[meta-security][PATCH 1/7] lynis: add missing rdepends

All of lore.kernel.org
 help / color / mirror / Atom feed

* [meta-security][PATCH 1/7] lynis: add missing rdepends
@ 2020-03-18  2:30 akuster
  2020-03-18  2:30 ` [meta-security][PATCH 2/7] fail2ban: change hardcoded sysklogd to VIRTUAL-RUNTIME_base-utils-syslog akuster
                   ` (5 more replies)
  0 siblings, 6 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

add findutils

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 meta-security-compliance/recipes-auditors/lynis/lynis_2.7.5.bb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta-security-compliance/recipes-auditors/lynis/lynis_2.7.5.bb b/meta-security-compliance/recipes-auditors/lynis/lynis_2.7.5.bb
index 21e4517..245761c 100644
--- a/meta-security-compliance/recipes-auditors/lynis/lynis_2.7.5.bb
+++ b/meta-security-compliance/recipes-auditors/lynis/lynis_2.7.5.bb
@@ -38,4 +38,4 @@ do_install () {
 FILES_${PN} += "${sysconfdir}/developer.prf ${sysconfdir}/default.prf"
 FILES_${PN}-doc += "lynis.8 FAQ README CHANGELOG.md CONTRIBUTIONS.md CONTRIBUTORS.md" 
 
-RDEPENDS_${PN} += "procps"
+RDEPENDS_${PN} += "procps findutils"
-- 
2.17.1


^ permalink raw reply related	[flat|nested] 7+ messages in thread

* [meta-security][PATCH 2/7] fail2ban: change hardcoded sysklogd to VIRTUAL-RUNTIME_base-utils-syslog
  2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
@ 2020-03-18  2:30 ` akuster
  2020-03-18  2:30 ` [meta-security][PATCH 3/7] chkrootkit: add rootkit recipe akuster
                   ` (4 subsequent siblings)
  5 siblings, 0 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 recipes-security/fail2ban/python3-fail2ban_0.10.4.0.bb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/recipes-security/fail2ban/python3-fail2ban_0.10.4.0.bb b/recipes-security/fail2ban/python3-fail2ban_0.10.4.0.bb
index 8673c10..e737f50 100644
--- a/recipes-security/fail2ban/python3-fail2ban_0.10.4.0.bb
+++ b/recipes-security/fail2ban/python3-fail2ban_0.10.4.0.bb
@@ -46,6 +46,6 @@ INITSCRIPT_PARAMS = "defaults 25"
 
 INSANE_SKIP_${PN}_append = "already-stripped"
 
-RDEPENDS_${PN} = "sysklogd iptables sqlite3 python3-core python3-pyinotify python3-logging python3-fcntl"
-RDEPENDS_${PN} += " python3-json "
+RDEPENDS_${PN} = "${VIRTUAL-RUNTIME_base-utils-syslog} iptables sqlite3 python3-core python3-pyinotify"
+RDEPENDS_${PN} += " python3-logging python3-fcntl python3-json"
 RDEPENDS_${PN}-ptest = "python3-core python3-io python3-modules python3-fail2ban"
-- 
2.17.1


^ permalink raw reply related	[flat|nested] 7+ messages in thread

* [meta-security][PATCH 3/7] chkrootkit: add rootkit recipe
  2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
  2020-03-18  2:30 ` [meta-security][PATCH 2/7] fail2ban: change hardcoded sysklogd to VIRTUAL-RUNTIME_base-utils-syslog akuster
@ 2020-03-18  2:30 ` akuster
  2020-03-18  2:30 ` [meta-security][PATCH 4/7] clamav: move to recipes-scanners akuster
                   ` (3 subsequent siblings)
  5 siblings, 0 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 recipes-scanners/rootkits/chkrootkit_0.53.bb | 48 ++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 recipes-scanners/rootkits/chkrootkit_0.53.bb

diff --git a/recipes-scanners/rootkits/chkrootkit_0.53.bb b/recipes-scanners/rootkits/chkrootkit_0.53.bb
new file mode 100644
index 0000000..4536be3
--- /dev/null
+++ b/recipes-scanners/rootkits/chkrootkit_0.53.bb
@@ -0,0 +1,48 @@
+DESCRIPTION = "rootkit detector"
+SUMMARY = "locally checks for signs of a rootkit"
+HOMEPAGE = "http://www.chkrootkit.org/"
+SECTION = "security"
+LICENSE = "BSD-2-Clause"
+LIC_FILES_CHKSUM = "file://COPYRIGHT;md5=fdbe53788f7081c63387d8087273f5ff"
+
+SRC_URI = "ftp://ftp.pangeia.com.br/pub/seg/pac/${BPN}.tar.gz"
+SRC_URI[sha256sum] = "7262dae33b338976828b5d156b70d159e0043c0db43ada8dee66c97387cf45b5"
+
+
+inherit autotools-brokensep
+
+TARGET_CC_ARCH += "${LDFLAGS}"
+
+do_configure () {
+    sed -i 's/@strip.*$//' ${S}/Makefile
+}
+
+do_compile () {
+    make CC="${CC}" LDFLAGS="${LDFLAGS}" sense
+    gzip -9vkf ACKNOWLEDGMENTS
+    gzip -9vkf README
+}
+
+do_install () {
+    install -d ${D}/${libdir}/${PN}
+    install -d ${D}/${sbindir}
+    install -d ${D}/${docdir}/${PN}
+
+    install -m 644 ${B}/chkdirs ${D}/${libdir}/${PN}
+    install -m 644 ${B}/chklastlog ${D}/${libdir}/${PN}
+    install -m 644 ${B}/chkproc ${D}/${libdir}/${PN}
+    install -m 644 ${B}/chkutmp ${D}/${libdir}/${PN}
+    install -m 644 ${B}/chkwtmp ${D}/${libdir}/${PN}
+    install -m 644 ${B}/ifpromisc ${D}/${libdir}/${PN}
+    install -m 644 ${B}/strings-static ${D}/${libdir}/${PN}
+
+    install -m 755 ${B}/chklastlog ${D}/${sbindir}
+    install -m 755 ${B}/chkrootkit ${D}/${sbindir}
+    install -m 755 ${B}/chkwtmp ${D}/${sbindir}
+
+    install -m 644 ${B}/ACKNOWLEDGMENTS.gz ${D}/${docdir}/${PN}
+    install -m 644 ${B}/README.chklastlog ${D}/${docdir}/${PN}
+    install -m 644 ${B}/README.chkwtmp ${D}/${docdir}/${PN}
+    install -m 644 ${B}/README.gz ${D}/${docdir}/${PN}
+    install -m 644 ${B}/COPYRIGHT ${D}/${docdir}/${PN}
+}
-- 
2.17.1


^ permalink raw reply related	[flat|nested] 7+ messages in thread

* [meta-security][PATCH 4/7] clamav: move to recipes-scanners
  2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
  2020-03-18  2:30 ` [meta-security][PATCH 2/7] fail2ban: change hardcoded sysklogd to VIRTUAL-RUNTIME_base-utils-syslog akuster
  2020-03-18  2:30 ` [meta-security][PATCH 3/7] chkrootkit: add rootkit recipe akuster
@ 2020-03-18  2:30 ` akuster
  2020-03-18  2:30 ` [meta-security][PATCH 5/7] checksec: move to recipe-scanners akuster
                   ` (2 subsequent siblings)
  5 siblings, 0 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 {recipes-security => recipes-scanners}/clamav/clamav_0.101.5.bb   | 0
 .../clamav/files/clamav-freshclam.service                         | 0
 .../clamav/files/clamav-milter.conf.sample                        | 0
 .../clamav/files/clamav.service                                   | 0
 {recipes-security => recipes-scanners}/clamav/files/clamd.conf    | 0
 .../clamav/files/freshclam-native.conf                            | 0
 .../clamav/files/freshclam.conf                                   | 0
 .../clamav/files/tmpfiles.clamav                                  | 0
 .../clamav/files/volatiles.03_clamav                              | 0
 9 files changed, 0 insertions(+), 0 deletions(-)
 rename {recipes-security => recipes-scanners}/clamav/clamav_0.101.5.bb (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/clamav-freshclam.service (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/clamav-milter.conf.sample (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/clamav.service (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/clamd.conf (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/freshclam-native.conf (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/freshclam.conf (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/tmpfiles.clamav (100%)
 rename {recipes-security => recipes-scanners}/clamav/files/volatiles.03_clamav (100%)

diff --git a/recipes-security/clamav/clamav_0.101.5.bb b/recipes-scanners/clamav/clamav_0.101.5.bb
similarity index 100%
rename from recipes-security/clamav/clamav_0.101.5.bb
rename to recipes-scanners/clamav/clamav_0.101.5.bb
diff --git a/recipes-security/clamav/files/clamav-freshclam.service b/recipes-scanners/clamav/files/clamav-freshclam.service
similarity index 100%
rename from recipes-security/clamav/files/clamav-freshclam.service
rename to recipes-scanners/clamav/files/clamav-freshclam.service
diff --git a/recipes-security/clamav/files/clamav-milter.conf.sample b/recipes-scanners/clamav/files/clamav-milter.conf.sample
similarity index 100%
rename from recipes-security/clamav/files/clamav-milter.conf.sample
rename to recipes-scanners/clamav/files/clamav-milter.conf.sample
diff --git a/recipes-security/clamav/files/clamav.service b/recipes-scanners/clamav/files/clamav.service
similarity index 100%
rename from recipes-security/clamav/files/clamav.service
rename to recipes-scanners/clamav/files/clamav.service
diff --git a/recipes-security/clamav/files/clamd.conf b/recipes-scanners/clamav/files/clamd.conf
similarity index 100%
rename from recipes-security/clamav/files/clamd.conf
rename to recipes-scanners/clamav/files/clamd.conf
diff --git a/recipes-security/clamav/files/freshclam-native.conf b/recipes-scanners/clamav/files/freshclam-native.conf
similarity index 100%
rename from recipes-security/clamav/files/freshclam-native.conf
rename to recipes-scanners/clamav/files/freshclam-native.conf
diff --git a/recipes-security/clamav/files/freshclam.conf b/recipes-scanners/clamav/files/freshclam.conf
similarity index 100%
rename from recipes-security/clamav/files/freshclam.conf
rename to recipes-scanners/clamav/files/freshclam.conf
diff --git a/recipes-security/clamav/files/tmpfiles.clamav b/recipes-scanners/clamav/files/tmpfiles.clamav
similarity index 100%
rename from recipes-security/clamav/files/tmpfiles.clamav
rename to recipes-scanners/clamav/files/tmpfiles.clamav
diff --git a/recipes-security/clamav/files/volatiles.03_clamav b/recipes-scanners/clamav/files/volatiles.03_clamav
similarity index 100%
rename from recipes-security/clamav/files/volatiles.03_clamav
rename to recipes-scanners/clamav/files/volatiles.03_clamav
-- 
2.17.1


^ permalink raw reply	[flat|nested] 7+ messages in thread

* [meta-security][PATCH 5/7] checksec: move to recipe-scanners
  2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
                   ` (2 preceding siblings ...)
  2020-03-18  2:30 ` [meta-security][PATCH 4/7] clamav: move to recipes-scanners akuster
@ 2020-03-18  2:30 ` akuster
  2020-03-18  2:30 ` [meta-security][PATCH 6/7] checksecurity: move to recipes-scanners akuster
  2020-03-18  2:30 ` [meta-security][PATCH 7/7] buck-security: " akuster
  5 siblings, 0 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 {recipes-security => recipes-scanners}/checksec/checksec_2.1.0.bb | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename {recipes-security => recipes-scanners}/checksec/checksec_2.1.0.bb (100%)

diff --git a/recipes-security/checksec/checksec_2.1.0.bb b/recipes-scanners/checksec/checksec_2.1.0.bb
similarity index 100%
rename from recipes-security/checksec/checksec_2.1.0.bb
rename to recipes-scanners/checksec/checksec_2.1.0.bb
-- 
2.17.1


^ permalink raw reply	[flat|nested] 7+ messages in thread

* [meta-security][PATCH 6/7] checksecurity: move to recipes-scanners
  2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
                   ` (3 preceding siblings ...)
  2020-03-18  2:30 ` [meta-security][PATCH 5/7] checksec: move to recipe-scanners akuster
@ 2020-03-18  2:30 ` akuster
  2020-03-18  2:30 ` [meta-security][PATCH 7/7] buck-security: " akuster
  5 siblings, 0 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 .../checksecurity/checksecurity_2.0.15.bb                         | 0
 .../files/check-setuid-use-more-portable-find-args.patch          | 0
 .../checksecurity/files/setuid-log-folder.patch                   | 0
 3 files changed, 0 insertions(+), 0 deletions(-)
 rename {recipes-security => recipes-scanners}/checksecurity/checksecurity_2.0.15.bb (100%)
 rename {recipes-security => recipes-scanners}/checksecurity/files/check-setuid-use-more-portable-find-args.patch (100%)
 rename {recipes-security => recipes-scanners}/checksecurity/files/setuid-log-folder.patch (100%)

diff --git a/recipes-security/checksecurity/checksecurity_2.0.15.bb b/recipes-scanners/checksecurity/checksecurity_2.0.15.bb
similarity index 100%
rename from recipes-security/checksecurity/checksecurity_2.0.15.bb
rename to recipes-scanners/checksecurity/checksecurity_2.0.15.bb
diff --git a/recipes-security/checksecurity/files/check-setuid-use-more-portable-find-args.patch b/recipes-scanners/checksecurity/files/check-setuid-use-more-portable-find-args.patch
similarity index 100%
rename from recipes-security/checksecurity/files/check-setuid-use-more-portable-find-args.patch
rename to recipes-scanners/checksecurity/files/check-setuid-use-more-portable-find-args.patch
diff --git a/recipes-security/checksecurity/files/setuid-log-folder.patch b/recipes-scanners/checksecurity/files/setuid-log-folder.patch
similarity index 100%
rename from recipes-security/checksecurity/files/setuid-log-folder.patch
rename to recipes-scanners/checksecurity/files/setuid-log-folder.patch
-- 
2.17.1


^ permalink raw reply	[flat|nested] 7+ messages in thread

* [meta-security][PATCH 7/7] buck-security: move to recipes-scanners
  2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
                   ` (4 preceding siblings ...)
  2020-03-18  2:30 ` [meta-security][PATCH 6/7] checksecurity: move to recipes-scanners akuster
@ 2020-03-18  2:30 ` akuster
  5 siblings, 0 replies; 7+ messages in thread
From: akuster @ 2020-03-18  2:30 UTC (permalink / raw)
  To: yocto

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 .../buck-security/buck-security_0.7.bb                            | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename {recipes-security => recipes-scanners}/buck-security/buck-security_0.7.bb (100%)

diff --git a/recipes-security/buck-security/buck-security_0.7.bb b/recipes-scanners/buck-security/buck-security_0.7.bb
similarity index 100%
rename from recipes-security/buck-security/buck-security_0.7.bb
rename to recipes-scanners/buck-security/buck-security_0.7.bb
-- 
2.17.1


^ permalink raw reply	[flat|nested] 7+ messages in thread

end of thread, other threads:[~2020-03-18  2:30 UTC | newest]

Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2020-03-18  2:30 [meta-security][PATCH 1/7] lynis: add missing rdepends akuster
2020-03-18  2:30 ` [meta-security][PATCH 2/7] fail2ban: change hardcoded sysklogd to VIRTUAL-RUNTIME_base-utils-syslog akuster
2020-03-18  2:30 ` [meta-security][PATCH 3/7] chkrootkit: add rootkit recipe akuster
2020-03-18  2:30 ` [meta-security][PATCH 4/7] clamav: move to recipes-scanners akuster
2020-03-18  2:30 ` [meta-security][PATCH 5/7] checksec: move to recipe-scanners akuster
2020-03-18  2:30 ` [meta-security][PATCH 6/7] checksecurity: move to recipes-scanners akuster
2020-03-18  2:30 ` [meta-security][PATCH 7/7] buck-security: " akuster

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.