OpenPKG CVS Repository http://cvs.openpkg.org/ ____________________________________________________________________________
Server: cvs.openpkg.org Name: Ralf S. Engelschall Root: /v/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-src Date: 23-May-2006 15:34:05 Branch: HEAD Handle: 2006052314340101 Added files: openpkg-src/arpalert arpalert.conf arpalert.patch arpalert.spec rc.arpalert Log: new package: arpalert 1.0.2 (ARP Network Monitoring & Alerting) Summary: Revision Changes Path 1.1 +60 -0 openpkg-src/arpalert/arpalert.conf 1.1 +79 -0 openpkg-src/arpalert/arpalert.patch 1.1 +118 -0 openpkg-src/arpalert/arpalert.spec 1.1 +56 -0 openpkg-src/arpalert/rc.arpalert ____________________________________________________________________________ patch -p0 <<'@@ .' Index: openpkg-src/arpalert/arpalert.conf ============================================================================ $ cvs diff -u -r0 -r1.1 arpalert.conf --- /dev/null 2006-05-23 15:33:40 +0200 +++ arpalert.conf 2006-05-23 15:34:04 +0200 @@ -0,0 +1,60 @@ +## +## arpalert.conf -- ARPAlert server configuration +## + +maclist file = @l_prefix@/etc/arpalert/arpalert.allow +maclist alert file = @l_prefix@/etc/arpalert/arpalert.deny +auth request file = @l_prefix@/etc/arpalert/arpalert.authreq + +maclist leases file = @l_prefix@/var/arpalert/db/arpalert.leases +lock file = @l_prefix@/var/arpalert/run/arpalert.pid +log file = @l_prefix@/var/arpalert/log/arpalert.log +log level = 6 +use syslog = false + +daemon = true +user = @l_rusr@ +umask = 0177 + +#interface = eth0 +dump paquet = false + +action on detect = "" +ignore me = true +max alert = 20 +execution timeout = 10 + +dump black list = false +dump white list = false +dump new address = true + +mac timeout = 259200 +max entry = 1000000 +anti flood interval = 5 +anti flood global = 50 +ignore unknown sender = false +ignore self test = false +unauth ignore time method = 2 +max request = 1000000 + +log referenced address = false +alert on referenced address = false +log deny address = true +alert on deny address = false +log new address = true +alert on new address = false +log new mac address = true +alert on new mac address = false +log ip change = true +alert on ip change = false +log mac change = true +alert on mac change = false +log unauth request = false +alert on unauth request = false +log request abus = true +alert on request abus = false +log mac error = true +alert on mac error = false +log flood = true +alert on flood = false + @@ . patch -p0 <<'@@ .' Index: openpkg-src/arpalert/arpalert.patch ============================================================================ $ cvs diff -u -r0 -r1.1 arpalert.patch --- /dev/null 2006-05-23 15:33:40 +0200 +++ arpalert.patch 2006-05-23 15:34:04 +0200 @@ -0,0 +1,79 @@ +Index: Makefile.in +--- Makefile.in.orig 2006-05-10 23:46:41 +0200 ++++ Makefile.in 2006-05-23 15:19:34 +0200 +@@ -17,9 +17,9 @@ + mandir = @mandir@ + includedir = @includedir@ + config_dir = @sysconfdir@/arpalert +-leases_dir = @localstatedir@/lib/arpalert +-lock_dir = @localstatedir@/run +-log_dir = @localstatedir@/log ++leases_dir = @localstatedir@/arpalert/db ++lock_dir = @localstatedir@/arpalert/run ++log_dir = @localstatedir@/arpalert/log + src_dir = . + + CC = @CC@ +@@ -90,17 +90,17 @@ + mkdir -p $(DESTDIR)$(mandir)/man8 + cp -f doc/arpalert.8 $(DESTDIR)$(mandir)/man8 + cp -f arpalert $(DESTDIR)$(sbindir) +- test ! -f $(DESTDIR)$(config_dir)/maclist.allow && > $(DESTDIR)$(config_dir)/maclist.allow || /bin/true +- test ! -f $(DESTDIR)$(config_dir)/maclist.deny && > $(DESTDIR)$(config_dir)/maclist.deny || /bin/true ++ test ! -f $(DESTDIR)$(config_dir)/arpalert.allow && > $(DESTDIR)$(config_dir)/arpalert.allow || /bin/true ++ test ! -f $(DESTDIR)$(config_dir)/arpalert.deny && > $(DESTDIR)$(config_dir)/arpalert.deny || /bin/true + if test ! -f $(DESTDIR)$(config_dir)/arpalert.conf; \ + then \ + > $(DESTDIR)$(config_dir)/arpalert.conf; \ + echo "# white list" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ +- echo "Maclist file = $(config_dir)/maclist.allow" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ ++ echo "Maclist file = $(config_dir)/arpalert.allow" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ + echo >> $(DESTDIR)$(config_dir)/arpalert.conf; \ + \ + echo "# black list" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ +- echo "Maclist alert file = $(config_dir)/maclist.deny" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ ++ echo "Maclist alert file = $(config_dir)/arpalert.deny" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ + echo >> $(DESTDIR)$(config_dir)/arpalert.conf; \ + \ + echo "# dump file" >> $(DESTDIR)$(config_dir)/arpalert.conf; \ +Index: doc/arpalert.8 +--- doc/arpalert.8.orig 2006-05-10 23:46:42 +0200 ++++ doc/arpalert.8 2006-05-23 15:21:39 +0200 +@@ -82,16 +82,16 @@ + \fBuse syslog\fR = true + If this option is false, the syslog system is disabled + .TP +-\fBmaclist file\fR = /etc/arpalert/maclist.allow ++\fBmaclist file\fR = /etc/arpalert/arpalert.allow + white list + .TP +-\fBmaclist alert file\fR = /etc/arpalert/maclist.deny ++\fBmaclist alert file\fR = /etc/arpalert/arpalert.deny + black list + .TP + \fBmaclist leases file\fR = /var/lib/arpalert/arpalert.leases + dump fil + .TP +-\fBauth request file\fR = /etc/arpalert/authrq.conf ++\fBauth request file\fR = /etc/arpalert/arpalert.authreq + list of authorized request" + .TP + \fBLock file\fR = /var/run/arpalert.lock +@@ -228,7 +228,7 @@ + .\" + .SH DATA FILES FORMATS + .TP +-\fB/etc/arpalert/maclist.allow\fR and \fB/etc/arpalert/maclist.deny\fR: ++\fB/etc/arpalert/arpalert.allow\fR and \fB/etc/arpalert/arpalert.deny\fR: + all the line with # as a \fBfirst\fR caracter are ignored + .br + The data on this file take this form +@@ -249,7 +249,7 @@ + .br + \fBmac_change:\fR Ignore mac change for this mac address + .TP +-\fB/etc/arpalert/authrq.conf\fR: ++\fB/etc/arpalert/arpalert.authreq\fR: + all the word after # caracter are ignored + .br + all the blank characters are ignored @@ . patch -p0 <<'@@ .' Index: openpkg-src/arpalert/arpalert.spec ============================================================================ $ cvs diff -u -r0 -r1.1 arpalert.spec --- /dev/null 2006-05-23 15:33:40 +0200 +++ arpalert.spec 2006-05-23 15:34:04 +0200 @@ -0,0 +1,118 @@ +## +## arpalert.spec -- OpenPKG RPM Package Specification +## Copyright (c) 2000-2006 OpenPKG Foundation e.V. <http://openpkg.net/> +## Copyright (c) 2000-2006 Ralf S. Engelschall <http://engelschall.com/> +## +## Permission to use, copy, modify, and distribute this software for +## any purpose with or without fee is hereby granted, provided that +## the above copyright notice and this permission notice appear in all +## copies. +## +## THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED +## WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +## MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. +## IN NO EVENT SHALL THE AUTHORS AND COPYRIGHT HOLDERS AND THEIR +## CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, +## SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT +## LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF +## USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND +## ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, +## OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT +## OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF +## SUCH DAMAGE. +## + +# package information +Name: arpalert +Summary: ARP Network Monitoring & Alerting +URL: http://www.arpalert.org/ +Vendor: Thierry FOURNIER +Packager: OpenPKG +Distribution: OpenPKG +Class: EVAL +Group: Network +License: GPL +Version: 1.0.2 +Release: 20060523 + +# list of sources +Source0: http://perso.numericable.fr/~fourthie/arpalert/src/arpalert-%{version}.tar.gz +Source1: arpalert.conf +Source2: rc.arpalert +Patch0: arpalert.patch + +# build information +Prefix: %{l_prefix} +BuildRoot: %{l_buildroot} +BuildPreReq: OpenPKG, openpkg >= 20040130, gcc, make +PreReq: OpenPKG, openpkg >= 20040130 +BuildPreReq: libpcap +PreReq: libpcap +AutoReq: no +AutoReqProv: no + +%description + ARPAlert listens on a network interface (without using 'promiscuous' + mode) and catches all requests for MAC address to IP conversion. It + then compares the MAC addresses it detected with a pre-configured + list of authorized MAC addresses. If the MAC is not in list, + ARPAlert launches a pre-defined user script with the MAC address and + IP address as parameters. + +%track + prog arpalert = { + version = %{version} + url = http://perso.numericable.fr/~fourthie/arpalert/index.php?page=download + regex = arpalert-(__VER__)\.tar\.gz + } + +%prep + %setup -q + %patch -p0 + +%build + CC="%{l_cc}" \ + CFLAGS="%{l_cflags -O}" \ + CPPFLAGS="%{l_cppflags}" \ + LDFLAGS="%{l_ldflags}" \ + ./configure \ + --prefix=%{l_prefix} + %{l_make} %{l_mflags -O} + +%install + rm -rf $RPM_BUILD_ROOT + %{l_make} %{l_mflags} install DESTDIR=$RPM_BUILD_ROOT + strip $RPM_BUILD_ROOT%{l_prefix}/sbin/* >/dev/null 2>&1 || true + %{l_shtool} install -c -m 644 %{l_value -s -a} \ + %{SOURCE arpalert.conf} $RPM_BUILD_ROOT%{l_prefix}/etc/arpalert/ + %{l_shtool} install -c -m 644 \ + /dev/null $RPM_BUILD_ROOT%{l_prefix}/etc/arpalert/arpalert.authreq + %{l_shtool} mkdir -f -p -m 755 \ + $RPM_BUILD_ROOT%{l_prefix}/etc/rc.d + %{l_shtool} install -c -m 755 %{l_value -s -a} \ + %{SOURCE rc.arpalert} $RPM_BUILD_ROOT%{l_prefix}/etc/rc.d/ + %{l_rpmtool} files -v -ofiles -r$RPM_BUILD_ROOT \ + %{l_files_std} \ + '%config %{l_prefix}/etc/arpalert/*' \ + '%attr(-,%{l_rusr},%{l_rgrp}) %{l_prefix}/var/arpalert/*' + +%files -f files + +%clean + rm -rf $RPM_BUILD_ROOT + +%post + # after upgrade, restart service + [ $1 -eq 2 ] || exit 0 + eval `%{l_rc} arpalert status 2>/dev/null` + [ ".$arpalert_active" = .yes ] && %{l_rc} arpalert restart + exit 0 + +%preun + # before erase, stop service and remove log files + [ $1 -eq 0 ] || exit 0 + %{l_rc} arpalert stop 2>/dev/null + rm -f $RPM_INSTALL_PREFIX/var/arpalert/run/* >/dev/null 2>&1 || true + rm -f $RPM_INSTALL_PREFIX/var/arpalert/log/* >/dev/null 2>&1 || true + exit 0 + @@ . patch -p0 <<'@@ .' Index: openpkg-src/arpalert/rc.arpalert ============================================================================ $ cvs diff -u -r0 -r1.1 rc.arpalert --- /dev/null 2006-05-23 15:33:40 +0200 +++ rc.arpalert 2006-05-23 15:34:05 +0200 @@ -0,0 +1,56 @@ [EMAIL PROTECTED]@/lib/openpkg/bash @l_prefix@/etc/rc +## +## rc.arpalert -- Run-Commands +## + +%config + arpalert_enable="$openpkg_rc_def" + arpalert_flags="" + arpalert_log_prolog="true" + arpalert_log_epilog="true" + arpalert_log_numfiles="10" + arpalert_log_minsize="1M" + arpalert_log_complevel="9" + +%common + arpalert_pidfile="@l_prefix@/var/arpalert/run/arpalert.pid" + arpalert_logfile="@l_prefix@/var/arpalert/log/arpalert.log" + arpalert_signal () { + [ -f $arpalert_pidfile ] && kill -$1 `cat $arpalert_pidfile` + } + +%status -u @l_susr@ -o + arpalert_usable="unknown" + arpalert_active="no" + rcService arpalert enable yes && \ + arpalert_signal 0 && arpalert_active="yes" + echo "arpalert_enable=\"$arpalert_enable\"" + echo "arpalert_usable=\"$arpalert_usable\"" + echo "arpalert_active=\"$arpalert_active\"" + +%start -u @l_susr@ + rcService arpalert enable yes || exit 0 + rcService arpalert active yes && exit 0 + @l_prefix@/sbin/arpalert ${arpalert_flags} + +%stop -u @l_susr@ + rcService arpalert enable yes || exit 0 + rcService arpalert active no && exit 0 + arpalert_signal TERM + sleep 2 + rm -f $arpalert_pidfile >/dev/null 2>&1 || true + +%restart -u @l_susr@ + rcService arpalert enable yes || exit 0 + rcService arpalert active no && exit 0 + rc arpalert stop start + +%daily -u @l_susr@ + rcService arpalert enable yes || exit 0 + shtool rotate -f \ + -n ${arpalert_log_numfiles} -s ${arpalert_log_minsize} -d \ + -z ${arpalert_log_complevel} -m 664 -o @l_susr@ -g @l_mgrp@ \ + -P "${arpalert_log_prolog}" \ + -E "${arpalert_log_epilog}; rc arpalert restart" \ + $arpalert_logfile + @@ . ______________________________________________________________________ The OpenPKG Project www.openpkg.org CVS Repository Commit List openpkg-cvs@openpkg.org