Date: Fri, 21 Jan 2011 16:41:20 GMT From: Alexander Pereira Girald <girald@etcom.ufrgs.br> To: freebsd-gnats-submit@FreeBSD.org Subject: ports/154202: New port: security/scannedonly - A Samba VFS virus scanning daemon Message-ID: <201101211641.p0LGfKLT088146@red.freebsd.org> Resent-Message-ID: <201101211650.p0LGoAiW099303@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 154202 >Category: ports >Synopsis: New port: security/scannedonly - A Samba VFS virus scanning daemon >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Fri Jan 21 16:50:09 UTC 2011 >Closed-Date: >Last-Modified: >Originator: Alexander Pereira Girald >Release: 8.1 >Organization: Instituto Federal de Educação, ciência e tecnologia do Estado do Rio Grande do Sul >Environment: >Description: Scannedonly is a samba VFS module and a scanning daemon that ensure that only files that have been scanned for viruses are visible and accessible to the end user. Scannedonly was developed because of scalability problems with samba-vscan: high server loads when (the same) files were requested often, and timeouts when large zip files were requested. Scannedonly doesn't have these problems, but it does introduce some other issues (It's socket buffer hungry!). Scannedonly is available under the open source GPL licence. The source code repository is available on Sourceforge. You can contact the author by email oli4 (at) users . sourceforge . net. >How-To-Repeat: >Fix: Patch attached with submission follows: # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # scannedonly # scannedonly/Makefile # scannedonly/pkg-descr # scannedonly/distinfo # scannedonly/files # scannedonly/files/scannedonly.in # scannedonly/pkg-message # echo c - scannedonly mkdir -p scannedonly > /dev/null 2>&1 echo x - scannedonly/Makefile sed 's/^X//' >scannedonly/Makefile << '8f2371808abd42d0f58f2a9db84224b6' X# New ports collection makefile for: scannedonly X# Date created: 20 January 2011 X# Whom: girald X# X# $FreeBSD$ X# X XPORTNAME= scannedonly XPORTVERSION= 0.21 XCATEGORIES= security XMASTER_SITES= http://olivier.sessink.nl/scannedonly/ X XMAINTAINER= girald@FreeBSD.org XCOMMENT= A Samba VFS virus scanning daemon X XRUN_DEPENDS= ${LOCALBASE}/bin/clamdscan:${PORTSDIR}/security/clamav XBUILD_DEPENDS+= ${NONEXISTENT}:${PORTSDIR}/${SAMBA_PORT}:configure X XSAMBA_PORT= net/samba34 X XCFLAGS+= -I ${PREFIX}/include X XCONFIGURE_ARGS+= LDFLAGS=-L${PREFIX}/lib --with-samba-source=${PORTSDIR}/${SAMBA_PORT}/work/samba-3.4.9/source3 --with-samba-vfs-dir=${PREFIX}/lib/samba34/vfs XUSE_GMAKE= yes XGNU_CONFIGURE= yes XUSE_RC_SUBR= scannedonly X Xpost-patch: X @${REINPLACE_CMD} -e 's|/var/lib/scannedonly/scan|/var/run/scannedonlyd.sock|g' ${WRKSRC}/man/scannedonly_prescan.8 X @${REINPLACE_CMD} -e 's|/var/lib/scannedonly/scan|/var/run/scannedonlyd.sock|g' ${WRKSRC}/py/scannedonlyd.py X @${REINPLACE_CMD} -e 's|/var/lib/scannedonly/scan|/var/run/scannedonlyd.sock|g' ${WRKSRC}/src/vfs_scannedonly.c X @${REINPLACE_CMD} -e 's|/var/lib/scannedonly/scan|/var/run/scannedonlyd.sock|g' ${WRKSRC}/src/scannedonly_prescan.c X @${REINPLACE_CMD} -e 's|/var/lib/scannedonly/scan|/var/run/scannedonlyd.sock|g' ${WRKSRC}/src/scannedonlyd_clamav.c X Xpost-install: X @${ECHO_MSG} "**************************************************" X @${ECHO_MSG} "* WARNING! *" X @${ECHO_MSG} "* *" X @${ECHO_MSG} "* Make sure you've enough socker buffer size. *" X @${ECHO_MSG} "* Consider increasing kern.ipc.maxsockbuf adding *" X @${ECHO_MSG} "* at least the following sysctl setting to *" X @${ECHO_MSG} "* /etc/sysctl.conf: *" X @${ECHO_MSG} "* *" X @${ECHO_MSG} "* kern.ipc.maxsockbuf=589824 *" X @${ECHO_MSG} "* *" X @${ECHO_MSG} "**************************************************" X XPLIST_FILES= sbin/scannedonlyd_clamav \ X bin/scannedonly_prescan \ X lib/samba34/vfs/scannedonly.so X X.include <bsd.port.mk> 8f2371808abd42d0f58f2a9db84224b6 echo x - scannedonly/pkg-descr sed 's/^X//' >scannedonly/pkg-descr << 'caba4c9a8bbab02d5322953bc57281cc' XScannedonly is a samba VFS module and a scanning daemon that ensure that only Xfiles that have been scanned for viruses are visible and accessible to the end Xuser. X XScannedonly was developed because of scalability problems with samba-vscan: high Xserver loads when (the same) files were requested often, and timeouts when large Xzip files were requested. Scannedonly doesn't have these problems, but it does Xintroduce some other issues. Choose the product that suits you best. X XScannedonly is available under the open source GPL licence. The source code Xrepository is available on Sourceforge. You can contact the author by email oli4 X(at) users . sourceforge . net. X XWWW: http://olivier.sessink.nl/scannedonly/ caba4c9a8bbab02d5322953bc57281cc echo x - scannedonly/distinfo sed 's/^X//' >scannedonly/distinfo << 'ee0296e4cfb8d1a13510e8c96b05633a' XSHA256 (scannedonly-0.21.tar.gz) = 20601c0466034cc250ded1a16d737451cfbe05fbcaf4f667ff25fe004bd1340e XSIZE (scannedonly-0.21.tar.gz) = 80148 ee0296e4cfb8d1a13510e8c96b05633a echo c - scannedonly/files mkdir -p scannedonly/files > /dev/null 2>&1 echo x - scannedonly/files/scannedonly.in sed 's/^X//' >scannedonly/files/scannedonly.in << '533965c71e7f3692e042d0e5dddac06f' X#!/bin/sh X# X# $FreeBSD$ X# X X# PROVIDE: scannedonly X# REQUIRE: LOGIN clamd X# BEFORE: mail X# KEYWORD: shutdown X X# X# Add the following lines to /etc/rc.conf to enable the scannedonly daemon: X# X# scannedonly_clamav_enable="YES" X# scannedonly_clamav_flags="<set as needed>" X# X# See scannedonlyd_clamav(1) for flags X# X X. /etc/rc.subr X Xname=scannedonly_clamav Xrcvar=`set_rcvar` X Xcommand=%%PREFIX%%/sbin/scannedonlyd_clamav Xpidfile=/var/run/scannedonlyd_clamav.pid Xcommand_args="--pidfile ${pidfile}" X X# read settings, set default values Xload_rc_config "$name" X: ${scannedonly_clamav_enable="NO"} X Xrun_rc_command "$1" 533965c71e7f3692e042d0e5dddac06f echo x - scannedonly/pkg-message sed 's/^X//' >scannedonly/pkg-message << '26ab9521d3c58798349dfccdd182123e' X************************************************** X* WARNING! * X* * X* Make sure you've enough socker buffer size. * X* Consider increasing kern.ipc.maxsockbuf adding * X* at least the following sysctl setting to * X* /etc/sysctl.conf: * X* * X* kern.ipc.maxsockbuf=589824 * X* * X************************************************** 26ab9521d3c58798349dfccdd182123e exit >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201101211641.p0LGfKLT088146>