Index: head/security/ossec-hids-local/Makefile =================================================================== --- head/security/ossec-hids-local/Makefile (revision 426683) +++ head/security/ossec-hids-local/Makefile (revision 426684) @@ -1,11 +1,11 @@ # Created by: Valerio Daelli # $FreeBSD$ -PORTREVISION= 0 +PORTREVISION= 1 COMMENT= Client and server (local) port of ossec-hids LOCAL_ONLY= yes MASTERDIR= ${.CURDIR}/../ossec-hids-server .include "${MASTERDIR}/Makefile" Index: head/security/ossec-hids-server/Makefile =================================================================== --- head/security/ossec-hids-server/Makefile (revision 426683) +++ head/security/ossec-hids-server/Makefile (revision 426684) @@ -1,147 +1,148 @@ # Created by: Valerio Daelli # $FreeBSD$ PORTNAME= ossec-hids PORTVERSION= 2.8.3 DISTVERSIONPREFIX= v -PORTREVISION?= 0 +PORTREVISION?= 1 CATEGORIES= security PKGNAMESUFFIX= -server MAINTAINER= brd@FreeBSD.org COMMENT?= Security tool to monitor and check logs and intrusions USE_GITHUB= yes GH_ACCOUNT= ossec USE_RC_SUBR= ossec-hids CFLAGS+= -ferror-limit=0 -USES= readline -USE_OPENSSL= yes +USES= readline ssl .if defined(MAINTAINER_MODE) UID_FILES+= ../../UIDs GID_FILES+= ../../GIDs .endif USERS= ossec ossecm ossecr GROUPS= ossec .if !defined(CLIENT_ONLY) OPTIONS_DEFINE= MYSQL PGSQL MYSQL_VARS= WITH_DB=yes MYSQL_USE= MYSQL=client MYSQL_PORTDOCS= mysql.schema PGSQL_VARS= WITH_DB=yes PGSQL_USES= pgsql PGSQL_PORTDOCS= postgresql.schema RUN_DEPENDS= expect:lang/expect USES+= shebangfix SHEBANG_LANG= expect expect_OLD_CMD= "/usr/bin/env expect" expect_CMD= ${LOCALBASE}/bin/expect SHEBANG_FILES= src/agentlessd/scripts/main.exp \ src/agentlessd/scripts/ssh.exp \ src/agentlessd/scripts/ssh_asa-fwsmconfig_diff \ src/agentlessd/scripts/ssh_foundry_diff \ src/agentlessd/scripts/ssh_generic_diff \ src/agentlessd/scripts/ssh_integrity_check_bsd \ src/agentlessd/scripts/ssh_integrity_check_linux \ src/agentlessd/scripts/ssh_nopass.exp \ src/agentlessd/scripts/ssh_pixconfig_diff \ src/agentlessd/scripts/sshlogin.exp \ src/agentlessd/scripts/su.exp .endif OPTIONS_DEFINE+= DOCS SUB_LIST= PORTNAME=${PORTNAME} SUB_FILES= pkg-message PLIST_SUB= PORTNAME=${PORTNAME} DOCSFILES= BUGS CONFIG CONTRIBUTORS INSTALL LICENSE PORTDOCS= ${DOCSFILES} BROKEN_aarch64= Fails to compile: error: use of undeclared identifier __LDPGSZ .include STRIP_FILES= ossec-luac agent_control ossec-lua ossec-dbd ossec-regex ossec-monitord ossec-makelists verify-agent-conf ossec-analysisd ossec-agentlessd syscheck_control ossec-execd manage_agents ossec-csyslogd ossec-syscheckd ossec-logtest ossec-authd ossec-logcollector list_agents ossec-maild clear_stats ossec-remoted ossec-reportd rootcheck_control syscheck_update .if defined(CLIENT_ONLY) SUB_LIST+= PRECMD=: PKGNAMESUFFIX= -client CONFLICTS_INSTALL= ossec-hids-server-[0-9]* ossec-hids-local-[0-9]* STRIP_FILES= agent-auth manage_agents ossec-agentd ossec-execd ossec-logcollector ossec-lua ossec-luac ossec-syscheckd .elif defined(LOCAL_ONLY) SUB_LIST+= PRECMD=ossechids_start_precmd PKGNAMESUFFIX= -local CONFLICTS_INSTALL= ossec-hids-client-[0-9]* ossec-hids-server-[0-9]* .else SUB_LIST+= PRECMD=ossechids_start_precmd CONFLICTS_INSTALL= ossec-hids-client-[0-9]* ossec-hids-local-[0-9]* .endif post-patch: @${REINPLACE_CMD} 's|PREFIX|${PREFIX}/${PORTNAME}|' ${WRKSRC}/src/headers/defs.h @${ECHO} "DIR=\"${STAGEDIR}${PREFIX}/${PORTNAME}\"" > ${WRKSRC}/src/LOCATION @${REINPLACE_CMD} -e 's|-DLUA_USE_LINUX|& ${CPPFLAGS}|' \ -e 's|-lreadline|& ${LDFLAGS}|' \ ${WRKSRC}/src/external/lua-5.2.3/src/Makefile + @${REINPLACE_CMD} -e 's|OPENSSLCMD=|OPENSSLCMD=-L${OPENSSLLIB} |' \ + ${WRKSRC}/src/Makeall do-build: .if defined(WITH_DB) .if defined(CLIENT_ONLY) @cd ${WRKSRC}/src;${MAKE} setagent;${MAKE} all;${MAKE} build .elif defined(LOCAL_ONLY) @cd ${WRKSRC}/src;${MAKE} setlocal;${MAKE} all;${MAKE} build .else @cd ${WRKSRC}/src;${MAKE} setdb;${MAKE} all;${MAKE} build .endif .else .if defined(CLIENT_ONLY) @cd ${WRKSRC}/src;${MAKE} setagent;${MAKE} all;${MAKE} build; \ ${MAKE} unsetdb .elif defined(LOCAL_ONLY) @cd ${WRKSRC}/src;${MAKE} setlocal;${MAKE} all;${MAKE} build; \ ${MAKE} unsetdb .else @cd ${WRKSRC}/src;${MAKE} all;${MAKE} build;${MAKE} unsetdb .endif .endif do-install: .if defined(CLIENT_ONLY) @cd ${WRKSRC}/src; ${MAKE} agent .elif defined(LOCAL_ONLY) @cd ${WRKSRC}/src; ${MAKE} local .else @cd ${WRKSRC}/src; ${MAKE} server .endif @${MKDIR} ${STAGEDIR}${PREFIX}/${PORTNAME}/etc .for file in ${STRIP_FILES} ${STRIP_CMD} ${STAGEDIR}${PREFIX}/ossec-hids/bin/${file} .endfor .if defined(CLIENT_ONLY) @${CP} ${WRKSRC}/etc/ossec-agent.conf ${STAGEDIR}${PREFIX}/${PORTNAME}/etc/ossec.conf.sample .elif defined(LOCAL_ONLY) ${CP} ${WRKSRC}/etc/ossec-local.conf ${STAGEDIR}${PREFIX}/${PORTNAME}/etc/ossec.conf.sample .else ${CP} ${WRKSRC}/etc/ossec-server.conf ${STAGEDIR}${PREFIX}/${PORTNAME}/etc/ossec.conf.sample .endif post-install-DOCS-on: @${MKDIR} ${STAGEDIR}${DOCSDIR} @cd ${WRKSRC} && ${INSTALL_DATA} ${DOCSFILES} ${STAGEDIR}${DOCSDIR} post-install-MYSQL-on: @${MKDIR} ${STAGEDIR}${DOCSDIR} @cd ${WRKSRC} && ${INSTALL_DATA} src/os_dbd/mysql.schema ${STAGEDIR}${DOCSDIR} post-install-PGSQL-on: @${MKDIR} ${STAGEDIR}${DOCSDIR} @cd ${WRKSRC} && ${INSTALL_DATA} src/os_dbd/postgresql.schema ${STAGEDIR}${DOCSDIR} .include Index: head/security/ossec-hids-server/pkg-plist =================================================================== --- head/security/ossec-hids-server/pkg-plist (revision 426683) +++ head/security/ossec-hids-server/pkg-plist (revision 426684) @@ -1,166 +1,168 @@ %%PORTNAME%%/active-response/bin/disable-account.sh %%PORTNAME%%/active-response/bin/firewall-drop.sh %%PORTNAME%%/active-response/bin/host-deny.sh %%PORTNAME%%/active-response/bin/ip-customblock.sh %%PORTNAME%%/active-response/bin/ipfw_mac.sh %%PORTNAME%%/active-response/bin/ipfw.sh %%PORTNAME%%/active-response/bin/ossec-tweeter.sh %%PORTNAME%%/active-response/bin/pf.sh %%PORTNAME%%/active-response/bin/restart-ossec.sh %%PORTNAME%%/active-response/bin/route-null.sh %%PORTNAME%%/bin/agent_control %%PORTNAME%%/bin/clear_stats %%PORTNAME%%/bin/list_agents %%PORTNAME%%/bin/manage_agents %%PORTNAME%%/bin/ossec-agentlessd %%PORTNAME%%/bin/ossec-analysisd %%PORTNAME%%/bin/ossec-authd %%PORTNAME%%/bin/ossec-control %%PORTNAME%%/bin/ossec-csyslogd %%PORTNAME%%/bin/ossec-dbd %%PORTNAME%%/bin/ossec-execd %%PORTNAME%%/bin/ossec-logcollector %%PORTNAME%%/bin/ossec-logtest %%PORTNAME%%/bin/ossec-lua %%PORTNAME%%/bin/ossec-luac %%PORTNAME%%/bin/ossec-maild %%PORTNAME%%/bin/ossec-makelists %%PORTNAME%%/bin/ossec-monitord %%PORTNAME%%/bin/ossec-regex %%PORTNAME%%/bin/ossec-remoted %%PORTNAME%%/bin/ossec-reportd %%PORTNAME%%/bin/ossec-syscheckd %%PORTNAME%%/bin/rootcheck_control %%PORTNAME%%/bin/syscheck_control %%PORTNAME%%/bin/syscheck_update %%PORTNAME%%/bin/util.sh %%PORTNAME%%/bin/verify-agent-conf @group ossec %%PORTNAME%%/etc/decoder.xml %%PORTNAME%%/etc/internal_options.conf @sample %%PORTNAME%%/etc/ossec.conf.sample %%PORTNAME%%/etc/shared/rootkit_files.txt %%PORTNAME%%/etc/shared/rootkit_trojans.txt %%PORTNAME%%/etc/shared/system_audit_rcl.txt %%PORTNAME%%/etc/shared/win_applications_rcl.txt %%PORTNAME%%/etc/shared/win_audit_rcl.txt %%PORTNAME%%/etc/shared/win_malware_rcl.txt %%PORTNAME%%/etc/shared/cis_debian_linux_rcl.txt %%PORTNAME%%/etc/shared/cis_rhel_linux_rcl.txt %%PORTNAME%%/etc/shared/cis_rhel5_linux_rcl.txt @owner @group @mode %%PORTNAME%%/rules/apache_rules.xml %%PORTNAME%%/rules/arpwatch_rules.xml %%PORTNAME%%/rules/asterisk_rules.xml %%PORTNAME%%/rules/attack_rules.xml %%PORTNAME%%/rules/cimserver_rules.xml %%PORTNAME%%/rules/cisco-ios_rules.xml %%PORTNAME%%/rules/clam_av_rules.xml %%PORTNAME%%/rules/courier_rules.xml %%PORTNAME%%/rules/dovecot_rules.xml %%PORTNAME%%/rules/dropbear_rules.xml %%PORTNAME%%/rules/firewall_rules.xml %%PORTNAME%%/rules/ftpd_rules.xml %%PORTNAME%%/rules/hordeimp_rules.xml %%PORTNAME%%/rules/ids_rules.xml %%PORTNAME%%/rules/imapd_rules.xml %%PORTNAME%%/rules/local_rules.xml %%PORTNAME%%/rules/mailscanner_rules.xml %%PORTNAME%%/rules/mcafee_av_rules.xml %%PORTNAME%%/rules/ms-exchange_rules.xml %%PORTNAME%%/rules/ms-se_rules.xml %%PORTNAME%%/rules/ms_dhcp_rules.xml %%PORTNAME%%/rules/ms_ftpd_rules.xml %%PORTNAME%%/rules/msauth_rules.xml %%PORTNAME%%/rules/mysql_rules.xml %%PORTNAME%%/rules/named_rules.xml %%PORTNAME%%/rules/netscreenfw_rules.xml %%PORTNAME%%/rules/nginx_rules.xml %%PORTNAME%%/rules/openbsd_rules.xml %%PORTNAME%%/rules/ossec_rules.xml %%PORTNAME%%/rules/pam_rules.xml %%PORTNAME%%/rules/php_rules.xml %%PORTNAME%%/rules/pix_rules.xml %%PORTNAME%%/rules/policy_rules.xml %%PORTNAME%%/rules/postfix_rules.xml %%PORTNAME%%/rules/postgresql_rules.xml %%PORTNAME%%/rules/proftpd_rules.xml %%PORTNAME%%/rules/pure-ftpd_rules.xml %%PORTNAME%%/rules/racoon_rules.xml %%PORTNAME%%/rules/roundcube_rules.xml %%PORTNAME%%/rules/rules_config.xml %%PORTNAME%%/rules/sendmail_rules.xml %%PORTNAME%%/rules/smbd_rules.xml %%PORTNAME%%/rules/solaris_bsm_rules.xml %%PORTNAME%%/rules/sonicwall_rules.xml %%PORTNAME%%/rules/spamd_rules.xml %%PORTNAME%%/rules/squid_rules.xml %%PORTNAME%%/rules/sshd_rules.xml %%PORTNAME%%/rules/symantec-av_rules.xml %%PORTNAME%%/rules/symantec-ws_rules.xml %%PORTNAME%%/rules/syslog_rules.xml %%PORTNAME%%/rules/telnetd_rules.xml %%PORTNAME%%/rules/trend-osce_rules.xml %%PORTNAME%%/rules/vmpop3d_rules.xml %%PORTNAME%%/rules/vmware_rules.xml %%PORTNAME%%/rules/vpn_concentrator_rules.xml %%PORTNAME%%/rules/vpopmail_rules.xml %%PORTNAME%%/rules/vsftpd_rules.xml %%PORTNAME%%/rules/web_appsec_rules.xml %%PORTNAME%%/rules/web_rules.xml %%PORTNAME%%/rules/wordpress_rules.xml %%PORTNAME%%/rules/zeus_rules.xml @owner root @group ossec %%PORTNAME%%/agentless/main.exp %%PORTNAME%%/agentless/register_host.sh %%PORTNAME%%/agentless/ssh.exp %%PORTNAME%%/agentless/ssh_asa-fwsmconfig_diff %%PORTNAME%%/agentless/ssh_foundry_diff %%PORTNAME%%/agentless/ssh_generic_diff %%PORTNAME%%/agentless/ssh_integrity_check_bsd %%PORTNAME%%/agentless/ssh_integrity_check_linux %%PORTNAME%%/agentless/ssh_nopass.exp %%PORTNAME%%/agentless/ssh_pixconfig_diff %%PORTNAME%%/agentless/sshlogin.exp %%PORTNAME%%/agentless/su.exp +@(ossec,,) %%PORTNAME%%/logs/active-responses.log +@(ossec,,) %%PORTNAME%%/logs/ossec.log @mode 550 @dir %%PORTNAME%%/.ssh @dir %%PORTNAME%%/active-response/bin @dir %%PORTNAME%%/active-response @dir %%PORTNAME%%/agentless @dir %%PORTNAME%%/bin @dir %%PORTNAME%%/etc/shared @dir %%PORTNAME%%/etc @dir %%PORTNAME%%/queue/rootcheck @dir %%PORTNAME%%/rules @dir %%PORTNAME%%/tmp @mode 770 @dir %%PORTNAME%%/var/run @mode 550 @dir %%PORTNAME%%/var @owner ossec @mode 770 @dir %%PORTNAME%%/queue/alerts @dir %%PORTNAME%%/queue/ossec @mode 750 @dir %%PORTNAME%%/queue/fts @dir %%PORTNAME%%/queue/syscheck @dir %%PORTNAME%%/queue/diff @dir %%PORTNAME%%/queue/agentless @dir %%PORTNAME%%/stats @dir %%PORTNAME%%/logs/alerts @dir %%PORTNAME%%/logs/archives @dir %%PORTNAME%%/logs/firewall @dir %%PORTNAME%%/logs @owner ossecr @dir %%PORTNAME%%/queue/agent-info @dir %%PORTNAME%%/queue/rids @owner ossec @mode 550 @dir %%PORTNAME%%/queue @owner root @mode 550 @dir %%PORTNAME%%