From owner-freebsd-ports-bugs@FreeBSD.ORG Fri Aug 1 07:40:01 2008 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CC00F1065670 for ; Fri, 1 Aug 2008 07:40:01 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id AA2FE8FC27 for ; Fri, 1 Aug 2008 07:40:01 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id m717e1lF071089 for ; Fri, 1 Aug 2008 07:40:01 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id m717e1He071088; Fri, 1 Aug 2008 07:40:01 GMT (envelope-from gnats) Resent-Date: Fri, 1 Aug 2008 07:40:01 GMT Resent-Message-Id: <200808010740.m717e1He071088@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Tomoyuki Sakurai Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D8DFA1065671 for ; Fri, 1 Aug 2008 07:33:51 +0000 (UTC) (envelope-from cherry@spica.trombik.org) Received: from spica.trombik.org (spica.trombik.org [211.19.48.12]) by mx1.freebsd.org (Postfix) with ESMTP id CDD098FC14 for ; Fri, 1 Aug 2008 07:33:50 +0000 (UTC) (envelope-from cherry@spica.trombik.org) Received: by spica.trombik.org (Postfix, from userid 999) id A50ED1CCF8; Fri, 1 Aug 2008 16:33:46 +0900 (JST) Message-Id: <20080801073346.A50ED1CCF8@spica.trombik.org> Date: Fri, 1 Aug 2008 16:33:46 +0900 (JST) From: Tomoyuki Sakurai To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Cc: Subject: ports/126148: [NEW PORT] security/bro-devel: System for detecting Network Intruders in real-time X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Aug 2008 07:40:01 -0000 >Number: 126148 >Category: ports >Synopsis: [NEW PORT] security/bro-devel: System for detecting Network Intruders in real-time >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Fri Aug 01 07:40:01 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Tomoyuki Sakurai >Release: FreeBSD 7.0-STABLE amd64 >Organization: >Environment: System: FreeBSD spica.trombik.org 7.0-STABLE FreeBSD 7.0-STABLE #5: Thu Jul 10 22:29:26 JST 2008 >Description: Bro is an open-source, Unix-based Network Intrusion Detection System (NIDS) that passively monitors network traffic and looks for suspicious activity. Bro detects intrusions by first parsing network traffic to extract is application-level semantics and then executing event-oriented analyzers that compare the activity with patterns deemed troublesome. Its analysis includes detection of specific attacks (including those defined by signatures, but also those defined in terms of events) and unusual activities (e.g., certain hosts connecting to certain services, or patterns of failed connection attempts). WWW: http://bro-ids.org/ security/bro-devel has several improvements: - it actually works - respect hier(7), no more ${PREFIX}/bro - separate perl module and broccoli - add correct *_DEPENDS - fix plist - provide rc.subr script for bro This port requires user bro to be added to /usr/ports/UIDs and GIDs. Generated with FreeBSD Port Tools 0.77 >How-To-Repeat: >Fix: --- bro-devel-1.3.2.shar begins here --- # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # bro-devel # bro-devel/files # bro-devel/files/patch-scripts_Makefile.in # bro-devel/files/patch-Makefile.in # bro-devel/files/patch-aux_scripts_Makefile.in # bro-devel/files/patch-scripts_bro.rc.in # bro-devel/files/patch-configure # bro-devel/files/patch-policy_Makefile.in # bro-devel/files/patch-policy_sigs_Makefile.in # bro-devel/files/patch-scripts_bro_config.in # bro-devel/files/patch-scripts_s2b_bro-include_Makefile.in # bro-devel/files/patch-scripts_s2b_example_bro_files_Makefile.in # bro-devel/files/pkg-install.in # bro-devel/files/patch-scripts_bro.cfg.example # bro-devel/files/pkg-message.in # bro-devel/files/bro.in # bro-devel/Makefile # bro-devel/distinfo # bro-devel/pkg-descr # bro-devel/pkg-plist # echo c - bro-devel mkdir -p bro-devel > /dev/null 2>&1 echo c - bro-devel/files mkdir -p bro-devel/files > /dev/null 2>&1 echo x - bro-devel/files/patch-scripts_Makefile.in sed 's/^X//' >bro-devel/files/patch-scripts_Makefile.in << 'a69074934bfdf899eea09ffa4e2259d6' X--- scripts/Makefile.in.orig 2007-07-29 10:05:11.000000000 +0900 X+++ scripts/Makefile.in 2008-07-27 12:22:06.000000000 +0900 X@@ -100,11 +100,11 @@ X install_sh = @install_sh@ X X bro_bin = ${prefix}/bin X-bro_logs = ${prefix}/logs X-bro_etc = ${prefix}/etc X-bro_site = ${prefix}/site X-bro_scripts = ${prefix}/scripts X-bro_reports = ${prefix}/reports X+bro_logs = /var/log/bro/logs X+bro_etc = ${prefix}/etc/bro X+bro_site = ${prefix}/etc/bro/site X+bro_scripts = ${pkgdatadir}/scripts X+bro_reports = /var/log/bro/reports X bro_perlmods = ${prefix}/perl X X # where to download signatures from. X@@ -138,10 +138,10 @@ X bin_SCRIPT = bro.rc X X # more files! Ugggg, will the pain ever stop? X-scoredir = $(prefix)/etc X+scoredir = $(bro_etc) X dist_score_DATA = alert_scores signature_scores X X-scriptsdir = $(prefix)/scripts X+scriptsdir = $(pkgdatadir)/scripts X dist_scripts_SCRIPTS = bro_log_compress.sh \ X frontend-mail-reports.sh frontend-site-report.sh push_logs.sh mail_notice.sh X X@@ -522,10 +522,8 @@ X create_dirs: X - $(INSTALL) -d $(bro_bin) X $(INSTALL) -d $(bro_etc) X- $(INSTALL) -d $(bro_logs) X $(INSTALL) -d $(bro_site) X $(INSTALL) -d $(bro_scripts) X- $(INSTALL) -d $(bro_reports) X X # these are files that SHOULD NOT be updated and are site specific X install_local_files: a69074934bfdf899eea09ffa4e2259d6 echo x - bro-devel/files/patch-Makefile.in sed 's/^X//' >bro-devel/files/patch-Makefile.in << '309fef172583b3a5f89ae6ebdeea4163' X--- Makefile.in.orig 2007-07-29 10:05:08.000000000 +0900 X+++ Makefile.in 2008-07-27 12:43:11.000000000 +0900 X@@ -111,7 +111,7 @@ X # X DISTCHECK_CONFIGURE_FLAGS = --disable-gtk-doc X X-versiondir = $(prefix)/etc X+versiondir = $(prefix)/etc/bro X dist_version_DATA = VERSION X chown = @CHOWN@ X X@@ -514,9 +514,6 @@ X X # make sure all the dirs are correctly created and owned X install-data-local: X- $(INSTALL) -d $(prefix)/logs X- $(INSTALL) -d $(prefix)/archive X- $(INSTALL) -d $(prefix)/var X X release: X ./autogen.sh 309fef172583b3a5f89ae6ebdeea4163 echo x - bro-devel/files/patch-aux_scripts_Makefile.in sed 's/^X//' >bro-devel/files/patch-aux_scripts_Makefile.in << '7bf928459b36e8c06f1e3c1517d2ba4b' X--- aux/scripts/Makefile.in.orig 2007-07-29 10:05:09.000000000 +0900 X+++ aux/scripts/Makefile.in 2008-07-27 12:42:04.000000000 +0900 X@@ -100,7 +100,7 @@ X install_sh = @install_sh@ X X # override where to stick the scripts X-scriptdir = ${prefix}/scripts X+scriptdir = ${pkgdatadir}/scripts X dist_script_SCRIPTS = bro-logchk.pl host-to-addrs mvlog host-grep X X EXTRA_DIST = hot-report mon-report ip-grep ca-create ca-issue 7bf928459b36e8c06f1e3c1517d2ba4b echo x - bro-devel/files/patch-scripts_bro.rc.in sed 's/^X//' >bro-devel/files/patch-scripts_bro.rc.in << '9c10abc1b1cab52646570454b4e4338f' X--- scripts/bro.rc.in.orig 2007-07-10 06:24:00.000000000 +0900 X+++ scripts/bro.rc.in 2008-07-27 14:00:17.000000000 +0900 X@@ -39,10 +39,10 @@ X export BROHOME X X # Set the environment. X-source_config="${BROHOME}/etc/bro.cfg" X+source_config="${BROHOME}/etc/bro/bro.cfg" X X # Location of bro-hooks.sh script X-bro_hooks="${BROHOME}/etc/bro.rc-hooks.sh" X+bro_hooks="${BROHOME}/etc/bro/bro.rc-hooks.sh" X X # Set the full path to this script as called X if [ `echo ${0} | grep -E "^/"` ]; then 9c10abc1b1cab52646570454b4e4338f echo x - bro-devel/files/patch-configure sed 's/^X//' >bro-devel/files/patch-configure << '4c9019d68ce53e2e2d2bc201bd169387' X--- configure.orig 2007-07-29 10:05:13.000000000 +0900 X+++ configure 2008-07-28 22:31:23.000000000 +0900 X@@ -10224,235 +10224,7 @@ X X X # Libclamav X-have_libclamav=Yes X- X-for ac_header in clamav.h X-do X-as_ac_Header=`echo "ac_cv_header_$ac_header" | $as_tr_sh` X-if eval "test \"\${$as_ac_Header+set}\" = set"; then X- echo "$as_me:$LINENO: checking for $ac_header" >&5 X-echo $ECHO_N "checking for $ac_header... $ECHO_C" >&6 X-if eval "test \"\${$as_ac_Header+set}\" = set"; then X- echo $ECHO_N "(cached) $ECHO_C" >&6 X-fi X-echo "$as_me:$LINENO: result: `eval echo '${'$as_ac_Header'}'`" >&5 X-echo "${ECHO_T}`eval echo '${'$as_ac_Header'}'`" >&6 X-else X- # Is the header compilable? X-echo "$as_me:$LINENO: checking $ac_header usability" >&5 X-echo $ECHO_N "checking $ac_header usability... $ECHO_C" >&6 X-cat >conftest.$ac_ext <<_ACEOF X-/* confdefs.h. */ X-_ACEOF X-cat confdefs.h >>conftest.$ac_ext X-cat >>conftest.$ac_ext <<_ACEOF X-/* end confdefs.h. */ X-$ac_includes_default X-#include <$ac_header> X-_ACEOF X-rm -f conftest.$ac_objext X-if { (eval echo "$as_me:$LINENO: \"$ac_compile\"") >&5 X- (eval $ac_compile) 2>conftest.er1 X- ac_status=$? X- grep -v '^ *+' conftest.er1 >conftest.err X- rm -f conftest.er1 X- cat conftest.err >&5 X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); } && X- { ac_try='test -z "$ac_c_werror_flag" X- || test ! -s conftest.err' X- { (eval echo "$as_me:$LINENO: \"$ac_try\"") >&5 X- (eval $ac_try) 2>&5 X- ac_status=$? X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); }; } && X- { ac_try='test -s conftest.$ac_objext' X- { (eval echo "$as_me:$LINENO: \"$ac_try\"") >&5 X- (eval $ac_try) 2>&5 X- ac_status=$? X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); }; }; then X- ac_header_compiler=yes X-else X- echo "$as_me: failed program was:" >&5 X-sed 's/^/| /' conftest.$ac_ext >&5 X- X-ac_header_compiler=no X-fi X-rm -f conftest.err conftest.$ac_objext conftest.$ac_ext X-echo "$as_me:$LINENO: result: $ac_header_compiler" >&5 X-echo "${ECHO_T}$ac_header_compiler" >&6 X- X-# Is the header present? X-echo "$as_me:$LINENO: checking $ac_header presence" >&5 X-echo $ECHO_N "checking $ac_header presence... $ECHO_C" >&6 X-cat >conftest.$ac_ext <<_ACEOF X-/* confdefs.h. */ X-_ACEOF X-cat confdefs.h >>conftest.$ac_ext X-cat >>conftest.$ac_ext <<_ACEOF X-/* end confdefs.h. */ X-#include <$ac_header> X-_ACEOF X-if { (eval echo "$as_me:$LINENO: \"$ac_cpp conftest.$ac_ext\"") >&5 X- (eval $ac_cpp conftest.$ac_ext) 2>conftest.er1 X- ac_status=$? X- grep -v '^ *+' conftest.er1 >conftest.err X- rm -f conftest.er1 X- cat conftest.err >&5 X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); } >/dev/null; then X- if test -s conftest.err; then X- ac_cpp_err=$ac_c_preproc_warn_flag X- ac_cpp_err=$ac_cpp_err$ac_c_werror_flag X- else X- ac_cpp_err= X- fi X-else X- ac_cpp_err=yes X-fi X-if test -z "$ac_cpp_err"; then X- ac_header_preproc=yes X-else X- echo "$as_me: failed program was:" >&5 X-sed 's/^/| /' conftest.$ac_ext >&5 X- X- ac_header_preproc=no X-fi X-rm -f conftest.err conftest.$ac_ext X-echo "$as_me:$LINENO: result: $ac_header_preproc" >&5 X-echo "${ECHO_T}$ac_header_preproc" >&6 X- X-# So? What about this header? X-case $ac_header_compiler:$ac_header_preproc:$ac_c_preproc_warn_flag in X- yes:no: ) X- { echo "$as_me:$LINENO: WARNING: $ac_header: accepted by the compiler, rejected by the preprocessor!" >&5 X-echo "$as_me: WARNING: $ac_header: accepted by the compiler, rejected by the preprocessor!" >&2;} X- { echo "$as_me:$LINENO: WARNING: $ac_header: proceeding with the compiler's result" >&5 X-echo "$as_me: WARNING: $ac_header: proceeding with the compiler's result" >&2;} X- ac_header_preproc=yes X- ;; X- no:yes:* ) X- { echo "$as_me:$LINENO: WARNING: $ac_header: present but cannot be compiled" >&5 X-echo "$as_me: WARNING: $ac_header: present but cannot be compiled" >&2;} X- { echo "$as_me:$LINENO: WARNING: $ac_header: check for missing prerequisite headers?" >&5 X-echo "$as_me: WARNING: $ac_header: check for missing prerequisite headers?" >&2;} X- { echo "$as_me:$LINENO: WARNING: $ac_header: see the Autoconf documentation" >&5 X-echo "$as_me: WARNING: $ac_header: see the Autoconf documentation" >&2;} X- { echo "$as_me:$LINENO: WARNING: $ac_header: section \"Present But Cannot Be Compiled\"" >&5 X-echo "$as_me: WARNING: $ac_header: section \"Present But Cannot Be Compiled\"" >&2;} X- { echo "$as_me:$LINENO: WARNING: $ac_header: proceeding with the preprocessor's result" >&5 X-echo "$as_me: WARNING: $ac_header: proceeding with the preprocessor's result" >&2;} X- { echo "$as_me:$LINENO: WARNING: $ac_header: in the future, the compiler will take precedence" >&5 X-echo "$as_me: WARNING: $ac_header: in the future, the compiler will take precedence" >&2;} X- ( X- cat <<\_ASBOX X-## ------------------------------------------ ## X-## Report this to the AC_PACKAGE_NAME lists. ## X-## ------------------------------------------ ## X-_ASBOX X- ) | X- sed "s/^/$as_me: WARNING: /" >&2 X- ;; X-esac X-echo "$as_me:$LINENO: checking for $ac_header" >&5 X-echo $ECHO_N "checking for $ac_header... $ECHO_C" >&6 X-if eval "test \"\${$as_ac_Header+set}\" = set"; then X- echo $ECHO_N "(cached) $ECHO_C" >&6 X-else X- eval "$as_ac_Header=\$ac_header_preproc" X-fi X-echo "$as_me:$LINENO: result: `eval echo '${'$as_ac_Header'}'`" >&5 X-echo "${ECHO_T}`eval echo '${'$as_ac_Header'}'`" >&6 X- X-fi X-if test `eval echo '${'$as_ac_Header'}'` = yes; then X- cat >>confdefs.h <<_ACEOF X-#define `echo "HAVE_$ac_header" | $as_tr_cpp` 1 X-_ACEOF X- X-else X- have_libclamav=No X-fi X- X-done X- X- X-echo "$as_me:$LINENO: checking for cl_retdbdir in -lclamav" >&5 X-echo $ECHO_N "checking for cl_retdbdir in -lclamav... $ECHO_C" >&6 X-if test "${ac_cv_lib_clamav_cl_retdbdir+set}" = set; then X- echo $ECHO_N "(cached) $ECHO_C" >&6 X-else X- ac_check_lib_save_LIBS=$LIBS X-LIBS="-lclamav $LIBS" X-cat >conftest.$ac_ext <<_ACEOF X-/* confdefs.h. */ X-_ACEOF X-cat confdefs.h >>conftest.$ac_ext X-cat >>conftest.$ac_ext <<_ACEOF X-/* end confdefs.h. */ X- X-/* Override any gcc2 internal prototype to avoid an error. */ X-#ifdef __cplusplus X-extern "C" X-#endif X-/* We use char because int might match the return type of a gcc2 X- builtin and then its argument prototype would still apply. */ X-char cl_retdbdir (); X-int X-main () X-{ X-cl_retdbdir (); X- ; X- return 0; X-} X-_ACEOF X-rm -f conftest.$ac_objext conftest$ac_exeext X-if { (eval echo "$as_me:$LINENO: \"$ac_link\"") >&5 X- (eval $ac_link) 2>conftest.er1 X- ac_status=$? X- grep -v '^ *+' conftest.er1 >conftest.err X- rm -f conftest.er1 X- cat conftest.err >&5 X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); } && X- { ac_try='test -z "$ac_c_werror_flag" X- || test ! -s conftest.err' X- { (eval echo "$as_me:$LINENO: \"$ac_try\"") >&5 X- (eval $ac_try) 2>&5 X- ac_status=$? X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); }; } && X- { ac_try='test -s conftest$ac_exeext' X- { (eval echo "$as_me:$LINENO: \"$ac_try\"") >&5 X- (eval $ac_try) 2>&5 X- ac_status=$? X- echo "$as_me:$LINENO: \$? = $ac_status" >&5 X- (exit $ac_status); }; }; then X- ac_cv_lib_clamav_cl_retdbdir=yes X-else X- echo "$as_me: failed program was:" >&5 X-sed 's/^/| /' conftest.$ac_ext >&5 X- X-ac_cv_lib_clamav_cl_retdbdir=no X-fi X-rm -f conftest.err conftest.$ac_objext \ X- conftest$ac_exeext conftest.$ac_ext X-LIBS=$ac_check_lib_save_LIBS X-fi X-echo "$as_me:$LINENO: result: $ac_cv_lib_clamav_cl_retdbdir" >&5 X-echo "${ECHO_T}$ac_cv_lib_clamav_cl_retdbdir" >&6 X-if test $ac_cv_lib_clamav_cl_retdbdir = yes; then X- cat >>confdefs.h <<_ACEOF X-#define HAVE_LIBCLAMAV 1 X-_ACEOF X- X- LIBS="-lclamav $LIBS" X- X-else X- have_libclamav=No X-fi X- X+have_libclamav=No X X # LibGeoIP X have_libgeoip=Yes 4c9019d68ce53e2e2d2bc201bd169387 echo x - bro-devel/files/patch-policy_Makefile.in sed 's/^X//' >bro-devel/files/patch-policy_Makefile.in << '03c9f34c5562776f9af6c266de9490ec' X--- policy/Makefile.in.orig 2007-07-29 10:05:10.000000000 +0900 X+++ policy/Makefile.in 2008-07-27 11:43:50.000000000 +0900 X@@ -109,7 +109,7 @@ X X X # doesn't end in a sig X-bropolicydir = ${prefix}/policy X+bropolicydir = ${pkgdatadir}/policy X dist_bropolicy_DATA = bro.init adu.bro alarm.bro analy.bro \ X anon.bro arp.bro backdoor.bro blaster.bro brolite.bro \ X brolite-backdoor.bro brolite-sigs.bro capture-events.bro \ X@@ -417,18 +417,18 @@ X X X install-data-hook: X- $(INSTALL_DATA) bro.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) common-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) const.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) dns-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) event.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) finger-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) ftp-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) http-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) ident-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) smb-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) smtp-rw.bif.bro $(DESTDIR)${prefix}/policy/ X- $(INSTALL_DATA) strings.bif.bro $(DESTDIR)${prefix}/policy/ X+ $(INSTALL_DATA) bro.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) common-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) const.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) dns-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) event.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) finger-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) ftp-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) http-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) ident-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) smb-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) smtp-rw.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X+ $(INSTALL_DATA) strings.bif.bro $(DESTDIR)${pkgdatadir}/policy/ X X uninstall-local: X rm -f $(DESTDIR)${prefix}/policy/bro.bif.bro 03c9f34c5562776f9af6c266de9490ec echo x - bro-devel/files/patch-policy_sigs_Makefile.in sed 's/^X//' >bro-devel/files/patch-policy_sigs_Makefile.in << 'ff50a57e7e7db2c9cab516b151b5b2bf' X--- policy/sigs/Makefile.in.orig 2007-07-29 10:05:10.000000000 +0900 X+++ policy/sigs/Makefile.in 2008-07-27 11:39:17.000000000 +0900 X@@ -99,7 +99,7 @@ X am__quote = @am__quote@ X install_sh = @install_sh@ X X-sigsdir = ${prefix}/policy/sigs X+sigsdir = $(pkgdatadir)/policy/sigs X dist_sigs_DATA = dpd.sig ex.web-rules.sig p0fsyn.osf \ X snort-default.sig ssl-worm.sig worm.sig X ff50a57e7e7db2c9cab516b151b5b2bf echo x - bro-devel/files/patch-scripts_bro_config.in sed 's/^X//' >bro-devel/files/patch-scripts_bro_config.in << 'b471f4545d258f9b34c39b5732ea9921' X--- scripts/bro_config.in.orig 2007-07-21 01:15:35.000000000 +0900 X+++ scripts/bro_config.in 2008-07-27 13:38:02.000000000 +0900 X@@ -87,7 +87,7 @@ X bro_config_nonroot_message() X { X echo "*** You need to hand edit your local networks in the file" X- echo "*** $BROHOME/site/local.site.bro. Please read the file for an" X+ echo "*** $BROHOME/etc/bro/site/local.site.bro. Please read the file for an" X echo "*** example of what it should look like" X echo "" X } X@@ -617,7 +617,7 @@ X # source a bro.cfg if it exists, so we know the past default values from the X # last run X X- dirs="$BROHOME/etc/bro.cfg $BROHOME/etc/bro.cfg.example `pwd`/bro.cfg" X+ dirs="$BROHOME/etc/bro/bro.cfg $BROHOME/etc/bro/bro.cfg.example `pwd`/bro.cfg" X cfgused= X X for cfgfile in $dirs ; do b471f4545d258f9b34c39b5732ea9921 echo x - bro-devel/files/patch-scripts_s2b_bro-include_Makefile.in sed 's/^X//' >bro-devel/files/patch-scripts_s2b_bro-include_Makefile.in << '8230cd3ea86801874316426d291b1dc4' X--- scripts/s2b/bro-include/Makefile.in.orig 2007-07-29 10:05:11.000000000 +0900 X+++ scripts/s2b/bro-include/Makefile.in 2008-07-27 11:38:15.000000000 +0900 X@@ -99,7 +99,7 @@ X am__quote = @am__quote@ X install_sh = @install_sh@ X X-includesigsdir = ${prefix}/policy X+includesigsdir = $(pkgdatadir)/policy X dist_includesigs_DATA = sig-addendum.sig sig-functions.bro X subdir = scripts/s2b/bro-include X mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs 8230cd3ea86801874316426d291b1dc4 echo x - bro-devel/files/patch-scripts_s2b_example_bro_files_Makefile.in sed 's/^X//' >bro-devel/files/patch-scripts_s2b_example_bro_files_Makefile.in << '9380fdba591a771a538a324e8d592ee8' X--- scripts/s2b/example_bro_files/Makefile.in.orig 2007-07-29 10:05:11.000000000 +0900 X+++ scripts/s2b/example_bro_files/Makefile.in 2008-07-27 12:05:04.000000000 +0900 X@@ -99,10 +99,10 @@ X am__quote = @am__quote@ X install_sh = @install_sh@ X X-actiondir = ${prefix}/policy X+actiondir = ${pkgdatadir}/policy X dist_action_DATA = sig-action.bro X X-sigsdir = ${prefix}/site X+sigsdir = ${prefix}/etc/bro/site X dist_sigs_DATA = signatures.sig X subdir = scripts/s2b/example_bro_files X mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs 9380fdba591a771a538a324e8d592ee8 echo x - bro-devel/files/pkg-install.in sed 's/^X//' >bro-devel/files/pkg-install.in << 'c54926b6b65fe8c476924c94f330f60d' X#!/bin/sh X# $FreeBSD:$ XPATH="/bin:/sbin:/usr/bin:/usr/sbin" X XBRO_USER=%%BRO_USER%% XBRO_GROUP=%%BRO_GROUP%% XUID=%%BRO_UID%% XGID=$UID X XPW="pw" XCHOWN="chown" XINSTALL_DIR="install -d -o ${BRO_USER} -g ${BRO_GROUP} -m 0755" X Xif [ "$2" = "PRE-INSTALL" ]; then X X if ! ${PW} groupshow ${BRO_GROUP} 2>/dev/null 1>&2; then X if ${PW} groupadd ${BRO_GROUP} -g $GID; then X echo "=> Added group \"${BRO_GROUP}\"." X else X echo "=> Adding group \"${BRO_GROUP}\" failed..." X exit 1 X fi X fi X X if ! ${PW} usershow ${BRO_USER} 2>/dev/null 1>&2; then X if ${PW} useradd ${BRO_USER} -u $UID -g ${BRO_GROUP} -h - \ X -s "/sbin/nologin" -d "/nonexistent" \ X -c "Bro Daemon"; then X echo "=> Added user \"${BRO_USER}\"." X else X echo "=> Adding user \"${BRO_USER}\" failed..." X exit 1 X fi X fi Xfi X Xexit 0 c54926b6b65fe8c476924c94f330f60d echo x - bro-devel/files/patch-scripts_bro.cfg.example sed 's/^X//' >bro-devel/files/patch-scripts_bro.cfg.example << '79cb960b24dde181bc9f901dc41f4ce8' X--- scripts/bro.cfg.example.orig 2006-06-02 07:18:25.000000000 +0900 X+++ scripts/bro.cfg.example 2008-07-27 14:09:19.000000000 +0900 X@@ -25,30 +25,30 @@ X BRO_START_POLICY="localhost.bro" X X # Directory containing Bro logs X-BROLOGS="${BROHOME}/logs" X+BROLOGS="%%BRO_LOGDIR%%/logs" X export BROLOGS X X # Log archive directory X-BRO_LOG_ARCHIVE="${BROHOME}/archive" X+BRO_LOG_ARCHIVE="%%BRO_LOGDIR%%/archive" X X # Directory containing Bro signature files X-BRO_SIG_DIR="${BROHOME}/site" X+BRO_SIG_DIR="%%PREFIX%%/etc/bro/site" X X # Bro policy paths X-BROPATH="${BROHOME}/site:${BROHOME}/policy" X+BROPATH="%%PREFIX%%/etc/bro/site:%%DATADIR%%/policy" X export BROPATH X X # Location of site specific policy and configurations X-BROSITE="${BROHOME}/site" X+BROSITE="%%PREFIX%%/etc/bro/site" X X # Location of host specific policy and configurations X-BROHOST="${BROHOME}/host" X+BROHOST="%%PREFIX%%/etc/bro/host" X X # A prefix to use when looking for local policy files to load. X # BRO_PREFIX="local" X X # Location of the Bro executable X-BRO="${BRO_BIN_DIR}/bro" X+BRO="%%PREFIX%%/bin/bro" X X # Base command line options. X BRO_ADD_OPTS=" -W" X@@ -101,7 +101,7 @@ X X # Location of the run-time variable directory. This is normally /var/run/bro X # and contains the pidfile and other temporal data. X-BRO_RUNTIME_DIR="" X+BRO_RUNTIME_DIR="/var/run/bro" X X # Email address for local reports to be mailed to X BRO_EMAIL_LOCAL="bro@localhost" X@@ -149,7 +149,7 @@ X X # Bulk data capture settings X # Buld data directory X-BRO_BULK_DIR="${BROHOME}/bulk-trace" X+BRO_BULK_DIR="%%BRO_LOGDIR%%/bulk-trace" X # Capture filter for bulk data X BRO_BULK_CAPTURE_FILTER="" X # days before deleting bulk data X@@ -157,5 +157,5 @@ X # days before compressing bulk data X BRO_BULK_DAYS_2_COMPRESSION=2 X # location of sorted log files, needed by Brooery X-BROOERY_LOGS="${BROHOME}/sorted-logs" X+BROOERY_LOGS="%%BRO_LOGDIR%%/sorted-logs" X 79cb960b24dde181bc9f901dc41f4ce8 echo x - bro-devel/files/pkg-message.in sed 's/^X//' >bro-devel/files/pkg-message.in << '526ec199fc413b08cca60d37a1dcd7ef' XUnlike security/bro, security/bro-devel respects hier(7). XIf you'd like to follow the defaults of this port: X X # mkdir /var/log/bro X # ( cd /var/log/bro && mkdir reports logs bulk-trace sorted-logs ) X # chown -R bro:bro /var/log/bro X # cp %%PREFIX%%/etc/bro/bro.rc-hooks.sh.example %%PREFIX%%/etc/bro/bro.rc-hooks.sh X # mkdir /var/run/bro X # chown bro:bro /var/run/bro X XTo run bro as non-priv user, add user bro to group bpf. X X # pw groupadd bpf X # pw groupadd bpf -M bro X XChange /dev/bpf permission. X X # /etc/devfs.rules X [localrules=10] X add 15 path 'bpf*' mode 660 group bpf X X # /etc/rc.conf X devfs_system_ruleset="localrules" X XUnder high load, you need to set systcl variables X X # /etc/sysctl.conf X net.bpf.bufsize=10485760 X net.bpf.maxbufsize=10485760 X XSee the following URLs for tuning bro: X X http://www.net.t-labs.tu-berlin.de/research/hppc/ X http://nsmwiki.org/FreeBSD_Performance X XTo see full duplex traffic from two ports, see: X http://www.bro-ids.org/wiki/index.php/Netgraph X XTo test bro: X > . %%PREFIX%%/etc/bro/bro.cfg X > echo 'print "hello, world";' | bro X XOr: X > BROPATH=%%PREFIX%%/etc/bro/site:%%PREFIX%%/share/bro/policy:%%PREFIX%%/share/bro/policy/sigs bro 526ec199fc413b08cca60d37a1dcd7ef echo x - bro-devel/files/bro.in sed 's/^X//' >bro-devel/files/bro.in << '1bb15d68d24d7bf73985361db44d1a5d' X#!/bin/sh X X# PROVIDE: bro X# REQUIRE: NETWORKING X# KEYWORD: shutdown X# X# Add the following lines to /etc/rc.conf.local or /etc/rc.conf X# to enable this service: X# X# bro_enable (bool): Set to NO by default. X# Set it to YES to enable bro. X# X X. %%RC_SUBR%% X Xname="bro" Xrcvar=${name}_enable X Xstart_cmd="%%PREFIX%%/share/bro/scripts/bro.rc start" Xstop_cmd="%%PREFIX%%/share/bro/scripts/bro.rc stop" Xpidfile="/var/run/bro/pid" Xprocname="%%PREFIX%%/bin/bro" X Xload_rc_config $name X X: ${bro_enable="NO"} X Xrun_rc_command "$1" X 1bb15d68d24d7bf73985361db44d1a5d echo x - bro-devel/Makefile sed 's/^X//' >bro-devel/Makefile << 'c0c485555205e9d83b7b1628e8587e08' X# Ports collection makefile for: bro-devel X# Date created: Sat Feb 28, 1998 X# Whom: Tomoyuki Sakurai (cherry@trombik.org) X# X# $FreeBSD$ X# X XPORTNAME= bro-devel XPORTVERSION= 1.3.2 XCATEGORIES= security XMASTER_SITES= ftp://bro-ids.org/ XDISTNAME= bro-${DISTVERSIONPREFIX}${DISTVERSION}${DISTVERSIONSUFFIX} X XMAINTAINER= pauls@utdallas.edu XCOMMENT= System for detecting Network Intruders in real-time X XCONFLICTS= sysutils/lbl-cf-1.* sysutils/lbl-hf-1.* security/bro-1.2* X XOPTIONS= GPG "Support encrypted email" Off \ X DOCS "Install PDF documentation (outdated, not recommended)" Off \ X DEBUG "Enable debug" Off \ X IPV6 "Enable IPv6 support" On X XUSE_BISON= build XGNU_CONFIGURE= yes XCONFIGURE_TARGET= --build=${MACHINE_ARCH}-portbld-freebsd${OSREL} XCONFIGURE_ARGS= --disable-broccoli XUSE_PERL5= yes XLIB_DEPENDS+= GeoIP.5:${PORTSDIR}/net/GeoIP XCPPFLAGS+= -I${LOCALBASE}/include XLDFLAGS+= -L${LOCALBASE}/lib XCONFIGURE_ENV+= CPPFLAGS="${CPPFLAGS}" LDFLAGS="${LDFLAGS}" X XSUB_FILES= pkg-install pkg-message XBRO_USER:= bro XBRO_GROUP:= ${BRO_USER} XBRO_UID:= 889 XSUB_LIST+= BRO_USER="${BRO_USER}" BRO_GROUP="${BRO_GROUP}" BRO_UID="${BRO_UID}" XDATADIR= ${PREFIX}/share/bro XBRO_LOGDIR= /var/log/bro XUSE_RC_SUBR= bro X X.include X X.if defined(WITH_GPG) XRUN_DEPENDS+= gpg:${PORTSDIR}/security/gnupg X.endif X.if !defined(WITH_DOCS) XNOPORTDOCS= Yes X.endif X.if defined(WITH_DEBUG) XCONFIGURE_ARGS+= --enable-debug X.endif X.if defined(WITH_IPV6) XCONFIGURE_ARGS+= --enable-brov6 X.endif X# XXX configure doesn't have --with-foo X#.if defined(WITH_GEOIP) X#LIB_DEPENDS+= GeoIP.5:${PORTSDIR}/net/GeoIP X#CPPFLAGS+= -I${LOCALBASE}/include X#LDFLAGS+= -L${LOCALBASE}/lib X#CONFIGURE_ENV+= CPPFLAGS="${CPPFLAGS}" LDFLAGS="${LDFLAGS}" X#.endif X Xpost-extract: X @cd ${WRKSRC}/src && ${TAR} xfz libedit.src.tar.gz X Xpost-patch: X @${REINPLACE_CMD} -e 's|CFLAGS+=-g -O0||g; \ X s|CC=gcc||' \ X ${WRKSRC}/src/libedit/Makefile.in \ X ${WRKSRC}/src/libedit/Makefile X @${REINPLACE_CMD} -e "s,tr '\[a-z\]' '\[A-Z\]',tr 'a-z' 'A-Z',g" \ X ${WRKSRC}/src/libedit/makelist X @${REINPLACE_CMD} -E -e 's,(const char\*) const (helpstring),\1 \2,g' \ X ${WRKSRC}/src/DebugCmds.h X ${REINPLACE_CMD} -e 's#%%PREFIX%%#${PREFIX}#' \ X -e 's#%%DATADIR%%#${DATADIR}#' \ X -e 's#%%BRO_LOGDIR%%#${BRO_LOGDIR}#' \ X ${WRKSRC}/scripts/bro.cfg.example X Xpre-configure: X @${ECHO_CMD} "Configure libedit..." X @(cd ${WRKSRC}/src/libedit && ${MAKE_ENV} ./configure) X Xpre-build: X @${ECHO_CMD} "Building libedit..." X @(cd ${WRKSRC}/src/libedit && ${MAKE}) X Xpre-install: X @${SETENV} PKG_PREFIX=${PREFIX} ${SH} ${PKGINSTALL} ${PKGNAME} PRE-INSTALL X Xpost-install: X ${INSTALL_PROGRAM} ${WRKSRC}/aux/adtrace/adtrace ${PREFIX}/bin X ${INSTALL} -d ${PREFIX}/etc/bro X ${INSTALL} -d ${PREFIX}/etc/bro/host X ${INSTALL_DATA} ${WRKSRC}/scripts/bro.cfg.example ${PREFIX}/etc/bro/ X ${INSTALL_SCRIPT} ${WRKSRC}/scripts/bro_config ${DATADIR}/scripts/ X ${INSTALL_SCRIPT} ${WRKSRC}/scripts/bro.rc ${DATADIR}/scripts/ X ${INSTALL_SCRIPT} ${WRKSRC}/scripts/bro.rc-hooks.sh ${PREFIX}/etc/bro/bro.rc-hooks.sh.example X X.if !defined(NOPORTDOCS) X @${ECHO_MSG} "You have chosen to install documentation" X @${ECHO_MSG} "but the online documentation will be much" X @${ECHO_MSG} "more up to date." X @${MKDIR} ${DOCSDIR} X ${INSTALL_DATA} ${WRKSRC}/doc/quick-start/Bro-quick-start.pdf ${DOCSDIR} X ${INSTALL_DATA} ${WRKSRC}/doc/quick-start/bro-deployment.pdf ${DOCSDIR} X ${INSTALL_DATA} ${WRKSRC}/doc/user-manual/Bro-user-manual.pdf ${DOCSDIR} X @${FIND} ${DOCSDIR} -type f | \ X ${SED} 's,^${PREFIX}/,,' >> ${TMPPLIST} X @${FIND} ${DOCSDIR} -type d | ${SORT} -r | \ X ${SED} 's,^${PREFIX}/,@dirrm ,' >> ${TMPPLIST} X.endif X X @${CAT} ${PKGMESSAGE} X X.include c0c485555205e9d83b7b1628e8587e08 echo x - bro-devel/distinfo sed 's/^X//' >bro-devel/distinfo << 'c0fcc959244bc7bf1d205db63ccac727' XMD5 (bro-1.3.2.tar.gz) = 3f1e1820f06e2390a339a50c3344a4d6 XSHA256 (bro-1.3.2.tar.gz) = be221ec3b23b1b30ea42cb49e368aa9956a88d6d3cfcea99130b7b60e0c205e3 XSIZE (bro-1.3.2.tar.gz) = 4068592 c0fcc959244bc7bf1d205db63ccac727 echo x - bro-devel/pkg-descr sed 's/^X//' >bro-devel/pkg-descr << '25d712f5d3e65a8a59ad8fa4405bc53e' XBro is an open-source, Unix-based Network Intrusion Detection System (NIDS) Xthat passively monitors network traffic and looks for suspicious activity. XBro detects intrusions by first parsing network traffic to extract is Xapplication-level semantics and then executing event-oriented analyzers that Xcompare the activity with patterns deemed troublesome. Its analysis includes Xdetection of specific attacks (including those defined by signatures, but Xalso those defined in terms of events) and unusual activities (e.g., certain Xhosts connecting to certain services, or patterns of failed connection Xattempts). X XWWW: http://bro-ids.org/ 25d712f5d3e65a8a59ad8fa4405bc53e echo x - bro-devel/pkg-plist sed 's/^X//' >bro-devel/pkg-plist << '47d432c79108c722900b87ccdf381c9a' Xbin/binpac Xbin/cf Xbin/hf Xbin/nf Xbin/pf Xbin/rst Xbin/bdcat Xbin/bro Xbin/adtrace Xetc/bro/site/signatures.sig Xetc/bro/alert_scores Xetc/bro/signature_scores Xetc/bro/VERSION Xetc/bro/bro.cfg.example Xetc/bro/bro.rc-hooks.sh.example Xlib/libbinpac.a X%%DATADIR%%/scripts/bro-logchk.pl X%%DATADIR%%/scripts/host-to-addrs X%%DATADIR%%/scripts/mvlog X%%DATADIR%%/scripts/host-grep X%%DATADIR%%/scripts/bro_log_compress.sh X%%DATADIR%%/scripts/frontend-mail-reports.sh X%%DATADIR%%/scripts/frontend-site-report.sh X%%DATADIR%%/scripts/push_logs.sh X%%DATADIR%%/scripts/mail_notice.sh X%%DATADIR%%/scripts/bro_config X%%DATADIR%%/scripts/bro.rc X%%DATADIR%%/policy/sig-addendum.sig X%%DATADIR%%/policy/sig-functions.bro X%%DATADIR%%/policy/sig-action.bro X%%DATADIR%%/policy/sigs/dpd.sig X%%DATADIR%%/policy/sigs/ex.web-rules.sig X%%DATADIR%%/policy/sigs/p0fsyn.osf X%%DATADIR%%/policy/sigs/snort-default.sig X%%DATADIR%%/policy/sigs/ssl-worm.sig X%%DATADIR%%/policy/sigs/worm.sig X%%DATADIR%%/policy/bro.init X%%DATADIR%%/policy/adu.bro X%%DATADIR%%/policy/alarm.bro X%%DATADIR%%/policy/analy.bro X%%DATADIR%%/policy/anon.bro X%%DATADIR%%/policy/arp.bro X%%DATADIR%%/policy/backdoor.bro X%%DATADIR%%/policy/blaster.bro X%%DATADIR%%/policy/brolite.bro X%%DATADIR%%/policy/brolite-backdoor.bro X%%DATADIR%%/policy/brolite-sigs.bro X%%DATADIR%%/policy/capture-events.bro X%%DATADIR%%/policy/checkpoint.bro X%%DATADIR%%/policy/clear-passwords.bro X%%DATADIR%%/policy/conn-id.bro X%%DATADIR%%/policy/conn.bro X%%DATADIR%%/policy/contents.bro X%%DATADIR%%/policy/cpu-adapt.bro X%%DATADIR%%/policy/demux.bro X%%DATADIR%%/policy/detect-protocols.bro X%%DATADIR%%/policy/detect-protocols-http.bro X%%DATADIR%%/policy/dns-anonymizer.bro X%%DATADIR%%/policy/dns-info.bro X%%DATADIR%%/policy/dns-lookup.bro X%%DATADIR%%/policy/dns.bro X%%DATADIR%%/policy/dpd.bro X%%DATADIR%%/policy/drop-adapt.bro X%%DATADIR%%/policy/dyn-disable.bro X%%DATADIR%%/policy/file-flush.bro X%%DATADIR%%/policy/finger.bro X%%DATADIR%%/policy/firewall.bro X%%DATADIR%%/policy/flag-irc.bro X%%DATADIR%%/policy/flag-warez.bro X%%DATADIR%%/policy/frag.bro X%%DATADIR%%/policy/ftp-anonymizer.bro X%%DATADIR%%/policy/ftp-cmd-arg.bro X%%DATADIR%%/policy/ftp-reply-pattern.bro X%%DATADIR%%/policy/ftp.bro X%%DATADIR%%/policy/ftp-safe-words.bro X%%DATADIR%%/policy/gnutella.bro X%%DATADIR%%/policy/hand-over.bro X%%DATADIR%%/policy/heavy-analysis.bro X%%DATADIR%%/policy/heavy.http.bro X%%DATADIR%%/policy/heavy.irc.bro X%%DATADIR%%/policy/heavy.scan.bro X%%DATADIR%%/policy/heavy.software.bro X%%DATADIR%%/policy/heavy.trw.bro X%%DATADIR%%/policy/hot-ids.bro X%%DATADIR%%/policy/hot.bro X%%DATADIR%%/policy/http-abstract.bro X%%DATADIR%%/policy/http-anon-server.bro X%%DATADIR%%/policy/http-anon-useragent.bro X%%DATADIR%%/policy/http-anon-utils.bro X%%DATADIR%%/policy/http-anonymizer.bro X%%DATADIR%%/policy/http-body.bro X%%DATADIR%%/policy/http-entity.bro X%%DATADIR%%/policy/http-event.bro X%%DATADIR%%/policy/http-header.bro X%%DATADIR%%/policy/http-reply.bro X%%DATADIR%%/policy/http-request.bro X%%DATADIR%%/policy/http-rewriter.bro X%%DATADIR%%/policy/http.bro X%%DATADIR%%/policy/icmp.bro X%%DATADIR%%/policy/ident-rewriter.bro X%%DATADIR%%/policy/ident.bro X%%DATADIR%%/policy/inactivity.bro X%%DATADIR%%/policy/interconn.bro X%%DATADIR%%/policy/irc.bro X%%DATADIR%%/policy/irc-bot.bro X%%DATADIR%%/policy/large-conns.bro X%%DATADIR%%/policy/listen-clear.bro X%%DATADIR%%/policy/listen-ssl.bro X%%DATADIR%%/policy/load-level.bro X%%DATADIR%%/policy/load-sample.bro X%%DATADIR%%/policy/log-append.bro X%%DATADIR%%/policy/login.bro X%%DATADIR%%/policy/mime.bro X%%DATADIR%%/policy/mime-pop.bro X%%DATADIR%%/policy/mt.bro X%%DATADIR%%/policy/netstats.bro X%%DATADIR%%/policy/nfs.bro X%%DATADIR%%/policy/notice.bro X%%DATADIR%%/policy/notice-policy.bro X%%DATADIR%%/policy/notice-action-filters.bro X%%DATADIR%%/policy/ntp.bro X%%DATADIR%%/policy/OS-fingerprint.bro X%%DATADIR%%/policy/pcap.bro X%%DATADIR%%/policy/peer-status.bro X%%DATADIR%%/policy/pkt-profile.bro X%%DATADIR%%/policy/pop3.bro X%%DATADIR%%/policy/port-name.bro X%%DATADIR%%/policy/portmapper.bro X%%DATADIR%%/policy/print-filter.bro X%%DATADIR%%/policy/print-globals.bro X%%DATADIR%%/policy/print-resources.bro X%%DATADIR%%/policy/print-sig-states.bro X%%DATADIR%%/policy/profiling.bro X%%DATADIR%%/policy/proxy.bro X%%DATADIR%%/policy/passwords.bro X%%DATADIR%%/policy/remote-pcap.bro X%%DATADIR%%/policy/remote-ping.bro X%%DATADIR%%/policy/remote-print.bro X%%DATADIR%%/policy/remote-report-notices.bro X%%DATADIR%%/policy/remote-send-id.bro X%%DATADIR%%/policy/remote.bro X%%DATADIR%%/policy/rotate-logs.bro X%%DATADIR%%/policy/rsh.bro X%%DATADIR%%/policy/scan.bro X%%DATADIR%%/policy/secondary-filter.bro X%%DATADIR%%/policy/sensor-sshd.bro X%%DATADIR%%/policy/server-ports.bro X%%DATADIR%%/policy/service-probe.bro X%%DATADIR%%/policy/signatures.bro X%%DATADIR%%/policy/site.bro X%%DATADIR%%/policy/smtp-relay.bro X%%DATADIR%%/policy/smtp-rewriter.bro X%%DATADIR%%/policy/smtp.bro X%%DATADIR%%/policy/snort.bro X%%DATADIR%%/policy/software.bro X%%DATADIR%%/policy/ssh-stepping.bro X%%DATADIR%%/policy/ssh.bro X%%DATADIR%%/policy/ssl-alerts.bro X%%DATADIR%%/policy/ssl-ciphers.bro X%%DATADIR%%/policy/ssl-errors.bro X%%DATADIR%%/policy/ssl-worm.bro X%%DATADIR%%/policy/ssl.bro X%%DATADIR%%/policy/stats.bro X%%DATADIR%%/policy/stepping.bro X%%DATADIR%%/policy/synflood.bro X%%DATADIR%%/policy/tcp.bro X%%DATADIR%%/policy/tftp.bro X%%DATADIR%%/policy/trw.bro X%%DATADIR%%/policy/trw-impl.bro X%%DATADIR%%/policy/udp.bro X%%DATADIR%%/policy/udp-common.bro X%%DATADIR%%/policy/vlan.bro X%%DATADIR%%/policy/weird.bro X%%DATADIR%%/policy/worm.bro X%%DATADIR%%/policy/bro.bif.bro X%%DATADIR%%/policy/common-rw.bif.bro X%%DATADIR%%/policy/const.bif.bro X%%DATADIR%%/policy/dns-rw.bif.bro X%%DATADIR%%/policy/event.bif.bro X%%DATADIR%%/policy/finger-rw.bif.bro X%%DATADIR%%/policy/ftp-rw.bif.bro X%%DATADIR%%/policy/http-rw.bif.bro X%%DATADIR%%/policy/ident-rw.bif.bro X%%DATADIR%%/policy/smb-rw.bif.bro X%%DATADIR%%/policy/smtp-rw.bif.bro X%%DATADIR%%/policy/strings.bif.bro X@dirrmtry etc/bro/site X@dirrmtry etc/bro/host X@dirrmtry etc/bro X@dirrmtry %%DATADIR%%/policy/sigs X@dirrmtry %%DATADIR%%/policy X@dirrmtry %%DATADIR%%/scripts X@dirrmtry %%DATADIR%% 47d432c79108c722900b87ccdf381c9a exit --- bro-devel-1.3.2.shar ends here --- >Release-Note: >Audit-Trail: >Unformatted: