Date: Tue, 31 Mar 2026 16:14:58 +0000 From: Rene Ladan <rene@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: 95c1a4725df2 - main - security/snortsam: Remove expired port Message-ID: <69cbf302.3b2fa.1eae385@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch main has been updated by rene: URL: https://cgit.FreeBSD.org/ports/commit/?id=95c1a4725df23a3601fa9e715d0cb9596ff731fa commit 95c1a4725df23a3601fa9e715d0cb9596ff731fa Author: Rene Ladan <rene@FreeBSD.org> AuthorDate: 2026-03-31 16:14:54 +0000 Commit: Rene Ladan <rene@FreeBSD.org> CommitDate: 2026-03-31 16:14:54 +0000 security/snortsam: Remove expired port 2026-03-31 security/snortsam: dead upstream, broken on FreeBSD 15 --- MOVED | 1 + security/Makefile | 1 - security/snortsam/Makefile | 81 ---------------------- security/snortsam/distinfo | 2 - security/snortsam/files/patch-src__ssp_pf2.c | 11 --- security/snortsam/files/patch-src_snortsam.h | 19 ----- security/snortsam/files/patch-ssp_ipfw2.c | 13 ---- security/snortsam/files/pkg-install.in | 22 ------ security/snortsam/files/pkg-message.in | 20 ------ security/snortsam/files/snortsam.in | 28 -------- .../snortsam/files/ssp_ipfw2_no_table_check.patch | 18 ----- security/snortsam/pkg-descr | 4 -- 12 files changed, 1 insertion(+), 219 deletions(-) diff --git a/MOVED b/MOVED index e1b9e1ff9c82..f0b702dcbc94 100644 --- a/MOVED +++ b/MOVED @@ -5184,3 +5184,4 @@ ftp/ftpsesame||2026-03-31|Has expired: dead upstream, broken on FreeBSD 15 devel/loki||2026-03-31|Has expired: dead upstream, sole consumer removed from tree long ago mail/missey||2026-03-31|Has expired: mail/missey has been abandoned for many years devel/jsl||2026-03-31|Has expired: No more upstream, use JSLint instead +security/snortsam||2026-03-31|Has expired: dead upstream, broken on FreeBSD 15 diff --git a/security/Makefile b/security/Makefile index 38391054232a..f91689b5b7d3 100644 --- a/security/Makefile +++ b/security/Makefile @@ -1327,7 +1327,6 @@ SUBDIR += snort-rep SUBDIR += snort2pfcd SUBDIR += snort3 - SUBDIR += snortsam SUBDIR += snortsnarf SUBDIR += snowflake-tor SUBDIR += snuffleupagus diff --git a/security/snortsam/Makefile b/security/snortsam/Makefile deleted file mode 100644 index bcb85975812c..000000000000 --- a/security/snortsam/Makefile +++ /dev/null @@ -1,81 +0,0 @@ -PORTNAME= snortsam -PORTVERSION= 2.70 -PORTREVISION= 2 -CATEGORIES= security -MASTER_SITES= http://www.snortsam.net/files/snortsam/ -DISTNAME= ${PORTNAME}-src-${PORTVERSION} - -MAINTAINER= urisso@bsd.com.br -COMMENT= Output plugin for Snort -WWW= http://www.snortsam.net - -OPTIONS_DEFINE= IPFW SAMTOOL DEBUG DOCS -OPTIONS_DEFAULT= IPFW SAMTOOL -IPFW_DESC= checks if configured tables are available -SAMTOOL_DESC= install samtool - -# https://reviews.freebsd.org/D41651 -BROKEN_FreeBSD_15= requires no longer supported ioctl(DIOCGETSTATUS) - -DEPRECATED= dead upstream, broken on FreeBSD 15 -EXPIRATION_DATE= 2026-03-31 - -.include <bsd.port.pre.mk> - -USE_RC_SUBR= snortsam -SUB_FILES= pkg-message \ - pkg-install - -PLIST_FILES= sbin/snortsam \ - %%ETCDIR%%/snortsam.conf.sample \ - %%ETCDIR%%/country-rootservers.conf.sample \ - %%ETCDIR%%/rootservers.cfg.sample - -.if ${PORT_OPTIONS:MSAMTOOL} -PLIST_FILES+= sbin/samtool -.endif - -PORTDOCS= AUTHORS BUGS CREDITS FAQ INSTALL LICENSE README README.ciscoacl \ - README.conf README.iptables README.netscreen README.pf README.pf2 \ - README.rules README.slackware README.snmp_interface_down README.wgrd \ - README_8signs.rtf TODO - -.if ! ${PORT_OPTIONS:MIPFW} -EXTRA_PATCHES+= ${FILESDIR}/ssp_ipfw2_no_table_check.patch -.endif - -.if ${PORT_OPTIONS:MDEBUG} -DEBUG=-DDEBUG -.endif - -# This seems silly, but the RC file gets into ${WRKDIR}/${PORTNAME} which -# without this, would exist and be a directory. -post-extract: - @${MV} ${WRKDIR}/${PORTNAME} ${WRKSRC} - -post-patch: - @${REINPLACE_CMD} -e '/^CC/d' ${WRKSRC}/src/Makefile - @${REINPLACE_CMD} -e "s|/etc/snortsam.conf|${ETCDIR}/snortsam.conf|g" ${WRKSRC}/conf/snortsam.conf.sample - @${REINPLACE_CMD} -e "s|/etc/snortsam.conf|${ETCDIR}/snortsam.conf|g" ${WRKSRC}/docs/README.conf - @${REINPLACE_CMD} -e "s|/etc/snortsam.conf|${ETCDIR}/snortsam.conf|g" ${WRKSRC}/src/snortsam.h - @${REINPLACE_CMD} -e "s|/etc/snortsam.conf|${ETCDIR}/snortsam.conf|g" ${WRKSRC}/contrib/snortsam-state.c - @${CHMOD} +x ${WRKSRC}/makesnortsam.sh - -do-build: - @cd ${WRKSRC}/src && ${MAKE} ${DEBUG} - @cd ${WRKSRC}/src && ${MAKE} samtool ${DEBUG} - -do-install: - ${INSTALL_PROGRAM} ${WRKSRC}/snortsam ${STAGEDIR}${PREFIX}/sbin - ${INSTALL_PROGRAM} ${WRKSRC}/samtool ${STAGEDIR}${PREFIX}/sbin - @${MKDIR} ${STAGEDIR}${ETCDIR} - ${INSTALL_DATA} ${WRKSRC}/conf/snortsam.conf.sample ${STAGEDIR}${ETCDIR}/snortsam.conf.sample - ${INSTALL_DATA} ${WRKSRC}/conf/rootservers.cfg ${STAGEDIR}${ETCDIR}/rootservers.cfg.sample - ${INSTALL_DATA} ${WRKSRC}/conf/country-rootservers.conf ${STAGEDIR}${ETCDIR}/country-rootservers.conf.sample - - @${MKDIR} ${STAGEDIR}${DOCSDIR} -.for f in ${PORTDOCS} - ${INSTALL_DATA} ${WRKSRC}/docs/${f} ${STAGEDIR}${DOCSDIR} -.endfor - -.include <bsd.port.post.mk> diff --git a/security/snortsam/distinfo b/security/snortsam/distinfo deleted file mode 100644 index 0cf951f22b55..000000000000 --- a/security/snortsam/distinfo +++ /dev/null @@ -1,2 +0,0 @@ -SHA256 (snortsam-src-2.70.tar.gz) = 442040a7281a641008f6410b7f6528d709f17d5041fd3752011075f8a38d19bc -SIZE (snortsam-src-2.70.tar.gz) = 1971624 diff --git a/security/snortsam/files/patch-src__ssp_pf2.c b/security/snortsam/files/patch-src__ssp_pf2.c deleted file mode 100644 index 81ce7d93ea36..000000000000 --- a/security/snortsam/files/patch-src__ssp_pf2.c +++ /dev/null @@ -1,11 +0,0 @@ ---- ./src/ssp_pf2.c.orig 2009-11-27 02:39:40.000000000 +0100 -+++ ./src/ssp_pf2.c 2014-01-20 19:03:47.000000000 +0100 -@@ -95,7 +95,7 @@ - } - } - -- return; -+ return 0; - } - - diff --git a/security/snortsam/files/patch-src_snortsam.h b/security/snortsam/files/patch-src_snortsam.h deleted file mode 100644 index 7e8fe2d2dd4f..000000000000 --- a/security/snortsam/files/patch-src_snortsam.h +++ /dev/null @@ -1,19 +0,0 @@ -Avoid redefining bool - -snortsam.c:750:6: error: conflicting types for 'parseline' -void parseline(char *arg,bool first,char *file,unsigned long line) - ^ -./snortsam.h:470:6: note: previous declaration is here -void parseline(char *arg,bool first,char *file,unsigned long line); - ^ - ---- src/snortsam.h.orig 2020-03-30 10:54:24 UTC -+++ src/snortsam.h -@@ -59,6 +59,7 @@ - #endif - - -+#include <stdbool.h> - #include <stdlib.h> - #include <stdio.h> - #include <time.h> diff --git a/security/snortsam/files/patch-ssp_ipfw2.c b/security/snortsam/files/patch-ssp_ipfw2.c deleted file mode 100644 index 1a60d792ac38..000000000000 --- a/security/snortsam/files/patch-ssp_ipfw2.c +++ /dev/null @@ -1,13 +0,0 @@ ---- src/ssp_ipfw2.c 2008-04-26 15:53:21.000000000 -0400 -+++ src/ssp_ipfw2.c 2011-10-07 15:47:50.000000000 -0400 -@@ -167,8 +167,8 @@ - printf("Debug: [ipfw2][%lx] command \"%s\"\n", (unsigned long)threadid, ipfw2cmd); - #endif - /* Run the command */ -- if (system(ipfw2cmd) ) -+ if ((system(ipfw2cmd) && 0xff) ) - { snprintf(msg,sizeof(msg)-1,"Error: Command \"%s\" Failed", ipfw2cmd); - logmessage(1,msg,"ipfw2",0); - } - else - diff --git a/security/snortsam/files/pkg-install.in b/security/snortsam/files/pkg-install.in deleted file mode 100644 index 8718b56c9427..000000000000 --- a/security/snortsam/files/pkg-install.in +++ /dev/null @@ -1,22 +0,0 @@ -#!/bin/sh - -ETCDIR=${ETCDIR:=%%ETCDIR%%} -PREFIX=${PREFIX:=%%PREFIX%%} - -# snortsam config file contain sensitive data like -# passwords needed to block IP's on the firewalls. -# Set permission of the config dir to 700 so only -# root:wheel can access this directory. -# Also, samtool shouldn't be run by non root. -if [ "$2" = "POST-INSTALL" ]; then - if [ -d ${ETCDIR} ]; then - /usr/sbin/chown root:wheel ${ETCDIR} - /bin/chmod 700 ${ETCDIR} - /bin/chmod 600 ${ETCDIR}/snortsam.conf.sample - fi - if [ -x ${PREFIX}/sbin/samtool ] - then - /bin/chmod 500 ${PREFIX}/sbin/samtool - fi -fi - diff --git a/security/snortsam/files/pkg-message.in b/security/snortsam/files/pkg-message.in deleted file mode 100644 index fca0b844340d..000000000000 --- a/security/snortsam/files/pkg-message.in +++ /dev/null @@ -1,20 +0,0 @@ -[ -{ type: install - message: <<EOM - SNORT have to be build with OPTION SNORTSAM. - - To enable snortsam as output plugin for snort a config - line like the following should be present in snort.conf - - output alert_fwsam: <snortsambox>:<port>/<password> - - With samtool it is possible to send alerts to snortsam, - this way you can test and adjust your FW rules. - - For more information read the INSTALL, FAQ, README - files in %%DOCSDIR%% - - Additional consolidate http://snortsam.net -EOM -} -] diff --git a/security/snortsam/files/snortsam.in b/security/snortsam/files/snortsam.in deleted file mode 100644 index ac864b2258f4..000000000000 --- a/security/snortsam/files/snortsam.in +++ /dev/null @@ -1,28 +0,0 @@ -#!/bin/sh - -# PROVIDE: snortsam -# REQUIRE: DAEMON -# KEYWORD: shutdown - -# -# Add the following line to /etc/rc.conf to enable snortsam: -# -# snortsam_enable="YES" -# -# # optional Snortsam configuration file: -# snortsam_conf="%%ETCDIR%%/snortsam.conf" -# -# DO NOT CHANGE THE DEFAULT VALUES HERE -# -. /etc/rc.subr - -name="snortsam" -rcvar=snortsam_enable -load_rc_config snortsam - -# defaults -command="%%PREFIX%%/sbin/snortsam" -snortsam_enable=${snortsam_enable:-"NO"} -snortsam_flags=${snortsam_conf:-"%%ETCDIR%%/snortsam.conf"} - -run_rc_command "$1" diff --git a/security/snortsam/files/ssp_ipfw2_no_table_check.patch b/security/snortsam/files/ssp_ipfw2_no_table_check.patch deleted file mode 100644 index 1e20b9e5992f..000000000000 --- a/security/snortsam/files/ssp_ipfw2_no_table_check.patch +++ /dev/null @@ -1,18 +0,0 @@ ---- src/ssp_ipfw2.c.orig 2008-04-26 21:53:21.000000000 +0200 -+++ src/ssp_ipfw2.c 2009-11-14 22:03:41.000000000 +0100 -@@ -91,6 +91,7 @@ - } - } - } -+#if defined(ENABLE_IPFW_TABLE_CHECK) - /* Check if inbound table exists */ - snprintf(chk,sizeof(chk)-1,"/sbin/ipfw show | grep -q \"deny ip from any to table(%u) via %s\"",ipfw2p->in_table,ipfw2p->interface); - if(system(chk)) -@@ -110,6 +111,7 @@ - } - } - -+#endif /* ENABLE_IPFW_TABLE_CHECK */ - #ifdef FWSAMDEBUG - if(plugindatalist->data) - printf("Debug: [ipfw2] Adding IPFW2: i/f '%s', tables %u (in) and %u (out)\n", ipfw2p->interface, ipfw2p->in_table,ipfw2p->out_table); diff --git a/security/snortsam/pkg-descr b/security/snortsam/pkg-descr deleted file mode 100644 index 53115e25effd..000000000000 --- a/security/snortsam/pkg-descr +++ /dev/null @@ -1,4 +0,0 @@ -SnortSam is an intelligent agent that allows the popular -open-source Intrusion Detection System called Snort to block -intruding connections by reconfiguration of many firewalls -and Cisco devices.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?69cbf302.3b2fa.1eae385>