diff options
| author | Bill Marquette <bill.marquette@gmail.com> | 2009-02-06 19:18:00 -0600 |
|---|---|---|
| committer | Bill Marquette <bill.marquette@gmail.com> | 2009-02-06 19:18:00 -0600 |
| commit | 55eddd7accf2c5f9b0f52b22a010c4c4b7c130d1 (patch) | |
| tree | ba4783bab1dd65f1ceef2dfac9fdbd515531d18b /packages/snort/snort_check_for_rule_updates.php | |
| parent | 67780cc9d469288742aea5bc378c29a54edd5ec5 (diff) | |
| download | pfsense-packages-55eddd7accf2c5f9b0f52b22a010c4c4b7c130d1.tar.gz pfsense-packages-55eddd7accf2c5f9b0f52b22a010c4c4b7c130d1.tar.bz2 pfsense-packages-55eddd7accf2c5f9b0f52b22a010c4c4b7c130d1.zip | |
mv packages to config dir to match web layout
Diffstat (limited to 'packages/snort/snort_check_for_rule_updates.php')
| -rw-r--r-- | packages/snort/snort_check_for_rule_updates.php | 111 |
1 files changed, 0 insertions, 111 deletions
diff --git a/packages/snort/snort_check_for_rule_updates.php b/packages/snort/snort_check_for_rule_updates.php deleted file mode 100644 index 92f32900..00000000 --- a/packages/snort/snort_check_for_rule_updates.php +++ /dev/null @@ -1,111 +0,0 @@ -#!/usr/local/bin/php -f -<?php - -/* $Id$ */ -/* - snort_check_for_rule_updates.php - Copyright (C) 2006 Scott Ullrich - All rights reserved. - - Redistribution and use in source and binary forms, with or without - modification, are permitted provided that the following conditions are met: - - 1. Redistributions of source code must retain the above copyright notice, - this list of conditions and the following disclaimer. - - 2. Redistributions in binary form must reproduce the above copyright - notice, this list of conditions and the following disclaimer in the - documentation and/or other materials provided with the distribution. - - THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, - INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY - AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE - AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, - OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF - SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS - INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN - CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) - ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE - POSSIBILITY OF SUCH DAMAGE. -*/ - -$console_mode = true; - -require_once("config.inc"); -require_once("functions.inc"); -require_once("/usr/local/pkg/snort.inc"); -require_once("service-utils.inc"); - -/* check to see if carp settings exist, and get a handle */ -if($config['installedpackages']['carpsettings']) { - $carp = &$config['installedpackages']['carpsettings']['config'][0]; - $password = $carp['password']; -} - -/* if we are not a CARP cluster master, sleep for a random - * amount of time allowing for other members to download the configuration - */ -if(!$password) { - $sleepietime = rand(5,700); - sleep($sleepietime); -} - -$last_ruleset_download = $config['installedpackages']['snort']['last_ruleset_download']; -ini_set('user_agent','Mozilla/4.0 (compatible; MSIE 6.0)'); -$text = file_get_contents("http://www.snort.org/pub-bin/downloads.cgi"); -if (preg_match_all("/.*RELEASED\: (.*)\</", $text, $matches)) - $last_update_date = trim($matches[1][0]); -$date1ts = strtotime($last_update_date); -$date2ts = strtotime($last_ruleset_download); -/* is there a newer ruleset available? */ -if($date1ts > $date2ts or !$last_ruleset_download) { - log_error("There is a new set of Snort rules posted. Downloading..."); - if(!$oinkid) { - log_error("Oinkid is not defined. We cannot automatically update the ruleset."); - echo "Oinkid is not defined. We cannot automatically update the ruleset."; - exit; - } - echo "Downloading snort rule updates..."; - /* setup some variables */ - $snort_filename = "snortrules-snapshot-CURRENT.tar.gz"; - $snort_filename_md5 = "snortrules-snapshot-CURRENT.tar.gz.md5"; - ini_set('user_agent','Mozilla/4.0 (compatible; MSIE 6.0)'); - $dl = "http://www.snort.org/pub-bin/oinkmaster.cgi/{$oinkid}/{$snort_filename}"; - $dl_md5 = "http://www.snort.org/pub-bin/oinkmaster.cgi/{$oinkid}/{$snort_filename_md5}"; - - /* multi user system, request new filename and create directory */ - $tmpfname = tempnam("/tmp", "snortRules"); - exec("/bin/rm -rf {$tmpfname};/bin/mkdir -p {$tmpfname}"); - - /* download snort rules */ - exec("fetch -q -o {$tmpfname}/{$snort_filename} $dl"); - verify_downloaded_file($tmpfname . "/{$snort_filename}"); - - /* download snort rules md5 file */ - $static_output = gettext("Downloading current snort rules md5... "); - exec("fetch -q -o {$tmpfname}/{$snort_filename_md5} $dl_md5"); - verify_downloaded_file($tmpfname . "/{$snort_filename_md5}"); - - /* verify downloaded rules signature */ - verify_snort_rules_md5($tmpfname); - - /* extract rules */ - extract_snort_rules_md5($tmpfname); - - $config['installedpackages']['snort']['last_ruleset_download'] = date("Y-m-d"); - write_config(); - - stop_service("snort"); - sleep(2); - start_service("snort"); - - /* cleanup temporary directory */ - exec("/bin/rm -rf {$tmpfname};"); - echo "Rules are now up to date.\n"; - log_error("Snort rules updated. New version: {$last_update_date}."); -} else { - echo "Rules are up to date.\n"; - log_error("Snort rules are up to date. Not updating."); -} - -?>
\ No newline at end of file |