···

       
1
       
1
       
+
       
{ lib, stdenv, fetchFromGitHub, which, pcre2, zlib, ncurses, openssl }:

     

       
2
       
2
       
+
       
let

     

       
3
       
3
       
+
       
  version = "unstable-2023-08-09";

     

       
4
       
4
       
+
       
in

     

       
5
       
5
       
+
       
stdenv.mkDerivation {

     

       
6
       
6
       
+
       
  pname = "ossec-agent";

     

       
7
       
7
       
+
       
  inherit version;

     

       
8
       
8
       
+
       


     

       
9
       
9
       
+
       
  src = fetchFromGitHub {

     

       
10
       
10
       
+
       
    owner = "ossec";

     

       
11
       
11
       
+
       
    repo = "ossec-hids";

     

       
12
       
12
       
+
       
    rev = "c8a36b0af3d4ee5252855b90236407cbfb996eb2";

     

       
13
       
13
       
+
       
    sha256 = "sha256-AZ8iubyhNHXGR/l+hA61ifNDUoan7AQ42l/uRTt5GmE=";

     

       
14
       
14
       
+
       
  };

     

       
15
       
15
       
+
       


     

       
16
       
16
       
+
       
  # clear is used during the build process

     

       
17
       
17
       
+
       
  nativeBuildInputs = [ ncurses ];

     

       
18
       
18
       
+
       


     

       
19
       
19
       
+
       
  buildInputs = [ which pcre2 zlib openssl ];

     

       
20
       
20
       
+
       


     

       
21
       
21
       
+
       
  # patch to remove root manipulation, install phase which tries to add users to the system, and init phase which tries to modify the system to launch files

     

       
22
       
22
       
+
       
  patches = [ ./no-root.patch ];

     

       
23
       
23
       
+
       


     

       
24
       
24
       
+
       
  # Workaround build failure on -fno-common toolchains like upstream

     

       
25
       
25
       
+
       
  # gcc-10. Otherwise build fails as:

     

       
26
       
26
       
+
       
  #   ld: src/common/mgmt/pint-worker-external.po:(.data.rel.local+0x0): multiple definition of

     

       
27
       
27
       
+
       
  #     `PINT_worker_external_impl'; src/common/mgmt/pint-mgmt.po:(.bss+0x20): first defined here

     

       
28
       
28
       
+
       
  env.NIX_CFLAGS_COMPILE = "-fcommon";

     

       
29
       
29
       
+
       


     

       
30
       
30
       
+
       
  buildPhase = ''

     

       
31
       
31
       
+
       
    mkdir $out

     

       
32
       
32
       
+
       
    export USER_DIR="$out" # just to satisy the script

     

       
33
       
33
       
+
       
    ./install.sh <<EOF

     

       
34
       
34
       
+
       
en

     

       
35
       
35
       
+
       


     

       
36
       
36
       
+
       
agent

     

       
37
       
37
       
+
       
127.0.0.1

     

       
38
       
38
       
+
       
yes

     

       
39
       
39
       
+
       
yes

     

       
40
       
40
       
+
       
yes

     

       
41
       
41
       
+
       
EOF

     

       
42
       
42
       
+
       


     

       
43
       
43
       
+
       
  '';

     

       
44
       
44
       
+
       


     

       
45
       
45
       
+
       
  installPhase = ''

     

       
46
       
46
       
+
       
      runHook preInstall

     

       
47
       
47
       
+
       


     

       
48
       
48
       
+
       
      mkdir -p $out/share

     

       
49
       
49
       
+
       
      mv $out/active-response/bin/* $out/bin

     

       
50
       
50
       
+
       
      mv $out/etc $out/share

     

       
51
       
51
       
+
       
      mv $out/queue $out/share

     

       
52
       
52
       
+
       
      mv $out/var $out/share

     

       
53
       
53
       
+
       
      mv $out/agentless $out/share

     

       
54
       
54
       
+
       
      mv $out/.ssh $out/share

     

       
55
       
55
       
+
       
      rm -r $out/active-response

     

       
56
       
56
       
+
       
      rm -r $out/tmp

     

       
57
       
57
       
+
       


     

       
58
       
58
       
+
       
      runHook postInstall

     

       
59
       
59
       
+
       
  '';

     

       
60
       
60
       
+
       


     

       
61
       
61
       
+
       
  meta = with lib; {

     

       
62
       
62
       
+
       
    description = "Open source host-based instrusion detection system";

     

       
63
       
63
       
+
       
    homepage = "https://www.ossec.net";

     

       
64
       
64
       
+
       
    license = licenses.gpl2;

     

       
65
       
65
       
+
       
    maintainers = with maintainers; [ happysalada ];

     

       
66
       
66
       
+
       
    platforms = platforms.all;

     

       
67
       
67
       
+
       
  };

     

       
68
       
68
       
+
       
}

     

       
69
       
69
       
+
       


     

···

       
1
       
1
       
-
       
{ lib, stdenv, fetchurl, which }:

     

       
2
       
2
       
-
       


     

       
3
       
3
       
-
       
stdenv.mkDerivation rec {

     

       
4
       
4
       
-
       
  pname = "ossec-client";

     

       
5
       
5
       
-
       
  version = "2.6";

     

       
6
       
6
       
-
       


     

       
7
       
7
       
-
       
  src = fetchurl {

     

       
8
       
8
       
-
       
    url = "https://www.ossec.net/files/ossec-hids-${version}.tar.gz";

     

       
9
       
9
       
-
       
    sha256 = "0k1b59wdv9h50gbyy88qw3cnpdm8hv0nrl0znm92h9a11i5b39ip";

     

       
10
       
10
       
-
       
  };

     

       
11
       
11
       
-
       


     

       
12
       
12
       
-
       
  buildInputs = [ which ];

     

       
13
       
13
       
-
       


     

       
14
       
14
       
-
       
  patches = [ ./no-root.patch ];

     

       
15
       
15
       
-
       


     

       
16
       
16
       
-
       
  # Workaround build failure on -fno-common toolchains like upstream

     

       
17
       
17
       
-
       
  # gcc-10. Otherwise build fails as:

     

       
18
       
18
       
-
       
  #   ld: src/common/mgmt/pint-worker-external.po:(.data.rel.local+0x0): multiple definition of

     

       
19
       
19
       
-
       
  #     `PINT_worker_external_impl'; src/common/mgmt/pint-mgmt.po:(.bss+0x20): first defined here

     

       
20
       
20
       
-
       
  env.NIX_CFLAGS_COMPILE = "-fcommon";

     

       
21
       
21
       
-
       


     

       
22
       
22
       
-
       
  buildPhase = ''

     

       
23
       
23
       
-
       
    echo "en

     

       
24
       
24
       
-
       


     

       
25
       
25
       
-
       
agent

     

       
26
       
26
       
-
       
$out

     

       
27
       
27
       
-
       
no

     

       
28
       
28
       
-
       
127.0.0.1

     

       
29
       
29
       
-
       
yes

     

       
30
       
30
       
-
       
yes

     

       
31
       
31
       
-
       
yes

     

       
32
       
32
       
-
       


     

       
33
       
33
       
-
       


     

       
34
       
34
       
-
       
"   | ./install.sh

     

       
35
       
35
       
-
       
  '';

     

       
36
       
36
       
-
       


     

       
37
       
37
       
-
       
  meta = with lib; {

     

       
38
       
38
       
-
       
    description = "Open source host-based instrusion detection system";

     

       
39
       
39
       
-
       
    homepage = "https://www.ossec.net";

     

       
40
       
40
       
-
       
    license = licenses.gpl2;

     

       
41
       
41
       
-
       
    maintainers = with maintainers; [ ];

     

       
42
       
42
       
-
       
    platforms = platforms.linux;

     

       
43
       
43
       
-
       
  };

     

       
44
       
44
       
-
       
}

     

       
45
       
45
       
-
       


     

···

       
1
       
1
       
-
       
diff -Naur ossec-hids-2.6-orig/install.sh ossec-hids-2.6/install.sh

     

       
2
       
2
       
-
       
--- ossec-hids-2.6-orig/install.sh	2011-07-11 15:36:58.000000000 -0400

     

       
3
       
3
       
-
       
+++ ossec-hids-2.6/install.sh	2012-07-09 09:58:57.970692818 -0400

     

       
4
       
4
       
-
       
@@ -119,14 +119,14 @@

     

       
1
       
1
       
+
       
diff --git a/install.sh b/install.sh

     

       
2
       
2
       
+
       
index 387bde1a..cb6dcbf2 100755

     

       
3
       
3
       
+
       
--- a/install.sh

     

       
4
       
4
       
+
       
+++ b/install.sh

     

       
5
       
5
       
+
       
@@ -126,14 +126,14 @@ Install()

     

       
5
       
6
       
 
       
     # Generate the /etc/ossec-init.conf

     

       
6
       
7
       
 
       
     VERSION_FILE="./src/VERSION"

     

       
7
       
8
       
 
       
     VERSION=`cat ${VERSION_FILE}`

     
···

       
12
       
13
       
 
       
-    echo "TYPE=\"${INSTYPE}\"" >> ${OSSEC_INIT}

     

       
13
       
14
       
 
       
-    chmod 600 ${OSSEC_INIT}

     

       
14
       
15
       
 
       
-    cp -pr ${OSSEC_INIT} ${INSTALLDIR}${OSSEC_INIT}

     

       
15
       
15
       
-
       
-    chmod 644 ${INSTALLDIR}${OSSEC_INIT}

     

       
16
       
16
       
-
       
+    echo chmod 700 ${OSSEC_INIT} > /dev/null 2>&1

     

       
17
       
17
       
-
       
+    echo "DIRECTORY=\"${INSTALLDIR}\"" > ${INSTALLDIR}${OSSEC_INIT}

     

       
18
       
18
       
-
       
+    echo "VERSION=\"${VERSION}\"" >> ${INSTALLDIR}${OSSEC_INIT}

     

       
19
       
19
       
-
       
+    echo "DATE=\"`date`\"" >> ${INSTALLDIR}${OSSEC_INIT}

     

       
20
       
20
       
-
       
+    echo "TYPE=\"${INSTYPE}\"" >> ${INSTALLDIR}${OSSEC_INIT}

     

       
21
       
21
       
-
       
+    echo chmod 600 ${OSSEC_INIT}

     

       
22
       
22
       
-
       
+    echo cp -pr ${OSSEC_INIT} ${INSTALLDIR}${OSSEC_INIT}

     

       
23
       
23
       
-
       
+    echo chmod 644 ${INSTALLDIR}${OSSEC_INIT}

     

       
16
       
16
       
+
       
-    chmod 640 ${INSTALLDIR}${OSSEC_INIT}

     

       
17
       
17
       
+
       
+    # chmod 700 ${OSSEC_INIT} > /dev/null 2>&1

     

       
18
       
18
       
+
       
+    # echo "DIRECTORY=\"${INSTALLDIR}\"" > ${OSSEC_INIT}

     

       
19
       
19
       
+
       
+    # echo "VERSION=\"${VERSION}\"" >> ${OSSEC_INIT}

     

       
20
       
20
       
+
       
+    # echo "DATE=\"`date`\"" >> ${OSSEC_INIT}

     

       
21
       
21
       
+
       
+    # echo "TYPE=\"${INSTYPE}\"" >> ${OSSEC_INIT}

     

       
22
       
22
       
+
       
+    # chmod 600 ${OSSEC_INIT}

     

       
23
       
23
       
+
       
+    # cp -pr ${OSSEC_INIT} ${INSTALLDIR}${OSSEC_INIT}

     

       
24
       
24
       
+
       
+    # chmod 640 ${INSTALLDIR}${OSSEC_INIT}

     

       
24
       
25
       
 
       
 

     

       
25
       
26
       
 
       
 

     

       
26
       
27
       
 
       
     # If update_rules is set, we need to tweak

     

       
27
       
27
       
-
       
@@ -926,11 +926,6 @@

     

       
28
       
28
       
+
       
@@ -148,12 +148,12 @@ Install()

     

       
29
       
29
       
+
       
     fi

     

       
30
       
30
       
+
       
 

     

       
31
       
31
       
+
       
     # Calling the init script  to start ossec hids during boot

     

       
32
       
32
       
+
       
-    if [ "X${update_only}" = "X" ]; then

     

       
33
       
33
       
+
       
-        runInit

     

       
34
       
34
       
+
       
-        if [ $? = 1 ]; then

     

       
35
       
35
       
+
       
-            notmodified="yes"

     

       
36
       
36
       
+
       
-        fi

     

       
37
       
37
       
+
       
-    fi

     

       
38
       
38
       
+
       
+    # if [ "X${update_only}" = "X" ]; then

     

       
39
       
39
       
+
       
+    #     runInit

     

       
40
       
40
       
+
       
+    #     if [ $? = 1 ]; then

     

       
41
       
41
       
+
       
+    #         notmodified="yes"

     

       
42
       
42
       
+
       
+    #     fi

     

       
43
       
43
       
+
       
+    # fi

     

       
44
       
44
       
+
       
 

     

       
45
       
45
       
+
       
 }

     

       
46
       
46
       
+
       
 

     

       
47
       
47
       
+
       
@@ -965,10 +965,10 @@ main()

     

       
28
       
48
       
 
       
         catError "0x1-location";

     

       
29
       
49
       
 
       
     fi

     

       
30
       
50
       
 
       
 

     
···

       
32
       
52
       
 
       
-    if [ ! "X$ME" = "Xroot" ]; then

     

       
33
       
53
       
 
       
-        catError "0x2-beroot";

     

       
34
       
54
       
 
       
-    fi

     

       
35
       
35
       
-
       
-

     

       
55
       
55
       
+
       
+    # # Must be root

     

       
56
       
56
       
+
       
+    # if [ ! "X$ME" = "Xroot" ]; then

     

       
57
       
57
       
+
       
+    #     catError "0x2-beroot";

     

       
58
       
58
       
+
       
+    # fi

     

       
59
       
59
       
+
       
 

     

       
36
       
60
       
 
       
     # Checking dependencies

     

       
37
       
61
       
 
       
     checkDependencies

     

       
38
       
38
       
-
       
 

     

       
39
       
39
       
-
       
diff -Naur ossec-hids-2.6-orig/src/InstallAgent.sh ossec-hids-2.6/src/InstallAgent.sh

     

       
40
       
40
       
-
       
--- ossec-hids-2.6-orig/src/InstallAgent.sh	2011-07-11 15:36:58.000000000 -0400

     

       
41
       
41
       
-
       
+++ ossec-hids-2.6/src/InstallAgent.sh	2012-07-09 09:56:12.061870552 -0400

     

       
42
       
42
       
-
       
@@ -80,7 +80,7 @@

     

       
62
       
62
       
+
       
diff --git a/src/Makefile b/src/Makefile

     

       
63
       
63
       
+
       
index 7fc04c0b..0eb27a0a 100644

     

       
64
       
64
       
+
       
--- a/src/Makefile

     

       
65
       
65
       
+
       
+++ b/src/Makefile

     

       
66
       
66
       
+
       
@@ -144,7 +144,7 @@ endif

     

       
67
       
67
       
+
       
 ifeq (${uname_S},AIX)

     

       
68
       
68
       
+
       
         INSTALL_CMD?=./install-shim-aix.ksh -m $(1) -o $(2) -g $(3)

     

       
43
       
69
       
 
       
 else

     

       
44
       
44
       
-
       
     grep "^${USER}" /etc/passwd > /dev/null 2>&1

     

       
45
       
45
       
-
       
     if [ ! $? = 0 ]; then

     

       
46
       
46
       
-
       
-	/usr/sbin/groupadd ${GROUP}

     

       
47
       
47
       
-
       
+	echo /usr/sbin/groupadd ${GROUP}

     

       
70
       
70
       
+
       
-        INSTALL_CMD?=install -m $(1) -o $(2) -g $(3)

     

       
71
       
71
       
+
       
+        INSTALL_CMD?=install

     

       
72
       
72
       
+
       
 endif

     

       
48
       
73
       
 
       
 

     

       
49
       
49
       
-
       
     # We first check if /sbin/nologin is present. If it is not,

     

       
50
       
50
       
-
       
     # we look for bin/false. If none of them is present, we

     

       
51
       
51
       
-
       
@@ -93,7 +93,7 @@

     

       
52
       
52
       
-
       
             OSMYSHELL="/bin/false"

     

       
53
       
53
       
-
       
         fi

     

       
54
       
54
       
-
       
     fi        

     

       
55
       
55
       
-
       
-	/usr/sbin/useradd -d ${DIR} -s ${OSMYSHELL} -g ${GROUP} ${USER}

     

       
56
       
56
       
-
       
+	echo /usr/sbin/useradd -d ${DIR} -s ${OSMYSHELL} -g ${GROUP} ${USER}

     

       
57
       
57
       
-
       
     fi

     

       
58
       
58
       
-
       
 fi

     

       
74
       
74
       
+
       
 ifdef DEBUGAD

     

       
75
       
75
       
+
       
@@ -404,10 +404,10 @@ endif

     

       
76
       
76
       
+
       
 install: install-${TARGET}

     

       
59
       
77
       
 
       
 

     

       
60
       
60
       
-
       
@@ -105,31 +105,31 @@

     

       
61
       
61
       
-
       
 done

     

       
78
       
78
       
+
       
 install-agent: install-common

     

       
79
       
79
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-agentd ${PREFIX}/bin

     

       
80
       
80
       
+
       
-	$(call INSTALL_CMD,0550,root,0) agent-auth ${PREFIX}/bin

     

       
81
       
81
       
+
       
+	$(call INSTALL_CMD) ossec-agentd ${PREFIX}/bin

     

       
82
       
82
       
+
       
+	$(call INSTALL_CMD) agent-auth ${PREFIX}/bin

     

       
83
       
83
       
+
       
 

     

       
84
       
84
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/rids

     

       
85
       
85
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/rids

     

       
62
       
86
       
 
       
 

     

       
63
       
63
       
-
       
 # Default for all directories

     

       
64
       
64
       
-
       
-chmod -R 550 ${DIR}

     

       
65
       
65
       
-
       
-chown -R root:${GROUP} ${DIR}

     

       
66
       
66
       
-
       
+echo chmod -R 550 ${DIR}

     

       
67
       
67
       
-
       
+echo chown -R root:${GROUP} ${DIR}

     

       
87
       
87
       
+
       
 install-local: install-server-generic

     

       
68
       
88
       
 
       
 

     

       
69
       
69
       
-
       
 # To the ossec queue (default for agentd to read)

     

       
70
       
70
       
-
       
-chown -R ${USER}:${GROUP} ${DIR}/queue/ossec

     

       
71
       
71
       
-
       
-chmod -R 770 ${DIR}/queue/ossec

     

       
72
       
72
       
-
       
+echo chown -R ${USER}:${GROUP} ${DIR}/queue/ossec

     

       
73
       
73
       
-
       
+echo chmod -R 770 ${DIR}/queue/ossec

     

       
89
       
89
       
+
       
@@ -416,133 +416,126 @@ install-hybrid: install-server-generic

     

       
90
       
90
       
+
       
 install-server: install-server-generic

     

       
74
       
91
       
 
       
 

     

       
75
       
75
       
-
       
 # For the logging user

     

       
76
       
76
       
-
       
-chown -R ${USER}:${GROUP} ${DIR}/logs

     

       
77
       
77
       
-
       
-chmod -R 750 ${DIR}/logs

     

       
78
       
78
       
-
       
-chmod -R 775 ${DIR}/queue/rids

     

       
79
       
79
       
-
       
-touch ${DIR}/logs/ossec.log

     

       
80
       
80
       
-
       
-chown ${USER}:${GROUP} ${DIR}/logs/ossec.log

     

       
81
       
81
       
-
       
-chmod 664 ${DIR}/logs/ossec.log

     

       
92
       
92
       
+
       
 install-common: build

     

       
93
       
93
       
+
       
-	./init/adduser.sh ${OSSEC_USER} ${OSSEC_USER_MAIL} ${OSSEC_USER_REM} ${OSSEC_GROUP} ${PREFIX}

     

       
94
       
94
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/

     

       
95
       
95
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs

     

       
96
       
96
       
+
       
-	$(call INSTALL_CMD,0660,${OSSEC_USER},${OSSEC_GROUP}) /dev/null ${PREFIX}/logs/ossec.log

     

       
82
       
97
       
 
       
-

     

       
83
       
83
       
-
       
-chown -R ${USER}:${GROUP} ${DIR}/queue/diff

     

       
84
       
84
       
-
       
-chmod -R 750 ${DIR}/queue/diff

     

       
85
       
85
       
-
       
-chmod 740 ${DIR}/queue/diff/* > /dev/null 2>&1

     

       
86
       
86
       
-
       
+echo chown -R ${USER}:${GROUP} ${DIR}/logs

     

       
87
       
87
       
-
       
+echo chmod -R 750 ${DIR}/logs

     

       
88
       
88
       
-
       
+echo chmod -R 775 ${DIR}/queue/rids

     

       
89
       
89
       
-
       
+echo touch ${DIR}/logs/ossec.log

     

       
90
       
90
       
-
       
+echo chown ${USER}:${GROUP} ${DIR}/logs/ossec.log

     

       
91
       
91
       
-
       
+echo chmod 664 ${DIR}/logs/ossec.log

     

       
92
       
92
       
-
       
+

     

       
93
       
93
       
-
       
+echo chown -R ${USER}:${GROUP} ${DIR}/queue/diff

     

       
94
       
94
       
-
       
+echo chmod -R 750 ${DIR}/queue/diff

     

       
95
       
95
       
-
       
+echo chmod 740 ${DIR}/queue/diff/* "> /dev/null 2>&1"

     

       
98
       
98
       
+
       
-	$(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/bin

     

       
99
       
99
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-logcollector ${PREFIX}/bin

     

       
100
       
100
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-syscheckd ${PREFIX}/bin

     

       
101
       
101
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-execd ${PREFIX}/bin

     

       
102
       
102
       
+
       
-	$(call INSTALL_CMD,0550,root,0) manage_agents ${PREFIX}/bin

     

       
103
       
103
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ../contrib/util.sh ${PREFIX}/bin/

     

       
104
       
104
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ${OSSEC_CONTROL_SRC} ${PREFIX}/bin/ossec-control

     

       
105
       
105
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/bin

     

       
106
       
106
       
+
       
+	$(call INSTALL_CMD) ossec-logcollector ${PREFIX}/bin

     

       
107
       
107
       
+
       
+	$(call INSTALL_CMD) ossec-syscheckd ${PREFIX}/bin

     

       
108
       
108
       
+
       
+	$(call INSTALL_CMD) ossec-execd ${PREFIX}/bin

     

       
109
       
109
       
+
       
+	$(call INSTALL_CMD) manage_agents ${PREFIX}/bin

     

       
110
       
110
       
+
       
+	$(call INSTALL_CMD) ../contrib/util.sh ${PREFIX}/bin/

     

       
111
       
111
       
+
       
+	$(call INSTALL_CMD) ${OSSEC_CONTROL_SRC} ${PREFIX}/bin/ossec-control

     

       
112
       
112
       
+
       
 

     

       
113
       
113
       
+
       
 ifeq (${LUA_ENABLE},yes)

     

       
114
       
114
       
+
       
-	$(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/lua

     

       
115
       
115
       
+
       
-	$(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/lua/native

     

       
116
       
116
       
+
       
-	$(call INSTALL_CMD,0550,root,0) -d ${PREFIX}/lua/compiled

     

       
117
       
117
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ${EXTERNAL_LUA}src/ossec-lua ${PREFIX}/bin/

     

       
118
       
118
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ${EXTERNAL_LUA}src/ossec-luac ${PREFIX}/bin/

     

       
119
       
119
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/lua

     

       
120
       
120
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/lua/native

     

       
121
       
121
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/lua/compiled

     

       
122
       
122
       
+
       
+	$(call INSTALL_CMD) ${EXTERNAL_LUA}src/ossec-lua ${PREFIX}/bin/

     

       
123
       
123
       
+
       
+	$(call INSTALL_CMD) ${EXTERNAL_LUA}src/ossec-luac ${PREFIX}/bin/

     

       
124
       
124
       
+
       
 endif

     

       
96
       
125
       
 
       
 

     

       
126
       
126
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/queue

     

       
127
       
127
       
+
       
-	$(call INSTALL_CMD,0770,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/alerts

     

       
128
       
128
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/ossec

     

       
129
       
129
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/syscheck

     

       
130
       
130
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/diff

     

       
131
       
131
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue

     

       
132
       
132
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/alerts

     

       
133
       
133
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/ossec

     

       
134
       
134
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/syscheck

     

       
135
       
135
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/diff

     

       
97
       
136
       
 
       
 

     

       
137
       
137
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/etc

     

       
138
       
138
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/etc

     

       
139
       
139
       
+
       
 ifeq (${INSTALL_LOCALTIME},yes)

     

       
140
       
140
       
+
       
-	$(call INSTALL_CMD,0440,root,${OSSEC_GROUP}) /etc/localtime ${PREFIX}/etc

     

       
141
       
141
       
+
       
+	$(call INSTALL_CMD) /etc/localtime ${PREFIX}/etc

     

       
142
       
142
       
+
       
 endif

     

       
143
       
143
       
+
       
 ifeq (${INSTALL_RESOLVCONF},yes)

     

       
144
       
144
       
+
       
-	$(call INSTALL_CMD,0440,root,${OSSEC_GROUP}) /etc/resolv.conf ${PREFIX}/etc

     

       
145
       
145
       
+
       
+	$(call INSTALL_CMD) /etc/resolv.conf ${PREFIX}/etc

     

       
146
       
146
       
+
       
 endif

     

       
98
       
147
       
 
       
 

     

       
148
       
148
       
+
       
-	$(call INSTALL_CMD,1550,root,${OSSEC_GROUP}) -d ${PREFIX}/tmp

     

       
149
       
149
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/tmp

     

       
99
       
150
       
 
       
 

     

       
100
       
100
       
-
       
 # For the etc dir

     

       
101
       
101
       
-
       
-chmod 550 ${DIR}/etc

     

       
102
       
102
       
-
       
-chown -R root:${GROUP} ${DIR}/etc

     

       
103
       
103
       
-
       
+echo chmod 550 ${DIR}/etc

     

       
104
       
104
       
-
       
+echo chown -R root:${GROUP} ${DIR}/etc

     

       
151
       
151
       
+
       
 ifneq (,$(wildcard /etc/TIMEZONE))

     

       
152
       
152
       
+
       
-	$(call INSTALL_CMD,440,root,${OSSEC_GROUP}) /etc/TIMEZONE ${PREFIX}/etc/

     

       
153
       
153
       
+
       
+	$(call INSTALL_CMD) /etc/TIMEZONE ${PREFIX}/etc/

     

       
154
       
154
       
+
       
 endif

     

       
155
       
155
       
+
       
 # Solaris Needs some extra files

     

       
156
       
156
       
+
       
 ifeq (${uname_S},SunOS)

     

       
157
       
157
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/usr/share/lib/zoneinfo/

     

       
158
       
158
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/usr/share/lib/zoneinfo/

     

       
159
       
159
       
+
       
 	cp -r /usr/share/lib/zoneinfo/* ${PREFIX}/usr/share/lib/zoneinfo/

     

       
160
       
160
       
+
       
 endif

     

       
161
       
161
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) -b ../etc/internal_options.conf ${PREFIX}/etc/

     

       
162
       
162
       
+
       
+	$(call INSTALL_CMD) -b ../etc/internal_options.conf ${PREFIX}/etc/

     

       
163
       
163
       
+
       
 ifeq (,$(wildcard ${PREFIX}/etc/local_internal_options.conf))

     

       
164
       
164
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ../etc/local_internal_options.conf ${PREFIX}/etc/local_internal_options.conf

     

       
165
       
165
       
+
       
+	$(call INSTALL_CMD) ../etc/local_internal_options.conf ${PREFIX}/etc/local_internal_options.conf

     

       
166
       
166
       
+
       
 endif

     

       
167
       
167
       
+
       
 ifeq (,$(wildcard ${PREFIX}/etc/client.keys))

     

       
168
       
168
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) /dev/null ${PREFIX}/etc/client.keys

     

       
169
       
169
       
+
       
+	$(call INSTALL_CMD) /dev/null ${PREFIX}/etc/client.keys

     

       
170
       
170
       
+
       
 endif

     

       
171
       
171
       
+
       
 ifeq (,$(wildcard ${PREFIX}/etc/ossec.conf))

     

       
172
       
172
       
+
       
 ifneq (,$(wildcard ../etc/ossec.mc))

     

       
173
       
173
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ../etc/ossec.mc ${PREFIX}/etc/ossec.conf

     

       
174
       
174
       
+
       
+	$(call INSTALL_CMD) ../etc/ossec.mc ${PREFIX}/etc/ossec.conf

     

       
175
       
175
       
+
       
 else

     

       
176
       
176
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ${OSSEC_CONF_SRC} ${PREFIX}/etc/ossec.conf

     

       
177
       
177
       
+
       
+	$(call INSTALL_CMD) ${OSSEC_CONF_SRC} ${PREFIX}/etc/ossec.conf

     

       
178
       
178
       
+
       
 endif

     

       
179
       
179
       
+
       
 endif

     

       
105
       
180
       
 
       
 

     

       
106
       
106
       
-
       
 ls /etc/localtime > /dev/null 2>&1

     

       
107
       
107
       
-
       
 if [ $? = 0 ]; then

     

       
108
       
108
       
-
       
@@ -167,25 +167,25 @@

     

       
109
       
109
       
-
       
 cp -pr ../etc/client.keys ${DIR}/etc/ > /dev/null 2>&1

     

       
110
       
110
       
-
       
 cp -pr agentlessd/scripts/* ${DIR}/agentless/

     

       
181
       
181
       
+
       
-	$(call INSTALL_CMD,0770,root,${OSSEC_GROUP}) -d ${PREFIX}/etc/shared

     

       
182
       
182
       
+
       
-	$(call INSTALL_CMD,0640,${OSSEC_USER},${OSSEC_GROUP}) rootcheck/db/*.txt ${PREFIX}/etc/shared/

     

       
183
       
183
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/etc/shared

     

       
184
       
184
       
+
       
+	$(call INSTALL_CMD) rootcheck/db/*.txt ${PREFIX}/etc/shared/

     

       
185
       
185
       
+
       
 

     

       
186
       
186
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/active-response

     

       
187
       
187
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/active-response/bin

     

       
188
       
188
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/agentless

     

       
189
       
189
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) agentlessd/scripts/* ${PREFIX}/agentless/

     

       
190
       
190
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/active-response

     

       
191
       
191
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/active-response/bin

     

       
192
       
192
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/agentless

     

       
193
       
193
       
+
       
+	$(call INSTALL_CMD) agentlessd/scripts/* ${PREFIX}/agentless/

     

       
194
       
194
       
+
       
 

     

       
195
       
195
       
+
       
-	$(call INSTALL_CMD,0700,root,${OSSEC_GROUP}) -d ${PREFIX}/.ssh

     

       
196
       
196
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/.ssh

     

       
197
       
197
       
+
       
 

     

       
198
       
198
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) ../active-response/*.sh ${PREFIX}/active-response/bin/

     

       
199
       
199
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) ../active-response/firewalls/*.sh ${PREFIX}/active-response/bin/

     

       
200
       
200
       
+
       
+	$(call INSTALL_CMD) ../active-response/*.sh ${PREFIX}/active-response/bin/

     

       
201
       
201
       
+
       
+	$(call INSTALL_CMD) ../active-response/firewalls/*.sh ${PREFIX}/active-response/bin/

     

       
111
       
202
       
 
       
 

     

       
112
       
112
       
-
       
-chown root:${GROUP} ${DIR}/etc/internal_options.conf

     

       
113
       
113
       
-
       
-chown root:${GROUP} ${DIR}/etc/local_internal_options.conf > /dev/null 2>&1

     

       
114
       
114
       
-
       
-chown root:${GROUP} ${DIR}/etc/client.keys > /dev/null 2>&1

     

       
115
       
115
       
-
       
-chown root:${GROUP} ${DIR}/agentless/*

     

       
116
       
116
       
-
       
-chown ${USER}:${GROUP} ${DIR}/.ssh

     

       
117
       
117
       
-
       
-chown -R root:${GROUP} ${DIR}/etc/shared

     

       
203
       
203
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/var

     

       
204
       
204
       
+
       
-	$(call INSTALL_CMD,0770,root,${OSSEC_GROUP}) -d ${PREFIX}/var/run

     

       
118
       
205
       
 
       
-

     

       
119
       
119
       
-
       
-chmod 550 ${DIR}/etc

     

       
120
       
120
       
-
       
-chmod 440 ${DIR}/etc/internal_options.conf

     

       
121
       
121
       
-
       
-chmod 440 ${DIR}/etc/local_internal_options.conf > /dev/null 2>&1

     

       
122
       
122
       
-
       
-chmod 440 ${DIR}/etc/client.keys > /dev/null 2>&1

     

       
123
       
123
       
-
       
-chmod -R 770 ${DIR}/etc/shared # ossec must be able to write to it

     

       
124
       
124
       
-
       
-chmod 550 ${DIR}/agentless/*

     

       
125
       
125
       
-
       
-chmod 700 ${DIR}/.ssh

     

       
126
       
126
       
-
       
+echo chown root:${GROUP} ${DIR}/etc/internal_options.conf

     

       
127
       
127
       
-
       
+echo chown root:${GROUP} ${DIR}/etc/local_internal_options.conf "> /dev/null 2>&1"

     

       
128
       
128
       
-
       
+echo chown root:${GROUP} ${DIR}/etc/client.keys "> /dev/null 2>&1"

     

       
129
       
129
       
-
       
+echo chown root:${GROUP} ${DIR}/agentless/*

     

       
130
       
130
       
-
       
+echo chown ${USER}:${GROUP} ${DIR}/.ssh

     

       
131
       
131
       
-
       
+echo chown -R root:${GROUP} ${DIR}/etc/shared

     

       
132
       
132
       
-
       
+

     

       
133
       
133
       
-
       
+echo chmod 550 ${DIR}/etc

     

       
134
       
134
       
-
       
+echo chmod 440 ${DIR}/etc/internal_options.conf

     

       
135
       
135
       
-
       
+echo chmod 440 ${DIR}/etc/local_internal_options.conf > /dev/null 2>&1

     

       
136
       
136
       
-
       
+echo chmod 440 ${DIR}/etc/client.keys > /dev/null 2>&1

     

       
137
       
137
       
-
       
+echo chmod -R 770 ${DIR}/etc/shared # ossec must be able to write to it

     

       
138
       
138
       
-
       
+echo chmod 550 ${DIR}/agentless/*

     

       
139
       
139
       
-
       
+echo chmod 700 ${DIR}/.ssh

     

       
206
       
206
       
+
       
-	./init/fw-check.sh execute

     

       
207
       
207
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/var

     

       
208
       
208
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/var/run

     

       
140
       
209
       
 
       
 

     

       
141
       
210
       
 
       
 

     

       
142
       
142
       
-
       
 # For the /var/run

     

       
143
       
143
       
-
       
-chmod 770 ${DIR}/var/run

     

       
144
       
144
       
-
       
-chown root:${GROUP} ${DIR}/var/run

     

       
145
       
145
       
-
       
+echo chmod 770 ${DIR}/var/run

     

       
146
       
146
       
-
       
+echo chown root:${GROUP} ${DIR}/var/run

     

       
147
       
211
       
 
       
 

     

       
212
       
212
       
+
       
 install-server-generic: install-common

     

       
213
       
213
       
+
       
-	$(call INSTALL_CMD,0660,${OSSEC_USER},${OSSEC_GROUP}) /dev/null ${PREFIX}/logs/active-responses.log

     

       
214
       
214
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs/archives

     

       
215
       
215
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs/alerts

     

       
216
       
216
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/logs/firewall

     

       
217
       
217
       
+
       
-

     

       
218
       
218
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-agentlessd ${PREFIX}/bin

     

       
219
       
219
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-analysisd ${PREFIX}/bin

     

       
220
       
220
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-monitord ${PREFIX}/bin

     

       
221
       
221
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-reportd ${PREFIX}/bin

     

       
222
       
222
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-maild ${PREFIX}/bin

     

       
223
       
223
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-remoted ${PREFIX}/bin

     

       
224
       
224
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-logtest ${PREFIX}/bin

     

       
225
       
225
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-csyslogd ${PREFIX}/bin

     

       
226
       
226
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-authd ${PREFIX}/bin

     

       
227
       
227
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-dbd ${PREFIX}/bin

     

       
228
       
228
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-makelists ${PREFIX}/bin

     

       
229
       
229
       
+
       
-	$(call INSTALL_CMD,0550,root,0) verify-agent-conf ${PREFIX}/bin/

     

       
230
       
230
       
+
       
-	$(call INSTALL_CMD,0550,root,0) clear_stats ${PREFIX}/bin/

     

       
231
       
231
       
+
       
-	$(call INSTALL_CMD,0550,root,0) list_agents ${PREFIX}/bin/

     

       
232
       
232
       
+
       
-	$(call INSTALL_CMD,0550,root,0) ossec-regex ${PREFIX}/bin/

     

       
233
       
233
       
+
       
-	$(call INSTALL_CMD,0550,root,0) syscheck_update ${PREFIX}/bin/

     

       
234
       
234
       
+
       
-	$(call INSTALL_CMD,0550,root,0) agent_control ${PREFIX}/bin/

     

       
235
       
235
       
+
       
-	$(call INSTALL_CMD,0550,root,0) syscheck_control ${PREFIX}/bin/

     

       
236
       
236
       
+
       
-	$(call INSTALL_CMD,0550,root,0) rootcheck_control ${PREFIX}/bin/

     

       
237
       
237
       
+
       
-

     

       
238
       
238
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/stats

     

       
239
       
239
       
+
       
-	$(call INSTALL_CMD,0550,root,${OSSEC_GROUP}) -d ${PREFIX}/rules

     

       
240
       
240
       
+
       
+	$(call INSTALL_CMD) /dev/null ${PREFIX}/logs/active-responses.log

     

       
241
       
241
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/logs/archives

     

       
242
       
242
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/logs/alerts

     

       
243
       
243
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/logs/firewall

     

       
244
       
244
       
+
       
+

     

       
245
       
245
       
+
       
+	$(call INSTALL_CMD) ossec-agentlessd ${PREFIX}/bin

     

       
246
       
246
       
+
       
+	$(call INSTALL_CMD) ossec-analysisd ${PREFIX}/bin

     

       
247
       
247
       
+
       
+	$(call INSTALL_CMD) ossec-monitord ${PREFIX}/bin

     

       
248
       
248
       
+
       
+	$(call INSTALL_CMD) ossec-reportd ${PREFIX}/bin

     

       
249
       
249
       
+
       
+	$(call INSTALL_CMD) ossec-maild ${PREFIX}/bin

     

       
250
       
250
       
+
       
+	$(call INSTALL_CMD) ossec-remoted ${PREFIX}/bin

     

       
251
       
251
       
+
       
+	$(call INSTALL_CMD) ossec-logtest ${PREFIX}/bin

     

       
252
       
252
       
+
       
+	$(call INSTALL_CMD) ossec-csyslogd ${PREFIX}/bin

     

       
253
       
253
       
+
       
+	$(call INSTALL_CMD) ossec-authd ${PREFIX}/bin

     

       
254
       
254
       
+
       
+	$(call INSTALL_CMD) ossec-dbd ${PREFIX}/bin

     

       
255
       
255
       
+
       
+	$(call INSTALL_CMD) ossec-makelists ${PREFIX}/bin

     

       
256
       
256
       
+
       
+	$(call INSTALL_CMD) verify-agent-conf ${PREFIX}/bin/

     

       
257
       
257
       
+
       
+	$(call INSTALL_CMD) clear_stats ${PREFIX}/bin/

     

       
258
       
258
       
+
       
+	$(call INSTALL_CMD) list_agents ${PREFIX}/bin/

     

       
259
       
259
       
+
       
+	$(call INSTALL_CMD) ossec-regex ${PREFIX}/bin/

     

       
260
       
260
       
+
       
+	$(call INSTALL_CMD) syscheck_update ${PREFIX}/bin/

     

       
261
       
261
       
+
       
+	$(call INSTALL_CMD) agent_control ${PREFIX}/bin/

     

       
262
       
262
       
+
       
+	$(call INSTALL_CMD) syscheck_control ${PREFIX}/bin/

     

       
263
       
263
       
+
       
+	$(call INSTALL_CMD) rootcheck_control ${PREFIX}/bin/

     

       
264
       
264
       
+
       
+

     

       
265
       
265
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/stats

     

       
266
       
266
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/rules

     

       
267
       
267
       
+
       
 ifneq (,$(wildcard ${PREFIX}/rules/local_rules.xml))

     

       
268
       
268
       
+
       
 	cp ${PREFIX}/rules/local_rules.xml ${PREFIX}/rules/local_rules.xml.installbackup

     

       
269
       
269
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) -b ../etc/rules/*.xml ${PREFIX}/rules

     

       
270
       
270
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ${PREFIX}/rules/local_rules.xml.installbackup ${PREFIX}/rules/local_rules.xml

     

       
271
       
271
       
+
       
+	$(call INSTALL_CMD) -b ../etc/rules/*.xml ${PREFIX}/rules

     

       
272
       
272
       
+
       
+	$(call INSTALL_CMD) ${PREFIX}/rules/local_rules.xml.installbackup ${PREFIX}/rules/local_rules.xml

     

       
273
       
273
       
+
       
 	rm ${PREFIX}/rules/local_rules.xml.installbackup

     

       
274
       
274
       
+
       
 else

     

       
275
       
275
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) -b ../etc/rules/*.xml ${PREFIX}/rules

     

       
276
       
276
       
+
       
+	$(call INSTALL_CMD) -b ../etc/rules/*.xml ${PREFIX}/rules

     

       
277
       
277
       
+
       
 endif

     

       
148
       
278
       
 
       
 

     

       
149
       
149
       
-
       
 # Moving the binary files

     

       
150
       
150
       
-
       
@@ -201,11 +201,11 @@

     

       
151
       
151
       
-
       
 sh ./init/fw-check.sh execute > /dev/null

     

       
152
       
152
       
-
       
 cp -pr ../active-response/*.sh ${DIR}/active-response/bin/

     

       
153
       
153
       
-
       
 cp -pr ../active-response/firewalls/*.sh ${DIR}/active-response/bin/

     

       
154
       
154
       
-
       
-chmod 755 ${DIR}/active-response/bin/*

     

       
155
       
155
       
-
       
-chown root:${GROUP} ${DIR}/active-response/bin/*

     

       
156
       
156
       
-
       
+echo chmod 755 ${DIR}/active-response/bin/*

     

       
157
       
157
       
-
       
+echo chown root:${GROUP} ${DIR}/active-response/bin/*

     

       
279
       
279
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/fts

     

       
280
       
280
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/fts

     

       
158
       
281
       
 
       
 

     

       
159
       
159
       
-
       
-chown root:${GROUP} ${DIR}/bin/*

     

       
160
       
160
       
-
       
-chmod 550 ${DIR}/bin/*

     

       
161
       
161
       
-
       
+echo chown root:${GROUP} ${DIR}/bin/*

     

       
162
       
162
       
-
       
+echo chmod 550 ${DIR}/bin/*

     

       
282
       
282
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/rootcheck

     

       
283
       
283
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/rootcheck

     

       
163
       
284
       
 
       
 

     

       
285
       
285
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER_REM},${OSSEC_GROUP}) -d ${PREFIX}/queue/agent-info

     

       
286
       
286
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER},${OSSEC_GROUP}) -d ${PREFIX}/queue/agentless

     

       
287
       
287
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/agent-info

     

       
288
       
288
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/agentless

     

       
164
       
289
       
 
       
 

     

       
165
       
165
       
-
       
 # Moving the config file

     

       
166
       
166
       
-
       
@@ -221,8 +221,8 @@

     

       
167
       
167
       
-
       
 else    

     

       
168
       
168
       
-
       
     cp -pr ../etc/ossec-agent.conf ${DIR}/etc/ossec.conf

     

       
169
       
169
       
-
       
 fi

     

       
170
       
170
       
-
       
-chown root:${GROUP} ${DIR}/etc/ossec.conf

     

       
171
       
171
       
-
       
-chmod 440 ${DIR}/etc/ossec.conf

     

       
172
       
172
       
-
       
+echo chown root:${GROUP} ${DIR}/etc/ossec.conf

     

       
173
       
173
       
-
       
+echo chmod 440 ${DIR}/etc/ossec.conf

     

       
290
       
290
       
+
       
-	$(call INSTALL_CMD,0750,${OSSEC_USER_REM},${OSSEC_GROUP}) -d ${PREFIX}/queue/rids

     

       
291
       
291
       
+
       
+	$(call INSTALL_CMD) -d ${PREFIX}/queue/rids

     

       
174
       
292
       
 
       
 

     

       
293
       
293
       
+
       
-	$(call INSTALL_CMD,0640,root,${OSSEC_GROUP}) ../etc/decoder.xml ${PREFIX}/etc/

     

       
294
       
294
       
+
       
+	$(call INSTALL_CMD) ../etc/decoder.xml ${PREFIX}/etc/

     

       
175
       
295
       
 
       
 

     

       
296
       
296
       
+
       
 	rm -f ${PREFIX}/etc/shared/merged.mg

     

       
176
       
297
       
 
       
 

     

···

       
1
       
1
       
+
       
{ lib, stdenv, fetchFromGitHub, which, pcre2, zlib, ncurses, openssl }:

     

       
2
       
2
       
+
       
let

     

       
3
       
3
       
+
       
  version = "unstable-2023-08-09";

     

       
4
       
4
       
+
       
in

     

       
5
       
5
       
+
       
stdenv.mkDerivation {

     

       
6
       
6
       
+
       
  pname = "ossec-server";

     

       
7
       
7
       
+
       
  inherit version;

     

       
8
       
8
       
+
       


     

       
9
       
9
       
+
       
  src = fetchFromGitHub {

     

       
10
       
10
       
+
       
    owner = "ossec";

     

       
11
       
11
       
+
       
    repo = "ossec-hids";

     

       
12
       
12
       
+
       
    rev = "c8a36b0af3d4ee5252855b90236407cbfb996eb2";

     

       
13
       
13
       
+
       
    sha256 = "sha256-AZ8iubyhNHXGR/l+hA61ifNDUoan7AQ42l/uRTt5GmE=";

     

       
14
       
14
       
+
       
  };

     

       
15
       
15
       
+
       


     

       
16
       
16
       
+
       
  # clear is used during the build process

     

       
17
       
17
       
+
       
  nativeBuildInputs = [ ncurses ];

     

       
18
       
18
       
+
       


     

       
19
       
19
       
+
       
  buildInputs = [ which pcre2 zlib openssl ];

     

       
20
       
20
       
+
       


     

       
21
       
21
       
+
       
  # patch to remove root manipulation, install phase which tries to add users to the system, and init phase which tries to modify the system to launch files

     

       
22
       
22
       
+
       
  patches = [ ./no-root.patch ];

     

       
23
       
23
       
+
       


     

       
24
       
24
       
+
       
  # Workaround build failure on -fno-common toolchains like upstream

     

       
25
       
25
       
+
       
  # gcc-10. Otherwise build fails as:

     

       
26
       
26
       
+
       
  #   ld: src/common/mgmt/pint-worker-external.po:(.data.rel.local+0x0): multiple definition of

     

       
27
       
27
       
+
       
  #     `PINT_worker_external_impl'; src/common/mgmt/pint-mgmt.po:(.bss+0x20): first defined here

     

       
28
       
28
       
+
       
  env.NIX_CFLAGS_COMPILE = "-fcommon";

     

       
29
       
29
       
+
       


     

       
30
       
30
       
+
       
  buildPhase = ''

     

       
31
       
31
       
+
       
    mkdir -p $out/logs

     

       
32
       
32
       
+
       
    export USER_DIR="$out" # just to satisy the script

     

       
33
       
33
       
+
       
    ./install.sh <<EOF

     

       
34
       
34
       
+
       
en

     

       
35
       
35
       
+
       


     

       
36
       
36
       
+
       
server

     

       
37
       
37
       
+
       
n

     

       
38
       
38
       
+
       
n

     

       
39
       
39
       
+
       
EOF

     

       
40
       
40
       
+
       
  '';

     

       
41
       
41
       
+
       


     

       
42
       
42
       
+
       
  installPhase = ''

     

       
43
       
43
       
+
       
      runHook preInstall

     

       
44
       
44
       
+
       


     

       
45
       
45
       
+
       
      mkdir -p $out/share

     

       
46
       
46
       
+
       
      mv $out/active-response/bin/* $out/bin

     

       
47
       
47
       
+
       
      mv $out/etc $out/share

     

       
48
       
48
       
+
       
      mv $out/queue $out/share

     

       
49
       
49
       
+
       
      mv $out/var $out/share

     

       
50
       
50
       
+
       
      mv $out/agentless $out/share

     

       
51
       
51
       
+
       
      mv $out/.ssh $out/share

     

       
52
       
52
       
+
       
      mv $out/logs $out/share

     

       
53
       
53
       
+
       
      mv $out/rules $out/share

     

       
54
       
54
       
+
       
      mv $out/stats $out/share

     

       
55
       
55
       
+
       
      rm -r $out/active-response

     

       
56
       
56
       
+
       
      rm -r $out/tmp

     

       
57
       
57
       
+
       
      ls -lah $out

     

       
58
       
58
       
+
       


     

       
59
       
59
       
+
       
      runHook postInstall

     

       
60
       
60
       
+
       
  '';

     

       
61
       
61
       
+
       


     

       
62
       
62
       
+
       
  meta = with lib; {

     

       
63
       
63
       
+
       
    description = "Open source host-based instrusion detection system";

     

       
64
       
64
       
+
       
    homepage = "https://www.ossec.net";

     

       
65
       
65
       
+
       
    license = licenses.gpl2;

     

       
66
       
66
       
+
       
    maintainers = with maintainers; [ happysalada ];

     

       
67
       
67
       
+
       
    platforms = platforms.all;

     

       
68
       
68
       
+
       
  };

     

       
69
       
69
       
+
       
}

     

       
70
       
70
       
+
       


     

···

       
11773
       
11773
       
 
       


     

       
11774
       
11774
       
 
       
  osqp = callPackage ../development/libraries/science/math/osqp { };

     

       
11775
       
11775
       
 
       


     

       
11776
       
11776
       
-
       
  ossec = callPackage ../tools/security/ossec { };

     

       
11776
       
11776
       
+
       
  ossec-agent = callPackage ../tools/security/ossec/agent.nix { };

     

       
11777
       
11777
       
+
       


     

       
11778
       
11778
       
+
       
  ossec-server = callPackage ../tools/security/ossec/server.nix { };

     

       
11777
       
11779
       
 
       


     

       
11778
       
11780
       
 
       
  osslsigncode = callPackage ../development/tools/osslsigncode { };

     

       
11779
       
11781