Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 10 Apr 2008 22:37:28 -0500 (CDT)
From:      Paul Schmehl <pauls@utdallas.edu>
To:        FreeBSD-gnats-submit@FreeBSD.org
Subject:   ports/122645: security/sguil-client, port upgrade, new version
Message-ID:  <20080411033728.E2746347839@utd65257.utdallas.edu>
Resent-Message-ID: <200804110340.m3B3e1w9073965@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help

>Number:         122645
>Category:       ports
>Synopsis:       security/sguil-client, port upgrade, new version
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Fri Apr 11 03:40:01 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator:     Paul Schmehl
>Release:        FreeBSD 7.0-STABLE i386
>Organization:
University of Texas at Dallas
>Environment:
System: FreeBSD hostname.utdallas.edu 7.0-STABLE FreeBSD 7.0-STABLE #4: Mon Apr 7 15:22:19 CDT 2008 root@hostname.utdallas.edu:/usr/obj/usr/src/sys/GENERIC i386


	
>Description:
	security/sguil-client, port upgrade to the new version - 0.7.0
	Committer: Please note - there are three sguil ports; server,
	sensor and client.  All three must be committed at the same time.
	In addition, a repocopy of security/barnyard-sguil6 to
	security/barnyard-sguil must be committed for the client port to
	work correctly.  Please ensure that all four changes are committed
	at the same time.
>How-To-Repeat:
	
>Fix:

	

begin 644 patch-Makefile
M+2TM($UA:V5F:6QE+F]R:6<),C`P-RTP-2TQ.2`Q-3HR,CHU,BXP,#`P,#`P
M,#`@+3`U,#`**RLK($UA:V5F:6QE"3(P,#@M,#0M,3`@,C$Z,#<Z,C(N,#`P
M,#`P,#`P("TP-3`P"D!`("TV+#@@*S8L-R!`0`H@(PH@"B!03U)43D%-13T)
M<V=U:6PM8VQI96YT"BU03U)45D524TE/3CT),"XV+C$*+5!/4E12159)4TE/
M3CT),PHK4$]25%9%4E-)3TX]"3`N-RXP"B!#051%1T]22453/0ES96-U<FET
M>0H@34%35$527U-)5$53/0DD>TU!4U1%4E]3251%7U-/55)#149/4D=%?0H@
M34%35$527U-)5$5?4U5"1$E2/0ES9W5I;`I`0"`M,34L,3,@*S$T+#$S($!`
M"B!-04E.5$%)3D52/0EP875L<T!U=&1A;&QA<RYE9'4*($-/34U%3E0]"5-G
M=6EL(&ES(&$@;F5T=V]R:R!S96-U<FET>2!M;VYI=&]R:6YG('!R;V=R86T*
M(`HK3$E"7T1%4$5.1%,]"71L<SHD>U!/4E131$E2?2]D979E;"]T8VQT;',*
M(%)53E]$15!%3D13/0ED='!L:71E.B1[4$]25%-$25)]+V1E=F5L+W1C;&QI
M8B!<"BT)"6=P9W8Z)'M03U)44T1)4GTO<V5C=7)I='DO9VYU<&<Q(%P**PD)
M9W!G,CHD>U!/4E131$E2?2]S96-U<FET>2]G;G5P9R!<"B`)"21[3$]#04Q"
M05-%?2]L:6(O=&-L>#@N-"]T8VQX+G1C;#HD>U!/4E131$E2?2]L86YG+W1C
M;%@@7`H@"0DD>TQ/0T%,0D%317TO;&EB+VEW:61G971S+VEW:61G971S+G1C
M;#HD>U!/4E131$E2?2]X,3$M=&]O;&MI=',O:7=I9&=E=',*(`HM3U!424].
M4ST)5$Q3("));F-L=61E(&]P96YS<VP@<W5P<&]R="(@;V9F(%P*+0D)5TE2
M15-(05)+("));G-T86QL('=I<F5S:&%R:R(@;V9F(%P**T]05$E/3E,]"5=)
M4D532$%22R`B26YS=&%L;"!W:7)E<VAA<FLB(&]F9B!<"B`)"4%51$E/("))
M;G-T86QL($9E<W1I=F%L(%-P965C:"!3>6YT:&5S:7,B(&]F9@H@"B!.3U]"
M54E,1#T)6453"D!`("TS.2PW("LS."PX($!`"B`)"4]014Y34TPN4D5!1$U%
M(%1/1$\@55!'4D%$12!54T%'12!S9W5I;&1B+F1I80H@"B!,24)&24Q%4ST)
M4V=U:6Q5=&EL+G1C;"!D:V9F;VYT+G1C;"!E;6%I;#$W+G1C;"!E>'1D871A
M+G1C;"!G=6EL:6(N=&-L(&YE<W-U<VAE861E<BYH=&UL(%P*+0D)<7)Y8G5I
M;&0N=&-L('%R>6QI8BYT8VP@<F5P;W)T+G1C;"!S86YC<"YT8VP@<V5L;&EB
M+G1C;"!S;W5N9"YT8VP@<W1D<75E<GDN=&-L('=H;VES+G1C;`HK"0EQ<GEB
M=6EL9"YT8VP@<7)Y;&EB+G1C;"!R97!O<G0N=&-L('-A;F-P+G1C;"!S96QL
M:6(N=&-L('-O=6YD+G1C;"!S=&1Q=65R>2YT8VP@7`HK"0EW:&]I<RYT8VP*
M(`H@24U!1T53/0D)1&%R:TQI;F5$;W=N,3!X.2YX8FT@1&%R:TQI;F5$;W=N
M,3)X,3$N>&)M($1A<FM,:6YE1&]W;CAX-RYX8FT@1&%R:TQI;F55<#$P>#DN
M>&)M(%P*(`D)1&%R:TQI;F55<#$R>#$Q+GAB;2!$87)K3&EN955P.'@W+GAB
M;2!,:6=H=$QI;F5$;W=N,3!X.2YX8FT@3&EG:'1,:6YE1&]W;C$R>#$Q+GAB
M;2!<"D!`("TU-2PQ,"`K-34L-B!`0`H@"B`N:6YC;'5D92`\8G-D+G!O<G0N
M<')E+FUK/@H@"BTN:68@9&5F:6YE9"A7251(7U1,4RD*+4Q)0E]$15!%3D13
M*ST)=&QS.B1[4$]25%-$25)]+V1E=F5L+W1C;'1L<PHM+F5N9&EF"BT*("YI
M9B!D969I;F5D*%=)5$A?5TE215-(05)+*0H@4E5.7T1%4$5.1%,K/0EW:7)E
H<VAA<FLZ)'M03U)44T1)4GTO;F5T+W=I<F5S:&%R:PH@+F5N9&EF"@``
`
end

--- patch-distinfo begins here ---
--- distinfo.orig	2006-11-15 15:33:51.000000000 -0600
+++ distinfo	2008-04-10 21:07:22.000000000 -0500
@@ -1,3 +1,3 @@
-MD5 (sguil-client-0.6.1.tar.gz) = 68d209f882d4c8fa9c200ba0924b00b3
-SHA256 (sguil-client-0.6.1.tar.gz) = c493cce8c6c1d5802c2ee3d2e0b7bed913ec511bda565ad697250b23a7809dc9
-SIZE (sguil-client-0.6.1.tar.gz) = 204032
+MD5 (sguil-client-0.7.0.tar.gz) = f0841ef5e0d858a0a643fdc61294c091
+SHA256 (sguil-client-0.7.0.tar.gz) = a12aab9477edc47cce6f1dfa344808e4950c07fdce21691bf4730a43a273ec45
+SIZE (sguil-client-0.7.0.tar.gz) = 206713
--- patch-distinfo ends here ---

--- patch-pkg-descr begins here ---
--- pkg-descr.orig	2006-11-15 15:33:51.000000000 -0600
+++ pkg-descr	2008-04-10 21:07:22.000000000 -0500
@@ -4,13 +4,13 @@
 (www.tcl.tk). Sguil also relies on other open source software
 in order to function properly.
 
-The client requires gpg, iwidgets and other tcl packages and may
-also use wireshark, festival and tls depending on your selection
+The client requires tls, gpg, iwidgets and other tcl packages and may
+also use wireshark and festival depending on your selection
 of options.  Run "make config" in the port to see what options
 are available.
 
-Sguil currently functions as an analysis interface and has
-no snort sensor or rule management capabilities.
+Sguil currently functions as an analysis interface and does not yet
+have rule management capabilities.
 
 WWW: http://sguil.sourceforge.net/index.php
 pauls@utdallas.edu
--- patch-pkg-descr ends here ---

--- patch-files-patch-sguil.tk begins here ---
--- files/patch-sguil.tk.orig	2006-11-15 15:33:51.000000000 -0600
+++ files/patch-sguil.tk	2008-04-10 21:07:22.000000000 -0500
@@ -1,11 +1,28 @@
---- client/sguil.tk.orig	Mon Nov 13 13:19:24 2006
-+++ client/sguil.tk	Mon Nov 13 13:21:03 2006
-@@ -1679,6 +1679,8 @@
+--- client/sguil.tk.orig	2008-04-10 20:14:26.000000000 -0500
++++ client/sguil.tk	2008-04-10 20:42:55.000000000 -0500
+@@ -77,7 +77,7 @@
+ 
+ # Load iwidgets and namespaces
+ if [catch {package require Iwidgets} iwidgetsVersion] {
+-    puts "ERROR: Cannot fine the Iwidgets extension."
++    puts "ERROR: Cannot find the Iwidgets extension."
+     puts "The iwidgets package is part of the incr tcl extension and is"
+     puts "available as a port/package most systems."
+     puts "See http://www.tcltk.com/iwidgets/ for more info."
+@@ -2017,11 +2017,11 @@
      set CONF_FILE $env(HOME)/sguil.conf
    } elseif { [file exists ./sguil.conf] } {
      set CONF_FILE ./sguil.conf
-+  } elseif { [file exists /usr/local/etc/sguil.conf] } {
-+    set CONF_FILE /usr/local/etc/sguil.conf
-   } elseif { [file exists /etc/sguil] &&\
-              [file isdirectory /etc/sguil] &&\
-              [file exists /etc/sguil/sguil.conf] &&\
+-  } elseif { [file exists /etc/sguil] &&\
+-             [file isdirectory /etc/sguil] &&\
+-             [file exists /etc/sguil/sguil.conf] &&\
+-             [file readable /etc/sguil/sguil.conf] } {
+-    set CONF_FILE /etc/sguil/sguil.conf
++  } elseif { [file exists /usr/local/etc/sguil-client] &&\
++             [file isdirectory /usr/local/etc/sguil-client] &&\
++             [file exists /usr/local/etc/sguil-client/sguil.conf] &&\
++             [file readable /usr/local/etc/sguil-client/sguil.conf] } {
++    set CONF_FILE /usr/local/etc/sguil-client/sguil.conf
+   } else {
+     puts "Couldn't determine where the sguil config file is"
+     puts "Looked for $env(HOME)/sguil.conf and ./sguil.conf."
--- patch-files-patch-sguil.tk ends here ---

--- patch-files-patch-sguil.conf begins here ---
--- files/patch-sguil.conf.orig	2006-11-15 15:33:51.000000000 -0600
+++ files/patch-sguil.conf	2008-04-10 21:07:22.000000000 -0500
@@ -1,15 +1,20 @@
---- client/sguil.conf.orig	Fri Feb 10 08:59:33 2006
-+++ client/sguil.conf	Mon Nov 13 13:11:03 2006
-@@ -12,7 +12,7 @@
+--- client/sguil.conf.orig	2008-04-04 21:41:20.000000000 -0500
++++ client/sguil.conf	2008-04-04 21:59:36.000000000 -0500
+@@ -12,11 +12,11 @@
  set SERVERHOST demo.sguil.net
  
  # Where any required sguil libraries are (like the font chooser).
 -set SGUILLIB ./lib
-+set SGUILLIB /usr/local/bin/sguil-client/lib
++set SGUILLIB /usr/local/lib/sguil-client/
  # Debug 1=on 0=off  This is VERY chatty
  set DEBUG 1
- # Set up OpenSSL here (read ./doc/OPENSSL.README)
-@@ -30,12 +30,12 @@
+ # PATH to tls lib if needed (tcl can usually find this by default)
+-#set TLS_PATH /usr/lib/tls1.4/libtls1.4.so
++set TLS_PATH /usr/local/lib/libtls.so
+ # win32 example
+ #set TLS_PATH "c:/tcl/lib/tls1.4/tls14.dll"
+ # Path to a whois script.
+@@ -41,12 +41,12 @@
  # If you have festival installed, then you can have alerts spoken to
  # you. Set the path to the festival binary here. If you are using
  # speechd from speechio.org, then leave this commented out.
@@ -18,17 +23,17 @@
  # win32 example
  # set FESTIVAL_PATH "c:\festival\bin\festival.exe"
  #set WHOIS_PATH /common/bin/awhois.sh
- # Path to ethereal
--set ETHEREAL_PATH /usr/sbin/ethereal
-+set ETHEREAL_PATH /usr/local/bin/wireshark
+ # Path to wireshark (ethereal)
+-set WIRESHARK_PATH /usr/sbin/wireshark
++set WIRESHARK_PATH /usr/local/bin/wireshark
  # win32 example
- # set ETHEREAL_PATH "c:/progra~1/ethereal/ethereal.exe"
+ # set WIRESHARK_PATH "c:/progra~1/wireshark/wireshark.exe"
  # Where to save the temporary raw data files on the client system
-@@ -44,7 +44,7 @@
+@@ -55,7 +55,7 @@
  # win32 example
- # set ETHEREAL_STORE_DIR "c:/tmp"
+ # set WIRESHARK_STORE_DIR "c:/tmp"
  # Favorite browser for looking at sig info on snort.org
--set BROWSER_PATH /usr/bin/mozilla
+-set BROWSER_PATH /usr/bin/firefox
 +set BROWSER_PATH /usr/local/bin/firefox
  # win32 example (IE)
  # set BROWSER_PATH c:/progra~1/intern~1/iexplore.exe
--- patch-files-patch-sguil.conf ends here ---


>Release-Note:
>Audit-Trail:
>Unformatted:



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080411033728.E2746347839>