From a52d49baf17e5edb89da99a67a7ca6d62da832c0 Mon Sep 17 00:00:00 2001 From: Ferry Meyndert Date: Thu, 21 Feb 2002 19:43:38 +0000 Subject: added ebuild for p0f --- net-analyzer/p0f/ChangeLog | 10 ++++++ net-analyzer/p0f/files/digest-p0f-1.8.2 | 1 + net-analyzer/p0f/files/p0f-1.8.2-makefile.patch | 12 +++++++ net-analyzer/p0f/files/p0f-1.8.2.init | 46 +++++++++++++++++++++++++ net-analyzer/p0f/p0f-1.8.2.ebuild | 29 ++++++++++++++++ 5 files changed, 98 insertions(+) create mode 100644 net-analyzer/p0f/ChangeLog create mode 100644 net-analyzer/p0f/files/digest-p0f-1.8.2 create mode 100644 net-analyzer/p0f/files/p0f-1.8.2-makefile.patch create mode 100644 net-analyzer/p0f/files/p0f-1.8.2.init create mode 100644 net-analyzer/p0f/p0f-1.8.2.ebuild (limited to 'net-analyzer/p0f') diff --git a/net-analyzer/p0f/ChangeLog b/net-analyzer/p0f/ChangeLog new file mode 100644 index 000000000000..020c2718d2c4 --- /dev/null +++ b/net-analyzer/p0f/ChangeLog @@ -0,0 +1,10 @@ +# ChangeLog for net-analyzer/geotrace +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL + +*p0f-1.8.2 (21 Feb 2002) + + 21 Feb 2002; F.Meyndert p0f-1.8.2.ebuild + Added ebuild for p0f, p0f performs passive OS detection based + on SYN packets. + + diff --git a/net-analyzer/p0f/files/digest-p0f-1.8.2 b/net-analyzer/p0f/files/digest-p0f-1.8.2 new file mode 100644 index 000000000000..4f8cdc1bf001 --- /dev/null +++ b/net-analyzer/p0f/files/digest-p0f-1.8.2 @@ -0,0 +1 @@ +MD5 fdc811dda8e0d261a5564d1f3ad5c24c p0f-1.8.2.tgz 23969 diff --git a/net-analyzer/p0f/files/p0f-1.8.2-makefile.patch b/net-analyzer/p0f/files/p0f-1.8.2-makefile.patch new file mode 100644 index 000000000000..5f322360a5da --- /dev/null +++ b/net-analyzer/p0f/files/p0f-1.8.2-makefile.patch @@ -0,0 +1,12 @@ +--- Makefil 2002-02-14 21:47:28.000000000 +0200 ++++ Makefile 2002-02-14 21:49:57.000000000 +0200 +@@ -17,8 +17,7 @@ + all: $(FILE) strip + + $(FILE): p0f.c +- $(CC) $(CFLAGS) -DVER=\"$(VERSION)\" -o $@ p0f.c $(CLIBS) \ +- `uname|egrep -i 'sunos|solar' >/dev/null && echo "$(SUNLIBS)"` ++ $(CC) $(CFLAGS) -DVER=\"$(VERSION)\" -o $@ p0f.c $(CLIBS) + + strip: + strip $(FILE) || true diff --git a/net-analyzer/p0f/files/p0f-1.8.2.init b/net-analyzer/p0f/files/p0f-1.8.2.init new file mode 100644 index 000000000000..8c3c670c1ec6 --- /dev/null +++ b/net-analyzer/p0f/files/p0f-1.8.2.init @@ -0,0 +1,46 @@ +#!/sbin/runscript +# Based upon a script copyrighted under LGPL +# Modified by Ilian Zarov +# description: p0f - the p0f monitoring program. +# processname: p0f +# pidfile: /var/run/p0f.pid + +PATH=/usr/bin:/sbin:/bin:/usr/sbin +export PATH +export P0FLOGFILE=/var/log/p0f + +# Source function library. +source /etc/init.d/functions.sh + +start() { + ebegin "Starting p0f" + # The 'tcp and tcp[13] & 2 = 2' requires at least syn set. + # An alternative would be 'tcp and tcp[13] & 0x3f = 2', which + # is syn and no other major flags (but ECN enabled packets are OK) + if [ -z "$BpfFilter" ]; then + BpfFilter='tcp and tcp[13] & 2 = 2' + else + BpfFilter="$BpfFilter and tcp and tcp[13] & 2 = 2" + fi + + # The command in backticks returns all the local IP addresses on this machine. + for OneIP in `/sbin/ifconfig 2>/dev/null | grep 'inet addr' | sed -e 's/.*addr://' -e 's/ .*//'` ; do + BpfFilter="$BpfFilter and not src host $OneIP" + done + + # Create a lock file. + mkdir -p /var/lock/subsys + touch /var/lock/subsys/p0f + + # Start up p0f and filter out all packets originating from any of this machines IP's. + einfo "Logfile: ${P0FLOGFILE}" + start-stop-daemon --start --quiet --exec /usr/sbin/p0f -- -v "$BpfFilter" >>"$P0FLOGFILE" 2>&1 & + eend ${?} +} + +stop() { + ebegin "Stopping p0f" + start-stop-daemon --stop --quiet --exec /usr/sbin/p0f + rm -f /var/lock/subsys/p0f + eend ${?} +} \ No newline at end of file diff --git a/net-analyzer/p0f/p0f-1.8.2.ebuild b/net-analyzer/p0f/p0f-1.8.2.ebuild new file mode 100644 index 000000000000..b4e00e6c9460 --- /dev/null +++ b/net-analyzer/p0f/p0f-1.8.2.ebuild @@ -0,0 +1,29 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 +# Author: Ilian Zarov +# Maintainer: Ilian Zarov + +S=${WORKDIR}/${P} +DESCRIPTION="p0f performs passive OS detection based on SYN packets." +SRC_URI="http://www.stearns.org/p0f/p0f-1.8.2.tgz" +DEPEND="net-libs/libpcap" + +src_compile() { + patch < ${FILESDIR}/${P}-makefile.patch + cp ${FILESDIR}/${P}.init p0f.init + make || die +} + +src_install () { + mkdir -p ${D}/usr/bin + mkdir -p ${D}/usr/sbin + mkdir -p ${D}/usr/share/doc + mkdir -p ${D}/usr/share/man/man1 + mkdir -p ${D}/etc/init.d + make DESTDIR=${D} install +} + +pkg_postinst () { + einfo "You can start the p0f monitoring program on boot time by running" + einfo "rc-update add p0f default" +} -- cgit v1.2.3-65-gdbad