head 1.73; access; symbols pkgsrc-2023Q4:1.73.0.2 pkgsrc-2023Q4-base:1.73 pkgsrc-2023Q3:1.71.0.4 pkgsrc-2023Q3-base:1.71 pkgsrc-2023Q2:1.71.0.2 pkgsrc-2023Q2-base:1.71 pkgsrc-2023Q1:1.69.0.12 pkgsrc-2023Q1-base:1.69 pkgsrc-2022Q4:1.69.0.10 pkgsrc-2022Q4-base:1.69 pkgsrc-2022Q3:1.69.0.8 pkgsrc-2022Q3-base:1.69 pkgsrc-2022Q2:1.69.0.6 pkgsrc-2022Q2-base:1.69 pkgsrc-2022Q1:1.69.0.4 pkgsrc-2022Q1-base:1.69 pkgsrc-2021Q4:1.69.0.2 pkgsrc-2021Q4-base:1.69 pkgsrc-2021Q3:1.67.0.4 pkgsrc-2021Q3-base:1.67 pkgsrc-2021Q2:1.67.0.2 pkgsrc-2021Q2-base:1.67 pkgsrc-2021Q1:1.66.0.4 pkgsrc-2021Q1-base:1.66 pkgsrc-2020Q4:1.66.0.2 pkgsrc-2020Q4-base:1.66 pkgsrc-2020Q3:1.65.0.4 pkgsrc-2020Q3-base:1.65 pkgsrc-2020Q2:1.65.0.2 pkgsrc-2020Q2-base:1.65 pkgsrc-2020Q1:1.62.0.2 pkgsrc-2020Q1-base:1.62 pkgsrc-2019Q4:1.60.0.6 pkgsrc-2019Q4-base:1.60 pkgsrc-2019Q3:1.60.0.2 pkgsrc-2019Q3-base:1.60 pkgsrc-2019Q2:1.59.0.8 pkgsrc-2019Q2-base:1.59 pkgsrc-2019Q1:1.59.0.6 pkgsrc-2019Q1-base:1.59 pkgsrc-2018Q4:1.59.0.4 pkgsrc-2018Q4-base:1.59 pkgsrc-2018Q3:1.59.0.2 pkgsrc-2018Q3-base:1.59 pkgsrc-2018Q2:1.58.0.2 pkgsrc-2018Q2-base:1.58 pkgsrc-2018Q1:1.57.0.8 pkgsrc-2018Q1-base:1.57 pkgsrc-2017Q4:1.57.0.6 pkgsrc-2017Q4-base:1.57 pkgsrc-2017Q3:1.57.0.4 pkgsrc-2017Q3-base:1.57 pkgsrc-2017Q2:1.56.0.2 pkgsrc-2017Q2-base:1.56 pkgsrc-2017Q1:1.55.0.2 pkgsrc-2017Q1-base:1.55 pkgsrc-2016Q4:1.54.0.2 pkgsrc-2016Q4-base:1.54 pkgsrc-2016Q3:1.53.0.2 pkgsrc-2016Q3-base:1.53 pkgsrc-2016Q2:1.52.0.8 pkgsrc-2016Q2-base:1.52 pkgsrc-2016Q1:1.52.0.6 pkgsrc-2016Q1-base:1.52 pkgsrc-2015Q4:1.52.0.4 pkgsrc-2015Q4-base:1.52 pkgsrc-2015Q3:1.52.0.2 pkgsrc-2015Q3-base:1.52 pkgsrc-2015Q2:1.51.0.12 pkgsrc-2015Q2-base:1.51 pkgsrc-2015Q1:1.51.0.10 pkgsrc-2015Q1-base:1.51 pkgsrc-2014Q4:1.51.0.8 pkgsrc-2014Q4-base:1.51 pkgsrc-2014Q3:1.51.0.6 pkgsrc-2014Q3-base:1.51 pkgsrc-2014Q2:1.51.0.4 pkgsrc-2014Q2-base:1.51 pkgsrc-2014Q1:1.51.0.2 pkgsrc-2014Q1-base:1.51 pkgsrc-2013Q4:1.50.0.4 pkgsrc-2013Q4-base:1.50 pkgsrc-2013Q3:1.50.0.2 pkgsrc-2013Q3-base:1.50 pkgsrc-2013Q2:1.49.0.4 pkgsrc-2013Q2-base:1.49 pkgsrc-2013Q1:1.49.0.2 pkgsrc-2013Q1-base:1.49 pkgsrc-2012Q4:1.47.0.2 pkgsrc-2012Q4-base:1.47 pkgsrc-2012Q3:1.46.0.2 pkgsrc-2012Q3-base:1.46 pkgsrc-2012Q2:1.45.0.4 pkgsrc-2012Q2-base:1.45 pkgsrc-2012Q1:1.45.0.2 pkgsrc-2012Q1-base:1.45 pkgsrc-2011Q4:1.44.0.6 pkgsrc-2011Q4-base:1.44 pkgsrc-2011Q3:1.44.0.4 pkgsrc-2011Q3-base:1.44 pkgsrc-2011Q2:1.44.0.2 pkgsrc-2011Q2-base:1.44 pkgsrc-2011Q1:1.43.0.2 pkgsrc-2011Q1-base:1.43 pkgsrc-2010Q4:1.42.0.10 pkgsrc-2010Q4-base:1.42 pkgsrc-2010Q3:1.42.0.8 pkgsrc-2010Q3-base:1.42 pkgsrc-2010Q2:1.42.0.6 pkgsrc-2010Q2-base:1.42 pkgsrc-2010Q1:1.42.0.4 pkgsrc-2010Q1-base:1.42 pkgsrc-2009Q4:1.42.0.2 pkgsrc-2009Q4-base:1.42 pkgsrc-2009Q3:1.41.0.2 pkgsrc-2009Q3-base:1.41 pkgsrc-2009Q2:1.40.0.6 pkgsrc-2009Q2-base:1.40 pkgsrc-2009Q1:1.40.0.4 pkgsrc-2009Q1-base:1.40 pkgsrc-2008Q4:1.40.0.2 pkgsrc-2008Q4-base:1.40 pkgsrc-2008Q3:1.39.0.4 pkgsrc-2008Q3-base:1.39 cube-native-xorg:1.39.0.2 cube-native-xorg-base:1.39 pkgsrc-2008Q2:1.38.0.4 pkgsrc-2008Q2-base:1.38 cwrapper:1.38.0.2 pkgsrc-2008Q1:1.36.0.2 pkgsrc-2008Q1-base:1.36 pkgsrc-2007Q4:1.35.0.2 pkgsrc-2007Q4-base:1.35 pkgsrc-2007Q3:1.32.0.2 pkgsrc-2007Q3-base:1.32 pkgsrc-2007Q2:1.30.0.2 pkgsrc-2007Q2-base:1.30 pkgsrc-2007Q1:1.29.0.2 pkgsrc-2007Q1-base:1.29 pkgsrc-2006Q4:1.27.0.6 pkgsrc-2006Q4-base:1.27 pkgsrc-2006Q3:1.27.0.4 pkgsrc-2006Q3-base:1.27 pkgsrc-2006Q2:1.27.0.2 pkgsrc-2006Q2-base:1.27 pkgsrc-2006Q1:1.26.0.10 pkgsrc-2006Q1-base:1.26 pkgsrc-2005Q4:1.26.0.8 pkgsrc-2005Q4-base:1.26 pkgsrc-2005Q3:1.26.0.6 pkgsrc-2005Q3-base:1.26 pkgsrc-2005Q2:1.26.0.4 pkgsrc-2005Q2-base:1.26 pkgsrc-2005Q1:1.26.0.2 pkgsrc-2005Q1-base:1.26 pkgsrc-2004Q4:1.24.0.8 pkgsrc-2004Q4-base:1.24 pkgsrc-2004Q3:1.24.0.6 pkgsrc-2004Q3-base:1.24 pkgsrc-2004Q2:1.24.0.4 pkgsrc-2004Q2-base:1.24 pkgsrc-2004Q1:1.24.0.2 pkgsrc-2004Q1-base:1.24 pkgsrc-2003Q4:1.23.0.2 pkgsrc-2003Q4-base:1.23 netbsd-1-6-1:1.21.0.2 netbsd-1-6-1-base:1.21 netbsd-1-6:1.19.0.8 netbsd-1-6-RELEASE-base:1.19 pkgviews:1.19.0.4 pkgviews-base:1.19 buildlink2:1.19.0.2 buildlink2-base:1.19 netbsd-1-5-PATCH003:1.17 netbsd-1-5-PATCH001:1.8 netbsd-1-5-RELEASE:1.5 netbsd-1-4-PATCH003:1.5 netbsd-1-4-PATCH002:1.4 comdex-fall-1999:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.73 date 2023.11.08.13.20.35; author wiz; state Exp; branches; next 1.72; commitid PsuHTklAIsF4bOLE; 1.72 date 2023.10.24.22.10.34; author wiz; state Exp; branches; next 1.71; commitid MTsrqKm6aGrQAVJE; 1.71 date 2023.06.06.12.42.09; author riastradh; state Exp; branches; next 1.70; commitid xhspr6Z8JLQOWSrE; 1.70 date 2023.04.19.08.11.12; author adam; state Exp; branches; next 1.69; commitid B8gCWhWtMX9vZGlE; 1.69 date 2021.12.08.16.06.07; author adam; state Exp; branches; next 1.68; commitid 2PyWjHx5T8rqARjD; 1.68 date 2021.09.29.19.01.11; author adam; state Exp; branches; next 1.67; commitid WsBUbBM52TSePSaD; 1.67 date 2021.04.21.13.25.13; author adam; state Exp; branches; next 1.66; commitid RAyVO2K5RkoQ8aQC; 1.66 date 2020.10.01.19.45.02; author nils; state Exp; branches; next 1.65; commitid ZiX3GlYLXyJqGeqC; 1.65 date 2020.05.22.10.56.31; author adam; state Exp; branches; next 1.64; commitid m1Z0QPvTTTWz3e9C; 1.64 date 2020.05.06.14.04.58; author adam; state Exp; branches; next 1.63; commitid dLR3o37Fk2B5Cb7C; 1.63 date 2020.04.25.20.13.50; author rillig; state Exp; branches; next 1.62; commitid rXQCDL363YuF0O5C; 1.62 date 2020.03.08.16.50.59; author wiz; state Exp; branches; next 1.61; commitid rcNYzTQo8icypCZB; 1.61 date 2020.02.18.23.00.26; author sevan; state Exp; branches; next 1.60; commitid MLUJHChwJZ0P4dXB; 1.60 date 2019.07.20.22.46.41; author wiz; state Exp; branches; next 1.59; commitid dMrQLvIeoazTQPvB; 1.59 date 2018.07.04.13.40.31; author jperkin; state Exp; branches; next 1.58; commitid NnIyRkdX3Lbg3PIA; 1.58 date 2018.04.17.22.29.46; author wiz; state Exp; branches; next 1.57; commitid 2vVfqOUBo6B4wQyA; 1.57 date 2017.08.01.14.59.03; author wiz; state Exp; branches; next 1.56; commitid WdGfxAP8wrFJlw1A; 1.56 date 2017.06.15.18.27.50; author nils; state Exp; branches; next 1.55; commitid N8mah66giRHeOuVz; 1.55 date 2017.01.19.18.52.21; author agc; state Exp; branches; next 1.54; commitid ufZDMu4cgHZdRBCz; 1.54 date 2016.10.09.21.42.02; author wiz; state Exp; branches; next 1.53; commitid i0AJjxRbfKiS5wpz; 1.53 date 2016.09.19.13.04.26; author wiz; state Exp; branches; next 1.52; commitid 98KhYczgOTf8STmz; 1.52 date 2015.08.23.14.30.40; author wiz; state Exp; branches; next 1.51; commitid z69rudj4sznWYoyy; 1.51 date 2014.01.01.11.52.30; author wiz; state Exp; branches; next 1.50; commitid QYCwxCyUCmbkmpjx; 1.50 date 2013.07.12.10.45.00; author jperkin; state Exp; branches; next 1.49; commitid vVOw5ngQ2VNQxaXw; 1.49 date 2013.03.02.20.33.32; author wiz; state Exp; branches; next 1.48; 1.48 date 2013.02.06.19.31.00; author jperkin; state Exp; branches; next 1.47; 1.47 date 2012.10.23.17.19.09; author asau; state Exp; branches; next 1.46; 1.46 date 2012.09.12.13.16.38; author obache; state Exp; branches; next 1.45; 1.45 date 2012.03.03.00.13.47; author wiz; state Exp; branches; next 1.44; 1.44 date 2011.04.22.14.40.45; author obache; state Exp; branches; next 1.43; 1.43 date 2011.04.01.16.48.36; author gdt; state Exp; branches; next 1.42; 1.42 date 2009.12.09.11.42.35; author obache; state Exp; branches; next 1.41; 1.41 date 2009.07.17.18.00.20; author adrianp; state Exp; branches; next 1.40; 1.40 date 2008.10.25.18.35.19; author adrianp; state Exp; branches; next 1.39; 1.39 date 2008.08.03.19.30.16; author adrianp; state Exp; branches; next 1.38; 1.38 date 2008.06.11.13.00.56; author adrianp; state Exp; branches; next 1.37; 1.37 date 2008.05.25.23.49.07; author adrianp; state Exp; branches; next 1.36; 1.36 date 2008.01.06.00.28.44; author adrianp; state Exp; branches 1.36.2.1; next 1.35; 1.35 date 2007.12.19.03.18.49; author taca; state Exp; branches; next 1.34; 1.34 date 2007.11.11.21.24.24; author adrianp; state Exp; branches; next 1.33; 1.33 date 2007.10.21.00.22.53; author adrianp; state Exp; branches; next 1.32; 1.32 date 2007.08.20.20.28.18; author adrianp; state Exp; branches; next 1.31; 1.31 date 2007.07.04.20.54.52; author jlam; state Exp; branches; next 1.30; 1.30 date 2007.05.18.22.20.09; author adrianp; state Exp; branches; next 1.29; 1.29 date 2007.02.19.19.40.35; author adrianp; state Exp; branches; next 1.28; 1.28 date 2007.02.17.19.08.06; author adrianp; state Exp; branches; next 1.27; 1.27 date 2006.04.18.22.39.32; author adrianp; state Exp; branches; next 1.26; 1.26 date 2005.01.28.23.02.41; author adrianp; state Exp; branches; next 1.25; 1.25 date 2004.12.28.02.47.48; author reed; state Exp; branches; next 1.24; 1.24 date 2003.12.31.14.11.42; author salo; state Exp; branches; next 1.23; 1.23 date 2003.07.26.11.13.16; author salo; state Exp; branches; next 1.22; 1.22 date 2003.04.16.15.51.22; author salo; state Exp; branches; next 1.21; 1.21 date 2002.11.09.13.44.43; author wiz; state Exp; branches 1.21.2.1; next 1.20; 1.20 date 2002.10.10.12.23.05; author wiz; state Exp; branches; next 1.19; 1.19 date 2002.04.15.08.31.16; author rh; state Exp; branches; next 1.18; 1.18 date 2002.04.14.09.49.46; author rh; state Exp; branches; next 1.17; 1.17 date 2002.04.10.22.01.10; author rh; state Exp; branches; next 1.16; 1.16 date 2002.04.02.21.34.08; author rh; state Exp; branches; next 1.15; 1.15 date 2001.12.05.16.03.57; author agc; state Exp; branches; next 1.14; 1.14 date 2001.12.02.14.43.49; author kleink; state Exp; branches; next 1.13; 1.13 date 2001.11.28.13.44.51; author kleink; state Exp; branches; next 1.12; 1.12 date 2001.09.11.16.12.56; author wiz; state Exp; branches; next 1.11; 1.11 date 2001.08.24.11.43.47; author abs; state Exp; branches; next 1.10; 1.10 date 2001.08.22.18.07.50; author hubertf; state Exp; branches; next 1.9; 1.9 date 2001.08.03.06.35.11; author itojun; state Exp; branches; next 1.8; 1.8 date 2001.02.26.20.43.27; author wiz; state Exp; branches; next 1.7; 1.7 date 2001.02.17.18.19.38; author wiz; state Exp; branches; next 1.6; 1.6 date 2000.12.27.10.08.35; author rh; state Exp; branches; next 1.5; 1.5 date 2000.03.20.12.03.45; author agc; state Exp; branches; next 1.4; 1.4 date 2000.02.04.16.18.01; author rh; state Exp; branches; next 1.3; 1.3 date 2000.02.02.12.06.15; author agc; state Exp; branches; next 1.2; 1.2 date 2000.01.15.21.58.29; author wiz; state Exp; branches; next 1.1; 1.1 date 99.09.10.15.48.02; author rh; state Exp; branches 1.1.1.1; next ; 1.36.2.1 date 2008.05.26.07.50.33; author rtr; state Exp; branches; next ; 1.21.2.1 date 2003.04.20.09.59.21; author grant; state Exp; branches; next ; 1.1.1.1 date 99.09.10.15.48.02; author rh; state Exp; branches; next ; desc @@ 1.73 log @*: recursive bump for icu 74.1 @ text @# $NetBSD: Makefile,v 1.72 2023/10/24 22:10:34 wiz Exp $ # DISTNAME= snort-2.9.16.1 PKGREVISION= 6 CATEGORIES= net security MASTER_SITES= https://www.snort.org/downloads/archive/snort/ MAINTAINER= pkgsrc-users@@NetBSD.org HOMEPAGE= https://www.snort.org/ COMMENT= The Open Source Network Intrusion Detection System LICENSE= gnu-gpl-v2 DEPENDS+= daq>=2.0.0:../../net/daq CONFLICTS+= snort-mysql-[0-9]* CONFLICTS+= snort-pgsql-[0-9]* CONFLICTS+= snort-prelude-[0-9]* .include "../../mk/bsd.prefs.mk" GNU_CONFIGURE= YES USE_LIBTOOL= YES USE_TOOLS+= pkg-config USE_TOOLS+= bash PKG_SYSCONFSUBDIR= snort RCD_SCRIPTS= snort SNORT_USER?= snort SNORT_GROUP?= snort EGDIR= ${PREFIX}/share/examples/snort PKG_GROUPS= ${SNORT_GROUP} PKG_USERS= ${SNORT_USER}:${SNORT_GROUP} PKG_GROUPS_VARS+= SNORT_GROUP PKG_USERS_VARS= SNORT_USER FILES_SUBST+= SNORT_USER=${SNORT_USER} SNORT_GROUP=${SNORT_GROUP} BUILD_DEFS+= VARBASE MAKE_JOBS_SAFE= NO # could not compile it on a multi-core system OWN_DIRS_PERMS= ${VARBASE}/log/snort ${SNORT_USER} ${SNORT_GROUP} 700 DOC_FILES= BUGS INSTALL NEWS PROBLEMS README TODO USAGE WISHLIST OWN_DIRS= ${PKG_SYSCONFDIR} ${PKG_SYSCONFDIR}/rules OWN_DIRS+= ${PKG_SYSCONFDIR}/so_rules ${PKG_SYSCONFDIR}/preproc_rules OWN_DIRS+= ${PREFIX}/lib ${PREFIX}/lib/snort_dynamicrules INSTALLATION_DIRS+= ${EGDIR}/rules AUTO_MKDIRS= yes CONF_FILES= ${EGDIR}/attribute_table.dtd \ ${PKG_SYSCONFDIR}/attribute_table.dtd CONF_FILES+= ${EGDIR}/classification.config \ ${PKG_SYSCONFDIR}/classification.config CONF_FILES+= ${EGDIR}/file_magic.conf \ ${PKG_SYSCONFDIR}/file_magic.conf CONF_FILES+= ${EGDIR}/gen-msg.map \ ${PKG_SYSCONFDIR}/gen-msg.map CONF_FILES+= ${EGDIR}/reference.config \ ${PKG_SYSCONFDIR}/reference.config CONF_FILES+= ${EGDIR}/snort.conf.default \ ${PKG_SYSCONFDIR}/snort.conf CONF_FILES+= ${EGDIR}/threshold.conf \ ${PKG_SYSCONFDIR}/threshold.conf CONF_FILES+= ${EGDIR}/generators \ ${PKG_SYSCONFDIR}/generators CONF_FILES+= ${EGDIR}/unicode.map \ ${PKG_SYSCONFDIR}/unicode.map CONF_FILES+= ${EGDIR}/rules/black_list.rules \ ${PKG_SYSCONFDIR}/rules/black_list.rules CONF_FILES+= ${EGDIR}/rules/white_list.rules \ ${PKG_SYSCONFDIR}/rules/white_list.rules REPLACE_BASH+= tools/appid_detector_builder.sh SUBST_CLASSES+= paths SUBST_STAGE.paths= pre-configure SUBST_FILES.paths= etc/snort.conf SUBST_SED.paths= -e "s|/usr/local|${PREFIX}|g" SUBST_SED.paths+= -e "s|../rules|rules|g" SUBST_SED.paths+= -e "s|../so_rules|so_rules|g" SUBST_SED.paths+= -e "s|../preproc_rules|preproc_rules|g" SUBST_MESSAGE.paths= Fixing paths. SUBST_CLASSES+= installp SUBST_STAGE.installp= post-extract SUBST_FILES.installp= src/dynamic-preprocessors/Makefile.in SUBST_SED.installp= -e "s|exec_prefix)|exec_prefix)/share/snort|g" SUBST_MESSAGE.installp= Fixing preprocessors install path. .include "options.mk" CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR} CONFIGURE_ARGS+= --disable-static-daq CONFIGURE_ARGS+= --enable-sourcefire CONFIGURE_ARGS+= --with-daq-includes=${BUILDLINK_PREFIX.daq}/include CONFIGURE_ARGS+= --with-daq-libraries=${BUILDLINK_PREFIX.daq}/lib CONFIGURE_ARGS+= --with-libpcap-includes=${BUILDLINK_PREFIX.libpcap}/include CONFIGURE_ARGS+= --with-libpcap-libraries=${BUILDLINK_PREFIX.libpcap}/lib CONFIGURE_ARGS+= --disable-so_with_static_lib TOOL_DEPENDS+= bison-[0-9]*:../../devel/bison pre-build: ${CP} ${WRKSRC}/etc/snort.conf ${WRKSRC}/etc/snort.conf.default INSTALLATION_DIRS+= ${EGDIR} share/doc/snort/schemas post-install: ${INSTALL_DATA} ${WRKSRC}/etc/*.config \ ${WRKSRC}/etc/*.map \ ${WRKSRC}/etc/threshold.conf \ ${WRKSRC}/etc/attribute_table.dtd \ ${WRKSRC}/etc/file_magic.conf \ ${WRKSRC}/etc/snort.conf.default ${DESTDIR}${EGDIR}/ ${INSTALL_DATA} ${WRKSRC}/doc/generators ${DESTDIR}${EGDIR} .for i in ${DOC_FILES} ${INSTALL_DATA} ${WRKSRC}/doc/${i} ${DESTDIR}${PREFIX}/share/doc/snort/ .endfor ${INSTALL_DATA} ${WRKSRC}/doc/README.* \ ${WRKSRC}/doc/*.tex \ ${WRKSRC}/doc/*.pdf ${DESTDIR}${PREFIX}/share/doc/snort/ ${INSTALL_DATA} ${FILESDIR}/black_list.rules \ ${FILESDIR}/white_list.rules ${DESTDIR}${EGDIR}/rules/ ${INSTALL_MAN} ${WRKSRC}/snort.8 ${DESTDIR}${PREFIX}/${PKGMANDIR}/man8 .include "../../www/nghttp2/buildlink3.mk" .include "../../security/openssl/buildlink3.mk" .include "../../lang/LuaJIT2/buildlink3.mk" .include "../../devel/flex/buildlink3.mk" .include "../../devel/zlib/buildlink3.mk" .include "../../net/daq/buildlink3.mk" .include "../../net/libdnet/buildlink3.mk" .include "../../net/libpcap/buildlink3.mk" .include "../../devel/pcre/buildlink3.mk" .include "../../mk/bsd.pkg.mk" @ 1.72 log @*: bump for openssl 3 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.71 2023/06/06 12:42:09 riastradh Exp $ d5 1 a5 1 PKGREVISION= 5 @ 1.71 log @Mass-change BUILD_DEPENDS to TOOL_DEPENDS outside mk/. Almost all uses, if not all of them, are wrong, according to the semantics of BUILD_DEPENDS (packages built for target available for use _by_ tools at build-time) and TOOL_DEPEPNDS (packages built for host available for use _as_ tools at build-time). No change to BUILD_DEPENDS as used correctly inside buildlink3. As proposed on tech-pkg: https://mail-index.netbsd.org/tech-pkg/2023/06/03/msg027632.html @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.70 2023/04/19 08:11:12 adam Exp $ d5 1 a5 1 PKGREVISION= 4 @ 1.70 log @revbump after textproc/icu update @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.69 2021/12/08 16:06:07 adam Exp $ d97 1 a97 1 BUILD_DEPENDS+= bison-[0-9]*:../../devel/bison @ 1.69 log @revbump for icu and libffi @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.68 2021/09/29 19:01:11 adam Exp $ d5 1 a5 1 PKGREVISION= 3 @ 1.68 log @revbump for boost-libs @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.67 2021/04/21 13:25:13 adam Exp $ d5 1 a5 1 PKGREVISION= 2 @ 1.67 log @revbump for boost-libs @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.66 2020/10/01 19:45:02 nils Exp $ d5 1 a5 1 PKGREVISION= 1 @ 1.66 log @Updated net/snort to version 2.9.16.1. Upstream changelog from 2.9.15.1 to 2.9.16 : * src/preprocessors/Stream6/snort_stream_tcp.c : Addressed an issue when out-of-order FIN is received by dropping it. * src/output-plugins/spo_unified2.c, src/preprocessors/Stream6/snort_stream_tcp.c : Fixed an issue in which xtradata is not added to the alert in unified file. * src/reload.c, src/snort.c : Fixed potential race condition between reload and exit path (main thread). * etc/file_magic.conf : Updated the file magic to detect ALZ file types. * src/sfutil/sf_ip.h : Added support for gcc version 9.2.1. * src/dynamic-preprocessors/appid/detector_plugins/detector_dns.c : Fixed an issue in which APPID returns no match. * src/dynamic-preprocessors/dcerpc2/sf_dce2.vcxproj, src/dynamic-preprocessors/dnp3/sf_dnp3.vcxproj, src/dynamic-preprocessors/dns/sf_dns.vcxproj, src/dynamic-preprocessors/dynamic_preprocessors.vcxproj, src/dynamic-preprocessors/ftptelnet/sf_ftptelnet.vcxproj, src/dynamic-preprocessors/gtp/sf_gtp.vcxproj, src/dynamic-preprocessors/imap/sf_imap.vcxproj, src/dynamic-preprocessors/libs/sfdynamic_preproc_libs.vcxproj, src/dynamic-preprocessors/modbus/sf_modbus.vcxproj, src/dynamic-preprocessors/pop/sf_pop.vcxproj, src/dynamic-preprocessors/reputation/sf_reputation.vcxproj, src/dynamic-preprocessors/sdf/sf_sdf.vcxproj, src/dynamic-preprocessors/sf_dynamic_initialize/sf_dynamic_initialize.vcxproj, src/dynamic-preprocessors/sip/sf_sip.vcxproj, src/dynamic-preprocessors/smtp/sf_smtp.vcxproj, src/dynamic-preprocessors/ssh/sf_ssh.vcxproj, src/dynamic-preprocessors/ssl/sf_ssl.vcxproj, src/win32/WIN32-Prj/build_all.vcxproj, src/win32/WIN32-Prj/sf_engine.vcxproj, src/win32/WIN32-Prj/sf_engine_initialize.vcxproj, src/win32/WIN32-Prj/snort.vcxproj, src/win32/WIN32-Prj/snort_initialize.vcxproj, src/win32/WIN32-Prj/snort_installer_x64.nsi, src/win32/WIN32-Prj/snort_x64.dsw, src/win64/WIN64-Libraries/Packet.lib, src/win64/WIN64-Libraries/libdnet/dnet.lib, src/win64/WIN64-Libraries/pcre.lib, src/win64/WIN64-Libraries/wpcap.lib, src/win64/WIN64-Libraries/zlib.lib, tools/u2spewfoo/u2spewfoo.vcxproj : Added 64-bit support for Windows 10 operating system. * src/dynamic-preprocessors/pop/snort_pop.c : Fixed an issue where POP preprocessor was not generating alert in some cases. * src/dynamic-preprocessors/gtp/gtp_parser.c : Fixed the alerting logic for GTP v2 with missing TEID. * src/preprocessors/HttpInspect/utils/hi_paf.c : Fixed file policy not working with character prefix in chunk size. * configure.in, src/reload.c, src/side-channel/sidechannel.c, src/snort.c, src/target-based/sftarget_reader.c, src/util.h : Added support for glibc version 2.30. * src/decode.h, src/dynamic-plugins/sf_engine/sf_snort_packet.h, src/preprocessors/HttpInspect/utils/hi_paf.c, src/preprocessors/Stream6/snort_stream_tcp.c, src/preprocessors/Stream6/stream_paf.c, src/preprocessors/snort_httpinspect.c, src/preprocessors/snort_httpinspect.h, src/preprocessors/stream_api.h : Added support for early inspection of HTTP payload before flushing in pre-ack mode. * src/file-process/file_api.h, src/file-process/file_service.c, src/preprocessors/HttpInspect/include/hi_norm.h, src/preprocessors/HttpInspect/include/hi_ui_config.h, src/preprocessors/HttpInspect/server/hi_server_norm.c, src/preprocessors/snort_httpinspect.c : Normalize randomly encoded nulls interspersed in the HTTP server response to UTF-8. Upstream changelog from 2.9.16 to 2.9.16.1 : * src/dynamic-preprocessors/appid/appIdConfig.h, src/dynamic-preprocessors/appid/appInfoTable.c, src/dynamic-preprocessors/appid/flow.h, src/dynamic-preprocessors/appid/fw_appid.c : Added packet counters to make sure flows with one-way data don't pend forever. * src/detection-plugins/sp_flowbits.c, src/snort.c : Fixed potential race condition between reload and exit path. * src/detection-plugins/sp_session.c, src/preprocessors/Stream6/stream_paf.h, src/sfutil/util_jsnorm.c : Added support for GCC version 10.1.1. Pkgsrc changes : * added patch for NetBSD to get the definition for endrpcent(), which fixes compilation * snort now depends on bash since a bundled tool is a bash shell script * some pkglint compliance changes in Makefile and options.mk @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.65 2020/05/22 10:56:31 adam Exp $ d5 1 @ 1.65 log @revbump after updating security/nettle @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.64 2020/05/06 14:04:58 adam Exp $ d4 1 a4 2 DISTNAME= snort-2.9.15.1 PKGREVISION= 3 d23 2 a24 1 USE_TOOLS+= pkg-config d36 1 a36 1 MAKE_JOBS_SAFE= NO d42 1 a42 1 INSTALLATION_DIRS+= ${EGDIR}/rules d68 2 @ 1.64 log @revbump after boost update @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.63 2020/04/25 20:13:50 rillig Exp $ d5 1 a5 1 PKGREVISION= 2 @ 1.63 log @net/snort: clean up SUBST_FILES src/snort.c neither contains "/usr" nor "../". @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.62 2020/03/08 16:50:59 wiz Exp $ d5 1 a5 1 PKGREVISION= 1 @ 1.62 log @*: recursive bump for libffi @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.61 2020/02/18 23:00:26 sevan Exp $ d70 1 a70 1 SUBST_FILES.paths= etc/snort.conf src/snort.c @ 1.61 log @Update to Snort 2.9.15.1 2019-12-15 - Snort 2.9.15.1 New Additions Added support for glibc version 2.30. Improvements/Fix Fixed Snort core seen during SSL re-configuration. Fixed file access issues on files from SMB share. Snort 2.9.15.0 New Additions Added new debugs to print detection, file_processing and Preproc time consumption info and verdict. Added support to detect new Korean file formats .egg and .alg in the file preprocessor. Added support to detect new RAR file-type in the file preprocessor. Improvements / Fix Fix to generate ALERT if TEID value is zero in GTP v1 and v2 packets. Fix to whitelist FTP data sessions when no file policy exists. Fix RTF file magic to a more generic value to prevent evasions. Added debug logs during HTTP reload. Added rule SID check during validation. Fix an issue where HTTP was processing non-HTTP traffic on port 443. Added new debugs to print detection, file processing, and Prepro time consumption info and verdicts. Snort 2.9.14.1 [*] New Additions * Added support for wild card port numbers in host cache and overwriting port service AppId. * Added support for new STLS client patterns to help better detect POP3S over SSL. * Added support for detecting Mac based SMTP Microsoft Outlook client application. * Added a new preprocessor alert 120:27 to alert if there is no proper end of header. [*] Improvements / Fix * Improved appId detection for proxied traffic. * Fix for enabling flow profiling mode without restarting snort detection engine. * Fixed packet drop scenario. Snort 2.9.13.0 New Additions Snort now supports reload on snort rules update. Addition of a scenario to add a packet to blacklist verdict to ensure the new session will be allowed. Handled a new pre-processor alert in case of the improper end of t HTTP header. Improvements Modified the calculation of file hash for FTP/HTTP with offset values. Fixed portal authentication connection stuck in half closed state. Updated UDP global timeout for a non-standard port. This release also patched the following two vulnerabilities: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-frpwr-smb-snort Snort 2.9.12.0 New Additions Parsing HTTP CONNECT to extract the tunnel IP and port information. Alerting and dechunking for chunked encoding in HTTP1.0 request and response. Improvements Fixed an issue where, if we have a junk line before HTTP response header, the header was wrongly parsed. Fixed GZIP evasions where an HTTP response with content-encoding:gzip contains a body that has a GZIP-related anomaly. Fixed an issue in certain scenarios where a BitTorrent pattern is seen only on the third packet of the session, causing us to miss our client detection. SMB improvements for file detection and processing. 2017-12-06 - Snort 2.9.11.1 New Additions Added support to block portscan. In addition to tracking the scanning packets, action(drop/sdrop/reject) will be taken for all the packets, which means Snort will block the packet and generate logs. Added support to re-evaluate reputation after reputation update for all flows except those that have already been blacklisted. Improvements Fixed issue to detect RTP up to two SSRC switches in each traffic direction. Fixed issues related to HTTP POST header flushing, calling file processing directly if it is not a multipart header and changes to avoid expensive copy of segment data by not splitting them when flushing headers. Fixed issue of triggering protocol sweep alert when there are multiple destinations from single source ip protocol scan. Added changes to fix IP portscan for protocol other than ICMP and fixed issue of bad fragment size event not being generated for oversized packets. Added changes to use raw data in case of PDF and SWF files during file processing for SHA calculation and Malware Cloud Lookup. Fixed issue of correct session matching for TCP SYN packets without window scale option so that FTP data channels match the same rule as FTP control channels. Fixed issue of applying new configuration in file inspection after Snort reload. Snort 2.9.11 [*] New additions Changes to eliminate Snort restart when there are changes to the memory allocated for preprocessors, by releasing unused or least recently used memory when needed. Added support for storing filenames in Unicode for SMB protocol. Added implementation of hostPortCache versioning for unknown flows in AppID to detect and block BitTorrent. [*] Improvements Enhanced RTSP metadata parsing to match the user-agent field to detect RTSP traffic over Windows Media. Performance improvement when SYN rate limit has reached and drop is configured as next action Control-socket and side-channel support for FreeBSD platform. Fixed issue in file signature lookup for retransmitted FTP packet. Enhanced the processing of SIP/RTP future flows without ignoring them. Changes made in PDF/SWF decompression by adding boundary to the size of the decompressed data. Added a null check to prevent copy unless debugHostIp is configured in AppId. Fixed issue where FTP file type block doesn't work for retried download. Resolved issue where Snort is inappropriately handling traffic for which AppId was creating future flow. Performance improvements for SIP/RTP audio and video data flow in AppId. Performance and stability improvements in FTP preprocessor like incorrect referencing of ftp_data_session after its pruned. Stability improvement by resolving valgrind reported issues in AppId. Improved flushing mechanism for HTTP POST header. Added changes to display AppId for IPv6 unified events. Fixed issues with printing of messages for out-of-order packets. Fixed issue in increment of detection filter counter when rule is used in multiple configurations. Fixed dynamic preprocessor compilation failure in OpenBSD platform. Added changes to improve performance of ipvar list comparison. Enhanced SMTP client detection by allowing line folding and all authentication methods. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.60 2019/07/20 22:46:41 wiz Exp $ d5 1 @ 1.60 log @*: recursive bump for nettle 3.5.1 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.59 2018/07/04 13:40:31 jperkin Exp $ d4 1 a4 2 DISTNAME= snort-2.9.9.0 PKGREVISION= 2 d23 1 d93 2 d120 5 @ 1.59 log @*: Move SUBST_STAGE from post-patch to pre-configure Performing substitutions during post-patch breaks tools such as mkpatches, making it very difficult to regenerate correct patches after making changes, and often leading to substituted string replacements being committed. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.58 2018/04/17 22:29:46 wiz Exp $ d5 1 a5 1 PKGREVISION= 1 @ 1.58 log @Add p11-kit to gnutls/bl3.mk and bump dependencies. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.57 2017/08/01 14:59:03 wiz Exp $ d68 1 a68 1 SUBST_STAGE.paths= post-patch @ 1.57 log @Follow some http -> https redirects. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.56 2017/06/15 18:27:50 nils Exp $ d5 1 @ 1.56 log @Upgraded to version 2.9.9.0. This is a HUGE bump, so look at the changelog on the Snort website ! For example, Snort does not natively handle MySQL anymore. As for the pkgsrc changes : - updated deps (net/daq) ; - updated config files ; - updated MASTER_SITE ; - some substitution to handle pkgsrc paths ; - updated compile options. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.52 2015/08/23 14:30:40 wiz Exp $ d9 1 a9 1 HOMEPAGE= http://www.snort.org/ @ 1.55 log @Convert all occurrences (353 by my count) of MASTER_SITES= site1 \ site2 style continuation lines to be simple repeated MASTER_SITES+= site1 MASTER_SITES+= site2 lines. As previewed on tech-pkg. With thanks to rillig for fixing pkglint accordingly. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.54 2016/10/09 21:42:02 wiz Exp $ d4 1 a4 2 DISTNAME= snort-2.8.5.1 PKGREVISION= 9 d6 1 a6 3 MASTER_SITES= http://www.snort.org/dl/ MASTER_SITES+= http://www.snort.org/dl/current/ MASTER_SITES+= http://www.snort.org/dl/old/ d11 1 d13 1 a13 1 LICENSE= gnu-gpl-v2 d31 2 a32 2 PKG_USERS_VARS+= SNORT_USER FILES_SUBST+= SNORT_USER=${SNORT_USER:Q} SNORT_GROUP=${SNORT_GROUP:Q} d37 5 d43 2 a44 4 CONF_FILES= ${EGDIR}/snort.conf.default \ ${PKG_SYSCONFDIR}/snort.conf CONF_FILES+= ${EGDIR}/threshold.conf \ ${PKG_SYSCONFDIR}/threshold.conf d47 4 d53 4 a56 2 CONF_FILES+= ${EGDIR}/gen-msg.map \ ${PKG_SYSCONFDIR}/gen-msg.map a58 2 CONF_FILES+= ${EGDIR}/sid-msg.map \ ${PKG_SYSCONFDIR}/sid-msg.map d61 4 d69 4 a72 2 SUBST_SED.paths= -e "s|@@PREFIX@@|${PREFIX}|g" SUBST_SED.paths+= -e "s|@@PKG_SYSCONFDIR@@|${PKG_SYSCONFDIR}|g" d77 3 a79 13 SUBST_FILES.installp= src/dynamic-preprocessors/ssl/Makefile.in SUBST_SED.installp= -e "s|@@INSTALL@@|${INSTALL} -c|g" SUBST_MESSAGE.installp= Fixing INSTALL options. SUBST_CLASSES+= install SUBST_STAGE.install= post-configure SUBST_FILES.install= src/dynamic-preprocessors/ftptelnet/Makefile SUBST_FILES.install+= src/dynamic-preprocessors/smtp/Makefile SUBST_FILES.install+= src/dynamic-preprocessors/ssh/Makefile SUBST_FILES.install+= src/dynamic-preprocessors/dcerpc/Makefile SUBST_FILES.install+= src/dynamic-preprocessors/dns/Makefile SUBST_SED.install= -e "s|-o root -g wheel||g" SUBST_MESSAGE.install= Fixing install scripts. d83 5 a87 1 CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR:Q} d90 1 d101 2 d106 9 a114 7 . for i in ${DOC_FILES} ${INSTALL_DATA} ${WRKSRC}/doc/${i} ${DESTDIR}${PREFIX}/share/doc/snort/ . endfor ${INSTALL_DATA} ${WRKSRC}/doc/README.* ${DESTDIR}${PREFIX}/share/doc/snort/ ${INSTALL_DATA} ${WRKSRC}/doc/*.tex ${DESTDIR}${PREFIX}/share/doc/snort/ ${INSTALL_DATA} ${WRKSRC}/doc/*.pdf ${DESTDIR}${PREFIX}/share/doc/snort/ d117 2 a118 3 ${INSTALL_DATA} ${WRKSRC}/schemas/create_* \ ${DESTDIR}${PREFIX}/share/doc/snort/schemas @ 1.54 log @Recursive bump for all users of pgsql now that the default is 95. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.53 2016/09/19 13:04:26 wiz Exp $ d7 3 a9 3 MASTER_SITES= http://www.snort.org/dl/ \ http://www.snort.org/dl/current/ \ http://www.snort.org/dl/old/ @ 1.53 log @Recursive PKGREVISION bump for gnutls shlib major bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.52 2015/08/23 14:30:40 wiz Exp $ d5 1 a5 1 PKGREVISION= 8 @ 1.52 log @Bump PKGREVISION for nettle shlib major bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.51 2014/01/01 11:52:30 wiz Exp $ d5 1 a5 1 PKGREVISION= 7 @ 1.51 log @Recursive PKGREVISION bump for libgcrypt-1.6.0 shlib major bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.50 2013/07/12 10:45:00 jperkin Exp $ d5 1 a5 1 PKGREVISION= 6 @ 1.50 log @Bump PKGREVISION of all packages which create users, to pick up change of sysutils/user_* packages. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.49 2013/03/02 20:33:32 wiz Exp $ d5 1 a5 1 PKGREVISION= 5 @ 1.49 log @Bump PKGREVISION for mysql default change to 55. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.48 2013/02/06 19:31:00 jperkin Exp $ d5 1 a5 1 PKGREVISION= 4 @ 1.48 log @PKGREVISION bumps for net/libpcap update. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.47 2012/10/23 17:19:09 asau Exp $ d5 1 a5 1 PKGREVISION= 3 @ 1.47 log @Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.46 2012/09/12 13:16:38 obache Exp $ d5 1 a5 1 PKGREVISION= 2 @ 1.46 log @Instead of overwrite PKG_OPTIONS.snort with -inet6, drop inet6 from PKG_SUGGESTED_OPTIONS for SunOS. PR 46947. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.45 2012/03/03 00:13:47 wiz Exp $ a16 2 PKG_DESTDIR_SUPPORT= user-destdir @ 1.45 log @Recursive bump for pcre-8.30* (shlib major change) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.44 2011/04/22 14:40:45 obache Exp $ a81 5 # does not work on SunOS .if ${OPSYS} == "SunOS" PKG_OPTIONS.snort=-inet6 .endif @ 1.44 log @recursive bump from gettext-lib shlib bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.43 2011/04/01 16:48:36 gdt Exp $ d5 1 a5 1 PKGREVISION= 1 @ 1.43 log @Update to 2.8.5.1, to resolve a security issue. Upstream NEWS is weak; release notes for 2.8.5.1 follow. [*] Improvements * Fixed syslog output when running on Windows. * Fixed potential segfault when printing IPv6 packets using the -v option. Thanks to Laurent Gaffie for reporting this issue. * Fixed segfault when additional policies were added during a configuration reload. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.42 2009/12/09 11:42:35 obache Exp $ d5 1 @ 1.42 log @Add user-destdir support. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.41 2009/07/17 18:00:20 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.8.3.1 d14 2 @ 1.41 log @Give up MAINTAINER @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.40 2008/10/25 18:35:19 adrianp Exp $ d14 2 d93 2 a95 4 ${INSTALL_DATA_DIR} ${EGDIR} ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/snort ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/snort/schemas d99 2 a100 2 ${WRKSRC}/etc/snort.conf.default ${EGDIR}/ ${INSTALL_DATA} ${WRKSRC}/doc/generators ${EGDIR} d103 1 a103 1 ${INSTALL_DATA} ${WRKSRC}/doc/${i} ${PREFIX}/share/doc/snort/ d106 4 a109 4 ${INSTALL_DATA} ${WRKSRC}/doc/README.* ${PREFIX}/share/doc/snort/ ${INSTALL_DATA} ${WRKSRC}/doc/*.tex ${PREFIX}/share/doc/snort/ ${INSTALL_DATA} ${WRKSRC}/doc/*.pdf ${PREFIX}/share/doc/snort/ ${INSTALL_MAN} ${WRKSRC}/snort.8 ${PREFIX}/${PKGMANDIR}/man8 d112 1 a112 1 ${PREFIX}/share/doc/snort/schemas @ 1.40 log @Update to 2.8.3.1 * Update rule latency thresholding * The flow and stream4 preprocessors will be deprecated in a future release. * DCE/RPC preprocessor changes to handle abnormal TCP segmentation. Added option to reassemble fragmentation buffers early. Updated documentation. * Fixed handling of MPLS label in checking Stream session uniqueness when IPv4 packets are received and build is IPv6. See the ChangeLog for all the details @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.39 2008/08/03 19:30:16 adrianp Exp $ d10 1 a10 1 MAINTAINER= adrianp@@NetBSD.org @ 1.39 log @Set MAKE_JOBS_SAFE=NO Fix non-priv'ed builds which should fix PR 39260 2008-07-24 - Snort 2.8.2.2 [*] Improvements * Fix issue with evaluating PCRE rule options with /U modifier that are followed by a relative content rule option. * Fix issue with dsize range check. 2008-06-12 - Snort 2.8.2.1 [*] Improvements * Fix support for pass rules that sometimes did not take precedence over alert and/or drop rules. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.38 2008/06/11 13:00:56 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.8.2.2 d6 2 a7 1 MASTER_SITES= http://www.snort.org/dl/current/ \ @ 1.38 log @Add 'old' MASTER_SITE just in case we're running a little behind in versions @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.37 2008/05/25 23:49:07 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.8.1 d32 1 d60 6 @ 1.37 log @Update to 2.8.1 Includes fix for CVE-2008-1804 [*] New Additions * Target-Based support to allow rules to use an attribute table describing services running on various hosts on the network. Eliminates reliance on port-based rules. * Support for GRE encapsulation for both IPv4 & IPv6. * Support for IP over IP tunneling for both IPv4 & IPv6. * SSL preprocessor to allow ability to not inspect encrypted traffic. * Ability to read mulitple PCAPs from the command line. * Support for new CVS rule detection options. [*] Improvements * Update to HTTP Inspect to identify overly long HTTP header fields. * Updates to IPv6 support, including changes to avoid namespace conflicts for certain Operating systems. * Updates to address issues seen on various Sparc platforms. * Stricter enforcement of shared object versions to avoid API conflicts. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.36 2008/01/06 00:28:44 adrianp Exp $ d6 2 a7 1 MASTER_SITES= http://www.snort.org/dl/current/ @ 1.36 log @Update to 2.8.0.1 [*] Improvements * Updates to build with new versions of libPCRE. * Fix Stream5 debugging output to actually compile and have correct output for normal & IPv6 enabled builds. * Correct perfmonitor statistic calculation for pattern matcher percentage. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.35 2007/12/19 03:18:49 taca Exp $ d4 1 a4 1 DISTNAME= snort-2.8.0.1 @ 1.36.2.1 log @pullup ticket #2398 - requested by adrianp snort: update for fixes & security vulnerability revisions pulled up: - pkgsrc/net/snort/Makefile 1.37 - pkgsrc/net/snort/PLIST 1.27 - pkgsrc/net/snort/distinfo 1.43 Module Name: pkgsrc Committed By: adrianp Date: Sun May 25 23:49:07 UTC 2008 Modified Files: pkgsrc/net/snort: Makefile PLIST distinfo Log Message: Update to 2.8.1 Includes fix for CVE-2008-1804 [*] New Additions * Target-Based support to allow rules to use an attribute table describing services running on various hosts on the network. Eliminates reliance on port-based rules. * Support for GRE encapsulation for both IPv4 & IPv6. * Support for IP over IP tunneling for both IPv4 & IPv6. * SSL preprocessor to allow ability to not inspect encrypted traffic. * Ability to read mulitple PCAPs from the command line. * Support for new CVS rule detection options. [*] Improvements * Update to HTTP Inspect to identify overly long HTTP header fields. * Updates to IPv6 support, including changes to avoid namespace conflicts for certain Operating systems. * Updates to address issues seen on various Sparc platforms. * Stricter enforcement of shared object versions to avoid API conflicts. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.36 2008/01/06 00:28:44 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.8.1 @ 1.35 log @Remove an obsolete configuration file which already deleted from PLIST. This change should fix a problem with CHECK_FILES=yes. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.34 2007/11/11 21:24:24 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.8.0 @ 1.34 log @snort ipv6 support does not work on SunOS @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.33 2007/10/21 00:22:53 adrianp Exp $ a45 2 CONF_FILES+= ${EGDIR}/sid \ ${PKG_SYSCONFDIR}/sid @ 1.33 log @Update to 2.8.0 * Port lists * IPv6 support * Packet performance monitoring * Experimental support for target-based stream and IP frag reassembly * Ability to take actions on preprocessor events * Detection for TCP session hijacking based on MAC address * Unified2 output plugin * Improved performance and detection capabilities @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.32 2007/08/20 20:28:18 adrianp Exp $ d70 5 @ 1.32 log @Update to 2.7.0.1 Fixed header files to avoid conflicts with system files on BSD for IPv6 data structures. Added code to prevent URI-related alerts from firing when the body is being normalized. Make Stream5 the default stream engine. Add alert for multiple GRE encapsulations. Added ability for Snort to track fragmented ICMPv6 to check for the remote BSD exploit (Bugtraq ID 22901, CVE-2007-1365). Code cleanup, change malloc/calloc to SnortAlloc, use safer functions SnortSnprintf, SnortStrncpy, etc. Check pointers before use. Additional updates for bounds checking. And many more . . . check the ChangeLog for all the details @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.31 2007/07/04 20:54:52 jlam Exp $ d4 1 a4 1 DISTNAME= snort-2.7.0.1 a85 2 ${WRKSRC}/etc/generators \ ${WRKSRC}/etc/sid \ d88 1 @ 1.31 log @Make it easier to build and install packages "unprivileged", where the owner of all installed files is a non-root user. This change affects most packages that require special users or groups by making them use the specified unprivileged user and group instead. (1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to unprivileged.mk. These two variables are lists of other bmake variables that define package-specific users and groups. Packages that have user-settable variables for users and groups, e.g. apache and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP}, etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER} and ${UNPRIVILEGED_GROUP}. (2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.30 2007/05/18 22:20:09 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.6.1.5 @ 1.30 log @Update to 2.6.1.5 Snort v2.6.1.5 includes: * A new http_post rule keyword used to search for content in normalized HTTP posts * A fix for a potential memory leak when generating HTTP Inspection events Snort v2.6.1.4 includes detection functionality for a BSD IPv6 fragmentation overflow, and addresses a number of potential security-related issues in Snort as reported by customers, uncovered by internal investigations, and through third-party code audits. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.29 2007/02/19 19:40:35 adrianp Exp $ d27 2 @ 1.29 log @Update to 2.6.1.3 * src/dynamic-preprocessors/Makefile.am: * src/dynamic-preprocessors/dcerpc/smb_andx_decode.c: * src/dynamic-preprocessors/dcerpc/dcerpc.c: Add bounds checking to ReassembleSMBWriteX; use Safememcpy for calculated length buffer copies. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.28 2007/02/17 19:08:06 adrianp Exp $ d4 1 a4 1 DISTNAME= snort-2.6.1.3 @ 1.28 log @Update to snort 2.6.1.2 2.6.1 provides new functionality including the following: * New pattern matcher with a significantly reduced memory footprint * Introduction of stream5 for experimental use * Improvements to stream4, including UDP session tracking and optimizations for the reassembly buffer * Handling for reassembly of SMB fragmented data in DCE/RPC * An ssh preprocessor for experimental use * Updated Snort decoder that can decode GRE encapsulated packets * Output plugin to allow Snort to configure Aruba access control Snort 2.6.0: * Tcp stream properly reassembled after failed sequence check, which may lead to possible detection evasion. * Added configurable stream flushpoints. * Improved rpc processing. * Improved portscan detection. * Improved http request processing and handling of possible evasion cases. * Improved performance monitoring. The Snort 2.6 release also introduces the ability to use dynamic rules and dynamic preprocessors and contains further improvements to the Snort detection engine. Remove snort-{pgsql,mysql,prelude}. The new snort package uses options.mk to specify build options. @ text @d1 1 a1 1 # $NetBSD$ d4 1 a4 1 DISTNAME= snort-2.6.1.2 @ 1.27 log @Add debug option Suggested by Jason Miller in private email @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.26 2005/01/28 23:02:41 adrianp Exp $ d4 93 a96 1 .include "Makefile.common" d98 2 a99 10 COMMENT= The Open Source Network Intrusion Detection System PKG_OPTIONS_VAR= PKG_OPTIONS.snort PKG_SUPPORTED_OPTIONS= debug .include "../../mk/bsd.options.mk" .if !empty(PKG_OPTIONS:Mdebug) CONFIGURE_ARGS+= --enable-debug .endif d101 2 @ 1.26 log @Update to snort 2.3.0 2005-01-25 - Snort 2.3.0 Final Released * Fixed issue with sfPortscan reporting incorrect IP datagram length. Thanks Jon Hart for the test case and finding the bug, and Marc Norton for resolving the issue. * Threshold/Suppression now prints properly when logging to syslog. Thanks Sekure for pointing out the problem. Thanks Steve Sturges for working on the fix. * Threshold memcap argument now correctly handles non-integer input. Thanks nnposter for the patch. * Fixed issue reported by Allan Jensen, where on MacOS X, ppp links were not decoded properly. Thanks Dan Roelker for the fix. * Snort manual and FAQ are updated for 2.3. Thanks Jen Harvey for your work on putting it all together. 2004-12-15 - Snort 2.3.0 RC2 Released * Small performance improvement to arpspoof and also fixed a problem where the list of configured IP/MAC entries would contain only one entry and leaked memory (Jeff Nathan). * Fixed a problem affecting MacOS X where linking may fail with non-standard libraries when global symbols are encountered multiple times (Jeff Nathan). * Ignore RST|ACK midstream pickup case so we don't get an evasive TCP alerts. Thanks for the report, Sekure. Thanks Dan Roelker for the fix. * Moved CheckLogDir() to after parsing snort.conf (for IDS mode) so the logdir config will work if the default or command-line logdir does not exist on the system. Thanks Dan Roelker. * Fixed bug when setting the doe_ptr on a successful pcre match. It is now set relative to base_ptr. Thanks Steve Sturges for the fix. * Added from_beginning and multiplier options for byte_jump. from_beginning skips bytes from the beginning of the content, instead of from the location immediately following the number of bytes to skip. multiplier takes a numeric argument, and skips x times that number of bytes. Thanks again to Steve Sturges. * In "fast" output, now log only actual packet contents when UDP data length is greater than actual data length. Thanks Brian Caswell for spotting this, and Andrew Mullican for working on the fix. * Please check the ChangeLog for further details. 2004-11-18 - Snort 2.3.0 RC1 Released * Added IPS functionality from Snort-Inline. A big thanks to the Snort-Inline guys (Jed Haile, Rob McMillen, William Metcalf, and Victor Julien). Also, Thanks Dan Roelker for doing the integrating of Snort-Inline into the official Snort project. * Added new portscan detector. The design and implementation was headed up by Dan Roelker, and included Marc Norton and Jeremy Hewlett. * Numerous changes for better 64bit Snort support from Jeremy Hewlett and Marc Norton. Additionally, an --enable-64bit-gcc option was added to configure. However, there are still some memory alignment issues to work out before 64bit mode is fully functional, patches are welcomed. Thanks Chris Baker for doing 64bit testing. * Added not_established keyword to the flow detection option. This allows snort to do dynamic firewall rulesets. Experimental for now. * Added an enforce_state keyword to stream4 so we won't pick up midstream sessions. This works well for asynchronous links and also for just monitoring legitimate traffic. * Relocated ./contrib files to http://www.snort.org/dl/contrib as many are not maintained by Sourcefire and are out of date. The rpm and schema files have been relocated in their respective 'rpm' and 'schemas' directories under the snort parent directory. * perfmonitor config line can now be configured with "accumulate" or "reset." Thanks Marc Norton for the feature, and Barry Basselgia for pointing out the issue. Thanks Scott Dexter and Andreas Ostling for doing some initial testing. * Fixed 64-bit bug in sfmemcap.c found and tested by Ryan Matteson and Clay McClure. Thanks guys. * Fixed reference times to match log time for first packet, for an event generated by a reassembled packet. Incremented event ID to give unique ID for each packet. Also made unified logging compatible with Windows. Thanks Andrew Mullican for the fix. * Fixed linux perfmonitoring stats for the 2.6 kernel. Thanks to everyone that reported this bug. Thanks Dan Roelker for the fix. * Get thresholding/suppression to work for alerts that do not contain an ip header (primarily decode alerts). Thanks Brian Caswell. * Fix conditions where snort would log double web alerts that contained only content options (no uricontents). Thanks to kawa for finding and reporting this bug. * Fix suppression/thresholding bug for non-rule alerts. Thanks to Alex Butcher for reporting it to us. * Many other bug fixes, please check the ChangeLog for details. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.25 2004/12/28 02:47:48 reed Exp $ d8 9 @ 1.25 log @The default location of the pkgsrc-installed rc.d scripts is now under share/examples/rc.d. The variable name already was named RCD_SCRIPTS_EXAMPLEDIR. This is from ideas from Greg Woods and others. Also bumped PKGREVISION for all packages using RCD_SCRIPTS mechanism (as requested by wiz). @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.24 2003/12/31 14:11:42 salo Exp $ a5 1 PKGREVISION= 1 @ 1.24 log @Update to version 2.1.0. Changes: 2.1.0: ====== - A new connection tracking module, Flow (replaces conversation) - A new portscan detector based off of Flow, Flow-Portscan (replaces portscan2) - A new http preprocessor, HttpInspect (replaces http_decode) - Alert Thresholding and Suppression - PCRE rule keyword (Perl Compat Regular Expressions) - isdataat rule keyword (buffer length detection) - A ton of new and updated rules. 2.0.6: ====== - 64-bit update for detection engine. (Thanks, Silio d'Angelo) - Added better PPP decoding. (Thanks Jesper Peterson) - Updated ip_proto optimization for high-speed detection engine. - Fixed infinite loop problem that was introduced by the recursive pattern matching patch. Reported by Lawrence Reed, thanks for testing out the changes for us! - Various changes to help respond (version 1) work a little better. - spp_http_decode 64-bit patch from Dirk Mueller. - Out-of-order ACK problem from Andrew Rucker. Also, updated stream4 to the most recent version from HEAD. - Minor fixes to tagging related to 'src' and 'dst' directives - When counting one byte patterns in 'ningroup' added a check for psLen==1 (wu-manber pattern matcher). Thanks Josh Sakofsky and Dennis McGuire for helping us test this. 2.0.5: ====== - Stream4 fixes from Andrew Rucker Jones. - Allow memcap to be configured for threshold features. 2.0.4: ====== - Fixed a core dump introduced with 2.0.3 when dealing with negated patterns 2.0.3: ====== - doe_ptr handling in byte_test/byte_jump slightly modified to work better with the pcre patch - content processing is now recursive to make distance/within processing better ( thanks to Shai Rubin for patch! ) - fixed a bug in the mwm.c pattern matcher that resulted in some alerts not firing in a particular configuration of rules 2.0.2: ====== - Added Thresholding and Suppression features (Marc Norton/Sourcefire) - Fixed TCP RST processing bug found (Shai Rubin) - Cleanup of spp_arpspoof (Jeff Nathan) - Cleanup of win32 version including proper Event Log support (Chris Reid) - Munged data fixes for stream4 (Chris Green) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.23 2003/07/26 11:13:16 salo Exp $ d6 1 @ 1.23 log @Updated to version 2.0.1. Changes: - fix host endianess problem in udp decoder - vlan decoding fixes from Michael Pomraning - add tcp state checking to httpflow - ignoring bad checksums throughout snort if checksumming is turned on - config disable_ttcp_alerts is now also config disable_tcpopt_ttcp_alerts - better initialization handling of low memory conditions pointing to the - low memory search engine - byte_jump / byte_test 2 byte cases handled and unified - correctly assign port numbers on tcpoption events - pass rule logic changed to "win" in specific multiple event cases - named interface support for win32 from the winpcap folks - spp_bo now also will work with log-only output plugins - added window detection plugin documentation to manual - lots of new rules and tons of rule documentation @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.22 2003/04/16 15:51:22 salo Exp $ a7 3 USE_BUILDLINK2= YES .include "../../net/libpcap/buildlink2.mk" @ 1.22 log @Bump PKGREVISION: honour PKG_SYSCONFDIR for real. (i thought i fixed this before but apparently i did not :/) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.21 2002/11/09 13:44:43 wiz Exp $ d6 1 a6 3 PKGREVISION= 1 COMMENT= Libpcap-based packet sniffer/logger @ 1.21 log @COMMENT should be set in Makefile, not any common Makefile parts. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.20 2002/10/10 12:23:05 wiz Exp $ d3 1 d5 3 @ 1.21.2.1 log @Pull up revision 1.22 (requested by salo in ticket #1258): Bump PKGREVISION: honour PKG_SYSCONFDIR for real. (i thought i fixed this before but apparently i did not :/) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.22 2003/04/16 15:51:22 salo Exp $ a2 1 a3 3 PKGREVISION= 1 @ 1.20 log @buildlink1 -> buildlink2. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.19 2002/04/15 08:31:16 rh Exp $ d4 1 @ 1.19 log @Remove SNORT_USE_PGSQL option. This will be split out into a separate package. For that purpose, move most of Makefile into a new Makefile.common. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.18 2002/04/14 09:49:46 rh Exp $ d3 1 d5 1 a5 1 .include "Makefile.common" d7 1 a7 1 .include "../../net/libpcap/buildlink.mk" @ 1.18 log @Add a SNORT_USE_PGSQL option to compile in PostgreSQL support (and add the appropriate dependency). Patch provided by ww@@GROOVY.NET @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.17 2002/04/10 22:01:10 rh Exp $ d4 1 a4 43 DISTNAME= snort-1.8.6 CATEGORIES= net security MASTER_SITES= http://www.snort.org/releases/ \ ftp://the.wiretapped.net/pub/security/network-intrusion-detection/snort/ \ http://www.centus.com/snort/ \ http://snort.whitehats.com/ \ http://snort.safenetworks.com/ \ ftp://gd.tuwien.ac.at/infosys/security/snort/ \ http://snort.sourcefire.com/releases/ MAINTAINER= rh@@netbsd.org HOMEPAGE= http://www.snort.org/ COMMENT= Libpcap-based packet sniffer/logger GNU_CONFIGURE= YES CONFIGURE_ARGS+= --with-libpcap-includes=${BUILDLINK_DIR}/include CONFIGURE_ARGS+= --with-libpcap-libraries=${BUILDLINK_DIR}/lib .if defined(SNORT_USE_PGSQL) .include "../../databases/postgresql-lib/buildlink.mk" CONFIGURE_ARGS+= --with-postgresql=${BUILDLINK_DIR} .endif post-install: ${INSTALL_DATA_DIR} -m 700 -o ${ROOT_USER} -g ${ROOT_GROUP} /var/log/snort ${INSTALL_DATA_DIR} ${PREFIX}/share/snort cd ${WRKSRC} ; \ for i in snort.conf *.config *.rules ; do \ ${INSTALL_DATA} $$i ${PREFIX}/share/snort ; \ done : ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/snort cd ${WRKSRC} ; \ for f in [A-LN-Z]* ; do \ ${INSTALL_DATA} $$f ${PREFIX}/share/doc/snort ; \ done : ${INSTALL_DATA_DIR} ${PREFIX}/share/snort/MIBS cd ${WRKSRC}/MIBS ; \ for m in SnortCommonMIB.txt SnortIDAlertMIB.txt ; do \ ${INSTALL_DATA} $$m ${PREFIX}/share/snort/MIBS ; \ done ${INSTALL_MAN} ${WRKSRC}/snort.8 ${PREFIX}/man/man8 @ 1.17 log @Update snort to 1.8.6. Patch provided in private mail by Mipam . From the release notes: 1.8.4 and 1.8.5 both had bugs that were found right as we were ready to do a full release and represented good midway points but 1.8.6 should be the stable target. Changes include: * The ICMP decoders have been rewritten. * (This is a summary of recent changes -- not all mine) * Fixed stream4 offset initialization * Double Open of snort log file * Lots of new rules * Fatal error on problems other than -> and <> * Fixed stream4 several low memory conditions * Error checking in stream4/frag2 argument parsing * snort-db schema updates to 1.05 * --with-pcap-includes should now look at specified pcap * packet statistics now should be more accurate with regards to lost frags * double PID file write * S4 alignment problems on SPARC fixed ( rpc_decode still has SPARC alignment errors ) * new snmptrap code * documentation updates * Stability fixes in frag2 * SEQ / ACK checking should be correct * Reassembled packets with stream4 will now also be inspected when using -z est * ip fragments are now calculated correctly * rule headers correctly matched ( multiple CIDR performance greatly increased ) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.16 2002/04/02 21:34:08 rh Exp $ d22 4 a25 1 #WRKSRC= ${WRKDIR}/snort @ 1.16 log @Update snort to 1.8.4 (update was provided by Mipam in a private mail -- thanks!) Changes are: * Fixed stream4 offset initialization * Double Open of snort log file * Lots of new rules * Fatal error on problems other than -> and <> * Fixed stream4 several low memory conditions * Error checking in stream4/frag2 argument parsing * snortdb schema updates to 1.05 * --with-pcap-includes should now look at specified pcap * packet statistics now should be more accurate with regards to lost packets werwerwerwerwer * double PID file write * S4 alignment problems on Sparc fixed * new snmptrap code * documentation updates * Stability fixes in frag2 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.15 2001/12/05 16:03:57 agc Exp $ d4 1 a4 1 DISTNAME= snort-1.8.4 @ 1.15 log @Normalise all the uses of "wheel", and "root" for ${ROOT_GROUP}, now that the definition is available in all the defs.${OPSYS}.mk files. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.14 2001/12/02 14:43:49 kleink Exp $ d4 1 a4 1 DISTNAME= snort-1.8.3 @ 1.14 log @Update snort to 1.8.3; changes since 1.8.2 include: Major repairs include a fix to frag2 on Linux platforms, the icmp decoder and printout routines were updated to match the data structures that I implemented in 1.8.1 and the flexresp code was repaired and should now be faster, plus the usual rule updates. I also added a new "-B" command line switch to convert IP addresses in a pcap file to a new specified IP subnet addresses. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.13 2001/11/28 13:44:51 kleink Exp $ a21 8 .include "../../mk/bsd.prefs.mk" .if ${OPSYS} == "SunOS" || ${OPSYS} == "Linux" ROOTGROUP= root .endif ROOTGROUP?= wheel d25 1 a25 1 ${INSTALL_DATA_DIR} -m 700 -o root -g ${ROOTGROUP} /var/log/snort @ 1.13 log @Update snort to 1.8.2; changes since 1.8.1 include: * fixed UTC timestamps * fixed SIGUSR1 handling, should reset properly now after getting a signal * fixed PID path generation code, PID files go in the right place now * fixed stability problems in stream4 * fixed stability problems in frag2 * tweaks to spo_unified for better integration with barnyard * added -f switch to turn off fflush() calls in binary logging mode * added new config keyword to stream4, "log_flushed_streams", which causes all buffered packets in the stream reassembler for that session to be logged in the event of an event on that stream (must be used in conjunction with spo_log_tcpdump) * added packet precacheing for flexresp TCP packets, responses should be generated more quickly * fixed rules parser code for various failure modes * several new rules files and a new classification system @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.12 2001/09/11 16:12:56 wiz Exp $ d4 1 a4 1 DISTNAME= snort-1.8.2 @ 1.12 log @Use libpcap buildlink.mk instead of OS test. By Stoned Elipot from pkg/13928. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.11 2001/08/24 11:43:47 abs Exp $ d4 1 a4 2 DISTNAME= snort-1.8.1-RELEASE PKGNAME= ${DISTNAME:C/-RELEASE//} d6 1 a6 1 MASTER_SITES= http://www.snort.org/Files/ \ @ 1.11 log @At least depend on the right version of pcal for SunOS or Linux. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.10 2001/08/22 18:07:50 hubertf Exp $ d20 2 a25 1 DEPENDS+= libpcap>=0.4:../../net/libpcap d54 1 @ 1.10 log @Upgrade snort to 1.8.1. Changes: * SNMP alerts * IDMEF XML output (the Silicon Defense plugin is integrated into the main codebase now) * Limited regex support in the rules language * New packet counters for stream4 and frag2 * New normalization mode for http_decode @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.9 2001/08/03 06:35:11 itojun Exp $ d23 2 a24 2 .if ${OPSYS} == "SunOS" DEPENDS+= libpcap-0.4:../../net/libpcap @ 1.9 log @upgrade to 1.8p1. for list of changes, see http://www.snort.org/snort-files.htm default rule files are now named *.rules, not *-lib. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.8 2001/02/26 20:43:27 wiz Exp $ d4 2 a5 1 DISTNAME= snort-1.8p1 d12 2 a13 1 ftp://gd.tuwien.ac.at/infosys/security/snort/ d30 1 a30 1 WRKSRC= ${WRKDIR}/snort d35 5 a39 8 .for f in backdoor.rules ddos.rules dns.rules dos.rules exploit.rules \ finger.rules ftp.rules icmp-info.rules icmp.rules info.rules \ local.rules misc.rules netbios.rules policy.rules rpc.rules \ rservices.rules scan.rules shellcode.rules smtp.rules sql.rules \ telnet.rules virus.rules web-cgi.rules web-coldfusion.rules \ web-frontpage.rules web-iis.rules web-misc.rules x11.rules ${INSTALL_DATA} ${WRKSRC}/${f} ${PREFIX}/share/snort .endfor d41 10 a50 5 .for f in BUGS CREDITS README README.FLEXRESP README.PLUGINS \ README.Spade README.Spade.Usage README.csv README.database README.tcpstream \ README.xml NEWS RULES.SAMPLE USAGE ${INSTALL_DATA} ${WRKSRC}/${f} ${PREFIX}/share/doc/snort .endfor @ 1.8 log @Update to 1.7, provided by Mipam in private mail. Changes: lots of bugfixes, many new plugins, SPADE (statistical anomaly detector), and more. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.7 2001/02/17 18:19:38 wiz Exp $ d4 1 a4 1 DISTNAME= snort-1.7 d28 2 d33 6 a38 3 .for f in backdoor-lib ddos-lib finger-lib ftp-lib misc-lib netbios-lib \ overflow-lib ping-lib rpc-lib scan-lib smtp-lib telnet-lib \ web-lib webcf-lib webcgi-lib webfp-lib webiis-lib webmisc-lib d43 1 a43 1 README.Spade README.Spade.Usage README.database README.tcpstream \ @ 1.7 log @Update to new COMMENT style: COMMENT var in Makefile instead of pkg/COMMENT. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.6 2000/12/27 10:08:35 rh Exp $ d4 1 a4 2 DISTNAME= snort-1.6.3-patch2 PKGNAME= ${DISTNAME:S/-patch/./} d22 1 a22 1 DEPENDS= libpcap-0.4:../../net/libpcap d32 2 a33 2 overflow-lib ping-lib rpc-lib scan-lib smtp-lib snort-lib telnet-lib \ webcf-lib webcgi-lib webfp-lib webiis-lib webmisc-lib d37 3 a39 2 .for f in BUGS CREDITS README README.FLEXRESP README.PLUGINS NEWS \ RULES.SAMPLE USAGE @ 1.6 log @Update snort to 1.6.3.2. Notable changes include: Fixes and additions: * Fixed compilation problems on all non-BSD operating systems * Added better configuration support for locating libpcap * Fixed ICMP ping packet id/sequence printouts * Made allowances for 64-bit machines in the decoders * Updated the portscan detector to the latest version * Disabled the defragmenter by default (in the rules file) * Added a patch from Dave Dittrich to make daemon mode alerts filenames conform * to the data in the documentation * Revamped the ICMP data structures to mimic those found in *BSD and provide for higher fidelity decoding/printout in the future * Repaired the output plugins so that they operate properly now * For the record, the payload dump conforms to the length of the IP datagram now and does not show pad bytes added by the minimum Ethernet frame size * Applied Chris Cramer's byte ordering patch to the flexresp code Other updates and changes since version 1.6: * New preprocessor plugin: IP defragmentation!! * New output plugins cover all old logging and alerting options * New output plugin no logs to MySQL, PostgreSQL, unixODBC databases * Updated portscan detection functionality * Added quote removal for most plugin parsers * -C crash bug fixed * PID/PATH_VARRUN file fixes * Converted many putc(3) calls to fputc(3) for portability * Transport layer decoders use ip_len field for length metric now * String tokenizer code modified for more reliable operation * Fixed flexible response code sequence prediction * Fixed DEBUG ifdef's so DEBUG mode code will compile correctly on all platforms * Set automake options so that people don't need gmake anymore to build Snort on BSD systems * Fixed SMB alert code large tmp file hole * Added sigsetmask code to fix SIGHUP weirdness * Added execvp option for SIGHUP restart code * Added ARP header printout validation * Added Session logging file integrity checking * Added -u/-g setuid/gid capability switches * Added -O IP address obfuscation switch * Added -t chroot switch * Fixed non-TCP/UDP/ICMP transport layer decoding & logging * Fixes and additions to the portscan preprocessor * Fixed Tru64 u_int* type declarations * Added check for pcap.h into configuration script * Fixed timeval problems on Linux boxen * Database logging plugin has been modified extensively, see the www.incident.org website for more information * Switched TCP flags printout routine to ensure proper RFP output scan output. ;) * Fixed default log/alert function code so that these functions are never NULL @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.5 2000/03/20 12:03:45 agc Exp $ d16 1 @ 1.5 log @Upgrade snort to version 1.6. Changes since version 1.5.1 include: New features: * Token Ring and FDDI decoder support * Snort ported to Tru64/Alpha, IRIX 6.X, and AIX * Output plugins added (modular output system) * John Wilson greatly improved the speed of the content pattern matcher * Added FlexResp (active response) plugin from Christian Lademann * Snort man page now ships with the distribution * Snort now generates a PID file for easier integration with scripting * Added support for "stealthed" network interfaces New command line switches: * -q => quiet mode (no stdout printing) * -C => print payload ASCII content only * -P => set explicit snaplen for packet collection Plugins: * Added Postgres SQL DB logging output module from Jed Pickel * Added portscan detection plugin from Patrick Mullen * HTTP decode preprocessor largely rewritten and much more accurate * Minfrag rule moved to preprocessor module * Added ICMP ECHO ID check plugin * Added ICMP ECHO sequence check plugin * Added RPC analysis plugin from Mark Hindess * Added IP option analysis plugin * Added nocase plugin (makes content rules work with case insensitivity) * Added syslog output module with user definable syslog facility * Added tcpdump output module (and building without patches on Solaris). @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.4 2000/02/04 16:18:01 rh Exp $ d4 2 a5 1 DISTNAME= snort-1.6 d7 1 a7 1 MASTER_SITES= http://www.clark.net/~roesch/ \ d9 3 a11 3 http://www.centus.com/snort/ \ http://snort.whitehats.com/ \ http://snort.safenetworks.com/ \ d15 1 a15 1 HOMEPAGE= http://www.clark.net/~roesch/security.html d31 3 a33 1 .for f in backdoor-lib misc-lib overflow-lib scan-lib snort-lib web-lib d37 2 a38 1 .for f in README README.PLUGINS NEWS RULES.SAMPLE USAGE @ 1.4 log @Update snort to 1.5.1 Changes are: * fixed a problem with pass rules not being applied properly * fixed a #include ordering statement for Slackware 4.0 installs * fixed banner output for the -V option * Token Ring decoding is now fully functional * Added packet buffer cleanup code to all protocol decoders * fixed a problem with improper TCP option output * Added a Snort man page @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.3 2000/02/02 12:06:15 agc Exp $ d4 1 a4 1 DISTNAME= snort-1.5.1 @ 1.3 log @Make this package work on Solaris. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.2 2000/01/15 21:58:29 wiz Exp $ d4 1 a4 1 DISTNAME= snort-1.5 d37 1 @ 1.2 log @update snort to 1.5; added distribution sites, install example configs. From the Readme: Version 1.5 adds major new functionality! Detection and preprocessing plugins, session logging, rules file variables and includes, five new network layer decoders including ISDN and Token Ring support, new detection functionality, and a bunch of other cool stuff. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.1.1.1 1999/09/10 15:48:02 rh Exp $ d18 9 d28 1 a28 1 ${INSTALL_DATA_DIR} -m 700 -o root -g wheel /var/log/snort @ 1.1 log @Initial revision @ text @d1 1 a1 1 # $NetBSD$ d4 1 a4 1 DISTNAME= snort-1.2.1 d6 6 a11 1 MASTER_SITES= http://www.clark.net/~roesch/ d19 5 d25 2 a26 2 .for file in README NEWS RULES.SAMPLE USAGE ${INSTALL_DATA} ${WRKSRC}/${file} ${PREFIX}/share/doc/snort @ 1.1.1.1 log @Initial import of snort-1.2.1, a libpcap-based packet sniffer/logger. @ text @@