packages: barnyard2/barnyard2 (NEW), barnyard2/barnyard2.config (NEW), barn...

[mguevara]

Author: mguevara                     Date: Mon Oct 24 22:52:40 2011 GMT
Module: packages                      Tag: HEAD
---- Log message:
- initial release - barnyard2 is an output processor for snort

---- Files affected:
packages/barnyard2:
   barnyard2 (NONE -> 1.1)  (NEW), barnyard2.config (NONE -> 1.1)  (NEW), barnyard2.spec (NONE -> 1.1)  (NEW)

---- Diffs:

================================================================
Index: packages/barnyard2/barnyard2
diff -u /dev/null packages/barnyard2/barnyard2:1.1
--- /dev/null	Tue Oct 25 00:52:40 2011
+++ packages/barnyard2/barnyard2	Tue Oct 25 00:52:35 2011
@@ -0,0 +1,101 @@
+#!/bin/sh
+#
+# Init file for Barnyard2
+#
+#
+# chkconfig: 2345 40 60
+# description:  Barnyard2 is an output processor for snort.
+#
+# processname: barnyard2
+# config: /etc/sysconfig/barnyard2
+# config: /etc/snort/barnyard.conf
+# pidfile: /var/lock/subsys/barnyard2.pid
+
+source /etc/rc.d/init.d/functions
+source /etc/sysconfig/network
+
+### Check that networking is up.
+[ "${NETWORKING}" == "no" ] && exit 0
+
+[ -x /usr/sbin/snort ] || exit 1
+[ -r /etc/snort/snort.conf ] || exit 1
+
+### Default variables
+SYSCONFIG="/etc/sysconfig/barnyard2"
+
+### Read configuration
+[ -r "$SYSCONFIG" ] && source "$SYSCONFIG"
+
+RETVAL=0
+prog="barnyard2"
+desc="Snort Output Processor"
+
+start() {
+	echo -n $"Starting $desc ($prog): "
+	for INT in $INTERFACES; do
+		PIDFILE="/var/lock/subsys/barnyard2-$INT.pid"
+		ARCHIVEDIR="$SNORTDIR/$INT/archive"
+		WALDO_FILE="$SNORTDIR/$INT/barnyard2.waldo"
+		BARNYARD_OPTS="-D -c $CONF -d $SNORTDIR/${INT} -w $WALDO_FILE -L $SNORTDIR/${INT} -a $ARCHIVEDIR -f $LOG_FILE -X $PIDFILE $EXTRA_ARGS"
+		daemon $prog $BARNYARD_OPTS
+	done
+	RETVAL=$?
+	echo
+	[ $RETVAL -eq 0 ] && touch /var/lock/subsys/$prog
+	return $RETVAL
+}
+
+stop() {
+	echo -n $"Shutting down $desc ($prog): "
+	killproc $prog
+	RETVAL=$?
+	echo
+	[ $RETVAL -eq 0 ] && rm -f /var/lock/subsys/$prog
+	return $RETVAL
+}
+
+restart() {
+	stop
+	start
+}
+
+
+reload() {
+	echo -n $"Reloading $desc ($prog): "
+	killproc $prog -HUP
+	RETVAL=$?
+	echo
+	return $RETVAL
+}
+
+
+case "$1" in
+  start)
+	start
+	;;
+  stop)
+	stop
+	;;
+  restart)
+	restart
+	;;
+  reload)
+	reload
+	;;
+  condrestart)
+	[ -e /var/lock/subsys/$prog ] && restart
+	RETVAL=$?
+	;;
+  status)
+	status $prog
+	RETVAL=$?
+	;;
+  dump)
+	dump
+	;;
+  *)
+	echo $"Usage: $0 {start|stop|restart|reload|condrestart|status|dump}"
+	RETVAL=1
+esac
+
+exit $RETVAL

================================================================
Index: packages/barnyard2/barnyard2.config
diff -u /dev/null packages/barnyard2/barnyard2.config:1.1
--- /dev/null	Tue Oct 25 00:52:40 2011
+++ packages/barnyard2/barnyard2.config	Tue Oct 25 00:52:35 2011
@@ -0,0 +1,11 @@
+# Config file for /etc/init.d/barnyard2
+LOG_FILE="snort_unified.log"
+
+# You probably don't want to change this, but in case you do
+SNORTDIR="/var/log/snort"
+INTERFACES="eth0"
+
+# Probably not this either
+CONF=/etc/snort/barnyard.conf
+
+EXTRA_ARGS=""

================================================================
Index: packages/barnyard2/barnyard2.spec
diff -u /dev/null packages/barnyard2/barnyard2.spec:1.1
--- /dev/null	Tue Oct 25 00:52:40 2011
+++ packages/barnyard2/barnyard2.spec	Tue Oct 25 00:52:35 2011
@@ -0,0 +1,83 @@
+# $Revision$, $Date$
+
+# Conditional build:
+%bcond_without  mysql		# don't build support for MySQL
+%bcond_without	postgresql	# don't build support for PostgreSQL
+
+Summary:	Snort Log Backend
+Name:		barnyard2
+Version:	1.10beta2
+Release:	1
+License:	GPL
+Group:		Networking
+Source0:	https://github.com/firnsy/barnyard2/tarball/v2-1.10-beta2
+# Source0-md5:	af417a3491c5a4e5605c8fbd529f2255
+Source2:	%{name}.config
+Source3:	%{name}
+URL:		https://github.com/firnsy/barnyard2
+%{?with_mysql:BuildRequires:		mysql-devel}
+%{?with_postgresql:BuildRequires:	postgresql-devel}
+BuildRoot:	%{tmpdir}/%{name}-%{version}-root-%(id -u -n)
+
+%description
+Barnyard has 3 modes of operation:
+One-shot, continual, continual w/ checkpoint.  In one-shot mode,
+barnyard will process the specified file and exit.  In continual mode,
+barnyard will start with the specified file and continue to process
+new data (and new spool files) as it appears.  Continual mode w/
+checkpointing will also use a checkpoint file (or waldo file in the
+snort world) to track where it is.  In the event the barnyard process
+ends while a waldo file is in use, barnyard will resume processing at
+the last entry as listed in the waldo file.
+%{?with_mysql:barnyard2 binary compiled with mysql support.}
+%{?with_postgresql:barnyard2 binary compiled with postgresql support.}
+
+%prep
+%setup -q -n firnsy-barnyard2-5832a85
+
+
+%build
+./autogen.sh
+%configure --sysconfdir=%{_sysconfdir}/snort  \
+	%{?with_postgresql:--with-postgresql} \
+	%{?with_mysql:--with-mysql-libraries=/usr/%{_lib}} \
+
+%{__make}
+
+
+%install
+rm -rf $RPM_BUILD_ROOT
+%{__make} install \
+	DESTDIR=$RPM_BUILD_ROOT
+
+%{__install} -d -p $RPM_BUILD_ROOT%{_sysconfdir}/{sysconfig,rc.d/init.d,snort} 
+%{__install} -d -p $RPM_BUILD_ROOT%{_docdir}/%{name}-%{version}/contrib
+%{__install} -d -p $RPM_BUILD_ROOT%{_mandir}/man8
+%{__install} -d -p $RPM_BUILD_ROOT%{_docdir}/%{name}-%{version}/doc
+%{__install} -m 644 etc/barnyard2.conf $RPM_BUILD_ROOT%{_sysconfdir}/snort/
+%{__install} -m 644 $RPM_SOURCE_DIR/barnyard2.config $RPM_BUILD_ROOT%{_sysconfdir}/sysconfig/barnyard2
+%{__install} -m 755 $RPM_SOURCE_DIR/barnyard2 $RPM_BUILD_ROOT%{_sysconfdir}/rc.d/init.d/barnyard2
+%{__install} -m 644 doc/* $RPM_BUILD_ROOT%{_docdir}/%{name}-%{version}/doc/
+
+%clean
+if [ -d $RPM_BUILD_ROOT ] && [ "$RPM_BUILD_ROOT" != "/"  ] ; then
+	rm -rf $RPM_BUILD_ROOT
+fi
+
+%files
+%defattr(644,root,root,755)
+%doc LICENSE doc/
+%attr(755,root,root) %{_bindir}/barnyard2
+%attr(640,root,root) %config %{_sysconfdir}/snort/barnyard2.conf
+%attr(755,root,root) %config %{_sysconfdir}/rc.d/init.d/barnyard2
+%attr(644,root,root) %config %{_sysconfdir}/sysconfig/barnyard2
+
+%define date    %(echo `LC_ALL="C" date +"%a %b %d %Y"`)
+%changelog
+* %{date} PLD Team <feedback at pld-linux.org>
+All persons listed below can be reached at <cvs_login>@pld-linux.org
+
+$Log$
+Revision 1.1  2011/10/24 22:52:35  mguevara
+- initial release - barnyard2 is an output processor for snort
+
================================================================