8 files changed, 0 insertions, 600 deletions
diff --git a/security/tripwire12/files/conf-freebsd2.h b/security/tripwire12/files/conf-freebsd2.h
deleted file mode 100644
index d8f2942118e3..000000000000
--- a/security/tripwire12/files/conf-freebsd2.h
+++ /dev/null
@@ -1,55 +0,0 @@
-/* $FreeBSD$ */
-
-/*
- * conf-freebsd2.h
- *
- *	Tripwire configuration file
- *
- * Joe Greco
- * sol.net Network Services
- * Derived from the other BSD config.h's
- */
-
-/***
- *** Operating System specifics
- ***	
- ***	If the answer to a question in the comment is "Yes", then
- ***	change the corresponding "#undef" to a "#define"
- ***/
-
-/*
- * is your OS a System V derivitive?  if so, what version?
- *			(e.g., define SYSV 4)
- */
-
-#undef SYSV
-
-/* 
- * does your system have a <malloc.h> like System V? 
- */
-
-#undef MALLOCH 	
-
-/* 
- * does your system have a <stdlib.h> like POSIX says you should? 
- */
-
-#define STDLIBH
-
-/*
- * does your system use readdir(3) that returns (struct dirent *)?
- */
-
-#define DIRENT
-
-/*
- * is #include <string.h> ok?  (as opposed to <strings.h>)
- */
-
-#define STRINGH
- 
-/* 
- * does your system have gethostname(2) (instead of uname(2))?
- */
-
-#define GETHOSTNAME
diff --git a/security/tripwire12/files/patch-aa b/security/tripwire12/files/patch-aa
deleted file mode 100644
index 81238bf9ae3a..000000000000
--- a/security/tripwire12/files/patch-aa
+++ /dev/null
@@ -1,38 +0,0 @@
-*** include/config.h.orig	Fri Jul 15 06:02:52 1994
---- include/config.h	Sun Dec 31 18:56:20 1989
-***************
-*** 17,23 ****
-   ***	file that corresponds with your operating system.
-   ***/
-  
-! #include "../configs/conf-svr4.h"
-  
-  #ifdef TW_TYPE32
-  typedef TW_TYPE32 int32;
---- 17,23 ----
-   ***	file that corresponds with your operating system.
-   ***/
-  
-! #include "../configs/conf-freebsd2.h"
-  
-  #ifdef TW_TYPE32
-  typedef TW_TYPE32 int32;
-***************
-*** 103,110 ****
-  #endif
-  */
-  
-! #define CONFIG_PATH     "/tmp/genek"
-! #define DATABASE_PATH   "/tmp/genek"
-  
-  /******* name of Tripwire files **************************************
-   *
---- 103,110 ----
-  #endif
-  */
-  
-! # define CONFIG_PATH     "/var/adm/tcheck"
-! # define DATABASE_PATH   "/var/adm/tcheck/databases"
-  
-  /******* name of Tripwire files **************************************
-   *
diff --git a/security/tripwire12/files/patch-ab b/security/tripwire12/files/patch-ab
deleted file mode 100644
index 7dcf3348984f..000000000000
--- a/security/tripwire12/files/patch-ab
+++ /dev/null
@@ -1,62 +0,0 @@
-*** Makefile	Mon Jul 25 10:59:41 1994
---- Makefile	Thu Jan  2 12:04:35 1997
-***************
-*** 34,36 ****
-  # you can use ANSI C if you like, but K&R is equally fine.
-! CC     = cc			# common
-  #CC     = gcc			# also common
---- 34,36 ----
-  # you can use ANSI C if you like, but K&R is equally fine.
-! #CC     = cc			# common
-  #CC     = gcc			# also common
-***************
-*** 38,40 ****
-  
-! CFLAGS = -O			# common 
-  #CFLAGS = -g 			# common 
---- 38,40 ----
-  
-! #CFLAGS = -O			# common 
-  #CFLAGS = -g 			# common 
-***************
-*** 60,66 ****
-  #CPP	= /lib/cpp		# on older systems
-  
-  # make sure libraries are not linked dynamically (as a security measure)
-! LDFLAGS=			# common
-  #LDFLAGS= -non_shared		# OSF/1
-  #LDFLAGS= -Bstatic		# SunOS 4 (cannot statically link tripwire
-                            	#          on Solaris 2.3)
---- 60,67 ----
-  #CPP	= /lib/cpp		# on older systems
-  
-  # make sure libraries are not linked dynamically (as a security measure)
-! LDFLAGS= -static
-! #LDFLAGS=			# common
-  #LDFLAGS= -non_shared		# OSF/1
-  #LDFLAGS= -Bstatic		# SunOS 4 (cannot statically link tripwire
-                            	#          on Solaris 2.3)
-
-
---- src/Makefile.orig	Mon Jul 25 10:40:54 1994
-+++ src/Makefile	Sun May 28 15:52:25 2000
-@@ -3,7 +3,7 @@
- # 	Tripwire build
- #
- 
--CFLAGS = -O
-+#CFLAGS = -O
- 
- OFILES = 	config.parse.o main.o list.o ignorevec.o dbase.build.o \
- 		utils.o preen.o preen.interp.o preen.report.o \
-@@ -103,8 +103,9 @@
- .c.o:
- 	$(CC) $(CFLAGS) -c $<
- 
--install:	tripwire
-+install:	tripwire siggen
- 	$(INSTALL) tripwire $(DESTDIR)
-+	$(INSTALL) siggen $(DESTDIR)
- 
- clean:
- 	-rm -f $(OFILES) config.lex.c config.pre.c y.tab.c lex.yy.c help.c \
diff --git a/security/tripwire12/files/patch-ac b/security/tripwire12/files/patch-ac
deleted file mode 100644
index bad090157860..000000000000
--- a/security/tripwire12/files/patch-ac
+++ /dev/null
@@ -1,16 +0,0 @@
-This patch eliminates a compiler warning about LITTLE_ENDIAN begin
-redefined.
-
-*** sigs/sha/sha.c.orig	Mon Jul 25 08:46:45 1994
---- sigs/sha/sha.c	Mon Mar 31 19:55:23 1997
-***************
-*** 47,52 ****
---- 47,54 ----
-  #include "sha.h"
-  
-  #if BYTEORDER == 0x1234
-+ #undef BIG_ENDIAN
-+ #undef LITTLE_ENDIAN
-  #define LITTLE_ENDIAN
-  #endif
-  
diff --git a/security/tripwire12/files/patch-mktemp b/security/tripwire12/files/patch-mktemp
deleted file mode 100644
index 3e871d4b6e5b..000000000000
--- a/security/tripwire12/files/patch-mktemp
+++ /dev/null
@@ -1,239 +0,0 @@
-This patches replace all uses of the (potentially insecure) mktemp(3)
-with a much safer tmpfile(3).
-
---- src/config.parse.c	Wed Jul 20 21:03:26 1994
-+++ src/config.parse.c	Wed May 17 17:30:22 2000
-@@ -55,7 +55,6 @@
- #endif
- 
- /* prototypes */
--char *mktemp();
- static void configfile_descend();
- 
- #ifndef L_tmpnam
-@@ -86,7 +85,6 @@
-     char	ignorestring[1024];
-     char	s[MAXPATHLEN+1024];
-     char	configfile[MAXPATHLEN+512];
--    char	*tmpfilename;
-     char	number[128];
-     int		entrynum = 0;
-     int		err;
-@@ -98,18 +96,6 @@
-     if (!printpreprocess && !quietmode)
- 	fputs("### Phase 1:   Reading configuration file\n", stderr);
- 
--    /* generate temporary file name */
--    if ((tmpfilename = (char *) malloc(L_tmpnam + MAXPATHLEN)) == NULL) {
--	perror("configfile_read: malloc()");
--	exit(1);
--    };
--    (void) strcpy(tmpfilename, TEMPFILE_TEMPLATE);
--
--    if ((char *) mktemp(tmpfilename) == NULL) {
--	perror("configfile_read: mktemp()");
--	exit(1);
--    }
--
-     /* generate configuration file name */
-     if (specified_configmode != SPECIFIED_FILE)
- 	sprintf(configfile, "%s/%s", config_path, config_file);
-@@ -149,25 +135,17 @@
- 
-     err = umask(077);  /* to protect the tempfile */
- 
--    if ((fpout = fopen(tmpfilename, "w+")) == NULL) {
--	sprintf(s, "tripwire: Couldn't open config file '%s'", configfile);
--	perror(s);
--	exit(1);
--    }
--    (void) umask(err);  /* return it to its former state */
--
--    /* The following unlink accomplishes two things:
-+    /* The use of tmpfile(3) accomplishes two things:
-      *  1) if the program terminates, we won't leave a temp
-      *     file sitting around with potentially sensitive names
-      *     in it.
-      *  2) the file is "hidden" while we run
-      */
--    if (unlink(tmpfilename) < 0) {
--      	perror("configfile_read: unlink()");
-+    if ((fpout = tmpfile()) == NULL) {
-+	perror("tmpfile");
- 	exit(1);
-     }
--    free(tmpfilename);
--
-+    (void) umask(err);  /* return it to its former state */
- 
-     /*
-      * pass 0: preprocess file
---- src/dbase.build.c	Mon Jul 25 11:24:09 1994
-+++ src/dbase.build.c	Wed May 17 18:22:14 2000
-@@ -66,7 +66,6 @@
- int files_scanned_num = 0;
- 
- /* prototypes */
--char *mktemp();
- static void database_record_write();
- 
- char backupfile[MAXPATHLEN+256];
-@@ -125,17 +124,7 @@
- 
-     /* where do we write the new database? */
-     if (mode == DBASE_TEMPORARY) {
--	char *tmpfilename = (char *) malloc(strlen(TEMPFILE_TEMPLATE)+1);
--	if (tmpfilename == NULL)
--	    die_with_err("malloc() failed in database_build", (char *) NULL);
--	(void) strcpy(tmpfilename, TEMPFILE_TEMPLATE);
--
--	if ((char *) mktemp(tmpfilename) == NULL)
--	    die_with_err("database_build: mktemp()", (char *) NULL);
--
--	(void) strcpy(tempdatabase_file, tmpfilename);
--	(void) strcpy(database, tempdatabase_file);
--	free(tmpfilename);
-+	/* do nothing */
-     }					/* end if temporary database */
-     else if (mode == DBASE_UPDATE) {
- 	sprintf(database, "./databases/%s", database_file);
-@@ -224,6 +213,12 @@
-     }
- 
-     /* rebuild the database */
-+    if (mode == DBASE_TEMPORARY) {
-+	fpw = tmpfile();
-+	if (fpw == NULL)
-+	    die_with_err("call tmpfile(3) failed. Check your TMPDIR setting",
-+		NULL);
-+    } else
-     if ((fpw = fopen(database, "w")) == NULL)
- 	die_with_err("Hint: Maybe the database directory '%s' doesn't exist?  fopen()", database);
- 
-@@ -369,6 +364,6 @@
- 
--    /* we don't want to allow anyone to spoof the temporary file in /tmp */
-+    /* if the database was temporary, the file was opened by tmpfile(3) --
-+       as such, it can not be accessed by anything but this process */
-     if (mode == DBASE_TEMPORARY) {
--	if ((fptempdbase = freopen(database, "r", fpw)) == NULL)
--	    die_with_err("temporary database file disappeared?!?", database);
-+	fptempdbase = fpw;
- 	rewind(fptempdbase);
---- src/main.c	Fri Aug 26 04:23:03 1994
-+++ src/main.c	Wed May 17 18:01:00 2000
-@@ -108,7 +108,6 @@
- char *database_path = DATABASE_PATH;
- char *config_path = CONFIG_PATH;
- 
--char tempdatabase_file[MAXPATHLEN+256];
- FILE *fptempdbase;
- 
- char *defaultignore = DEFAULTIGNORE;
---- src/preen.c	Mon Jul 25 11:24:11 1994
-+++ src/preen.c	Wed May 17 18:22:22 2000
-@@ -37,7 +37,6 @@
- static int numentriesread = 0;		/* running count of @@contents */
- 
- /* prototypes */
--char *mktemp();
- static void olddbasefile_load();
- 
- char *updatemodes[] = {
-@@ -97,9 +96,6 @@
-     preen_report(interactive, ppp_updateentries);
-     if (!specified_configmode)
- 	(void) fclose(fp_in);
--
--    /* remove the temporary database file */
--    (void) unlink(tempdatabase_file);
- 
-     SPDEBUG(3) printf("*** leaving update_gather()\n");
- 
---- src/siggen.c	Mon Jul 25 11:24:12 1994
-+++ src/siggen.c	Wed May 17 18:36:51 2000
-@@ -52,7 +52,6 @@
- 
- extern int optind;
- int debuglevel = 0;
--char *mktemp();
- 
- int (*pf_signatures [NUM_SIGS]) () = {
- 					SIG0FUNC,
-@@ -84,7 +83,6 @@
- 			   };
- int verbosity = 0;
- int quietmode = 0;
--char *tmpfilename = NULL;
- int readstdin = 0;
- 
- 
-@@ -167,19 +167,6 @@
- 	FILE *fpout;
--	/* generate temporary file name */
--	if ((tmpfilename = (char *) malloc(L_tmpnam + MAXPATHLEN)) == NULL) {
--	    perror("main: malloc()");
--	    exit(1);
--	};
--	(void) strcpy(tmpfilename, "/tmp/twzXXXXXX");
--
--	if ((char *) mktemp(tmpfilename) == NULL) {
--	    perror("siggen: mktemp()");
--	    exit(1);
--	}
- 
- 	/*  output */
--	if (!(fpout = fopen(tmpfilename, "w"))) {
--	    char err[1024];
--	    sprintf(err, "main: fopen(%s)", tmpfilename);
--	    perror(err);
-+	if (!(fpout = tmpfile())) {
-+	    perror("tmpfile()");
- 	    exit(1);
-@@ -189,12 +176,6 @@
- 	    putc(c, fpout);
--	fclose(fpout);
--	if ((fd = open(tmpfilename, O_RDONLY)) < 0) {
--	    perror("siggen: open");
--	    exit(1);
--	}
--	if (siggen(fd) < 0)
-+	rewind(fpout);
-+	if (siggen(fileno(fpout)) < 0)
- 	    errors++;
- 
--	if (fd)
--	    close(fd);
-+	close(fd);
--	unlink(tmpfilename);
---- src/utils.c	Mon Jul 25 12:23:16 1994
-+++ src/utils.c	Wed May 17 18:21:38 2000
-@@ -785,23 +785,15 @@
- int
- fd_tempfilename_generate()
- {
--    char tmp[MAXPATHLEN+256];
--    int fd;
-+    FILE *tmp;
- 
--    (void) strcpy(tmp, TEMPFILE_TEMPLATE);
--    if ((char *) mktemp(tmp) == NULL) {
--	perror("tempfilename_generate: mktemp()");
-+    tmp = tmpfile();
-+    if (tmp == NULL) {
-+	perror("tempfilename_generate: tmpfile()");
- 	exit(1);
-     }
- 
--    if ((fd = open(tmp, O_RDWR | O_CREAT, 0600)) < 0) {
--	perror("tempfilename_generate: open()");
--	exit(1);
--    }
--    /* unlink right away to make sure no one can tamper with our file */
--    unlink(tmp);
--
--    return fd;
-+    return fileno(tmp);
- }
- 
- /*
diff --git a/security/tripwire12/files/patch-warnings b/security/tripwire12/files/patch-warnings
deleted file mode 100644
index ddd14eff68c6..000000000000
--- a/security/tripwire12/files/patch-warnings
+++ /dev/null
@@ -1,33 +0,0 @@
-This patches remove some of the warnings produced by the compiler.
-
---- src/siggen.c	Mon Jul 25 11:24:12 1994
-+++ src/siggen.c	Wed May 17 19:15:29 2000
-@@ -15,2 +15,3 @@
- #include "../include/config.h"
-+#include <unistd.h>
- #include <stdio.h>
-@@ -104,4 +104,6 @@
-+
-+/* forward declaration, to avoid compiler warnings */
-+int siggen(int);
- 
- int
- main(argc, argv)
---- aux/byteorder.c	Fri Jul 15 07:02:36 1994
-+++ aux/byteorder.c	Wed May 17 19:12:42 2000
-@@ -22,3 +22,3 @@
- 
--void
-+int
- main()
-@@ -34,2 +34,3 @@
- 
-+#warning "the shift-width warning below can be ignored"
-     if (sizeof(int32) > 4)
---- aux/types.c	Sun Dec 12 23:02:27 1993
-+++ aux/types.c	Wed May 17 19:23:21 2000
-@@ -24,3 +24,3 @@
- 
--void
-+int
- main(argc, argv)
diff --git a/security/tripwire12/files/tw.conf.freebsd2 b/security/tripwire12/files/tw.conf.freebsd2
deleted file mode 100644
index c195f38872e2..000000000000
--- a/security/tripwire12/files/tw.conf.freebsd2
+++ /dev/null
@@ -1,154 +0,0 @@
-# $FreeBSD$
-#
-# tripwire.config
-# Generic version for FreeBSD
-#  Will need editing...see comments below
-#
-# This file contains a list of files and directories that System 
-# Preener will scan.  Information collected from these files will be 
-# stored in the tripwire.database file.
-#
-# Format: 			[!|=] entry [ignore-flags]
-#
-# where:	 '!' signifies the entry is to be pruned (inclusive) from
-#				the list of files to be scanned.
-#		 '=' signifies the entry is to be added, but if it is
-#				a directory, then all its contents are pruned
-#				(useful for /tmp).
-#
-# where:	entry is the absolute pathname of a file or a directory
-#
-# where ignore-flags are in the format:
-#		[template][ [+|-][pinugsam12] ... ]
-#
-# 	- :  ignore the following atributes
-#	+ :  do not ignore the following attributes
-#
-#	p :  permission and file mode bits 	a: access timestamp
-#	i :  inode number			m: modification timestamp
-#	n :  number of links (ref count)	c: inode creation timestamp
-#	u :  user id of owner			1: signature 1
-#	g :  group id of owner			2: signature 2
-#	s :  size of file
-#
-#
-# Ex:   The following entry will scan all the files in /etc, and report
-#	any changes in mode bits, inode number, reference count, uid,
-#	gid, modification and creation timestamp, and the signatures.
-#	However, it will ignore any changes in the access timestamp.
-#
-#	/etc	+pinugsm12-a
-#
-# The following templates have been pre-defined to make these long ignore
-# mask descriptions unecessary.
-#
-# Templates: 	(default)	R :  [R]ead-only (+pinugsm12-a)
-#				L :  [L]og file (+pinug-sam12)
-#				N :  ignore [N]othing (+pinusgsamc12)
-#				E :  ignore [E]verything (-pinusgsamc12)
-#
-# By default, Tripwire uses the R template -- it ignores
-# only the access timestamp.
-#
-# You can use templates with modifiers, like:
-#	Ex:  /etc/lp	E+ug
-#
-#	Example configuration file:
-#		/etc		R	# all system files
-#		!/etc/lp	R	# ...but not those logs
-#		=/tmp		N	# just the directory, not its files
-#
-# Note the difference between pruning (via "!") and ignoring everything
-# (via "E" template):  Ignoring everything in a directory still monitors
-# for added and deleted files.  Pruning a directory will prevent Tripwire
-# from even looking in the specified directory.
-#
-#
-# Tripwire running slowly?  Modify your tripwire.config entries to
-# ignore the (signature 2) attribute when this computationally-exorbitant 
-# protection is not needed.  (See README and design document for further
-# details.)
-#
-
-#  First, root's traditional "home".  Note that FreeBSD's root's home (/root)
-#  is protected by R-2 protections in the default config file.
-=/		L
-/.rhosts	R	# may not exist
-/.profile	R	# may not exist
-/.cshrc		R	# may not exist
-/.login		R	# may not exist
-/.exrc		R	# may not exist
-/.logout	R	# may not exist
-/.forward	R	# may not exist
-
-# Unix itself
-/kernel		R
-
-# /bin
-/bin		R-2
-
-# /dev
-/dev	 	L
-
-# /etc
-/etc			R-2
-/etc/aliases	 	L
-/etc/dumpdates		L
-/etc/motd		L
-
-# my passwd database should be static at time of system build.  yours may
-# not be, if not, uncomment the lines below.
-
-# /etc/passwd		L
-# /etc/master.passwd	L
-# /etc/pwd.db		L
-# /etc/spwd.db		L
-
-# /home
-=/home
-
-# /lkm and /modules
-/lkm			R-2
-/modules		R-2
-
-# /boot
-/boot			R-2
-
-# /root
-/root			R-2
-/root/.history		L
-
-# /sbin
-/sbin			R-2
-
-# /stand
-/stand			R-2
-
-# /usr/bin
-/usr/bin		R-2
-
-/usr/include		R-12
-
-/usr/lib		R-2
-
-/usr/libdata		R-2
-
-/usr/libexec		R-2
-
-/usr/local/bin		R-2
-
-/usr/local/etc		L
-
-/usr/local/lib		R-2
-
-/usr/local/libexec	R-2
-
-/usr/local/sbin		R-2
-
-/usr/local/share	R-2
-
-/usr/sbin		R-2
-
-/usr/share		R-2
-
-###########################################
diff --git a/security/tripwire12/files/twcheck b/security/tripwire12/files/twcheck
deleted file mode 100644
index a4dffd2b61c9..000000000000
--- a/security/tripwire12/files/twcheck
+++ /dev/null
@@ -1,3 +0,0 @@
-#! /bin/sh -
-
-./gunzip < tw.db_`hostname`.gz | ./tripwire -dfd 0 -c tw.config