From root@cultdeadsheep.org  Sun Aug  4 10:48:02 2002
Return-Path: <root@cultdeadsheep.org>
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 229FF37B400
	for <FreeBSD-gnats-submit@freebsd.org>; Sun,  4 Aug 2002 10:48:02 -0700 (PDT)
Received: from cultdeadsheep.org (charon.cultdeadsheep.org [80.65.226.72])
	by mx1.FreeBSD.org (Postfix) with SMTP id A496A43E42
	for <FreeBSD-gnats-submit@freebsd.org>; Sun,  4 Aug 2002 10:48:00 -0700 (PDT)
	(envelope-from root@cultdeadsheep.org)
Received: (qmail 99460 invoked by uid 0); 4 Aug 2002 17:47:59 -0000
Message-Id: <20020804174759.99459.qmail@cultdeadsheep.org>
Date: 4 Aug 2002 17:47:59 -0000
From: Clement Laforet <sheepkiller@cultdeadsheep.org>
Reply-To: Clement Laforet <sheepkiller@cultdeadsheep.org>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: New port : security/prelude-nids (part of Prelude NIDS ports)
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         41325
>Category:       ports
>Synopsis:       New port : security/prelude-nids (part of Prelude NIDS ports)
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Sun Aug 04 10:50:06 PDT 2002
>Closed-Date:    Sat Jun 07 03:25:40 PDT 2003
>Last-Modified:  Sat Jun 07 03:25:40 PDT 2003
>Originator:     Clement Laforet
>Release:        FreeBSD 4.6-STABLE i386
>Organization:
The Cult Of The Dead Sheep
>Environment:
System: FreeBSD goofy.cultdeadsheep.org 4.6-STABLE FreeBSD 4.6-STABLE #0: Thu Jul 4 10:05:12 CEST 2002 root@goofy.cultdeadsheep.org:/usr/obj/usr/src/sys/GOOFY i386


	
>Description:
	prelude-nids : the Prelude Network Intrusion Detection System is a sensor, 
	that may be installed on the same machine as the manager or not, which watches 
	network traffic and looks for familiar patterns. This is functionally 
	equivalent to (Snort (http://www.snort.org).

>How-To-Repeat:
	
>Fix:
	N/A.

--- prelude-nids.shar begins here ---
# This is a shell archive.  Save it in a file, remove anything before
# this line, and then unpack it by entering "sh file".  Note, it may
# create directories; files and directories will be owned by you and
# have default permissions.
#
# This archive contains:
#
#	prelude-nids
#	prelude-nids/pkg-descr
#	prelude-nids/pkg-comment
#	prelude-nids/distinfo
#	prelude-nids/Makefile
#	prelude-nids/pkg-plist
#	prelude-nids/pkg-message
#
echo c - prelude-nids
mkdir -p prelude-nids > /dev/null 2>&1
echo x - prelude-nids/pkg-descr
sed 's/^X//' >prelude-nids/pkg-descr << 'END-of-prelude-nids/pkg-descr'
XPrelude is a new innovative hybrid Intrusion Detection system designed 
Xto be very modular, distributed, rock solid and fast. 
X
XThe Prelude Network Intrusion Detection System is a sensor, that may 
Xbe installed on the same machine as the manager or not, which watches 
Xnetwork traffic and looks for familiar patterns. This is functionally 
Xequivalent to (Snort (http://www.snort.org).
X
XWWW: http://www.prelude-ids.org/
END-of-prelude-nids/pkg-descr
echo x - prelude-nids/pkg-comment
sed 's/^X//' >prelude-nids/pkg-comment << 'END-of-prelude-nids/pkg-comment'
XPrelude Network Intrusion Detection System sensor.
END-of-prelude-nids/pkg-comment
echo x - prelude-nids/distinfo
sed 's/^X//' >prelude-nids/distinfo << 'END-of-prelude-nids/distinfo'
XMD5 (prelude-nids-0.8.0.tar.gz) = 29763787d403bfd380048b2c82402272
END-of-prelude-nids/distinfo
echo x - prelude-nids/Makefile
sed 's/^X//' >prelude-nids/Makefile << 'END-of-prelude-nids/Makefile'
X# New ports collection makefile for:	prelude-nids
X# Date created:			Sun Aug 4 19:31:17 CEST 2002
X# Whom:				Clement Laforet <sheepkiller@cultdeadsheep.org>
X
XPORTNAME=	prelude-nids
XPORTVERSION=	0.8.0
XCATEGORIES=	security
XMASTER_SITES=   http://www.prelude-ids.org/download/releases/
X
XMAINTAINER=	sheepkiller@cultdeadsheep.org
X
XGNU_MAKE=	yes
XHAS_CONFIGURE=	yes
XCONFIGURE_ARGS+=	--prefix=${PREFIX} --with-html-dir=${PREFIX}/share/doc
X
XLIB_DEPENDS=		prelude.0:${PORTSDIR}/security/libprelude
X
XMAN8=			prelude-nids.8
X
X.if defined(WITH_GPROF)
XCONFIGURE_ARGS+= 	--enable-profiling
X.endif
X
X# Broken, for the moment
X.if defined(WITH_GTK_DOC)
XBUILD_DEPENDS=  	gtkdoc-scan:${PORTSDIR}/textproc/gtk-doc
XCONFIGURE_ARGS+=	--enable-gtk-doc
X.endif
X
Xpre-everything:
X.if defined(WITH_GTK_DOC)
X        @${ECHO} "*********************************************************************"
X        @${ECHO} "WITH_GTK_DOC option is currently broken."
X        @${ECHO} "*********************************************************************"
X        @${FALSE}
X.endif
X
Xpre-configure:
X	@${ECHO} ""
X	@${ECHO} "*------------------------------------------------------------------*"
X	@${ECHO} "Options:"
X	@${ECHO} ""
X	@${ECHO} "      WITH_GPROF=yes          Enable Gprof profiling - with thread workaround"
X	@${ECHO} "      WITH_GTK_DOC=yes        Use gtk-doc to build documentation (unused for the moment)"
X	@${ECHO} "*------------------------------------------------------------------*"
X	@${ECHO} ""
X
Xpost-install:
X	@${CAT} ${PKGMESSAGE}
X
X.include <bsd.port.mk>
END-of-prelude-nids/Makefile
echo x - prelude-nids/pkg-plist
sed 's/^X//' >prelude-nids/pkg-plist << 'END-of-prelude-nids/pkg-plist'
Xbin/prelude-nids
Xetc/prelude-nids/ruleset/exploit.rules
Xetc/prelude-nids/ruleset/scan.rules
Xetc/prelude-nids/ruleset/finger.rules
Xetc/prelude-nids/ruleset/shellcode.rules
Xetc/prelude-nids/ruleset/ftp.rules
Xetc/prelude-nids/ruleset/smtp.rules
Xetc/prelude-nids/ruleset/icmp-info.rules
Xetc/prelude-nids/ruleset/sql.rules
Xetc/prelude-nids/ruleset/icmp.rules
Xetc/prelude-nids/ruleset/telnet.rules
Xetc/prelude-nids/ruleset/info.rules
Xetc/prelude-nids/ruleset/tftp.rules
Xetc/prelude-nids/ruleset/attack-responses.rules
Xetc/prelude-nids/ruleset/local.rules
Xetc/prelude-nids/ruleset/virus.rules
Xetc/prelude-nids/ruleset/backdoor.rules
Xetc/prelude-nids/ruleset/misc.rules
Xetc/prelude-nids/ruleset/web-attacks.rules
Xetc/prelude-nids/ruleset/bad-traffic.rules
Xetc/prelude-nids/ruleset/netbios.rules
Xetc/prelude-nids/ruleset/web-cgi.rules
Xetc/prelude-nids/ruleset/classification.config
Xetc/prelude-nids/ruleset/policy.rules
Xetc/prelude-nids/ruleset/web-coldfusion.rules
Xetc/prelude-nids/ruleset/porn.rules
Xetc/prelude-nids/ruleset/web-frontpage.rules
Xetc/prelude-nids/ruleset/ddos.rules
Xetc/prelude-nids/ruleset/prelude.rules
Xetc/prelude-nids/ruleset/web-iis.rules
Xetc/prelude-nids/ruleset/dns.rules
Xetc/prelude-nids/ruleset/rpc.rules
Xetc/prelude-nids/ruleset/web-misc.rules
Xetc/prelude-nids/ruleset/dos.rules
Xetc/prelude-nids/ruleset/rservices.rules
Xetc/prelude-nids/ruleset/x11.rules
Xetc/prelude-nids/ruleset/reference.config
Xetc/prelude-nids/unitable.txt
Xetc/prelude-nids/prelude-nids.conf
Xinclude/prelude-nids/nids-alert.h
Xinclude/prelude-nids/nids-alert-id.h
Xlib/prelude-nids/detects/arpspoof.so
Xlib/prelude-nids/detects/arpspoof.la
Xlib/prelude-nids/detects/debug.so
Xlib/prelude-nids/detects/debug.la
Xlib/prelude-nids/detects/scandetect.so
Xlib/prelude-nids/detects/scandetect.la
Xlib/prelude-nids/detects/shellcode.so
Xlib/prelude-nids/detects/shellcode.la
Xlib/prelude-nids/detects/snortrules.so
Xlib/prelude-nids/detects/snortrules.la
Xlib/prelude-nids/protocols/http.so
Xlib/prelude-nids/protocols/http.la
Xlib/prelude-nids/protocols/rpc.so
Xlib/prelude-nids/protocols/rpc.la
Xlib/prelude-nids/protocols/telnet.so
Xlib/prelude-nids/protocols/telnet.la
X@dirrm etc/prelude-nids/ruleset
X@dirrm etc/prelude-nids
X@dirrm include/prelude-nids
X@dirrm lib/prelude-nids/detects
X@dirrm lib/prelude-nids/protocols
X@dirrm lib/prelude-nids
END-of-prelude-nids/pkg-plist
echo x - prelude-nids/pkg-message
sed 's/^X//' >prelude-nids/pkg-message << 'END-of-prelude-nids/pkg-message'
X
X***********************************************************
XPrelude NIDS ports haven't for the moment configuration
Xscripts.
XPlease read the documentation you can find here :
Xhttp://www.prelude-ids.org/index.php?page=23
X***********************************************************
X
END-of-prelude-nids/pkg-message
exit
--- prelude-nids.shar ends here ---


>Release-Note:
>Audit-Trail:

From: Clement Laforet <sheepkiller@cultdeadsheep.org>
To: Clement Laforet <sheepkiller@cultdeadsheep.org>
Cc: FreeBSD-gnats-submit@FreeBSD.org
Subject: Re: ports/41325: New port : security/prelude-nids (part of Prelude NIDS ports)
Date: Sun, 8 Sep 2002 23:17:36 +0200

 Please apply this patch :)
 
 * Update from 0.8.0 to 0.8.1
 
 diff -Nru prelude-nids.old/Makefile prelude-nids/Makefile
 --- prelude-nids.old/Makefile	Sun Sep  8 22:46:36 2002
 +++ prelude-nids/Makefile	Sun Sep  8 22:47:44 2002
 @@ -1,30 +1,31 @@
 -# New ports collection makefile for:   prelude-nids
 -# Date created:                        Sun Aug 4 19:31:17 CEST 2002
 -# Whom:                                Clement Laforet <sheepkiller@cultdeadsheep.org>
 -
 -PORTNAME=      prelude-nids
 -PORTVERSION=   0.8.0
 -CATEGORIES=    security
 +# New ports collection makefile for:	prelude-nids
 +# Date created:			Sun Aug 4 19:31:17 CEST 2002
 +# Whom:				Clement Laforet <sheepkiller@cultdeadsheep.org>
 +
 +PORTNAME=	prelude-nids
 +PORTVERSION=	0.8.1
 +CATEGORIES=	security
  MASTER_SITES=   http://www.prelude-ids.org/download/releases/
  
 -MAINTAINER=    sheepkiller@cultdeadsheep.org
 +MAINTAINER=	sheepkiller@cultdeadsheep.org
  
 -GNU_MAKE=      yes
 -HAS_CONFIGURE= yes
 -CONFIGURE_ARGS+=       --prefix=${PREFIX} --with-html-dir=${PREFIX}/share/doc
 +GNU_MAKE=	yes
 +HAS_CONFIGURE=	yes
 +CONFIGURE_ARGS+=	--prefix=${PREFIX} --with-html-dir=${PREFIX}/share/doc
  
 -LIB_DEPENDS=           prelude.0:${PORTSDIR}/security/libprelude
 +LIB_DEPENDS=		prelude.0:${PORTSDIR}/security/libprelude
 +RUN_DEPEND=             ${LOCALBASE}/bin/bash:${PORTSDIR}/shells/bash2
  
 -MAN8=                  prelude-nids.8
 +MAN8=			prelude-nids.8
  
  .if defined(WITH_GPROF)
 -CONFIGURE_ARGS+=       --enable-profiling
 +CONFIGURE_ARGS+= 	--enable-profiling
  .endif
  
  # Broken, for the moment
  .if defined(WITH_GTK_DOC)
 -BUILD_DEPENDS=         gtkdoc-scan:${PORTSDIR}/textproc/gtk-doc
 -CONFIGURE_ARGS+=       --enable-gtk-doc
 +BUILD_DEPENDS=  	gtkdoc-scan:${PORTSDIR}/textproc/gtk-doc
 +CONFIGURE_ARGS+=	--enable-gtk-doc
  .endif
  
  pre-everything:
 @@ -36,17 +37,16 @@
  .endif
  
  pre-configure:
 -       @${ECHO} ""
 -       @${ECHO} "*------------------------------------------------------------------*"
 -       @${ECHO} "Options:"
 -       @${ECHO} ""
 -       @${ECHO} "      WITH_GPROF=yes          Enable Gprof profiling - with thread workaround"
 -       @${ECHO} "      WITH_GTK_DOC=yes        Use gtk-doc to build documentation (unused for the momen
 -t)"
 -       @${ECHO} "*------------------------------------------------------------------*"
 -       @${ECHO} ""
 +	@${ECHO} ""
 +	@${ECHO} "*------------------------------------------------------------------*"
 +	@${ECHO} "Options:"
 +	@${ECHO} ""
 +	@${ECHO} "      WITH_GPROF=yes          Enable Gprof profiling - with thread workaround"
 +	@${ECHO} "      WITH_GTK_DOC=yes        Use gtk-doc to build documentation (Broken for the moment)"
 +	@${ECHO} "*------------------------------------------------------------------*"
 +	@${ECHO} ""
  
  post-install:
 -       @${CAT} ${PKGMESSAGE}
 +	@${CAT} ${PKGMESSAGE}
  
  .include <bsd.port.mk>
 diff -Nru prelude-nids.old/distinfo prelude-nids/distinfo
 --- prelude-nids.old/distinfo	Sun Sep  8 22:46:36 2002
 +++ prelude-nids/distinfo	Sun Sep  8 22:47:44 2002
 @@ -1 +1 @@
 -MD5 (prelude-nids-0.8.0.tar.gz) = 29763787d403bfd380048b2c82402272
 +MD5 (prelude-nids-0.8.1.tar.gz) = ffaa17e6694f12b8d5ede91c1fbdf22d
State-Changed-From-To: open->closed 
State-Changed-By: erwin 
State-Changed-When: Sat Jun 7 03:25:19 PDT 2003 
State-Changed-Why:  
Superseded by 53013 

http://www.freebsd.org/cgi/query-pr.cgi?pr=41325 
>Unformatted:
