diff options
author | xtraeme <xtraeme> | 2004-04-20 09:50:54 +0000 |
---|---|---|
committer | xtraeme <xtraeme> | 2004-04-20 09:50:54 +0000 |
commit | a2ac82c1f9f67a277c8f2746cf682c5ab245ae7c (patch) | |
tree | e4ed3c105695ad8973b295bfed163e8a6f4e3ec7 /databases/acid | |
parent | 172f6363a7649a5f60cc4337349bffc48feb6317 (diff) | |
download | pkgsrc-a2ac82c1f9f67a277c8f2746cf682c5ab245ae7c.tar.gz |
Initial import of acid-0.9.6b23, from pkgsrc-wip packaged by Adrian
Portelli, with minor changes by me.
The Analysis Console for Intrusion Databases (ACID) is a PHP-based analysis
engine to search and process a database of security events generated by
various IDSes, firewalls, and network monitoring tools.
ACID has the ability to analyze a wide variety of events which are
post-processed into its database. Tools exist for the following formats:
- Snort
- logsnorter
Diffstat (limited to 'databases/acid')
-rw-r--r-- | databases/acid/DESCR | 9 | ||||
-rw-r--r-- | databases/acid/MESSAGE | 23 | ||||
-rw-r--r-- | databases/acid/Makefile | 69 | ||||
-rw-r--r-- | databases/acid/PLIST | 61 | ||||
-rw-r--r-- | databases/acid/distinfo | 5 | ||||
-rw-r--r-- | databases/acid/files/acid.conf | 14 | ||||
-rw-r--r-- | databases/acid/patches/patch-aa | 35 |
7 files changed, 216 insertions, 0 deletions
diff --git a/databases/acid/DESCR b/databases/acid/DESCR new file mode 100644 index 00000000000..997be1b33c2 --- /dev/null +++ b/databases/acid/DESCR @@ -0,0 +1,9 @@ +The Analysis Console for Intrusion Databases (ACID) is a PHP-based analysis +engine to search and process a database of security events generated by +various IDSes, firewalls, and network monitoring tools. + +ACID has the ability to analyze a wide variety of events which are +post-processed into its database. Tools exist for the following formats: + +- Snort +- logsnorter diff --git a/databases/acid/MESSAGE b/databases/acid/MESSAGE new file mode 100644 index 00000000000..6da5a0af512 --- /dev/null +++ b/databases/acid/MESSAGE @@ -0,0 +1,23 @@ +=========================================================================== +$NetBSD: MESSAGE,v 1.1.1.1 2004/04/20 09:50:54 xtraeme Exp $ + +You will need to make ACID accessible through your HTTP server. +If you are running Apache and ap-php, then you may copy: + + ${EXDIR}/acid.conf + +to ${PKG_SYSCONFDIR}/httpd and add the following line to httpd.conf: + + Include ${PKG_SYSCONFDIR}/httpd/acid.conf + +to make ACID accessible through: + + http://www.domain.com/acid/ + +You will need to customise ${ACID_DIR}/acid_conf.php before +ACID will work. This includes setting up database access. +For detailed instructions see: + + http://www.andrew.cmu.edu/~rdanyliw/snort/acid_config.html + +=========================================================================== diff --git a/databases/acid/Makefile b/databases/acid/Makefile new file mode 100644 index 00000000000..4cd43334c3b --- /dev/null +++ b/databases/acid/Makefile @@ -0,0 +1,69 @@ +# $NetBSD: Makefile,v 1.1.1.1 2004/04/20 09:50:54 xtraeme Exp $ +# + +DISTNAME= acid-0.9.6b23 +CATEGORIES= databases www +MASTER_SITES= http://www.andrew.cmu.edu/~rdanyliw/snort/ + +MAINTAINER= adrianp@stindustries.net +HOMEPAGE= http://www.andrew.cmu.edu/~rdanyliw/snort/snortacid.html +COMMENT= Database class library for PHP4 + +DEPENDS+= ap-php>=4.0.4:../../www/ap-php4 +DEPENDS+= apache>=1.3:../../www/apache +DEPENDS+= adodb>=1.2:../../wip/adodb +DEPENDS+= php-jpgraph>=1.8:../../graphics/php-jpgraph +DEPENDS+= php-gd>=4.0.4:../../graphics/php4-gd +DEPENDS+= php-sockets>=4.0.4:../../net/php4-sockets + +USE_BUILDLINK3= YES +WRKSRC= ${WRKDIR}/acid + +.include "../../mk/bsd.prefs.mk" + +# This package will default to using MySQL. If you want to use +# postgresql set USE_PGSQL=YES in /etc/mk.conf or pass it to +# make. ie. make install USE_PGSQL=YES +# +.if defined(USE_PGSQL) && ${USE_PGSQL} == YES +DEPENDS+= php-pgsql>=4.0.4:../../databases/php4-pgsql +DBTYPE= postgres +.else +DEPENDS+= php-mysql>=4.0.4:../../databases/php4-mysql +DBTYPE= mysql +.endif + +BUILD_DEFS+= USE_PGSQL + +DOC_FILES= CHANGELOG CREDITS README README.mssql TODO +ACID_DIR= ${PREFIX}/share/acid +EXDIR= ${PREFIX}/share/examples/acid +MESSAGE_SUBST+= EXDIR=${EXDIR} ACID_DIR=${ACID_DIR} + +do-build: + @${SED} -e 's#@ACID_DIR@#${ACID_DIR}#g' ${FILESDIR}/acid.conf \ + >${WRKDIR}/acid.conf + + @${CP} ${WRKSRC}/acid_conf.php ${WRKSRC}/acid_conf.php.orig + + @${SED} -e 's#@PREFIX@#${PREFIX}#g' \ + -e 's#@DBTYPE@#${DBTYPE}#g' \ + ${WRKSRC}/acid_conf.php.orig >${WRKSRC}/acid_conf.php + +do-install: + ${INSTALL_DATA_DIR} ${ACID_DIR} + ${INSTALL_DATA_DIR} ${EXDIR} + ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/acid + ${INSTALL_SCRIPT} ${WRKSRC}/*.php ${ACID_DIR} + ${INSTALL_DATA} ${WRKSRC}/*.inc ${ACID_DIR} + ${INSTALL_DATA} ${WRKSRC}/*.html ${ACID_DIR} + ${INSTALL_DATA} ${WRKSRC}/*.sql ${ACID_DIR} + ${INSTALL_DATA} ${WRKSRC}/*.css ${ACID_DIR} + + for FILE in ${DOC_FILES}; do \ + ${INSTALL_DATA} ${WRKSRC}/$$FILE ${PREFIX}/share/doc/acid; \ + done + + ${INSTALL_DATA} ${WRKDIR}/acid.conf ${EXDIR} + +.include "../../mk/bsd.pkg.mk" diff --git a/databases/acid/PLIST b/databases/acid/PLIST new file mode 100644 index 00000000000..d2f59f0197d --- /dev/null +++ b/databases/acid/PLIST @@ -0,0 +1,61 @@ +@comment $NetBSD: PLIST,v 1.1.1.1 2004/04/20 09:50:55 xtraeme Exp $ +share/acid/acid_action.inc +share/acid/acid_ag_common.php +share/acid/acid_ag_main.php +share/acid/acid_app_faq.php +share/acid/acid_cache.inc +share/acid/acid_common.php +share/acid/acid_conf.php +share/acid/acid_constants.inc +share/acid/acid_db.inc +share/acid/acid_db_common.php +share/acid/acid_db_setup.php +share/acid/acid_footer.html +share/acid/acid_graph_common.php +share/acid/acid_graph_display.php +share/acid/acid_graph_form.php +share/acid/acid_graph_main.php +share/acid/acid_hdr1.html +share/acid/acid_hdr2.html +share/acid/acid_include.inc +share/acid/acid_log_error.inc +share/acid/acid_log_timing.inc +share/acid/acid_main.php +share/acid/acid_maintenance.php +share/acid/acid_net.inc +share/acid/acid_output_html.inc +share/acid/acid_output_query.inc +share/acid/acid_qry_alert.php +share/acid/acid_qry_common.php +share/acid/acid_qry_form.php +share/acid/acid_qry_main.php +share/acid/acid_qry_sqlcalls.php +share/acid/acid_signature.inc +share/acid/acid_stat_alerts.php +share/acid/acid_stat_class.php +share/acid/acid_stat_common.php +share/acid/acid_stat_ipaddr.php +share/acid/acid_stat_iplink.php +share/acid/acid_stat_ports.php +share/acid/acid_stat_sensor.php +share/acid/acid_stat_time.php +share/acid/acid_stat_uaddr.php +share/acid/acid_state_citems.inc +share/acid/acid_state_common.inc +share/acid/acid_state_criteria.inc +share/acid/acid_state_query.inc +share/acid/acid_style.css +share/acid/create_acid_tbls_mssql.sql +share/acid/create_acid_tbls_mssql_extra.sql +share/acid/create_acid_tbls_mysql.sql +share/acid/create_acid_tbls_pgsql.sql +share/acid/create_acid_tbls_pgsql_extra.sql +share/acid/index.html +share/doc/acid/CHANGELOG +share/doc/acid/CREDITS +share/doc/acid/README +share/doc/acid/README.mssql +share/doc/acid/TODO +share/examples/acid/acid.conf +@dirrm share/doc/acid +@dirrm share/acid diff --git a/databases/acid/distinfo b/databases/acid/distinfo new file mode 100644 index 00000000000..69faa859417 --- /dev/null +++ b/databases/acid/distinfo @@ -0,0 +1,5 @@ +$NetBSD: distinfo,v 1.1.1.1 2004/04/20 09:50:55 xtraeme Exp $ + +SHA1 (acid-0.9.6b23.tar.gz) = 2ca04ea4482507ac924318bb1d086021388ef9a6 +Size (acid-0.9.6b23.tar.gz) = 116728 bytes +SHA1 (patch-aa) = 24d38240bbb0549e8d930831987c7f1c1a113c0b diff --git a/databases/acid/files/acid.conf b/databases/acid/files/acid.conf new file mode 100644 index 00000000000..42687e9c2a3 --- /dev/null +++ b/databases/acid/files/acid.conf @@ -0,0 +1,14 @@ +# $NetBSD: acid.conf,v 1.1.1.1 2004/04/20 09:50:55 xtraeme Exp $ +# +# ACID configuration file fragment for Apache + +<IfModule mod_alias.c> + Alias /acid/ "@ACID_DIR@/" +</IfModule> + +<Directory "@ACID_DIR@"> + Options Indexes + AllowOverride None + Order allow,deny + Allow from all +</Directory> diff --git a/databases/acid/patches/patch-aa b/databases/acid/patches/patch-aa new file mode 100644 index 00000000000..f95c63ea2a6 --- /dev/null +++ b/databases/acid/patches/patch-aa @@ -0,0 +1,35 @@ +$NetBSD: patch-aa,v 1.1.1.1 2004/04/20 09:50:55 xtraeme Exp $ + +--- acid_conf.php.orig Thu Jan 9 01:04:07 2003 ++++ acid_conf.php Tue Jul 8 12:33:30 2003 +@@ -9,7 +9,7 @@ + * $foo = "c:\tmp" [OK] + * $foo = "c:\tmp\" [WRONG] + */ +-$DBlib_path = ""; ++$DBlib_path = "@PREFIX@/share/adodb"; + + /* The type of underlying alert database + * +@@ -17,7 +17,7 @@ + * PostgresSQL : "postgres" + * MS SQL Server : "mssql" + */ +-$DBtype = "mysql"; ++$DBtype = "@DBTYPE@"; + + /* Alert DB connection parameters + * - $alert_dbname : MySQL database name of Snort alert DB +@@ -66,10 +66,10 @@ + /* Path to the graphing library + * (Note: DO NOT include a trailing backslash after the directory) + */ +-$ChartLib_path = ""; ++$ChartLib_path = "@PREFIX@/share/php-jpgraph"; + + /* File format of charts ('png', 'jpeg', 'gif') */ +-$chart_file_format = "png"; ++$chart_file_format = "jpeg"; + + /* Chart default colors - (red, green, blue) + * - $chart_bg_color_default : background color of chart |