added tlog

9 files changed, 484 insertions, 0 deletions

diff --git a/SPECS/mdtm.spec b/SPECS/mdtm.spec
new file mode 100644
index 0000000..392a3c0
--- /dev/null
+++ b/SPECS/mdtm.spec
@@ -0,0 +1,64 @@
+Name:           mdtm
+Version:        1.0.5
+Release:        1%{?dist}
+Summary:        Multicore-aware Data Transfer Middleware
+
+License:        GPL
+URL:            https://mdtm.fnal.gov
+Source0:        %{url}/downloads/%{name}-%{version}.tar.gz
+
+BuildRequires:  gcc
+BuildRequires:  gcc-c++
+BuildRequires:  make
+BuildRequires:  autoconf
+BuildRequires:  automake
+BuildRequires:  libtool
+BuildRequires:  m4
+BuildRequires:  numactl-devel
+BuildRequires:  hwloc-devel
+BuildRequires:  lvm2-devel
+BuildRequires:  libblkid-devel
+BuildRequires:  openssl-devel
+BuildRequires:  mosquitto-devel
+BuildRequires:  json-c-devel
+BuildRequires:  krb5-devel
+BuildRequires:  libtool-ltdl-devel
+BuildRequires:  ncurses-devel
+BuildRequires:  libuuid-devel
+BuildRequires:  rrdtool-devel
+
+Requires:       hwloc >= 1.5
+Requires:       bitmask
+Requires:       cpuset
+Requires:       /etc/mime.types
+
+%description
+
+
+%prep
+%autosetup
+
+
+%build
+%configure \
+    --libdir=%{_libdir} \
+    --sysconfdir=%{_sysconfdir} \
+    --includedir=%{_includedir} \
+    --libexecdir=%{_libdir}
+
+%make_build
+
+
+%install
+%make_install
+
+
+%files
+%license add-license-file-here
+%doc add-docs-here
+
+
+
+%changelog
+* Wed Jun 23 2021 K. de Jong <keesdejong@fedoraproject.org>
+- 
diff --git a/SPECS/mdtmftp.spec b/SPECS/mdtmftp.spec
new file mode 100644
index 0000000..785d9ab
--- /dev/null
+++ b/SPECS/mdtmftp.spec
@@ -0,0 +1,38 @@
+Name:           mdtmftp
+Version:        1.1.1
+Release:        1%{?dist}
+Summary:        An implementation of high peroformance FTP using MDTM middleware 
+
+License:        GPL
+URL:            https://mdtm.fnal.gov
+Source0:        %{url}/dist/mdtm/%{name}-%{version}-%{release}.tar.gz
+
+BuildRequires:  
+Requires:       
+
+%description
+
+
+%prep
+%autosetup
+
+
+%build
+%configure
+%make_build
+
+
+%install
+rm -rf $RPM_BUILD_ROOT
+%make_install
+
+
+%files
+%license add-license-file-here
+%doc add-docs-here
+
+
+
+%changelog
+* Wed Jun 23 2021 K. de Jong <keesdejong@fedoraproject.org>
+- 
diff --git a/SPECS/sudosh.spec b/SPECS/sudosh.spec
new file mode 100644
index 0000000..1077edf
--- /dev/null
+++ b/SPECS/sudosh.spec
@@ -0,0 +1,84 @@
+#	$Id: sudosh.spec,v 1.2 2010/07/09 20:05:53 squash Exp $
+#
+%define origname sudosh2
+%define name sudosh2
+%define version 1.0.7
+%define release 1.el5
+
+Name: %{name}
+Version: %{version}
+Release: %{release}
+Summary: Logged root shell that can be used for auditing
+
+Group: System/SDL-custom
+License: OSL
+URL: http://sourceforge.net/projects/sudosh2/
+Source: http://sudosh2.sourceforge.net/sudosh2-%{version}.tar.gz
+
+Packager: John Barton <jbarton@technicalworks.net>
+BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root
+# BuildArch: i386
+Requires: sudo
+Provides: %{origname} = %{version}-%{release}, %{name} = %{version}-%{release}
+
+%description
+sudosh2 works directly with sudo to provide a fully functional shell that
+users may use to obtain full root access. Unlike providing a team of system
+administrators full root access through sudo, it guarantees that detailed
+logs are kept. It uses the script command in conjunction with a secure FIFO
+and comes with a utility to view sessions and drill down deeper and see the
+actual session output. 
+
+%prep
+%setup -q -n %{origname}-%{version}
+
+%{__cat} <<EOF >sudosh.conf.tmp
+# Sudosh Configuration File
+logdir                  = /var/log/sudosh
+default shell           = /bin/bash
+delimiter               = -
+syslog.priority         = LOG_NOTICE
+syslog.facility         = LOG_DAEMON
+
+# Allow Sudosh to execute -c arguements?  If so, what?
+-c arg allow = scp
+-c arg allow = sftp
+-c arg allow = /usr/libexec/openssh/sftp-server
+# -c arg allow = rsync
+EOF
+
+%build
+%configure \
+	--program-prefix="%{?_program_prefix}"
+%{__make} %{?_smp_mflags}
+
+%install
+%{__rm} -rf %{buildroot}
+%makeinstall
+mkdir -p %{buildroot}/var/log/sudosh
+install -m 0744 sudosh.conf.tmp %{buildroot}/etc/sudosh.conf
+
+%clean
+%{__rm} -rf %{buildroot}
+
+
+%files
+%defattr(-, root, root, 0755)
+%doc AUTHORS ChangeLog COPYING INSTALL NEWS README
+%doc %{_mandir}/man1/sudosh.1*
+%doc %{_mandir}/man5/sudosh.conf*
+%doc %{_mandir}/man8/sudosh-replay.8*
+%{_bindir}/sudosh
+%{_bindir}/sudosh-replay
+%config(noreplace) %{_sysconfdir}/sudosh.conf
+%dir %attr(0733 root root) /var/log/sudosh
+
+%changelog
+* Tue Jul 16 2019 - 1.0.7
+- Fixed ompilation errors for newer gcc
+- Version bumped to 1.0.7
+* Wed Apr 29 2015 - 1.0.6
+- Version bumped to 1.0.6
+* Fri Jul 09 2010 John Barton <jbarton@technicalworks.net> - 1.0.4-1
+- Update for version 1.0.4
+
diff --git a/SPECS/tlog.spec b/SPECS/tlog.spec
new file mode 100644
index 0000000..2422e5c
--- /dev/null
+++ b/SPECS/tlog.spec
@@ -0,0 +1,298 @@
+%global _hardened_build 1
+
+Name:           tlog
+Version:        11
+Release:        3%{?dist}
+Summary:        Terminal I/O logger
+
+License:        GPLv2+
+URL:            https://github.com/Scribery/%{name}
+Source:         %{url}/releases/download/v%{version}/%{name}-%{version}.tar.gz
+Source1:        %{name}-tmpfiles.conf
+
+BuildRequires:  gcc
+BuildRequires:  libutempter-devel
+BuildRequires:  m4
+BuildRequires:  make
+BuildRequires:  pkgconfig(json-c)
+BuildRequires:  pkgconfig(libcurl)
+BuildRequires:  pkgconfig(libsystemd)
+BuildRequires:  systemd-rpm-macros
+
+%description
+Tlog is a terminal I/O recording program similar to "script", but used in
+place of a user's shell, starting the recording and executing the real user's
+shell afterwards. The recorded I/O can then be forwarded to a logging server
+in JSON format.
+
+
+%prep
+%setup -q
+
+
+%build
+%configure --disable-rpath --disable-static --enable-utempter --docdir=%{_defaultdocdir}/%{name}
+%make_build
+
+
+%check
+%make_build check
+
+
+%install
+%make_install
+rm %{buildroot}/%{_libdir}/*.la
+
+# Remove development files as we're not doing a devel package yet
+rm %{buildroot}/%{_libdir}/*.so
+rm --recursive %{buildroot}/usr/include/%{name}
+
+mkdir --parents %{buildroot}%{_tmpfilesdir}
+install --preserve-timestamps --mode 0644 %{SOURCE1} %{buildroot}%{_tmpfilesdir}/%{name}.conf
+
+
+%files
+%license COPYING
+%doc %{_defaultdocdir}/%{name}
+%attr(6755,%{name},%{name}) %{_bindir}/%{name}-rec-session
+%{_bindir}/%{name}-rec
+%{_bindir}/%{name}-play
+%{_libdir}/lib%{name}.so*
+%{_datadir}/%{name}
+%{_mandir}/man5/*
+%{_mandir}/man8/*
+%{_tmpfilesdir}/%{name}.conf
+%dir %{_sysconfdir}/%{name}
+%config(noreplace) %{_sysconfdir}/%{name}/%{name}-rec.conf
+%config(noreplace) %{_sysconfdir}/%{name}/%{name}-rec-session.conf
+%config(noreplace) %{_sysconfdir}/%{name}/%{name}-play.conf
+
+
+%pre
+getent group %{name} >/dev/null ||
+    groupadd --system %{name}
+
+getent passwd %{name} >/dev/null ||
+    useradd --system --gid %{name} --home-dir %{_localstatedir}/run/%{name} \
+    --shell /sbin/nologin --comment "Tlog terminal I/O logger" %{name}
+
+
+%post
+%if 0%{?el7}
+# For RHEL7 Linux distributions, creation doesn't happen automatically
+%tmpfiles_create %{name}.conf
+%endif
+
+
+%changelog
+* Wed Aug 25 2021 K. de Jong <keesdejong@fedoraproject.org> - 11-3
+- Removed EL6 support
+- Removed "with systemd" build conditions
+- Removed debbuild conditions
+- Removed tmpfilesdir conditions, added systemd-rpm-macros as build requirement
+- Replacing short command options with the long notation, e.g. -m is now --mode
+- Removed compatibility marcros, not needed anymore
+- Cleaned up build dependencies
+- Replaced ldconfig commands from post and postun
+
+* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> - 11-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
+
+* Tue Oct 13 2020 Justin Stephenson <jstephen@redhat.com> - 9-1
+- Release v9
+- Add libutempter support
+- Require journal match filter
+- Add file reader match functionality
+- Restore cursor visibility and color attributes on tlog-play exit
+- Add "time" real clock timestamp message field
+- Various upstream CI improvements
+
+* Wed Jul 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 8-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
+
+* Fri May 22 2020 Justin Stephenson <jstephen@redhat.com> - 8-2
+- Minor test fixups
+
+* Tue May 19 2020 Justin Stephenson <jstephen@redhat.com> - 8-1
+- Release v8
+- Spec file fixes for EL6
+- Spec file improvements for Debian/Ubuntu pkg-config
+- Tlog-play improve authentication options
+- Handle piped in I/O from stdin and improve the main recording
+  transfer exit condition.
+- Use empty string on hostname resolution failure
+
+* Tue Apr 21 2020 Björn Esser <besser82@fedoraproject.org> - 7-3
+- Rebuild (json-c)
+
+* Fri Jan 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 7-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
+
+* Sun Jan 19 2020 Justin Stephenson <jstephen@redhat.com> - 11-1
+- Release v11
+- Fire SIGCHLD after utempter_add_record since it probably eats it.
+
+* Wed Jan 8 2020 Justin Stephenson <jstephen@redhat.com> - 10-1
+- Release v10
+- Correct suse rpmbuild
+- Update debbuild for travis CI
+
+* Tue Nov 12 2019 Justin Stephenson <jstephen@redhat.com> - 7-1
+- Release v7
+- Allow tlog-play redirection of stdout
+- Add -i/--interactive option to tlog-rec-session. Allows login
+  programs to call tlog-rec-session more transparently.
+- Make in_txt/out_txt fields optional. This handles missing fields
+  when reading from Elasticsearch or other backends.
+
+* Sat Jul 27 2019 Fedora Release Engineering <releng@fedoraproject.org> - 6-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
+
+* Tue May 28 2019 Justin Stephenson <jstephen@redhat.com> - 6-1
+- Release v6. Added features and implemented fixes follow. See README.md and
+  manpages for documentation of new features.
+- Add integration tests for end-to-end test coverage.
+- Fix compiler type comparison error with json-c json_object_array_length
+  return value.
+- Fix a distribution issue causing incorrect M4_CONF_PATH expansion.
+- Log more detailed error when systemd journal is not present.
+
+* Sun Feb 03 2019 Fedora Release Engineering <releng@fedoraproject.org> - 5-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
+
+* Wed Dec 5 2018 Kirill Glebov <kgliebov@redhat.com> - 5-1
+- Release v5. Added features and implemented fixes follow. See README.md and
+  manpages for documentation of new features.
+- Implement support for --configuration option for all programs.
+  The option makes the program output its configuration in JSON and then
+  exit.
+- Add BuildDependencies to allow yum-builddep.
+- Open JSON writer file with euid/egid. To allow creating protected log files
+  with tlog-rec-session, open the JSON writer's file with the EUID and
+  GUID the program was started with.
+- Installing Packages with the APT Addon instead of apt-get.
+- Switch to using TLOG_ERRS_RAISE macros.
+- Fix tlog-play cleanup-path segfault.
+- Modify command-line option parsing.
+- Remove "fields" field from ES query URL to fix compatibility with
+  Elasticsearch 5.
+- Remove unused _source parameter from ES query URL.
+- Fix tlog-rec-session file permissions bug.
+- Use CLOCK_MONOTONIC for rate-limiting writing.
+- Filter out some more input control sequences.
+
+* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 4-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
+
+* Tue Mar 06 2018 Björn Esser <besser82@fedoraproject.org> - 4-3
+- Rebuilt for libjson-c.so.4 (json-c v0.13.1)
+
+* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 4-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
+
+* Wed Jan 24 2018 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 4-1
+- Release v4. Added features and implemented fixes follow. See README.md and
+  manpages for documentation of new features.
+- Extract user session recording functionality from tlog-rec into a new tool:
+  tlog-rec-session. It should be used as the user's login shell now, and
+  tlog-rec should be used as a general recording and testing tool.
+- Add (optional) support for writing to and reading from Systemd Journal - the
+  "journal" reader and writer.
+- Make tlog-rec default to "file" writer, and tlog-rec-session to "journal",
+  if built with Journal support, and to "syslog" otherwise.
+- Add "-o" option to tlog-rec as an alias to "--file-path".
+- Add "-i" option to tlog-play as an alias to "--file-path".
+- Assume locale charset is UTF-8, if ASCII charset is detected, since that is
+  a likely indication the locale settings were lost. E.g. upon console login
+  or "su -" on Fedora and RHEL.
+- Switch the "ver" JSON field type to string. Now it should be two numbers
+  separated by a dot. The increase of the first number indicates
+  forward-incompatible changes, the increase of the second number -
+  forward-compatible. If the dot and the second number are omitted, the second
+  number is considered to be zero. Bump the format version to "2".
+- Add a new JSON field: "rec", containing an opaque host-unique recording ID.
+  Bump the format version to "2.1".
+- Add support for playback controls, both through the command line and via
+  playback-time control keys, including: speed adjustment, pause/resume,
+  fast-forward to a time, and packet-by-packet stepping through the recording.
+- Add optional rate-limiting of logged messages. Both throttling and dropping
+  messages are supported.
+- Add "--lax" option to tlog-play to allow playing back recordings with
+  missing messages.
+- Fix input being ignored when there is a lot of output, while recording.
+- Remove addition of tlog-rec (tlog-rec-session) to /etc/shells from RPM
+  packaging to prevent users from changing their shells themselves once it has
+  been assigned.
+- Add support for specifying the shell to start via the tlog-rec-session
+  executable name. E.g. by making a tlog-rec-session-shell-zsh ->
+  tlog-rec-session symlink and executing it. That can be used to specify
+  particular shells to be recorded for specific users by assigning these
+  symlinks as their login shells.
+- Make error messages from all the tools a bit less noisy and more readable.
+
+* Sun Dec 10 2017 Björn Esser <besser82@fedoraproject.org> - 3-4
+- Rebuilt for libjson-c.so.3
+
+* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 3-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
+
+* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 3-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
+
+* Wed Feb 22 2017 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 3-1
+- Release v3. Added features and implemented fixes follow.
+- Make each JSON message timing data start with window size.
+  This makes it possible to pick up the stream from any message and also
+  combine messages, with window size known and preserved at all times.
+- Add "term" field to JSON messages, specifying terminal type.
+- Add "ver" field to JSON messages, specifying message format version.
+- Set "SHELL" environment variable to actual user shell in tlog-rec.
+- Check for locale's charset and abort tlog-rec if it's anything but the only
+  supported UTF-8.
+- Add -v/--version option support to tlog-rec and tlog-play.
+- Fix tlog-rec and tlog-play error output by accumulating error messages and
+  outputting them only after terminal settings are restored, on exit. Output
+  startup warnings before switching to raw terminal settings.
+- Output a newline after restoring terminal settings in tlog-rec and
+  tlog-play, so that following output is not stuck to the end of the last line
+  of the raw output.
+- Add an Elasticsearch mapping to documentation directory.
+- Disable input logging by default to avoid storing passwords. Please enable
+  it explicitly in configuration, or on the command line, if necessary.
+- Close log file written by tlog-rec on executing the shell in the child to
+  prevent log modification by the recorded user.
+- Support running tlog-rec SUID/SGID to prevent recorded users from killing or
+  modifying it. Make tlog-rec SUID/SGID to user "tlog" in the RPM package.
+- Add session locking to tlog-rec. This prevents tlog-rec from recording if
+  the audit session is already recorded by creating per-audit-session lock
+  files in /var/run/tlog. This only makes sense with tlog-rec SUID/SGID.
+  When certain failures occur while creating a lock file, session is assumed
+  unlocked and is recorded anyway, as it is safer to record a session than
+  not. Add corresponding setup to the RPM package.
+- Reproduce the recorded program (shell) exit status in tlog-rec similarly to
+  how Bash reproduces the last executed command status.
+- Update and expand README.md to describe secure log message filtering with
+  rsyslog, and playback directly from Elasticsearch, among other, smaller
+  additions.
+
+* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
+
+* Wed Apr 6 2016 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 2-1
+- Release v2. Not ready for production. Following features are added.
+- Fully-fledged command-line interface to tlog-play, along with config file
+  and man pages.
+- Support for playback from file in tlog-play.
+- Make tlog-play follow mode controllable and off by default.
+- Get tlog-rec shell also from TLOG_REC_SHELL environment variable.
+- Support non-TTY stdin/stdout in tlog-rec, allowing its use with
+  non-interactive SSH sessions.
+- Support building on and packaging for EPEL5.
+
+* Thu Feb 25 2016 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 1-1
+- Release v1. Not ready for production. Following features are included.
+- Recording of user input, program output and window size changes.
+- Support for writing into syslog and files.
+- Tlog-rec configuration through system-wide configuration file
+  /etc/tlog/tlog-rec.conf, environment variables and command line.
+- Very basic playback directly from ElasticSearch.
diff --git a/SRPMS/mdtm-1.0.5-1.fc34.src.rpm b/SRPMS/mdtm-1.0.5-1.fc34.src.rpm
new file mode 100644
index 0000000..73fec02
--- /dev/null
+++ b/SRPMS/mdtm-1.0.5-1.fc34.src.rpm
diff --git a/SRPMS/sudosh2-1.0.7-1.el5.src.rpm b/SRPMS/sudosh2-1.0.7-1.el5.src.rpm
new file mode 100644
index 0000000..dd30947
--- /dev/null
+++ b/SRPMS/sudosh2-1.0.7-1.el5.src.rpm
diff --git a/SRPMS/tlog-11-2.fc34.src.rpm b/SRPMS/tlog-11-2.fc34.src.rpm
new file mode 100644
index 0000000..904541b
--- /dev/null
+++ b/SRPMS/tlog-11-2.fc34.src.rpm
diff --git a/SRPMS/tlog-11-3.fc34.src.rpm b/SRPMS/tlog-11-3.fc34.src.rpm
new file mode 100644
index 0000000..2068d37
--- /dev/null
+++ b/SRPMS/tlog-11-3.fc34.src.rpm
diff --git a/tlog-11-2.fc34.src.rpm b/tlog-11-2.fc34.src.rpm
new file mode 100644
index 0000000..45f786f
--- /dev/null
+++ b/tlog-11-2.fc34.src.rpm