Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 27 Oct 2022 08:25:00 GMT
From:      =?utf-8?Q?Fernando=20Apestegu=C3=ADa?= <fernape@FreeBSD.org>
To:        ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org
Subject:   git: 68d6aa009c87 - main - security/ossec-hids*: local_rules.xml replaced with sample file
Message-ID:  <202210270825.29R8P0kc011238@gitrepo.freebsd.org>

next in thread | raw e-mail | index | archive | help
The branch main has been updated by fernape:

URL: https://cgit.FreeBSD.org/ports/commit/?id=68d6aa009c87714f94855e5dc9a5d60992209b84

commit 68d6aa009c87714f94855e5dc9a5d60992209b84
Author:     Dominik Lisiak <dominik.lisiak@bemsoft.pl>
AuthorDate: 2022-10-27 07:56:38 +0000
Commit:     Fernando ApesteguĂ­a <fernape@FreeBSD.org>
CommitDate: 2022-10-27 08:20:32 +0000

    security/ossec-hids*: local_rules.xml replaced with sample file
    
    PR:             266176
    Reported by:    dominik.lisiak@bemsoft.pl (maintainer)
---
 security/ossec-hids-agent/Makefile           | 1 +
 security/ossec-hids-local/Makefile           | 5 +++++
 security/ossec-hids-local/pkg-plist-local    | 2 +-
 security/ossec-hids-local/pkg-plist-server   | 2 +-
 security/ossec-hids-local/scripts/plist.conf | 4 ++++
 5 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/security/ossec-hids-agent/Makefile b/security/ossec-hids-agent/Makefile
index 52eae5c0eb24..c0f5736fbc23 100644
--- a/security/ossec-hids-agent/Makefile
+++ b/security/ossec-hids-agent/Makefile
@@ -1,3 +1,4 @@
+PORTREVISION=	0
 COMMENT=	Security tool to monitor and check logs and intrusions - agent installation
 OSSEC_TYPE=	agent
 
diff --git a/security/ossec-hids-local/Makefile b/security/ossec-hids-local/Makefile
index 820bed6b7b88..de07d873f3d4 100644
--- a/security/ossec-hids-local/Makefile
+++ b/security/ossec-hids-local/Makefile
@@ -1,3 +1,4 @@
+PORTREVISION?=	1
 PKGNAMESUFFIX?=	-${OSSEC_TYPE}
 COMMENT?=	Security tool to monitor and check logs and intrusions - local (standalone) installation
 WWW=		https://ossec.github.io
@@ -139,6 +140,10 @@ SAMPLE_FILES=		${OSSEC_HOME}/etc/local_internal_options.conf \
 			${OSSEC_HOME}/active-response/bin/ossec-slack.sh \
 			${OSSEC_HOME}/active-response/bin/ossec-tweeter.sh
 
+.if ${OSSEC_TYPE} != agent
+SAMPLE_FILES+=		${OSSEC_HOME}/rules/local_rules.xml
+.endif
+
 .if empty(USER)
 USER=$$(${ID} -un)
 .endif
diff --git a/security/ossec-hids-local/pkg-plist-local b/security/ossec-hids-local/pkg-plist-local
index 630a2d4aaa57..55fa77b05b9d 100644
--- a/security/ossec-hids-local/pkg-plist-local
+++ b/security/ossec-hids-local/pkg-plist-local
@@ -119,7 +119,7 @@
 @(,ossec,0640) %%OSSEC_HOME%%/rules/last_rootlogin_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/lighttpd_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/linux_usbdetect_rules.xml
-@(,ossec,0640) %%OSSEC_HOME%%/rules/local_rules.xml
+@sample(,ossec,0640) %%OSSEC_HOME%%/rules/local_rules.xml.sample
 @(,ossec,0640) %%OSSEC_HOME%%/rules/mailscanner_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/mcafee_av_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/mhn_cowrie_rules.xml
diff --git a/security/ossec-hids-local/pkg-plist-server b/security/ossec-hids-local/pkg-plist-server
index 630a2d4aaa57..55fa77b05b9d 100644
--- a/security/ossec-hids-local/pkg-plist-server
+++ b/security/ossec-hids-local/pkg-plist-server
@@ -119,7 +119,7 @@
 @(,ossec,0640) %%OSSEC_HOME%%/rules/last_rootlogin_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/lighttpd_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/linux_usbdetect_rules.xml
-@(,ossec,0640) %%OSSEC_HOME%%/rules/local_rules.xml
+@sample(,ossec,0640) %%OSSEC_HOME%%/rules/local_rules.xml.sample
 @(,ossec,0640) %%OSSEC_HOME%%/rules/mailscanner_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/mcafee_av_rules.xml
 @(,ossec,0640) %%OSSEC_HOME%%/rules/mhn_cowrie_rules.xml
diff --git a/security/ossec-hids-local/scripts/plist.conf b/security/ossec-hids-local/scripts/plist.conf
index 7095978eedcd..756b49f80c3d 100644
--- a/security/ossec-hids-local/scripts/plist.conf
+++ b/security/ossec-hids-local/scripts/plist.conf
@@ -33,3 +33,7 @@ sample_paths="
 /active-response/bin/ossec-pagerduty.sh.sample
 /active-response/bin/ossec-slack.sh.sample
 /active-response/bin/ossec-tweeter.sh.sample"
+if [ "${OSSEC_TYPE}" != "agent" ]; then
+    sample_paths="${sample_paths}
+/rules/local_rules.xml.sample"
+fi



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202210270825.29R8P0kc011238>