From 50893da0df3e6695a48a207c1b88f8e415947299 Mon Sep 17 00:00:00 2001 From: hubertf Date: Thu, 21 Dec 2000 13:35:49 +0000 Subject: Import rip-1.11: Remote Intrusion Detection to track down compromised hosts Purpose: To use intrusion fingerprints to track down compromised hosts. Scope: TCP/UDP/ICMP (No fragmentation reassembly) Specs: Program can create somewhat arbitrary UDP/ICMP/TCP packets/streams and send them to a range of hosts. It also listens promiscuously for predefined intrusion "fingerprints". --- security/rid/Makefile | 22 ++++++++++++++++++++++ security/rid/files/md5 | 3 +++ security/rid/pkg/COMMENT | 1 + security/rid/pkg/DESCR | 5 +++++ security/rid/pkg/PLIST | 9 +++++++++ 5 files changed, 40 insertions(+) create mode 100644 security/rid/Makefile create mode 100644 security/rid/files/md5 create mode 100644 security/rid/pkg/COMMENT create mode 100644 security/rid/pkg/DESCR create mode 100644 security/rid/pkg/PLIST (limited to 'security/rid') diff --git a/security/rid/Makefile b/security/rid/Makefile new file mode 100644 index 00000000000..51d8d28dda0 --- /dev/null +++ b/security/rid/Makefile @@ -0,0 +1,22 @@ +# $NetBSD: Makefile,v 1.1.1.1 2000/12/21 13:35:49 hubertf Exp $ +# + +DISTNAME= rid-1.11 +CATEGORIES= security net +MASTER_SITES= http://www.theorygroup.com/Software/RID/ +EXTRACT_SUFX= .tgz + +MAINTAINER= hubertf@netbsd.org +HOMEPAGE= http://www.theorygroup.com/Software/RID/ + +GNU_CONFIGURE= YES + +do-install: + ${INSTALL_PROGRAM} ${WRKSRC}/rid ${PREFIX}/sbin + ${INSTALL_DATA} ${WRKSRC}/rid.conf ${PREFIX}/etc + ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/rid + ${INSTALL_DATA} ${WRKSRC}/BUGS ${WRKSRC}/CHANGES \ + ${WRKSRC}/COPYRIGHT ${WRKSRC}/CREDITS ${WRKSRC}/README \ + ${PREFIX}/share/doc/rid + +.include "../../mk/bsd.pkg.mk" diff --git a/security/rid/files/md5 b/security/rid/files/md5 new file mode 100644 index 00000000000..0c8a738d5f2 --- /dev/null +++ b/security/rid/files/md5 @@ -0,0 +1,3 @@ +$NetBSD: md5,v 1.1.1.1 2000/12/21 13:35:49 hubertf Exp $ + +MD5 (rid-1.11.tgz) = fe5ad41c29f8418aba7a8399edbe57fa diff --git a/security/rid/pkg/COMMENT b/security/rid/pkg/COMMENT new file mode 100644 index 00000000000..4ca6157cfab --- /dev/null +++ b/security/rid/pkg/COMMENT @@ -0,0 +1 @@ +Remote Intrusion Detection to track down compromised hosts diff --git a/security/rid/pkg/DESCR b/security/rid/pkg/DESCR new file mode 100644 index 00000000000..474047ebab7 --- /dev/null +++ b/security/rid/pkg/DESCR @@ -0,0 +1,5 @@ +Purpose: To use intrusion fingerprints to track down compromised hosts. +Scope: TCP/UDP/ICMP (No fragmentation reassembly) +Specs: Program can create somewhat arbitrary UDP/ICMP/TCP packets/streams + and send them to a range of hosts. It also listens promiscuously + for predefined intrusion "fingerprints". diff --git a/security/rid/pkg/PLIST b/security/rid/pkg/PLIST new file mode 100644 index 00000000000..55cdd042d26 --- /dev/null +++ b/security/rid/pkg/PLIST @@ -0,0 +1,9 @@ +@comment $NetBSD: PLIST,v 1.1.1.1 2000/12/21 13:35:49 hubertf Exp $ +sbin/rid +etc/rid.conf +share/doc/rid/BUGS +share/doc/rid/CHANGES +share/doc/rid/COPYRIGHT +share/doc/rid/CREDITS +share/doc/rid/README +@dirrm share/doc/rid -- cgit v1.2.3