Summary: Logs TCP, UDP, and ICMP connections to syslog. Name: iplog Version: 2.2.3 Release: 1 Group: Networking/Daemons Copyright: GPL Packager: Brandon George Vendor: GCN Linux Systems URL: http://ojnk.sourceforge.net/ Source0: %{name}-%{version}.tar.gz Source1: iplog.init Source2: iplog.conf Patch0: iplog-fedora.patch Buildroot: /var/tmp/%{name}-root Prefix: /usr Prereq: /sbin/chkconfig Requires: libpcap BuildRequires: libpcap %description iplog is a TCP/IP traffic logger. Currently, it is capable of logging TCP, UDP and ICMP traffic, though adding support for other protocols should be relatively easy. iplog contains a built-in packet filter, allowing for logging or excluding packets that fit a given set of criteria. %prep rm -rf $RPM_BUILD_ROOT %setup %patch0 -p0 %build ./configure --prefix=%{prefix} --sysconfdir=/etc make %install [ "$RPM_BUILD_ROOT" ] && rm -rf $RPM_BUILD_ROOT install -s -D -m555 -o root -g root src/iplog \ $RPM_BUILD_ROOT/usr/sbin/iplog install -D -m444 -o root -g root $RPM_SOURCE_DIR/iplog.conf \ $RPM_BUILD_ROOT/etc/iplog.conf install -D -m544 -o root -g root $RPM_SOURCE_DIR/iplog.init \ $RPM_BUILD_ROOT/etc/rc.d/init.d/iplog # # Had a problem with comments, so strip them # #install -D -m444 -o root -g root iplog.conf.5 \ # $RPM_BUILD_ROOT/usr/man/man5/iplog.conf.5 #install -D -m444 -o root -g root iplog.8 \ # $RPM_BUILD_ROOT/usr/man/man8/iplog.8 mkdir $RPM_BUILD_ROOT/usr/man mkdir $RPM_BUILD_ROOT/usr/man/man5 mkdir $RPM_BUILD_ROOT/usr/man/man8 dd if=iplog.8 of=$RPM_BUILD_ROOT/usr/man/man8/iplog.8 bs=1 skip=576 dd if=iplog.conf.5 of=$RPM_BUILD_ROOT/usr/man/man5/iplog.conf.5 bs=1 skip=633 %clean [ "$RPM_BUILD_ROOT" ] && rm -rf $RPM_BUILD_ROOT %post /sbin/chkconfig --add iplog #if [ -f /etc/shells ] ; then # echo "\n# Iplog for intrusion detection\nlocal0.debug\t\t\t\t\t\t/var/log/iplog" >> /etc/syslog.conf # /usr/bin/killall -HUP syslogd #fi %triggerpostun -- iplog < %{name}-%{version}-%{release} /sbin/chkconfig --add iplog %preun if [ $1 = 0 ]; then /sbin/chkconfig --del iplog fi %files %defattr(-,root,root) %doc AUTHORS README ChangeLog COPYING NEWS TODO example-iplog.conf %attr(0555,root,root) %{prefix}/sbin/iplog %attr(0444,root,root) %{prefix}/man/man5/iplog.conf.5.gz %attr(0444,root,root) %{prefix}/man/man8/iplog.8.gz %attr(0744,root,root) /etc/rc.d/init.d/iplog %attr(0644,root,root) %config /etc/iplog.conf #%config(missingok) /etc/rc.d/rc0.d/K08iplog #%config(missingok) /etc/rc.d/rc1.d/K08iplog #%config(missingok) /etc/rc.d/rc2.d/K08iplog #%config(missingok) /etc/rc.d/rc3.d/S90iplog #%config(missingok) /etc/rc.d/rc5.d/S90iplog #%config(missingok) /etc/rc.d/rc6.d/K08iplog %changelog * Sun Oct 3 2004 Scott R. Shinn 2.2.3-1 - Updated to 2.2.3 * Thu Nov 9 2000 Brandon George - Built RedHat 7.0 rpm * Fri Jul 07 2000 Ryan McCabe - Released as version 2.2.1. * Mon Jul 03 2000 Ryan McCabe - Fixed a bug that caused only one thread to change user or group when -u or -g was specified while the rest continued to run as root. - Reported by jamesb * Mon Jul 03 2000 Ryan McCabe - Fixed a bug that caused ident lookups to always fail. - Reported by Enrico Scholz