Index: net/oinkmaster/Makefile =================================================================== RCS file: /cvs/ports/net/oinkmaster/Makefile,v retrieving revision 1.12 diff -u -p -r1.12 Makefile --- net/oinkmaster/Makefile 5 Feb 2006 12:48:43 -0000 1.12 +++ net/oinkmaster/Makefile 10 Mar 2006 19:53:57 -0000 @@ -2,8 +2,7 @@ COMMENT= "update your Snort rules" -DISTNAME= oinkmaster-1.2 -PKGNAME= ${DISTNAME}p0 +DISTNAME= oinkmaster-2.0 CATEGORIES= net security MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=oinkmaster/} @@ -22,6 +21,8 @@ NO_BUILD=Yes NO_REGRESS=Yes PKG_ARCH=* +DOCS= FAQ INSTALL LICENSE README README.templates UPGRADING + do-install: sed -e 's;"/usr/local/etc/oinkmaster.conf";"${SYSCONFDIR}/oinkmaster.conf";g' \ ${WRKSRC}/oinkmaster.pl > ${WRKSRC}/oinkmaster- @@ -32,6 +33,8 @@ do-install: ${INSTALL_DATA} ${WRKSRC}/oinkmaster.conf \ ${WRKSRC}/template-examples.conf \ ${PREFIX}/share/examples/oinkmaster - ${INSTALL_DATA} ${WRKSRC}/README.templates ${PREFIX}/share/doc/oinkmaster +.for i in ${DOCS} + ${INSTALL_DATA} ${WRKSRC}/${i} ${PREFIX}/share/doc/oinkmaster +.endfor .include <bsd.port.mk> Index: net/oinkmaster/distinfo =================================================================== RCS file: /cvs/ports/net/oinkmaster/distinfo,v retrieving revision 1.7 diff -u -p -r1.7 distinfo --- net/oinkmaster/distinfo 25 Jan 2006 04:30:58 -0000 1.7 +++ net/oinkmaster/distinfo 10 Mar 2006 19:53:57 -0000 @@ -1,4 +1,4 @@ -MD5 (oinkmaster-1.2.tar.gz) = 23dc212f3a5a93ab32253edb379cb724 -RMD160 (oinkmaster-1.2.tar.gz) = 74dcd25477b24af4e64100cc51b70416e8f5a1ec -SHA1 (oinkmaster-1.2.tar.gz) = d4628e9c42e635aaaf90f8c9b2dfdcd5db618ed4 -SIZE (oinkmaster-1.2.tar.gz) = 75512 +MD5 (oinkmaster-2.0.tar.gz) = d2a1b56f51cf40e919c63206ca4ec8f8 +RMD160 (oinkmaster-2.0.tar.gz) = a3292cfc2e6b175008a7172be5809ca6e2fc85b7 +SHA1 (oinkmaster-2.0.tar.gz) = 01a0d774195670a11af5ff3e302773d962b34224 +SIZE (oinkmaster-2.0.tar.gz) = 80111 Index: net/oinkmaster/patches/patch-oinkmaster_1 =================================================================== RCS file: /cvs/ports/net/oinkmaster/patches/patch-oinkmaster_1,v retrieving revision 1.2 diff -u -p -r1.2 patch-oinkmaster_1 --- net/oinkmaster/patches/patch-oinkmaster_1 25 Jan 2006 04:30:58 -0000 1.2 +++ net/oinkmaster/patches/patch-oinkmaster_1 10 Mar 2006 19:53:57 -0000 @@ -1,6 +1,6 @@ $OpenBSD: patch-oinkmaster_1,v 1.2 2006/01/25 04:30:58 david Exp $ ---- oinkmaster.1.orig Sat Apr 16 02:29:41 2005 -+++ oinkmaster.1 Tue Jan 3 23:05:36 2006 +--- oinkmaster.1.orig Sat Feb 18 06:35:21 2006 ++++ oinkmaster.1 Thu Mar 9 09:12:04 2006 @@ -8,7 +8,7 @@ .B oinkmaster \- update Snort signatures @@ -10,7 +10,7 @@ $OpenBSD: patch-oinkmaster_1,v 1.2 2006/ .I outdir [options] .SH DESCRIPTION -@@ -182,14 +182,14 @@ Download rules archive from default loca +@@ -205,14 +205,14 @@ Download rules archive from default loca and put the new rules in /etc/rules/: .PP .nf @@ -27,8 +27,8 @@ $OpenBSD: patch-oinkmaster_1,v 1.2 2006/ .fi .PP Download rules archive from default location, make backup of old rules if -@@ -200,7 +200,7 @@ passwords, you should of course not send - first encrypting the content.) +@@ -223,7 +223,7 @@ passwords, you should of course not send + first encrypting the content.): .PP .nf -\fB oinkmaster.pl -o /etc/snort/rules -b /etc/snort/backup 2>&1 | \fP\\ @@ -36,7 +36,16 @@ $OpenBSD: patch-oinkmaster_1,v 1.2 2006/ \fB mail -s "subject" [EMAIL PROTECTED] .fi .PP -@@ -212,7 +212,7 @@ command is available on the system: +@@ -232,7 +232,7 @@ downloaded snort.conf and foo.conf but n + /etc/snort/snort.conf: + .PP + .nf +-\fB oinkmaster.pl -u file:///tmp/foo.rules.tar.gz \fP\\ ++\fB oinkmaster -u file:///tmp/foo.rules.tar.gz \fP\\ + \fB -u http://somewhere/rules.tar.gz -u https://blah/rules.tar.gz \fP\\ + \fB -o /etc/rules -S snort.conf -S foo.conf -U /etc/snort/snort.conf + .fi +@@ -245,7 +245,7 @@ command is available on the system: .PP .nf \fB TMP=`mktemp /tmp/oinkmaster.XXXXXX` && \fP\\ Index: net/oinkmaster/patches/patch-oinkmaster_conf =================================================================== RCS file: net/oinkmaster/patches/patch-oinkmaster_conf diff -N net/oinkmaster/patches/patch-oinkmaster_conf --- net/oinkmaster/patches/patch-oinkmaster_conf 5 Feb 2006 05:00:43 -0000 1.4 +++ /dev/null 1 Jan 1970 00:00:00 -0000 @@ -1,33 +0,0 @@ -$OpenBSD: patch-oinkmaster_conf,v 1.4 2006/02/05 05:00:43 david Exp $ ---- oinkmaster.conf.orig Sat Apr 16 02:29:41 2005 -+++ oinkmaster.conf Sat Feb 4 12:20:56 2006 -@@ -47,9 +47,9 @@ - # You then specify the URL as - # http://www.snort.org/pub-bin/oinkmaster.cgi/<oinkcode>/<filename> - # For example, if your code is 5a081649c06a277e1022e1284b and --# you use Snort 2.3, the url to use would be (without the wrap): -+# you use Snort 2.4, the url to use would be (without the wrap): - # http://www.snort.org/pub-bin/oinkmaster.cgi/ --# 5a081649c06a277e1022e1284bdc8fabda70e2a4/snortrules-snapshot-2.3.tar.gz -+# 5a081649c06a277e1022e1284bdc8fabda70e2a4/snortrules-snapshot-2.4.tar.gz - # See the Oinkmaster FAQ Q28 and http://www.snort.org/rules/ for - # more information. - -@@ -57,14 +57,14 @@ - # URL examples follows. Replace <oinkcode> with the code you get on the - # Snort site in your registered user profile. - --# Example for Snort 2.3 --# url = http://www.snort.org/pub-bin/oinkmaster.cgi/<oinkcode>/snortrules-snapshot-2.3.tar.gz -+# Example for Snort 2.4 -+# url = http://www.snort.org/pub-bin/oinkmaster.cgi/<oinkcode>/snortrules-snapshot-2.4.tar.gz - - # Example for Snort-current ("current" means cvs snapshots). - # url = http://www.snort.org/pub-bin/oinkmaster.cgi/<oinkcode>/snortrules-snapshot-CURRENT.tar.gz - - # Example for Community rules --# url = http://www.snort.org/pub-bin/downloads.cgi/Download/comm_rules/Community-Rules.tar.gz -+# url = http://www.snort.org/pub-bin/downloads.cgi/Download/comm_rules/Community-Rules-2.4.tar.gz - - # Example for rules from the Bleeding Snort project - # url = http://www.bleedingsnort.com/bleeding.rules.tar.gz Index: net/oinkmaster/pkg/DESCR =================================================================== RCS file: /cvs/ports/net/oinkmaster/pkg/DESCR,v retrieving revision 1.4 diff -u -p -r1.4 DESCR --- net/oinkmaster/pkg/DESCR 25 Jan 2006 04:30:58 -0000 1.4 +++ net/oinkmaster/pkg/DESCR 10 Mar 2006 19:53:57 -0000 @@ -4,10 +4,14 @@ interaction. It has quite a few useful f management, such as ability to enable, disable and modify specified rules after each update. It will tell you the exact changes from your previous rules, so you have total control of what's going on. +It may be useful in conjunction with any program that can use Snort +rules, like Snort (doh!) or Prelude-NIDS. Oinkmaster is most often used to grab the latest official rules tarball from www.snort.org and apply a set of modifications to them (such as disabling unwanted ones), but it can just as well be used to manage -local and third party rules and distribute them to multiple sensors -with ability to fine-tune the rules on each sensor or group of -sensors. +your local rules and also third party rules and distribute them to +multiple sensors with ability to fine-tune the rules on each sensor or +group of sensors. Oinkmaster is designed to integrate well with other +scripts and you can easily setup a very powerful rules management system. +See the FAQ for hints and suggestions. Index: net/oinkmaster/pkg/PLIST =================================================================== RCS file: /cvs/ports/net/oinkmaster/pkg/PLIST,v retrieving revision 1.5 diff -u -p -r1.5 PLIST --- net/oinkmaster/pkg/PLIST 29 Mar 2005 01:31:39 -0000 1.5 +++ net/oinkmaster/pkg/PLIST 10 Mar 2006 19:53:57 -0000 @@ -2,7 +2,12 @@ bin/oinkmaster @man man/man1/oinkmaster.1 share/doc/oinkmaster/ +share/doc/oinkmaster/FAQ +share/doc/oinkmaster/INSTALL +share/doc/oinkmaster/LICENSE +share/doc/oinkmaster/README share/doc/oinkmaster/README.templates +share/doc/oinkmaster/UPGRADING share/examples/oinkmaster/ share/examples/oinkmaster/oinkmaster.conf @sample ${SYSCONFDIR}/oinkmaster.conf