --- /dev/null +++ b/SRPMS/mdtm-1.0.5-1.fc34.src.rpm diff --git a/SRPMS/sudosh2-1.0.7-1.el5.src.rpm b/SRPMS/sudosh2-1.0.7-1.el5.src.rpm Binary files differnew file mode 100644 index 0000000..dd30947 --- /dev/null +++ b/SRPMS/sudosh2-1.0.7-1.el5.src.rpm diff --git a/SRPMS/tlog-11-2.fc34.src.rpm b/SRPMS/tlog-11-2.fc34.src.rpm Binary files differnew file mode 100644 index 0000000..904541b --- /dev/null +++ b/SRPMS/tlog-11-2.fc34.src.rpm diff --git a/SRPMS/tlog-11-3.fc34.src.rpm b/SRPMS/tlog-11-3.fc34.src.rpm Binary files differnew file mode 100644 index 0000000..2068d37 --- /dev/null +++ b/SRPMS/tlog-11-3.fc34.src.rpm diff --git a/tlog-11-2.fc34.src.rpm b/tlog-11-2.fc34.src.rpm Binary files differnew file mode 100644 index 0000000..45f786f --- /dev/null +++ b/tlog-11-2.fc34.src.rpm |