1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
#/ New ports collection makefile for: snort_inline
# Date created: 4 March 2005
# Whom: nick@rogness.net
#
# $FreeBSD$
#
PORTNAME= snort_inline
PORTVERSION= 2.6.1.5
CATEGORIES= security
MASTER_SITES= http://freebsd.rogness.net/ports/snort_inline/
MAINTAINER= nick@rogness.net
COMMENT= An inline IPS system based on snort using ipfw
LIB_DEPENDS= pcre.0:${PORTSDIR}/devel/pcre
GNU_CONFIGURE= yes
CONFIGURE_ARGS+= --enable-inline --enable-ipfw
LIB_DEPENDS+= dnet:${PORTSDIR}/net/libdnet
USE_LDCONFIG= yes
OPTIONS= MYSQL "With MySQL support" off \
ODBC "With ODBC support" off \
POSTGRESQL "With POSTGRESQL support" off \
FLEXRESP "With flexible responses (resp. w/packet resets)" off
BROKEN= this port does not build properly
DEPRECATED= no longer supported upstream
EXPIRATION_DATE= 2011/09/04
.include <bsd.port.pre.mk>
.if defined(WITH_MYSQL)
USE_MYSQL= yes
CONFIGURE_ARGS+= --with-mysql=${LOCALBASE}
.else
CONFIGURE_ARGS+= --with-mysql=no
.endif
.if defined(WITH_ODBC)
LIB_DEPENDS+= odbc.1:${PORTSDIR}/databases/unixODBC
CONFIGURE_ARGS+= --with-odbc=${LOCALBASE}
LDFLAGS+= ${PTHREAD_LIBS}
.else
CONFIGURE_ARGS+= --with-odbc=no
.endif
.if defined(WITH_POSTGRESQL)
USE_PGSQL= yes
CONFIGURE_ARGS+= --with-postgresql=${LOCALBASE}
.if exists(/usr/lib/libssl.a) && exists(/usr/lib/libcrypto.a)
LDFLAGS+= -lssl -lcrypto
.endif
.else
CONFIGURE_ARGS+= --with-postgresql=no
.endif
.if defined(WITH_FLEXRESP)
LIBNET_CONFIG?= ${LOCALBASE}/bin/libnet10-config
.if exists(${LIBNET_CONFIG})
LIBNET_CFLAGS!= ${LIBNET_CONFIG} --cflags
LIBNET_LIBS!= ${LIBNET_CONFIG} --libs
LIBNET_INCDIR= ${LIBNET_CFLAGS:M-I*:S/-I//}
LIBNET_LIBDIR= ${LIBNET_LIBS:M-L*:S/-L//}
.endif
BUILD_DEPENDS+= ${LIBNET_CONFIG}:${PORTSDIR}/net/libnet10
CONFIGURE_ARGS+= --enable-flexresp \
--with-libnet-includes=${LIBNET_INCDIR} \
--with-libnet-libraries=${LIBNET_LIBDIR}
.endif
MAN8= snort.8 snort_inline.8
DOCS= ChangeLog doc/AUTHORS doc/BUGS doc/CREDITS doc/faq* doc/NEWS \
doc/README* doc/TODO doc/USAGE doc/*.pdf
RULE_PATH= ${DATADIR}/rules
USE_RC_SUBR= snort.sh
post-patch:
${REINPLACE_CMD} "s,%%PREFIX%%,${PREFIX}," ${WRKSRC}/src/snort.c
${REINPLACE_CMD} "s,/etc/snort_inline/drop-rules,${RULE_PATH}," ${WRKSRC}/etc/snort_inline.conf
${REINPLACE_CMD} "s,$RULE_PATH/classification.config,${DATADIR}/classification.config," ${WRKSRC}/etc/snort_inline.conf
${REINPLACE_CMD} "s,$RULE_PATH/reference.config,${DATADIR}/reference.config," ${WRKSRC}/etc/snort_inline.conf
${REINPLACE_CMD} -e "s/^unicode.map/\/usr\/local\/share\/snort_inline\/unicode.map/" ${WRKSRC}/etc/snort_inline.conf
.if defined(WITH_FLEXRESP)
${REINPLACE_CMD} -e 's|libnet-config|${LIBNET_CONFIG}|g' ${WRKSRC}/configure
.endif
post-install:
@${MKDIR} ${DATADIR}
@${MKDIR} ${RULE_PATH}
${INSTALL_DATA} ${WRKSRC}/etc/classification.config \
${DATADIR}/classification.config-sample
[ -f ${DATADIR}/classification.config ] || \
${CP} ${DATADIR}/classification.config-sample \
${DATADIR}/classification.config
${INSTALL_DATA} ${WRKSRC}/etc/reference.config \
${DATADIR}/reference.config-sample
[ -f ${DATADIR}/reference.config ] || \
${CP} ${DATADIR}/reference.config-sample ${DATADIR}/reference.config
${INSTALL_DATA} ${WRKSRC}/etc/threshold.conf \
${DATADIR}/threshold.conf-sample
[ -f ${DATADIR}/threshold.conf ] || \
${CP} ${DATADIR}/threshold.conf-sample ${DATADIR}/threshold.conf
${INSTALL_DATA} ${WRKSRC}/etc/unicode.map \
${DATADIR}/unicode.map
.for f in snort.conf snort_inline.conf
${INSTALL_DATA} ${WRKSRC}/etc/${f} ${PREFIX}/etc/${f}-sample
[ -f ${PREFIX}/etc/${f} ] || \
${INSTALL_DATA} ${WRKSRC}/etc/${f} ${PREFIX}/etc/${f}
.endfor
.if !defined(NOPORTDOCS)
@${MKDIR} ${DOCSDIR}
cd ${WRKSRC} && ${INSTALL_DATA} ${DOCS} ${DOCSDIR}
.endif
@${CAT} ${PKGMESSAGE}
.include <bsd.port.post.mk>
|