diff options
author | edwin <edwin@FreeBSD.org> | 2005-11-25 02:31:06 +0000 |
---|---|---|
committer | edwin <edwin@FreeBSD.org> | 2005-11-25 02:31:06 +0000 |
commit | 52c80a66225cf6f4fa12db5309601683597cb5ed (patch) | |
tree | 03b49eadb2ccaf73434d146b17ac91c99693e953 | |
parent | b20e3a7069fcaa2904e2a8c9460d17d9bb4b29b3 (diff) | |
download | FreeBSD-ports-52c80a66225cf6f4fa12db5309601683597cb5ed.zip FreeBSD-ports-52c80a66225cf6f4fa12db5309601683597cb5ed.tar.gz |
[NEW PORT] security/jailaudit: Generate portaudit reports for jails from the hostsystem
This port contains a script for generating portaudit reports
for jails running on a FreeBSD system.
Jailaudit runs in the Host-system and uses portaudit to
create reports for every jail currently running.
It can also be used to send specific report-mails to the
owner of a jail by running it as a cronjob.
/etc/crontab example:
0 4 * * * * root /usr/local/bin/jailaudit mail admin@foo.bar "foo.example.com bar.example.com"
Sends reports-mails of the jails with the hostnames
foo.example.com and bar.example.com to the mailaddr.
admin@example.com.
WWW: http://outpost.h3q.org/software/jailaudit/
PR: ports/87581
Submitted by: Philipp Wuensche <cryx-ports@h3q.com>
-rw-r--r-- | ports-mgmt/jailaudit/Makefile | 34 | ||||
-rw-r--r-- | ports-mgmt/jailaudit/distinfo | 2 | ||||
-rw-r--r-- | ports-mgmt/jailaudit/pkg-descr | 20 | ||||
-rw-r--r-- | ports-mgmt/jailaudit/pkg-plist | 11 | ||||
-rw-r--r-- | security/Makefile | 1 | ||||
-rw-r--r-- | security/jailaudit/Makefile | 34 | ||||
-rw-r--r-- | security/jailaudit/distinfo | 2 | ||||
-rw-r--r-- | security/jailaudit/pkg-descr | 20 | ||||
-rw-r--r-- | security/jailaudit/pkg-plist | 11 |
9 files changed, 135 insertions, 0 deletions
diff --git a/ports-mgmt/jailaudit/Makefile b/ports-mgmt/jailaudit/Makefile new file mode 100644 index 0000000..fe863b7 --- /dev/null +++ b/ports-mgmt/jailaudit/Makefile @@ -0,0 +1,34 @@ +# New ports collection makefile for: jailaudit +# Date created: 21 October 2005 +# Whom: cryx +# +# $FreeBSD$ +# + +PORTNAME= jailaudit +PORTVERSION= 1.1 +CATEGORIES= security +MASTER_SITES= http://outpost.h3q.com/software/jailaudit/ + +MAINTAINER= cryx-ports@h3q.com +COMMENT= Script to generate portaudit reports for jails + +RUN_DEPENDS= ${LOCALBASE}/sbin/portaudit:${PORTSDIR}/security/portaudit + +USE_BZIP2= yes + +PERIODICDIR?= ${PREFIX}/etc/periodic +REPORTDIR?= ${PREFIX}/jailaudit/reports +TMPDIR?= ${PREFIX}/jailaudit/tmp + +PLIST_SUB+= PERIODICDIR="${PERIODICDIR:S,^${PREFIX}/,,}" \ + REPORTDIR="${REPORTDIR:S,^${PREFIX}/,,}" \ + TMPDIR="${TMPDIR:S,^${PREFIX}/,,}" + +.include <bsd.port.pre.mk> + +.if ( ${OSVERSION} < 501000 ) +IGNORE= needs the jls utility which was added in FreeBSD 5.1 +.endif + +.include <bsd.port.post.mk> diff --git a/ports-mgmt/jailaudit/distinfo b/ports-mgmt/jailaudit/distinfo new file mode 100644 index 0000000..6c7a63d --- /dev/null +++ b/ports-mgmt/jailaudit/distinfo @@ -0,0 +1,2 @@ +MD5 (jailaudit-1.1.tar.bz2) = 32f5b1973cc9eaa88b0e05792499a0c7 +SIZE (jailaudit-1.1.tar.bz2) = 2512 diff --git a/ports-mgmt/jailaudit/pkg-descr b/ports-mgmt/jailaudit/pkg-descr new file mode 100644 index 0000000..0933960 --- /dev/null +++ b/ports-mgmt/jailaudit/pkg-descr @@ -0,0 +1,20 @@ +This port contains a script to generate portaudit reports for jails +running on a FreeBSD system. + +Normally portaudit just creates reports for the Host-system or the jail +it is installed in. With a large number of jails running on a system, +installing and updating portaudit in every jail is time-consuming and +error-prone. Jailaudit uses the portaudit installed in the Host-system +to create a report for every jail. + +The reports are appended to the daily security run and can be sent to a +specific mail address, which allows the Host-system administrator to +dispatch portaudit reports to the owners of jails, keeping them informed +about potential security advisories of their installed ports. + +Jailaudit can be used on FreeBSD 5.1 or larger. + +WWW: https://anonsvn.h3q.com/projects/jailaudit/ + +- cryx +Philipp Wuensche <cryx-ports@h3q.com> diff --git a/ports-mgmt/jailaudit/pkg-plist b/ports-mgmt/jailaudit/pkg-plist new file mode 100644 index 0000000..447a2b0 --- /dev/null +++ b/ports-mgmt/jailaudit/pkg-plist @@ -0,0 +1,11 @@ +bin/jailaudit +etc/jailaudit.conf.sample +%%PERIODICDIR%%/security/410.jailaudit +@unexec rmdir %D/%%PERIODICDIR%%/security 2>/dev/null || true +@unexec rmdir %D/%%PERIODICDIR%% 2>/dev/null || true +@exec mkdir -p %D/%%REPORTDIR%% +@unexec rmdir %D/%%REPORTDIR%% 2>/dev/null || true +@exec mkdir -p %D/%%TMPDIR%% +@unexec rmdir %D/%%TMPDIR%% 2>/dev/null || true +@unexec rmdir %DPDIR%% 2>/dev/null || true +@unexec rmdir %D/jailaudit 2>/dev/null || true diff --git a/security/Makefile b/security/Makefile index 78f1474..94dd48a 100644 --- a/security/Makefile +++ b/security/Makefile @@ -171,6 +171,7 @@ SUBDIR += ipsec-tools SUBDIR += isakmpd SUBDIR += its4 + SUBDIR += jailaudit SUBDIR += jce_policy14 SUBDIR += john SUBDIR += keychain diff --git a/security/jailaudit/Makefile b/security/jailaudit/Makefile new file mode 100644 index 0000000..fe863b7 --- /dev/null +++ b/security/jailaudit/Makefile @@ -0,0 +1,34 @@ +# New ports collection makefile for: jailaudit +# Date created: 21 October 2005 +# Whom: cryx +# +# $FreeBSD$ +# + +PORTNAME= jailaudit +PORTVERSION= 1.1 +CATEGORIES= security +MASTER_SITES= http://outpost.h3q.com/software/jailaudit/ + +MAINTAINER= cryx-ports@h3q.com +COMMENT= Script to generate portaudit reports for jails + +RUN_DEPENDS= ${LOCALBASE}/sbin/portaudit:${PORTSDIR}/security/portaudit + +USE_BZIP2= yes + +PERIODICDIR?= ${PREFIX}/etc/periodic +REPORTDIR?= ${PREFIX}/jailaudit/reports +TMPDIR?= ${PREFIX}/jailaudit/tmp + +PLIST_SUB+= PERIODICDIR="${PERIODICDIR:S,^${PREFIX}/,,}" \ + REPORTDIR="${REPORTDIR:S,^${PREFIX}/,,}" \ + TMPDIR="${TMPDIR:S,^${PREFIX}/,,}" + +.include <bsd.port.pre.mk> + +.if ( ${OSVERSION} < 501000 ) +IGNORE= needs the jls utility which was added in FreeBSD 5.1 +.endif + +.include <bsd.port.post.mk> diff --git a/security/jailaudit/distinfo b/security/jailaudit/distinfo new file mode 100644 index 0000000..6c7a63d --- /dev/null +++ b/security/jailaudit/distinfo @@ -0,0 +1,2 @@ +MD5 (jailaudit-1.1.tar.bz2) = 32f5b1973cc9eaa88b0e05792499a0c7 +SIZE (jailaudit-1.1.tar.bz2) = 2512 diff --git a/security/jailaudit/pkg-descr b/security/jailaudit/pkg-descr new file mode 100644 index 0000000..0933960 --- /dev/null +++ b/security/jailaudit/pkg-descr @@ -0,0 +1,20 @@ +This port contains a script to generate portaudit reports for jails +running on a FreeBSD system. + +Normally portaudit just creates reports for the Host-system or the jail +it is installed in. With a large number of jails running on a system, +installing and updating portaudit in every jail is time-consuming and +error-prone. Jailaudit uses the portaudit installed in the Host-system +to create a report for every jail. + +The reports are appended to the daily security run and can be sent to a +specific mail address, which allows the Host-system administrator to +dispatch portaudit reports to the owners of jails, keeping them informed +about potential security advisories of their installed ports. + +Jailaudit can be used on FreeBSD 5.1 or larger. + +WWW: https://anonsvn.h3q.com/projects/jailaudit/ + +- cryx +Philipp Wuensche <cryx-ports@h3q.com> diff --git a/security/jailaudit/pkg-plist b/security/jailaudit/pkg-plist new file mode 100644 index 0000000..447a2b0 --- /dev/null +++ b/security/jailaudit/pkg-plist @@ -0,0 +1,11 @@ +bin/jailaudit +etc/jailaudit.conf.sample +%%PERIODICDIR%%/security/410.jailaudit +@unexec rmdir %D/%%PERIODICDIR%%/security 2>/dev/null || true +@unexec rmdir %D/%%PERIODICDIR%% 2>/dev/null || true +@exec mkdir -p %D/%%REPORTDIR%% +@unexec rmdir %D/%%REPORTDIR%% 2>/dev/null || true +@exec mkdir -p %D/%%TMPDIR%% +@unexec rmdir %D/%%TMPDIR%% 2>/dev/null || true +@unexec rmdir %DPDIR%% 2>/dev/null || true +@unexec rmdir %D/jailaudit 2>/dev/null || true |