diff options
| author | Jeremy Blosser | 2011-05-12 23:34:54 -0500 |
|---|---|---|
| committer | Jeremy Blosser | 2011-05-12 23:38:35 -0500 |
| commit | 7faeef4004635a794ce1a971ce38df3f116cb921 (patch) | |
| tree | 36bcf1a30a811617d0a42549a683f396db37551b | |
| parent | 436b0f4bf4af82457ffcca33e958f7e516139dde (diff) | |
snoopy: new spell, log all execve() calls to syslog.
| -rw-r--r-- | ChangeLog | 3 | ||||
| -rwxr-xr-x | security/snoopy/CONFIGURE | 1 | ||||
| -rwxr-xr-x | security/snoopy/DEPENDS | 1 | ||||
| -rwxr-xr-x | security/snoopy/DETAILS | 16 | ||||
| -rw-r--r-- | security/snoopy/HISTORY | 4 | ||||
| -rwxr-xr-x | security/snoopy/INSTALL | 5 | ||||
| -rwxr-xr-x | security/snoopy/PRE_BUILD | 3 | ||||
| -rwxr-xr-x | security/snoopy/PRE_REMOVE | 3 |
8 files changed, 36 insertions, 0 deletions
@@ -1,3 +1,6 @@ +2011-05-12 Jeremy Blosser <jblosser-smgl@firinn.org> + * security/snoopy: new spell, log all execve() calls to syslog + 2011-05-12 Vlad Glagolev <stealth@sourcemage.org> * net/netcat: new spell, GNU version of netcat diff --git a/security/snoopy/CONFIGURE b/security/snoopy/CONFIGURE new file mode 100755 index 0000000000..ac0f408982 --- /dev/null +++ b/security/snoopy/CONFIGURE @@ -0,0 +1 @@ +config_query SNOOPY_ENABLE "Enable snoopy logger in /etc/ld.so.preload?" n diff --git a/security/snoopy/DEPENDS b/security/snoopy/DEPENDS new file mode 100755 index 0000000000..44942f903c --- /dev/null +++ b/security/snoopy/DEPENDS @@ -0,0 +1 @@ +suggest_depends SYSTEM-LOGGER diff --git a/security/snoopy/DETAILS b/security/snoopy/DETAILS new file mode 100755 index 0000000000..bccf5e488f --- /dev/null +++ b/security/snoopy/DETAILS @@ -0,0 +1,16 @@ + SPELL=snoopy + VERSION=1.8.0 + SOURCE="${SPELL}-${VERSION}.tar.gz" + SOURCE_URL[0]=${SOURCEFORGE_URL}/${SPELL}logger/${SOURCE} + SOURCE_HASH=sha512:9b6664976f750ec8320c14a314b5e3632a013d3f6d80a1a3ffebd1abf9b92f87652be7c28d89a371d8d4d3a3e445fbabca7b11ad12050d03d8481a9487b34263 +SOURCE_DIRECTORY="${BUILD_DIRECTORY}/${SPELL}-${VERSION}" + WEB_SITE="http://sourceforge.net/projects/snoopylogger/" + LICENSE[0]=GPL + ENTERED=20110512 + SHORT="snoopy logs all execve() calls to syslog." +cat << EOF +Snoopy is designed to aid a sysadmin by providing a log of commands +executed. Snoopy is completely transparent to the user and applications. +It is linked into programs to provide a wrapper around calls to execve(). +Logging is done via syslog. +EOF diff --git a/security/snoopy/HISTORY b/security/snoopy/HISTORY new file mode 100644 index 0000000000..7985f3b74e --- /dev/null +++ b/security/snoopy/HISTORY @@ -0,0 +1,4 @@ +2011-05-12 Jeremy Blosser <jblosser-smgl@firinn.org> + * CONFIGURE, DEPENDS, DETAILS, INSTALL, PRE_BUILD, PRE_REMOVE: + spell created + diff --git a/security/snoopy/INSTALL b/security/snoopy/INSTALL new file mode 100755 index 0000000000..4c913d0c10 --- /dev/null +++ b/security/snoopy/INSTALL @@ -0,0 +1,5 @@ +default_install && + +if [ "${SNOOPY_ENABLE}" == "y" ]; then + make enable +fi diff --git a/security/snoopy/PRE_BUILD b/security/snoopy/PRE_BUILD new file mode 100755 index 0000000000..ed08e06879 --- /dev/null +++ b/security/snoopy/PRE_BUILD @@ -0,0 +1,3 @@ +default_pre_build && +cd "${SOURCE_DIRECTORY}" && +sedit "s,/etc/ld.so.preload,${INSTALL_ROOT}/etc/ld.so.preload,g" enable.sh diff --git a/security/snoopy/PRE_REMOVE b/security/snoopy/PRE_REMOVE new file mode 100755 index 0000000000..e2c5aaf84b --- /dev/null +++ b/security/snoopy/PRE_REMOVE @@ -0,0 +1,3 @@ +if [ "${SNOOPY_ENABLE}" == "y" ]; then + sedit '/snoopy\.so/d' /etc/ld.so.preload +fi |