rather ambiguous. The original author of the tripwire software had
coded the distribution contrib/install.sh file not to clobber the local
and site key files only whereas CLOBBER=false should also include not
clobbering the installed copies of the twcfg.txt and twpol.txt files.
PR: 85155
Also, document the rename of files/twpol.txt to files/twpol.m4 through
a repocopy. M4 is now used to conditionally build the initial copy of the
Tripwire policy file based on the version of FreeBSD this port is being
installed on.
- Add the TWCONFIG variable to install a user defined tw.config instead
of the one supplied with the port.
- Add the NO_DB_BUILD variable to skip the database build during install
for users upgrading or reinstalling the port who wish to use an existing
or previously installed Tripwire database.
PR: ports/35127
Submitted by: cjc
Approved by: jgreco@ns.sol.net
- Fix the Makefiles to obey the CC and CFLAGS settings
- Fix patches/patch-ab to be PREFIX/LOCALBASE safe
- Fix the post-install to not compress the gunzip and tripwire executables
that go onto a floppy -- there is no support for the gzip-ed ELF binaries
at all, and even for the older AOUT ones such support was optional
- Replaces the /kernel with `sysctl -n kern.bootfile` in the tw.conf as the
tw.conf.freebsd2 is copied into the right place.
- Replace the use of mktemp(3) with tmpfile(3) (see patches/patch-mktemp).
This also caused a removal of a few buffers (of size MAXPATHLEN+256) and
quite a few strcpy and sprintf invocations.
PR: 18634
Submitted by: Mikhail Teterin <mi@aldan.algebra.com>
[Has anyone figured-out what makes the number 393 so interesting to PW, now?]
I wonder what was going through Jordan's head during his infamous
$Id$-smashing commit.
Before I forget....
Thanks to naddy@mips.rhein-neckar.de (Christian Weisgerber) for prompting
this commit. See msg-id: 7geokh$tje$1@mips.rhein-neckar.de
statements are a little strong (like /.cshrc being used in single user mode),
it does appear /root was already protected.
PR: ports/7200
Submitted by: Joe Greco <greco@ns.sol.net>
The CERT FTP site no longer contains Tripwire. A little digging and
sleuthing reveals that Spaf has the stuff over at coast.cs.purdue.edu
anyways. It appears that it might move again in the future, see
ftp://coast.cs.purdue.edu/pub/COAST/Tripwire/README-1297
Changed floppy generation code to chmod gunzip to executable by a
better strategic location for the chmod command. The former code
failed to do this, meaning gunzip couldn't be run from the floppy.
"Ooops". Yes, I actually do use this code! Honest! :-)