- update to 1.2 .

- honor CFLAGS. - install configuration under ${SYSCONFDIR}/portsentry/ - update license. Okay kevlo@
2006-10-27 09:49:27 +00:00 · 2006-10-27 09:49:27 +00:00 · f359fcd781
commit f359fcd781
parent ab53025d8a
7 changed files with 65 additions and 57 deletions
--- a/security/portsentry/Makefile
+++ b/security/portsentry/Makefile
@ -1,32 +1,47 @@
-# $OpenBSD: Makefile,v 1.7 2004/12/27 13:28:35 alek Exp $
+# $OpenBSD: Makefile,v 1.8 2006/10/27 09:49:27 aanriot Exp $

 COMMENT=	"port scan detection and active defense"

-DISTNAME=	portsentry-1.1
+DISTNAME=	portsentry-1.2
 CATEGORIES=	security

 MAINTAINER=	Kevin Lo <kevlo@openbsd.org>

-PERMIT_PACKAGE_CDROM=  	Yes
+# Common Public License
+PERMIT_PACKAGE_CDROM=  	"commercial distribution defend and indemnify clauses"
 PERMIT_PACKAGE_FTP=    	Yes
-PERMIT_DISTFILES_CDROM=	Yes
+PERMIT_DISTFILES_CDROM=	"commercial distribution defend and indemnify clauses"
 PERMIT_DISTFILES_FTP= 	Yes
 WANTLIB=		c

-MASTER_SITES=	${MASTER_SITE_PACKETSTORM:=UNIX/IDS/}
+MASTER_SITES=	${MASTER_SITE_SOURCEFORGE:=sentrytools/}
+
+WRKDIST=        ${WRKDIR}/portsentry_beta

 ALL_TARGET=	openbsd
-NO_REGRESS=	Yes
+MAKE_FLAGS=	CFLAGS="${CFLAGS}"

 DOCS=	README.install README.methods README.stealth

+pre-build:
+	@perl -pi -e "s,/usr/local/psionic,${SYSCONFDIR}," \
+		${WRKSRC}/portsentry.conf
+	@perl -pi -e "s,/usr/local/psionic,${SYSCONFDIR}," \
+		${WRKSRC}/portsentry_config.h
+
 do-install:
-	${INSTALL_DATA_DIR} ${PREFIX}/lib/portsentry
-	${INSTALL_DATA_DIR} ${PREFIX}/share/doc/portsentry
 	${INSTALL_DATA_DIR} ${PREFIX}/share/examples/portsentry
+	${INSTALL_DATA_DIR} ${PREFIX}/share/doc/portsentry
 	${INSTALL_PROGRAM} ${WRKSRC}/portsentry ${PREFIX}/bin
-	${INSTALL_DATA} ${WRKSRC}/portsentry.conf ${PREFIX}/share/examples/portsentry/portsentry.conf-sample
-	${INSTALL_DATA} ${WRKSRC}/portsentry.ignore ${PREFIX}/lib/portsentry
-	cd ${WRKSRC}; ${INSTALL_DATA} ${DOCS} ${PREFIX}/share/doc/portsentry
+	${INSTALL_DATA} ${WRKSRC}/portsentry.conf \
+		${PREFIX}/share/examples/portsentry/
+	${INSTALL_DATA} ${WRKSRC}/portsentry.ignore \
+		${PREFIX}/share/examples/portsentry/
+
+.for i in ${DOCS}
+	${INSTALL_DATA} ${WRKSRC}/${i} ${PREFIX}/share/doc/portsentry/
+.endfor
+
+NO_REGRESS=	Yes

 .include <bsd.port.mk> 
--- a/security/portsentry/distinfo
+++ b/security/portsentry/distinfo
@ -1,4 +1,4 @@
-MD5 (portsentry-1.1.tar.gz) = 782839446b7eca554bb1880ef0882670
-RMD160 (portsentry-1.1.tar.gz) = 07ddd73040834bd700f0d9e03c23a2d0c8872016
-SHA1 (portsentry-1.1.tar.gz) = 8fb65a33603c691be953aa6630646712f5834595
-SIZE (portsentry-1.1.tar.gz) = 45871
+MD5 (portsentry-1.2.tar.gz) = 3ebd3618ba9abfea2525e236bd44cebd
+RMD160 (portsentry-1.2.tar.gz) = 8bf4bce18229a7ebff47e7fe50493738ae818085
+SHA1 (portsentry-1.2.tar.gz) = 091124db3f9ccc29afae08d6ab1fdd073b789d0a
+SIZE (portsentry-1.2.tar.gz) = 48054
--- a/security/portsentry/patches/patch-portsentry.conf
+++ b/security/portsentry/patches/patch-portsentry.conf
@ -1,26 +0,0 @@
--- portsentry.conf.orig	Sun Nov 14 22:43:06 1999
-+++ portsentry.conf	Tue Mar  6 14:26:24 2001
-@@ -80,11 +80,11 @@
- ######################
- #
- # Hosts to ignore
-IGNORE_FILE="/usr/local/psionic/portsentry/portsentry.ignore"
-+IGNORE_FILE="/usr/local/lib/portsentry/portsentry.ignore"
- # Hosts that have been denied (running history)
-HISTORY_FILE="/usr/local/psionic/portsentry/portsentry.history"
-+HISTORY_FILE="/usr/local/lib/portsentry/portsentry.history"
- # Hosts that have been denied this session only (temporary until next restart)
-BLOCKED_FILE="/usr/local/psionic/portsentry/portsentry.blocked"
-+BLOCKED_FILE="/usr/local/lib/portsentry/portsentry.blocked"
- 
- ###################
- # Response Options#
-@@ -158,7 +158,7 @@
- #KILL_ROUTE="/sbin/route add -host $TARGET$ reject"
- 
- # Generic BSD (BSDI, OpenBSD, NetBSD, FreeBSD)
-#KILL_ROUTE="/sbin/route add $TARGET$ 333.444.555.666"
-+KILL_ROUTE="/sbin/route add $TARGET$ 333.444.555.666"
- 
- # Generic Sun 
- #KILL_ROUTE="/usr/sbin/route add $TARGET$ 333.444.555.666 1"
--- a/security/portsentry/patches/patch-portsentry_c
+++ b/security/portsentry/patches/patch-portsentry_c
@ -0,0 +1,13 @@
+$OpenBSD: patch-portsentry_c,v 1.1 2006/10/27 09:49:27 aanriot Exp $
+--- portsentry.c.orig	Wed Oct 25 07:17:38 2006
+++ portsentry.c	Wed Oct 25 07:18:02 2006
+@@ -1581,8 +1581,7 @@ void
+ Usage (void)
+ {
+   printf ("PortSentry - Port Scan Detector.\n");
+-  printf ("Copyright 1997-2003 Craig H. Rowland <craigrowland at users dot 
+-sourceforget dot net>\n");
+  printf ("Copyright 1997-2003 Craig H. Rowland <craigrowland at users dot sourceforget dot net>\n");
+   printf ("Licensing restrictions apply. Please see documentation\n");
+   printf ("Version: %s\n\n", VERSION);
+ #ifdef SUPPORT_STEALTH
--- a/security/portsentry/patches/patch-portsentry_conf
+++ b/security/portsentry/patches/patch-portsentry_conf
@ -0,0 +1,16 @@
+$OpenBSD: patch-portsentry_conf,v 1.1 2006/10/27 09:49:27 aanriot Exp $
+--- portsentry.conf.orig	Fri May 23 20:10:13 2003
+++ portsentry.conf	Wed Oct 25 22:02:13 2006
+@@ -211,10 +211,10 @@ BLOCK_TCP="1"
+ #KILL_ROUTE="/sbin/ipfw add 1 deny all from $TARGET$:255.255.255.255 to any"
+ #
+ #
+-# For those running ipfilt (OpenBSD, etc.)
+# For those running pf (OpenBSD, etc.)
+ # NOTE THAT YOU NEED TO CHANGE external_interface TO A VALID INTERFACE!!
+ #
+-#KILL_ROUTE="/bin/echo 'block in log on external_interface from $TARGET$/32 to any' | /sbin/ipf -f -"
+#KILL_ROUTE="/bin/echo 'block in log on external_interface from $TARGET$/32 to any' | /sbin/pfctl -f -"
+ 
+ 
+ ###############
--- a/security/portsentry/patches/patch-portsentry_config.h
+++ b/security/portsentry/patches/patch-portsentry_config.h
@ -1,11 +0,0 @@
--- portsentry_config.h.orig	Sun Nov 14 22:43:06 1999
-+++ portsentry_config.h	Tue Mar  6 14:25:25 2001
-@@ -31,7 +31,7 @@
- 
- /* These are probably ok. Be sure you change the Makefile if you */
- /* change the path */
-#define CONFIG_FILE "/usr/local/psionic/portsentry/portsentry.conf"
-+#define CONFIG_FILE "/usr/local/lib/portsentry/portsentry.conf"
- 
- /* The location of Wietse Venema's TCP Wrapper hosts.deny file */
- #define WRAPPER_HOSTS_DENY "/etc/hosts.deny"
--- a/security/portsentry/pkg/PLIST
+++ b/security/portsentry/pkg/PLIST
@ -1,11 +1,12 @@
-@comment $OpenBSD: PLIST,v 1.5 2004/09/24 09:38:45 espie Exp $
+@comment $OpenBSD: PLIST,v 1.6 2006/10/27 09:49:27 aanriot Exp $
 bin/portsentry
-lib/portsentry/
-lib/portsentry/portsentry.ignore
 share/doc/portsentry/
 share/doc/portsentry/README.install
 share/doc/portsentry/README.methods
 share/doc/portsentry/README.stealth
 share/examples/portsentry/
-share/examples/portsentry/portsentry.conf-sample
-@sample ${SYSCONFDIR}/portsentry.conf
+@sample ${SYSCONFDIR}/portsentry/
+share/examples/portsentry/portsentry.conf
+@sample ${SYSCONFDIR}/portsentry/portsentry.conf
+share/examples/portsentry/portsentry.ignore
+@sample ${SYSCONFDIR}/portsentry/portsentry.ignore