diff options
author | Scott Ullrich <sullrich@pfsense.org> | 2006-09-25 01:39:54 +0000 |
---|---|---|
committer | Scott Ullrich <sullrich@pfsense.org> | 2006-09-25 01:39:54 +0000 |
commit | 01b4706a4a770f0929b9558d1b1cd7ed89bf4360 (patch) | |
tree | 429a24da0c5e601e8fc7b80418577dbf3002442e /packages/snort | |
parent | a68598c80ee3e2f4182f334a1a57117a179d9c3e (diff) | |
download | pfsense-packages-01b4706a4a770f0929b9558d1b1cd7ed89bf4360.tar.gz pfsense-packages-01b4706a4a770f0929b9558d1b1cd7ed89bf4360.tar.bz2 pfsense-packages-01b4706a4a770f0929b9558d1b1cd7ed89bf4360.zip |
Download snort2c to /usr/local/bin/ during installation
Diffstat (limited to 'packages/snort')
-rw-r--r-- | packages/snort/snort.xml | 20 |
1 files changed, 18 insertions, 2 deletions
diff --git a/packages/snort/snort.xml b/packages/snort/snort.xml index 9fd0b705..c4d68357 100644 --- a/packages/snort/snort.xml +++ b/packages/snort/snort.xml @@ -9,6 +9,11 @@ <section>Services</section> <url>/pkg_edit.php?xml=snort.xml&id=0</url> </menu> + <additional_files_needed> + <prefix>/usr/local/bin/</prefix> + <chmod>077</chmod> + <item>http://www.pfsense.com/packages/config/snort/bin/snort2c</item> + </additional_files_needed> <service> <name>snort</name> <rcfile>snort.sh</rcfile> @@ -39,6 +44,17 @@ <custom_php_global_functions> function sync_package_snort() { $first = 0; + /* if list */ + $iflist = array("lan" => "LAN"); + for ($i = 1; isset($config['interfaces']['opt' . $i]); $i++) + $iflist['opt' . $i] = "opt{$i}"; + $whitelist = fopen("/var/db/whitelist","w"); + if(!$whitelist) + die "Cannot open whitelist for /var/db/writing."; + foreach($iflist as $if) { + /* XXX: write out if subnet */ + } + fclose($whitelist); foreach($_POST['interface_array'] as $iface) { $if = convert_friendly_interface_to_real_interface_name($iface); if($if) { @@ -46,8 +62,8 @@ $first = 1; } } - $start = "snort -c /usr/local/etc/snort/rules/snort.conf -l /var/log/snort " . $ifaces_final . " -D"; - $start.= ";snort2c -s -w /var/db/whitelist -a /var/log/snort/alert"; + $start = "snort -c /usr/local/etc/snort/rules/snort.conf -l /var/log/snort " . $ifaces_final . " -D"; + $start .= ";snort2c -s -w /var/db/whitelist -a /var/log/snort/alert"; write_rcfile(array( "file" => "snort.sh", "start" => $start, |