Changes - j0ke.net Open Build Service

Changes of Revision 4

[-] [+]	Changed	snort.spec
@@ -95,6 +95,9 @@ %define postgresql 1 %define release 1 %endif +%if 0%{?suse_version} +PreReq: %fillup_prereq +%endif Name: %{realname}%{inlinetext} %{?_with_inline:%define Name: %{realname}-inline } @@ -106,6 +109,7 @@ License: GPL Url: http://www.snort.org/ Source0: http://www.snort.org/dl/2.8.6.1/%{realname}-%{version}.tar.gz +Source2: snortd.suse.init BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) Packager: Official Snort.org %{for_distro} @@ -375,8 +379,16 @@ %__ln_s -f %{_libdir}/%{realname}-%{version}_dynamicpreprocessor/libsf_sdf_preproc.so.0 $RPM_BUILD_ROOT%{_libdir}/%{realname}-%{version}_dynamicpreprocessor/libsf_sdf_preproc.so %__install -p -m 0644 snort.8 $RPM_BUILD_ROOT%{_mandir}/man8 %__gzip $RPM_BUILD_ROOT%{_mandir}/man8/snort.8 + %if 0%{?suse_version} + %__install -p -m 0755 %{S:2} $RPM_BUILD_ROOT%{_initrddir}/snortd + %else %__install -p -m 0755 rpm/snortd $RPM_BUILD_ROOT%{_initrddir} + %endif + %if 0%{?suse_version} + %__install -D -p -m 0644 rpm/snort.sysconfig $RPM_BUILD_ROOT/var/adm/fillup-templates/sysconfig.snort + %else %__install -p -m 0644 rpm/snort.sysconfig $RPM_BUILD_ROOT/%{_sysconfdir}/sysconfig/%{realname} + %endif %__install -p -m 0644 rpm/snort.logrotate $RPM_BUILD_ROOT/%{_sysconfdir}/logrotate.d/snort %__install -p -m 0644 etc/reference.config etc/classification.config \ etc/unicode.map etc/gen-msg.map etc/sid-msg.map \ @@ -460,6 +472,9 @@ fi %post +%if 0%{?suse_version} +%{fillup_only} +%endif # Make a symlink if there is no link for snort-plain if [ -L %{_sbindir}/snort ] \|\| [ ! -e %{_sbindir}/snort ] ; then \ %__rm -f %{_sbindir}/snort; %__ln_s %{_sbindir}/%{name}-plain %{_sbindir}/snort; fi @@ -531,7 +546,11 @@ %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/snort/*.map %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/logrotate.d/snort %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/snort/snort.conf +%if 0%{?suse_version} +%attr(0644,root,root) /var/adm/fillup-templates/sysconfig.snort +%else %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/sysconfig/snort +%endif %attr(0755,root,root) %config(noreplace) %{_initrddir}/snortd %attr(0755,snort,snort) %dir %{_var}/log/snort %attr(0755,root,root) %dir %{_sysconfdir}/snort
[-] [+]	Added	snortd.suse.init ^
@@ -0,0 +1,257 @@ +#!/bin/sh +# +# /etc/init.d/snortd +# and its symbolic link +# /usr/sbin/rcsnortd +# +### +### adappted to openSUSE 11.0 by hans @ www.kriyayoga.com +### December 13 2008 +### use as is - use at your own risk +### report bugs in THIS snortd init-script to hans@kriyayoga.com +### +### BEGIN INIT INFO +# Provides: snort +# Required-Start: $syslog $remote_fs +# Required-Stop: $syslog $remote_fs +# Default-Start: 3 5 +# Default-Stop: 0 1 2 6 +# Short-Description: Start snort +# Description: Start snort IDS +### END INIT INFO +PATH=/usr/sbin:/usr/bin:/usr/sbin:/sbin:/usr/sbin:/usr/bin:/bin +SNORT_BIN=/usr/sbin/snort +SNORT_SOCKET=/var/run/snort_eth0.pid + +test -x $SNORT_BIN \|\| { echo "$SNORT_BIN not installed"; + if [ "$1" = "stop" ]; then exit 0; + else exit 5; fi; } + +# Check for existence of needed config file and read it +SNORT_CONFIG=/etc/snort/snort.conf +test -r $SNORT_CONFIG \|\| { echo "$SNORT_CONFIG not existing"; + if [ "$1" = "stop" ]; then exit 0; + else exit 6; fi; } + +. /etc/rc.status + +# Shell functions sourced from /etc/rc.status: +# rc_check check and set local and overall rc status +# rc_status check and set local and overall rc status +# rc_status -v ditto but be verbose in local rc status +# rc_status -v -r ditto and clear the local rc status +# rc_failed set local and overall rc status to failed +# rc_reset clear local rc status (overall remains) +# rc_exit exit appropriate to overall rc status + +# First reset status of this service + +# Reset status of this service +rc_reset + +# Source the local configuration file +. /etc/sysconfig/snort + +# Convert the /etc/sysconfig/snort settings to something snort can +# use on the startup line. +if [ "$ALERTMODE"X = "X" ]; then + ALERTMODE="" +else + ALERTMODE="-A $ALERTMODE" +fi + +if [ "$USER"X = "X" ]; then + USER="snort" +fi + +if [ "$GROUP"X = "X" ]; then + GROUP="snort" +fi + +if [ "$BINARY_LOG"X = "1X" ]; then + BINARY_LOG="-b" +else + BINARY_LOG="" +fi + +if [ "$CONF"X = "X" ]; then + CONF="-c /etc/snort/snort.conf" +else + CONF="-c $CONF" +fi + +if [ "$INTERFACE"X = "X" ]; then + INTERFACE="-i eth0" +else + INTERFACE="-i $INTERFACE" +fi + +if [ "$DUMP_APP"X = "1X" ]; then + DUMP_APP="-d" +else + DUMP_APP="" +fi + +if [ "$NO_PACKET_LOG"X = "1X" ]; then + NO_PACKET_LOG="-N" +else + NO_PACKET_LOG="" +fi + +if [ "$PRINT_INTERFACE"X = "1X" ]; then + PRINT_INTERFACE="-I" +else + PRINT_INTERFACE="" +fi + +if [ "$PASS_FIRST"X = "1X" ]; then + PASS_FIRST="-o" +else + PASS_FIRST="" +fi + +if [ "$LOGDIR"X = "X" ]; then + LOGDIR=/var/log/snort +fi + +# These are used by the 'stats' option +if [ "$SYSLOG"X = "X" ]; then + SYSLOG=/var/log/messages +fi + +if [ "$SECS"X = "X" ]; then + SECS=5 +fi + +if [ ! "$BPFFILE"X = "X" ]; then + BPFFILE="-F $BPFFILE" +fi + +###################################### +# Now to the real heart of the matter: + +# See how we were called. + +case "$1" in + start) + cd $LOGDIR + if [ "$INTERFACE" = "-i ALL" ]; then + for i in `cat /proc/net/dev\|grep eth\|awk -F ":" '{ print $1; }'` + do + mkdir -p "$LOGDIR/$i" + chown -R $USER:$GROUP $LOGDIR + /sbin/startproc -p $SNORT_SOCKET $SNORT_BIN $ALERTMODE $BINARY_LOG $NO_PACKET_LOG $DUMP_APP -D $PRINT_INTERFACE -i $i -u $USER -g $GROUP $CONF -l $LOGDIR/$i $PASS_FIRST $BPFFILE $BPF > /dev/null 2>&1 + # Remember status and be verbose + rc_status -v + done + else + # check if more than one interface is given + if [ `echo $INTERFACE\|wc -w` -gt 2 ]; then + for i in `echo $INTERFACE \| sed s/"-i "//` + do + mkdir -p "$LOGDIR/$i" + chown -R $USER:$GROUP $LOGDIR + /sbin/startproc -p $SNORT_SOCKET $SNORT_BIN $ALERTMODE $BINARY_LOG $NO_PACKET_LOG $DUMP_APP -D $PRINT_INTERFACE -i $i -u $USER -g $GROUP $CONF -l $LOGDIR/$i $PASS_FIRST $BPFFILE $BPF > /dev/null 2>&1 + # Remember status and be verbose + rc_status -v + done + else + # Run with a single interface (default) + /sbin/startproc -p $SNORT_SOCKET $SNORT_BIN $ALERTMODE $BINARY_LOG $NO_PACKET_LOG $DUMP_APP -D $PRINT_INTERFACE $INTERFACE -u $USER -g $GROUP $CONF -l $LOGDIR $PASS_FIRST $BPFFILE $BPF > /dev/null 2>&1 + # Remember status and be verbose + rc_status -v + fi + fi + ;; + stop) + echo -n "Shutting down snort " + /sbin/killproc $SNORT_BIN > /dev/null 2>&1 + chown -R $USER:$GROUP /var/run/snort_eth0.* && + rm -f /var/run/snort_eth0.pi* + rc_status -v + ;; + restart) + $0 stop + echo -n "starting snort - moment please " + i=60 + while [ -e $SNORT_SOCKET ] && [ $i -gt 0 ]; do + sleep 1 + i=$[$i-1] + echo -n "." + done + echo "." + $0 start + ;; + reload) + echo "Sorry, not implemented yet" + ;; + status) + echo -n "Checking for service snort " + /sbin/checkproc $SNORT_BIN + rc_status -v + ;; + ## Check status with checkproc(8), if process is running + ## checkproc will return with exit status 0. + + # Status has a slightly different for the status command: + # 0 - service running + # 1 - service dead, but /var/run/ pid file exists + # 2 - service dead, but /var/lock/ lock file exists