Date: Thu, 10 Apr 2008 22:37:28 -0500 (CDT) From: Paul Schmehl <pauls@utdallas.edu> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/122645: security/sguil-client, port upgrade, new version Message-ID: <20080411033728.E2746347839@utd65257.utdallas.edu> Resent-Message-ID: <200804110340.m3B3e1w9073965@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 122645
>Category: ports
>Synopsis: security/sguil-client, port upgrade, new version
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: maintainer-update
>Submitter-Id: current-users
>Arrival-Date: Fri Apr 11 03:40:01 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator: Paul Schmehl
>Release: FreeBSD 7.0-STABLE i386
>Organization:
University of Texas at Dallas
>Environment:
System: FreeBSD hostname.utdallas.edu 7.0-STABLE FreeBSD 7.0-STABLE #4: Mon Apr 7 15:22:19 CDT 2008 root@hostname.utdallas.edu:/usr/obj/usr/src/sys/GENERIC i386
>Description:
security/sguil-client, port upgrade to the new version - 0.7.0
Committer: Please note - there are three sguil ports; server,
sensor and client. All three must be committed at the same time.
In addition, a repocopy of security/barnyard-sguil6 to
security/barnyard-sguil must be committed for the client port to
work correctly. Please ensure that all four changes are committed
at the same time.
>How-To-Repeat:
>Fix:
begin 644 patch-Makefile
M+2TM($UA:V5F:6QE+F]R:6<),C`P-RTP-2TQ.2`Q-3HR,CHU,BXP,#`P,#`P
M,#`@+3`U,#`**RLK($UA:V5F:6QE"3(P,#@M,#0M,3`@,C$Z,#<Z,C(N,#`P
M,#`P,#`P("TP-3`P"D!`("TV+#@@*S8L-R!`0`H@(PH@"B!03U)43D%-13T)
M<V=U:6PM8VQI96YT"BU03U)45D524TE/3CT),"XV+C$*+5!/4E12159)4TE/
M3CT),PHK4$]25%9%4E-)3TX]"3`N-RXP"B!#051%1T]22453/0ES96-U<FET
M>0H@34%35$527U-)5$53/0DD>TU!4U1%4E]3251%7U-/55)#149/4D=%?0H@
M34%35$527U-)5$5?4U5"1$E2/0ES9W5I;`I`0"`M,34L,3,@*S$T+#$S($!`
M"B!-04E.5$%)3D52/0EP875L<T!U=&1A;&QA<RYE9'4*($-/34U%3E0]"5-G
M=6EL(&ES(&$@;F5T=V]R:R!S96-U<FET>2!M;VYI=&]R:6YG('!R;V=R86T*
M(`HK3$E"7T1%4$5.1%,]"71L<SHD>U!/4E131$E2?2]D979E;"]T8VQT;',*
M(%)53E]$15!%3D13/0ED='!L:71E.B1[4$]25%-$25)]+V1E=F5L+W1C;&QI
M8B!<"BT)"6=P9W8Z)'M03U)44T1)4GTO<V5C=7)I='DO9VYU<&<Q(%P**PD)
M9W!G,CHD>U!/4E131$E2?2]S96-U<FET>2]G;G5P9R!<"B`)"21[3$]#04Q"
M05-%?2]L:6(O=&-L>#@N-"]T8VQX+G1C;#HD>U!/4E131$E2?2]L86YG+W1C
M;%@@7`H@"0DD>TQ/0T%,0D%317TO;&EB+VEW:61G971S+VEW:61G971S+G1C
M;#HD>U!/4E131$E2?2]X,3$M=&]O;&MI=',O:7=I9&=E=',*(`HM3U!424].
M4ST)5$Q3("));F-L=61E(&]P96YS<VP@<W5P<&]R="(@;V9F(%P*+0D)5TE2
M15-(05)+("));G-T86QL('=I<F5S:&%R:R(@;V9F(%P**T]05$E/3E,]"5=)
M4D532$%22R`B26YS=&%L;"!W:7)E<VAA<FLB(&]F9B!<"B`)"4%51$E/("))
M;G-T86QL($9E<W1I=F%L(%-P965C:"!3>6YT:&5S:7,B(&]F9@H@"B!.3U]"
M54E,1#T)6453"D!`("TS.2PW("LS."PX($!`"B`)"4]014Y34TPN4D5!1$U%
M(%1/1$\@55!'4D%$12!54T%'12!S9W5I;&1B+F1I80H@"B!,24)&24Q%4ST)
M4V=U:6Q5=&EL+G1C;"!D:V9F;VYT+G1C;"!E;6%I;#$W+G1C;"!E>'1D871A
M+G1C;"!G=6EL:6(N=&-L(&YE<W-U<VAE861E<BYH=&UL(%P*+0D)<7)Y8G5I
M;&0N=&-L('%R>6QI8BYT8VP@<F5P;W)T+G1C;"!S86YC<"YT8VP@<V5L;&EB
M+G1C;"!S;W5N9"YT8VP@<W1D<75E<GDN=&-L('=H;VES+G1C;`HK"0EQ<GEB
M=6EL9"YT8VP@<7)Y;&EB+G1C;"!R97!O<G0N=&-L('-A;F-P+G1C;"!S96QL
M:6(N=&-L('-O=6YD+G1C;"!S=&1Q=65R>2YT8VP@7`HK"0EW:&]I<RYT8VP*
M(`H@24U!1T53/0D)1&%R:TQI;F5$;W=N,3!X.2YX8FT@1&%R:TQI;F5$;W=N
M,3)X,3$N>&)M($1A<FM,:6YE1&]W;CAX-RYX8FT@1&%R:TQI;F55<#$P>#DN
M>&)M(%P*(`D)1&%R:TQI;F55<#$R>#$Q+GAB;2!$87)K3&EN955P.'@W+GAB
M;2!,:6=H=$QI;F5$;W=N,3!X.2YX8FT@3&EG:'1,:6YE1&]W;C$R>#$Q+GAB
M;2!<"D!`("TU-2PQ,"`K-34L-B!`0`H@"B`N:6YC;'5D92`\8G-D+G!O<G0N
M<')E+FUK/@H@"BTN:68@9&5F:6YE9"A7251(7U1,4RD*+4Q)0E]$15!%3D13
M*ST)=&QS.B1[4$]25%-$25)]+V1E=F5L+W1C;'1L<PHM+F5N9&EF"BT*("YI
M9B!D969I;F5D*%=)5$A?5TE215-(05)+*0H@4E5.7T1%4$5.1%,K/0EW:7)E
H<VAA<FLZ)'M03U)44T1)4GTO;F5T+W=I<F5S:&%R:PH@+F5N9&EF"@``
`
end
--- patch-distinfo begins here ---
--- distinfo.orig 2006-11-15 15:33:51.000000000 -0600
+++ distinfo 2008-04-10 21:07:22.000000000 -0500
@@ -1,3 +1,3 @@
-MD5 (sguil-client-0.6.1.tar.gz) = 68d209f882d4c8fa9c200ba0924b00b3
-SHA256 (sguil-client-0.6.1.tar.gz) = c493cce8c6c1d5802c2ee3d2e0b7bed913ec511bda565ad697250b23a7809dc9
-SIZE (sguil-client-0.6.1.tar.gz) = 204032
+MD5 (sguil-client-0.7.0.tar.gz) = f0841ef5e0d858a0a643fdc61294c091
+SHA256 (sguil-client-0.7.0.tar.gz) = a12aab9477edc47cce6f1dfa344808e4950c07fdce21691bf4730a43a273ec45
+SIZE (sguil-client-0.7.0.tar.gz) = 206713
--- patch-distinfo ends here ---
--- patch-pkg-descr begins here ---
--- pkg-descr.orig 2006-11-15 15:33:51.000000000 -0600
+++ pkg-descr 2008-04-10 21:07:22.000000000 -0500
@@ -4,13 +4,13 @@
(www.tcl.tk). Sguil also relies on other open source software
in order to function properly.
-The client requires gpg, iwidgets and other tcl packages and may
-also use wireshark, festival and tls depending on your selection
+The client requires tls, gpg, iwidgets and other tcl packages and may
+also use wireshark and festival depending on your selection
of options. Run "make config" in the port to see what options
are available.
-Sguil currently functions as an analysis interface and has
-no snort sensor or rule management capabilities.
+Sguil currently functions as an analysis interface and does not yet
+have rule management capabilities.
WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu
--- patch-pkg-descr ends here ---
--- patch-files-patch-sguil.tk begins here ---
--- files/patch-sguil.tk.orig 2006-11-15 15:33:51.000000000 -0600
+++ files/patch-sguil.tk 2008-04-10 21:07:22.000000000 -0500
@@ -1,11 +1,28 @@
---- client/sguil.tk.orig Mon Nov 13 13:19:24 2006
-+++ client/sguil.tk Mon Nov 13 13:21:03 2006
-@@ -1679,6 +1679,8 @@
+--- client/sguil.tk.orig 2008-04-10 20:14:26.000000000 -0500
++++ client/sguil.tk 2008-04-10 20:42:55.000000000 -0500
+@@ -77,7 +77,7 @@
+
+ # Load iwidgets and namespaces
+ if [catch {package require Iwidgets} iwidgetsVersion] {
+- puts "ERROR: Cannot fine the Iwidgets extension."
++ puts "ERROR: Cannot find the Iwidgets extension."
+ puts "The iwidgets package is part of the incr tcl extension and is"
+ puts "available as a port/package most systems."
+ puts "See http://www.tcltk.com/iwidgets/ for more info."
+@@ -2017,11 +2017,11 @@
set CONF_FILE $env(HOME)/sguil.conf
} elseif { [file exists ./sguil.conf] } {
set CONF_FILE ./sguil.conf
-+ } elseif { [file exists /usr/local/etc/sguil.conf] } {
-+ set CONF_FILE /usr/local/etc/sguil.conf
- } elseif { [file exists /etc/sguil] &&\
- [file isdirectory /etc/sguil] &&\
- [file exists /etc/sguil/sguil.conf] &&\
+- } elseif { [file exists /etc/sguil] &&\
+- [file isdirectory /etc/sguil] &&\
+- [file exists /etc/sguil/sguil.conf] &&\
+- [file readable /etc/sguil/sguil.conf] } {
+- set CONF_FILE /etc/sguil/sguil.conf
++ } elseif { [file exists /usr/local/etc/sguil-client] &&\
++ [file isdirectory /usr/local/etc/sguil-client] &&\
++ [file exists /usr/local/etc/sguil-client/sguil.conf] &&\
++ [file readable /usr/local/etc/sguil-client/sguil.conf] } {
++ set CONF_FILE /usr/local/etc/sguil-client/sguil.conf
+ } else {
+ puts "Couldn't determine where the sguil config file is"
+ puts "Looked for $env(HOME)/sguil.conf and ./sguil.conf."
--- patch-files-patch-sguil.tk ends here ---
--- patch-files-patch-sguil.conf begins here ---
--- files/patch-sguil.conf.orig 2006-11-15 15:33:51.000000000 -0600
+++ files/patch-sguil.conf 2008-04-10 21:07:22.000000000 -0500
@@ -1,15 +1,20 @@
---- client/sguil.conf.orig Fri Feb 10 08:59:33 2006
-+++ client/sguil.conf Mon Nov 13 13:11:03 2006
-@@ -12,7 +12,7 @@
+--- client/sguil.conf.orig 2008-04-04 21:41:20.000000000 -0500
++++ client/sguil.conf 2008-04-04 21:59:36.000000000 -0500
+@@ -12,11 +12,11 @@
set SERVERHOST demo.sguil.net
# Where any required sguil libraries are (like the font chooser).
-set SGUILLIB ./lib
-+set SGUILLIB /usr/local/bin/sguil-client/lib
++set SGUILLIB /usr/local/lib/sguil-client/
# Debug 1=on 0=off This is VERY chatty
set DEBUG 1
- # Set up OpenSSL here (read ./doc/OPENSSL.README)
-@@ -30,12 +30,12 @@
+ # PATH to tls lib if needed (tcl can usually find this by default)
+-#set TLS_PATH /usr/lib/tls1.4/libtls1.4.so
++set TLS_PATH /usr/local/lib/libtls.so
+ # win32 example
+ #set TLS_PATH "c:/tcl/lib/tls1.4/tls14.dll"
+ # Path to a whois script.
+@@ -41,12 +41,12 @@
# If you have festival installed, then you can have alerts spoken to
# you. Set the path to the festival binary here. If you are using
# speechd from speechio.org, then leave this commented out.
@@ -18,17 +23,17 @@
# win32 example
# set FESTIVAL_PATH "c:\festival\bin\festival.exe"
#set WHOIS_PATH /common/bin/awhois.sh
- # Path to ethereal
--set ETHEREAL_PATH /usr/sbin/ethereal
-+set ETHEREAL_PATH /usr/local/bin/wireshark
+ # Path to wireshark (ethereal)
+-set WIRESHARK_PATH /usr/sbin/wireshark
++set WIRESHARK_PATH /usr/local/bin/wireshark
# win32 example
- # set ETHEREAL_PATH "c:/progra~1/ethereal/ethereal.exe"
+ # set WIRESHARK_PATH "c:/progra~1/wireshark/wireshark.exe"
# Where to save the temporary raw data files on the client system
-@@ -44,7 +44,7 @@
+@@ -55,7 +55,7 @@
# win32 example
- # set ETHEREAL_STORE_DIR "c:/tmp"
+ # set WIRESHARK_STORE_DIR "c:/tmp"
# Favorite browser for looking at sig info on snort.org
--set BROWSER_PATH /usr/bin/mozilla
+-set BROWSER_PATH /usr/bin/firefox
+set BROWSER_PATH /usr/local/bin/firefox
# win32 example (IE)
# set BROWSER_PATH c:/progra~1/intern~1/iexplore.exe
--- patch-files-patch-sguil.conf ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080411033728.E2746347839>