[pkgsrc/trunk]: pkgsrc/security/base The Basic Analysis and Security Engine (...

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/security/base The Basic Analysis and Security Engine (...
From: adrianp <adrianp%pkgsrc.org@localhost>
Date: Thu, 14 Oct 2021 02:49:58 +0000
details:   https://anonhg.NetBSD.org/pkgsrc/rev/f930e0c6e6dc
branches:  trunk
changeset: 505497:f930e0c6e6dc
user:      adrianp <adrianp%pkgsrc.org@localhost>
date:      Tue Jan 03 21:09:44 2006 +0000

description:
The Basic Analysis and Security Engine (BASE) is a PHP-based analysis
engine to search and process a database of security events generated by
various IDSes, firewalls, and network monitoring tools.  The features currently
include:

o Query-builder and search interface for finding alerts matching
  on alert meta information (e.g. signature, detection time) as well as
  the underlying network evidence (e.g. source/destination address, ports,
  payload, or flags).

o Packet viewer (decoder) will graphically display the layer-3 and
  layer-4 packet information of logged alerts

o Alert management by providing constructs to logically group alerts
  to create incidents (alert groups), deleting the handled alerts or
  false positives, exporting to email for collaboration, or archiving of
  alerts to transfer them between alert databases.

o Chart and statistic generation based on time, sensor, signature, protocol,
  IP address, TCP/UDP ports, or classification

diffstat:

 security/base/DESCR            |   20 ++++++
 security/base/MESSAGE          |   17 +++++
 security/base/Makefile         |   74 +++++++++++++++++++++++
 security/base/PLIST            |  131 +++++++++++++++++++++++++++++++++++++++++
 security/base/distinfo         |    6 +
 security/base/files/base.conf  |   28 ++++++++
 security/base/options.mk       |   24 +++++++
 security/base/patches/patch-aa |   31 +++++++++
 8 files changed, 331 insertions(+), 0 deletions(-)

diffs (truncated from 363 to 300 lines):

diff -r ca6198bf05f7 -r f930e0c6e6dc security/base/DESCR
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/base/DESCR       Tue Jan 03 21:09:44 2006 +0000
@@ -0,0 +1,20 @@
+The Basic Analysis and Security Engine (BASE) is a PHP-based analysis
+engine to search and process a database of security events generated by
+various IDSes, firewalls, and network monitoring tools.  The features currently
+include:
+
+ o Query-builder and search interface for finding alerts matching
+   on alert meta information (e.g. signature, detection time) as well as
+   the underlying network evidence (e.g. source/destination address, ports,
+   payload, or flags).
+
+ o Packet viewer (decoder) will graphically display the layer-3 and
+   layer-4 packet information of logged alerts
+
+ o Alert management by providing constructs to logically group alerts
+   to create incidents (alert groups), deleting the handled alerts or
+   false positives, exporting to email for collaboration, or archiving of
+   alerts to transfer them between alert databases.
+
+ o Chart and statistic generation based on time, sensor, signature, protocol,
+   IP address, TCP/UDP ports, or classification
diff -r ca6198bf05f7 -r f930e0c6e6dc security/base/MESSAGE
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/base/MESSAGE     Tue Jan 03 21:09:44 2006 +0000
@@ -0,0 +1,17 @@
+===========================================================================
+$NetBSD: MESSAGE,v 1.1.1.1 2006/01/03 21:09:44 adrianp Exp $
+
+You will need to make BASE accessible through your HTTP server.
+If you are running Apache and ap-php, then you will need to
+add the following line to your httpd.conf:
+
+       Include ${PKG_SYSCONFDIR}/base.conf
+
+to make BASE accessible through:
+
+       http://localhost/base/
+
+You will need to customise ${BASE_DIR}/base_conf.php before
+BASE will work.  This includes setting up database access.
+
+===========================================================================
diff -r ca6198bf05f7 -r f930e0c6e6dc security/base/Makefile
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/base/Makefile    Tue Jan 03 21:09:44 2006 +0000
@@ -0,0 +1,74 @@
+# $NetBSD: Makefile,v 1.1.1.1 2006/01/03 21:09:44 adrianp Exp $
+#
+
+DISTNAME=      base-1.2.1
+CATEGORIES=    security
+MASTER_SITES=  ${MASTER_SITE_SOURCEFORGE:=secureideas/}
+
+MAINTAINER=    adrianp%NetBSD.org@localhost
+HOMEPAGE=      http://secureideas.sourceforge.net/
+COMMENT=       Analysis engine to process a database of security events
+
+DEPENDS+=      adodb>=1.2:../../databases/adodb
+DEPENDS+=      ap-php>=4.0.4:../../www/ap-php
+DEPENDS+=      php-gd>=4.0.4:../../graphics/php-gd
+DEPENDS+=      php-sockets>=4.0.4:../../net/php-sockets
+DEPENDS+=      php-mysql>=4.0.4:../../databases/php-mysql
+DEPENDS+=      pear-Log-[0-9]*:../../sysutils/pear-Log
+DEPENDS+=      pear-Numbers_Words-[0-9]*:../../math/pear-Numbers_Words
+DEPENDS+=      pear-Numbers_Roman-[0-9]*:../../math/pear-Numbers_Roman
+DEPENDS+=      pear-Image_Color-[0-9]*:../../graphics/pear-Image_Color
+DEPENDS+=      pear-Image_Graph-0.3.0dev4:../../graphics/pear-Image_Graph
+
+NO_BUILD=      YES
+USE_PKGINSTALL=        YES
+
+DOC_FILES=     CHANGELOG CREDITS README README.mssql TODO UPGRADE base_faq.rtf
+BASE_DIR=      ${PREFIX}/share/base
+EGDIR=         ${PREFIX}/share/examples/base
+MESSAGE_SUBST+= EGDIR=${EGDIR:Q} BASE_DIR=${BASE_DIR:Q}
+PAX_DIRS=      admin help images includes languages scripts setup sql styles
+WWW_USER?=     ${APACHE_USER}
+WWW_GROUP?=    ${APACHE_GROUP}
+BUILD_DEFS+=   WWW_USER WWW_GROUP
+USE_TOOLS+=    perl:run
+REPLACE_PERL=  scripts/base_maintenance.pl
+
+CONF_FILES=    ${EGDIR}/base.conf ${PKG_SYSCONFDIR}/base.conf
+
+CONF_FILES_PERMS=      ${EGDIR}/base_conf.php ${BASE_DIR}/base_conf.php \
+                       ${WWW_USER} ${WWW_GROUP} 0600
+
+SUBST_CLASSES+=                conf
+SUBST_STAGE.conf=      post-patch
+SUBST_FILES.conf=      base.conf base_conf.php.dist
+SUBST_SED.conf=                -e "s|@BASE_DIR@|${BASE_DIR}|g" \
+                       -e "s|@DBTYPE@|${DBTYPE}|g" \
+                       -e "s|@PREFIX@|${PREFIX}|g"
+SUBST_MESSAGE.conf=    "Fixing configuration files."
+
+.include "options.mk"
+
+post-extract:
+       @${CP} ${FILESDIR}/base.conf ${WRKSRC}/base.conf
+
+do-install:
+       ${INSTALL_DATA_DIR} ${BASE_DIR}
+       ${INSTALL_DATA_DIR} ${EGDIR}
+       ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/base
+
+       ${INSTALL_DATA} ${WRKSRC}/base.conf ${EGDIR}
+       ${INSTALL_DATA} ${WRKSRC}/base_conf.php.dist ${EGDIR}/base_conf.php
+       ${INSTALL_SCRIPT} ${WRKSRC}/*.php ${BASE_DIR}
+
+.      for f in ${DOC_FILES}
+               ${INSTALL_DATA} ${WRKSRC}/docs/${f} ${PREFIX}/share/doc/base
+.      endfor
+
+.      for i in ${PAX_DIRS}
+               cd ${WRKSRC}/${i} && ${PAX} -rw . ${BASE_DIR}/${i}
+.      endfor
+
+       @${CHOWN} ${WWW_USER} ${BASE_DIR}
+
+.include "../../mk/bsd.pkg.mk"
diff -r ca6198bf05f7 -r f930e0c6e6dc security/base/PLIST
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/base/PLIST       Tue Jan 03 21:09:44 2006 +0000
@@ -0,0 +1,131 @@
+@comment $NetBSD: PLIST,v 1.1.1.1 2006/01/03 21:09:44 adrianp Exp $
+share/base/admin/base_roleadmin.php
+share/base/admin/base_useradmin.php
+share/base/admin/index.php
+share/base/base_ag_common.php
+share/base/base_ag_main.php
+share/base/base_common.php
+share/base/base_db_common.php
+share/base/base_db_setup.php
+share/base/base_denied.php
+share/base/base_footer.php
+share/base/base_graph_common.php
+share/base/base_graph_display.php
+share/base/base_graph_form.php
+share/base/base_graph_main.php
+share/base/base_hdr1.php
+share/base/base_hdr2.php
+share/base/base_main.php
+share/base/base_maintenance.php
+share/base/base_payload.php
+share/base/base_qry_alert.php
+share/base/base_qry_common.php
+share/base/base_qry_form.php
+share/base/base_qry_main.php
+share/base/base_qry_sqlcalls.php
+share/base/base_stat_alerts.php
+share/base/base_stat_class.php
+share/base/base_stat_common.php
+share/base/base_stat_ipaddr.php
+share/base/base_stat_iplink.php
+share/base/base_stat_ports.php
+share/base/base_stat_sensor.php
+share/base/base_stat_time.php
+share/base/base_stat_uaddr.php
+share/base/base_user.php
+share/base/help/base_app_faq.php
+share/base/help/base_help.php
+share/base/help/base_setup_help.php
+share/base/images/button_delete.png
+share/base/images/button_edit.png
+share/base/images/button_exclamation.png
+share/base/images/greencheck.gif
+share/base/images/greencheck.png
+share/base/images/redcheck.gif
+share/base/includes/base_action.inc.php
+share/base/includes/base_auth.inc.php
+share/base/includes/base_cache.inc.php
+share/base/includes/base_capabilities.php
+share/base/includes/base_constants.inc.php
+share/base/includes/base_db.inc.php
+share/base/includes/base_include.inc.php
+share/base/includes/base_log_error.inc.php
+share/base/includes/base_log_timing.inc.php
+share/base/includes/base_net.inc.php
+share/base/includes/base_output_html.inc.php
+share/base/includes/base_output_query.inc.php
+share/base/includes/base_setup.inc.php
+share/base/includes/base_signature.inc.php
+share/base/includes/base_state_citems.inc.php
+share/base/includes/base_state_common.inc.php
+share/base/includes/base_state_criteria.inc.php
+share/base/includes/base_state_query.inc.php
+share/base/includes/base_template.php
+share/base/includes/base_user.inc.php
+share/base/includes/class.ezpdf.php
+share/base/includes/class.pdf.php
+share/base/index.php
+share/base/languages/chinese.lang.php
+share/base/languages/czech.lang.php
+share/base/languages/danish.lang.php
+share/base/languages/english.lang.php
+share/base/languages/finnish.lang.php
+share/base/languages/french.lang.php
+share/base/languages/german.lang.php
+share/base/languages/index.php
+share/base/languages/indonesian.lang.php
+share/base/languages/italian.lang.php
+share/base/languages/japanese.lang.php
+share/base/languages/norwegian.lang.php
+share/base/languages/polish.lang.php
+share/base/languages/portuguese-PT.lang.php
+share/base/languages/portuguese.lang.php
+share/base/languages/russian.lang.php
+share/base/languages/simplified_chinese.lang.php
+share/base/languages/spanish.lang.php
+share/base/languages/swedish.lang.php
+share/base/scripts/base_maintenance.pl
+share/base/setup/base_conf_contents.php
+share/base/setup/index.php
+share/base/setup/setup1.php
+share/base/setup/setup2.php
+share/base/setup/setup3.php
+share/base/setup/setup4.php
+share/base/setup/setup5.php
+share/base/sql/acid2base_tbls_mssql.sql
+share/base/sql/acid2base_tbls_mysql.sql
+share/base/sql/acid2base_tbls_pgsql.sql
+share/base/sql/create_base_tbls_mssql.sql
+share/base/sql/create_base_tbls_mssql_extra.sql
+share/base/sql/create_base_tbls_mysql.sql
+share/base/sql/create_base_tbls_oracle.sql
+share/base/sql/create_base_tbls_pgsql.sql
+share/base/sql/create_base_tbls_pgsql_extra.sql
+share/base/sql/upgrade_0.9.x_to_1.0-mysql.sql
+share/base/styles/acid_style.css
+share/base/styles/base_black_style.css
+share/base/styles/base_red_style.css
+share/base/styles/base_style.css
+share/doc/base/CHANGELOG
+share/doc/base/CREDITS
+share/doc/base/README
+share/doc/base/README.mssql
+share/doc/base/TODO
+share/doc/base/UPGRADE
+share/doc/base/base_faq.rtf
+share/examples/base/base.conf
+share/examples/base/base_conf.php
+@dirrm share/examples/base
+@dirrm share/doc/base
+@dirrm share/base/styles
+@dirrm share/base/sql
+@dirrm share/base/setup
+@dirrm share/base/scripts
+@dirrm share/base/languages
+@unexec ${RMDIR} %D/share/base/includes/templates/default 2>/dev/null || ${TRUE}
+@unexec ${RMDIR} %D/share/base/includes/templates 2>/dev/null || ${TRUE}
+@dirrm share/base/includes
+@dirrm share/base/images
+@dirrm share/base/help
+@dirrm share/base/admin
+@unexec ${RMDIR} %D/share/base 2>/dev/null || ${TRUE}
diff -r ca6198bf05f7 -r f930e0c6e6dc security/base/distinfo
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/base/distinfo    Tue Jan 03 21:09:44 2006 +0000
@@ -0,0 +1,6 @@
+$NetBSD: distinfo,v 1.1.1.1 2006/01/03 21:09:44 adrianp Exp $
+
+SHA1 (base-1.2.1.tar.gz) = fa556587b8dbdf8c7bc5496ad17098d23964e6bd
+RMD160 (base-1.2.1.tar.gz) = 3adeebc85dbcd60c6bdbf3be4e8eb9527528f75b
+Size (base-1.2.1.tar.gz) = 344440 bytes
+SHA1 (patch-aa) = 643f22ba268bf712bfc969b6e3e5d086106f466f
diff -r ca6198bf05f7 -r f930e0c6e6dc security/base/files/base.conf
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/base/files/base.conf     Tue Jan 03 21:09:44 2006 +0000
@@ -0,0 +1,28 @@
+# $NetBSD: base.conf,v 1.1.1.1 2006/01/03 21:09:44 adrianp Exp $
+#
+# BASE configuration file fragment for Apache
+
+<IfModule mod_alias.c>
+    Alias /base/ "@BASE_DIR@/"
+</IfModule>
+
+<Directory "@BASE_DIR@">
+    Options Indexes
+    AllowOverride None
+    Order allow,deny
+    Allow from all
+</Directory>
+
+#
+# For security, dont serve pages from certain directories
+#
+
+<Directory "@BASE_DIR@/scripts">
+    Order deny,allow
+    Deny from all
+</Directory>
+
+<Directory "@BASE_DIR@/sql">
+    Order deny,allow
+    Deny from all
+</Directory>
Prev by Date: [pkgsrc/trunk]: pkgsrc/math/pear-Numbers_Words With Numbers_Words class you c...
Next by Date: [pkgsrc/trunk]: pkgsrc/math Add:
Previous by Thread: [pkgsrc/trunk]: pkgsrc/math/pear-Numbers_Words With Numbers_Words class you c...
Next by Thread: [pkgsrc/trunk]: pkgsrc/math Add:
Indexes:
Home | Main Index | Thread Index | Old Index