|
|
c5767ff |
Name: prelude-lml
|
|
|
4f9567d |
Version: 0.9.11
|
|
|
4f9567d |
Release: 1%{?dist}
|
|
|
c5767ff |
Summary: The prelude log analyzer
|
|
|
c5767ff |
|
|
|
c5767ff |
Group: System Environment/Libraries
|
|
|
c5767ff |
License: GPL
|
|
|
c5767ff |
URL: http://prelude-ids.org/
|
|
|
c5767ff |
Source0: http://www.prelude-ids.org/download/releases/%{name}-%{version}.tar.gz
|
|
|
f4bf760 |
Patch0: %{name}-initd.patch
|
|
|
c5767ff |
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
|
|
|
c5767ff |
|
|
|
c5767ff |
BuildRequires: gamin-devel, libprelude-devel, pcre-devel
|
|
|
f4bf760 |
Requires(post): /sbin/chkconfig
|
|
|
f4bf760 |
Requires(preun): /sbin/chkconfig
|
|
|
f4bf760 |
Requires(preun): /sbin/service
|
|
|
f4bf760 |
Requires(postun): /sbin/service
|
|
|
c5767ff |
|
|
|
c5767ff |
%description
|
|
|
c5767ff |
Prelude-LML’s primary function is log analysis. Logs on a local system or
|
|
|
c5767ff |
logs monitored over the network (if configured to accept syslog messages
|
|
|
c5767ff |
from other hosts) can be processed and analyzed in order to discover
|
|
|
c5767ff |
security anomalies.
|
|
|
c5767ff |
|
|
|
c5767ff |
%package devel
|
|
|
c5767ff |
Summary: Header files and libraries for libprelude development
|
|
|
c5767ff |
Group: Development/Libraries
|
|
|
c5767ff |
Requires: libprelude-devel, prelude-lml = %{version}-%{release}
|
|
|
c5767ff |
|
|
|
c5767ff |
%description devel
|
|
|
c5767ff |
Libraries, include files, etc you can use to develop Prelude IDS
|
|
|
c5767ff |
sensors using the Prelude Library. The Prelude Library is a
|
|
|
c5767ff |
collection of generic functions providing communication between
|
|
|
c5767ff |
the Prelude Hybrid IDS suite componentst It provides a convenient
|
|
|
c5767ff |
interface for sending alerts to Prelude Manager with transparent
|
|
|
c5767ff |
SSL, failover and replication support, asynchronous events and
|
|
|
c5767ff |
timer interfaces, an abstracted configuration API (hooking at the
|
|
|
c5767ff |
commandline, the configuration line, or wide configuration,
|
|
|
c5767ff |
available from the Manager), and a generic plugin API. It allows
|
|
|
c5767ff |
you to easily turn your favorite security program into a Prelude
|
|
|
c5767ff |
sensor.
|
|
|
c5767ff |
|
|
|
c5767ff |
%prep
|
|
|
c5767ff |
%setup -q
|
|
|
f4bf760 |
%patch -p0
|
|
|
c5767ff |
sed -i.debug -e '/nlist/s|\$rm|: $rm|' ltmain.sh
|
|
|
c5767ff |
|
|
|
c5767ff |
|
|
|
c5767ff |
%build
|
|
|
c5767ff |
%configure
|
|
|
c5767ff |
make %{?_smp_mflags}
|
|
|
c5767ff |
iconv -f ISO8859-15 -t UTF-8 NEWS > NEWS.utf8 && \
|
|
|
c5767ff |
%{__mv} NEWS.utf8 NEWS
|
|
|
c5767ff |
iconv -f ISO8859-15 -t UTF-8 ChangeLog > ChangeLog.utf8 && \
|
|
|
c5767ff |
%{__mv} ChangeLog.utf8 ChangeLog
|
|
|
c5767ff |
|
|
|
c5767ff |
|
|
|
f4bf760 |
|
|
|
c5767ff |
%install
|
|
|
c5767ff |
rm -rf %{buildroot}
|
|
|
c5767ff |
mkdir -p %{buildroot}%{_defaultdocdir}/%{name}-%{version}
|
|
|
f4bf760 |
mkdir -p %{buildroot}/%{_initrddir}/
|
|
|
0165257 |
mkdir -p %{buildroot}/var/lib/%{name}/
|
|
|
c5767ff |
make install DESTDIR=%{buildroot} INSTALL="%{__install} -c -p"
|
|
|
f4bf760 |
cp -p AUTHORS README ChangeLog NEWS COPYING HACKING.README %{buildroot}%{_defaultdocdir}/%{name}-%{version}
|
|
|
a4d7c9c |
install -m 755 %{name}-initd %{buildroot}/%{_initrddir}/%{name}
|
|
|
c5767ff |
rm -f %{buildroot}/%{_libdir}/%{name}/debug.la
|
|
|
c5767ff |
rm -f %{buildroot}/%{_libdir}/%{name}/pcre.la
|
|
|
c5767ff |
|
|
|
c5767ff |
%clean
|
|
|
c5767ff |
rm -rf %{buildroot}
|
|
|
c5767ff |
|
|
|
f4bf760 |
%post
|
|
|
f4bf760 |
/sbin/ldconfig
|
|
|
f4bf760 |
/sbin/chkconfig --add %{name}
|
|
|
f4bf760 |
|
|
|
f4bf760 |
%preun
|
|
|
f4bf760 |
if [ $1 = 0 ]; then
|
|
|
f4bf760 |
/sbin/service %{name} stop > /dev/null 2>&1 || :
|
|
|
f4bf760 |
/sbin/chkconfig --del %{name}
|
|
|
f4bf760 |
fi
|
|
|
f4bf760 |
|
|
|
f4bf760 |
%postun
|
|
|
f4bf760 |
/sbin/ldconfig
|
|
|
f4bf760 |
if [ "$1" -ge "1" ]; then
|
|
|
f4bf760 |
/sbin/service %{name} condrestart >/dev/null 2>&1 || :
|
|
|
f4bf760 |
fi
|
|
|
f4bf760 |
|
|
|
f4bf760 |
|
|
|
c5767ff |
%files
|
|
|
c5767ff |
%defattr(755,root,root,-)
|
|
|
c5767ff |
%config %dir %{_sysconfdir}/%{name}/
|
|
|
c5767ff |
%config(noreplace) %attr(0644,root,root) %{_sysconfdir}/%{name}/*.conf
|
|
|
c5767ff |
%config(noreplace) %attr(0644,root,root) %{_sysconfdir}/%{name}/*.rules
|
|
|
c5767ff |
%config %dir %{_sysconfdir}/%{name}/ruleset/
|
|
|
c5767ff |
%config(noreplace) %attr(0644,root,root)%{_sysconfdir}/%{name}/ruleset/*
|
|
|
f4bf760 |
%{_initrddir}/%{name}
|
|
|
c5767ff |
%{_bindir}/prelude-lml
|
|
|
c5767ff |
%dir %{_libdir}/%{name}/
|
|
|
c5767ff |
%{_libdir}/%{name}/debug.so
|
|
|
c5767ff |
%{_libdir}/%{name}/pcre.so
|
|
|
0165257 |
%dir /var/lib/%{name}/
|
|
|
c5767ff |
%dir %{_defaultdocdir}/%{name}-%{version}/
|
|
|
a4d7c9c |
%doc %{_defaultdocdir}/%{name}-%{version}/*
|
|
|
c5767ff |
|
|
|
c5767ff |
%files devel
|
|
|
c5767ff |
%defattr(-,root,root)
|
|
|
c5767ff |
%dir %{_includedir}/%{name}/
|
|
|
c5767ff |
%{_includedir}/%{name}/prelude-lml.h
|
|
|
c5767ff |
|
|
|
c5767ff |
|
|
|
c5767ff |
%changelog
|
|
|
4f9567d |
* Mon Jan 14 2008 Steve Grubb <sgrubb@redhat.com> 0.9.11-1
|
|
|
4f9567d |
- new upstream version 0.9.11
|
|
|
4f9567d |
|
|
|
233b8fe |
* Thu Jan 09 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-5
|
|
|
233b8fe |
- changed init-script description
|
|
|
233b8fe |
|
|
|
ba985b1 |
* Mon Jan 08 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-4
|
|
|
ba985b1 |
- added new /var/lib directory
|
|
|
ba985b1 |
|
|
|
f4bf760 |
* Fri Jan 05 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-3
|
|
|
f4bf760 |
- added init-script
|
|
|
f4bf760 |
- changed some macros in %%files
|
|
|
f4bf760 |
|
|
|
c5767ff |
* Tue Jan 02 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-2
|
|
|
c5767ff |
- fixed debug problems
|
|
|
c5767ff |
- fixed encoding problems
|
|
|
c5767ff |
|
|
|
c5767ff |
* Fri Dec 29 2006 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-1
|
|
|
c5767ff |
- moved to new upstream version 0.9.8.1
|
|
|
c5767ff |
- changed dirowner of /etc/prelude-lml
|
|
|
c5767ff |
|
|
|
c5767ff |
* Mon Nov 20 2006 Thorsten Scherf <tscherf@redhat.com> 0.9.7-2
|
|
|
c5767ff |
- Some minor fixes in requirements
|
|
|
c5767ff |
|
|
|
c5767ff |
* Tue Oct 23 2006 Thorsten Scherf <tscherf@redhat.com> 0.9.7-1
|
|
|
c5767ff |
- New Fedora build based on release 0.9.7
|