diff --git a/security/nufw/nufw.cache b/security/nufw/nufw.cache new file mode 100644 index 000000000..b6e0e75a5 --- /dev/null +++ b/security/nufw/nufw.cache @@ -0,0 +1,41 @@ + +[TIMESTAMP] 1186446955 Tue Aug 7 02:35:55 2007 +[BUILDTIME] 30 (5) +[SIZE] 1.89 MB, 118 files + +[DEP] 00-dirtree +[DEP] bash +[DEP] binutils +[DEP] bzip2 +[DEP] coreutils +[DEP] cyrus-sasl2 +[DEP] diffutils +[DEP] findutils +[DEP] gawk +[DEP] gcc +[DEP] glib +[DEP] glibc +[DEP] gnutls +[DEP] grep +[DEP] libgcrypt +[DEP] libgpg-error +[DEP] libnetfilter_conntrack +[DEP] libnetfilter_queue +[DEP] libnfnetlink +[DEP] libprelude +[DEP] libtasn1 +[DEP] libtool +[DEP] linux-header +[DEP] make +[DEP] mktemp +[DEP] openldap +[DEP] openssl +[DEP] pam +[DEP] pkgconfig +[DEP] postgresql +[DEP] python +[DEP] sed +[DEP] sysfiles +[DEP] tar +[DEP] util-linux +[DEP] zlib diff --git a/security/nufw/nufw.conf b/security/nufw/nufw.conf new file mode 100644 index 000000000..d09302d55 --- /dev/null +++ b/security/nufw/nufw.conf @@ -0,0 +1,88 @@ +# --- SDE-COPYRIGHT-NOTE-BEGIN --- +# This copyright note is auto-generated by ./scripts/Create-CopyPatch. +# +# Filename: package/.../nufw/nufw.conf +# Copyright (C) 2007 The OpenSDE Project +# +# More information can be found in the files COPYING and README. +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. A copy of the +# GNU General Public License can be found in the file COPYING. +# --- SDE-COPYRIGHT-NOTE-END --- + +if [ $prefix_auto = 1 ] ; then + prefix="opt/nufw" + set_confopt +fi + +# echo a warning if iptables was not build with development support and +# libnetfilter_queue is not available +if [ "$SDECFG_PKG_IPTABLES_DEVEL" != "1" ] && ! pkginstalled libnetfilter_queue ; then + echo_warning "NuFW daemon WON'T be compiled: neither libipq nor nfqueue" + echo_warning "found! Please recompile iptables with development support" + echo_warning "or install libnetfilter_queue alternatively to get the" + echo_warning "NuFW daemon build!" +fi + +# Compile for NFQUEUE instead of QUEUE +if pkginstalled libnetfilter_queue ; then + pkgprefix -t libnetfilter_queue + var_append confopt ' ' "--with-nfqueue" + echo_status "NuFW: libnetfilter_queue support" +else + var_append confopt ' ' "--without-nfqueue" +fi + +# Compile with netfilter_conntrack +if pkginstalled libnetfilter_conntrack ; then + pkgprefix -t libnetfilter_conntrack + var_append confopt ' ' "--with-nfconntrack" + echo_status "NuFW: libnetfilter_conntrack support" +fi + +# Support user activity logging in Prelude +if pkginstalled libprelude ; then + pkgprefix -t libprelude + var_append confopt ' ' "--with-prelude-log" + var_append CPPFLAGS ' ' "-I$root$( pkgprefix includedir libprelude )/libprelude" + var_append CFLAGS ' ' "-I$root$( pkgprefix includedir libprelude )/libprelude" + var_append LDFLAGS ' ' "-L$root$( pkgprefix libdir libprelude )" + export CPPFLAGS CFLAGS LDFLAGS +fi + +# Support user activity logging in Mysql database +if pkginstalled mysql ; then + pkgprefix -t mysql + # 2007-08-04 NOTE: disabled because it doesn't build at the moment + #var_append confopt ' ' "--with-mysql-log" + var_append CPPFLAGS ' ' "-I$root$( pkgprefix includedir mysql )" + var_append CFLAGS ' ' "-I$root$( pkgprefix includedir mysql )" + var_append LDFLAGS ' ' "-L$root$( pkgprefix libdir mysql )/mysql" + var_append LD_RUN_PATH ':' "$( pkgprefix libdir mysql )/mysql" + export CPPFLAGS CFLAGS LDFLAGS LD_RUN_PATH +fi + +# Support user activity logging in PostgreSQL database +if pkginstalled postgresql ; then + pkgprefix -t postgresql + var_append confopt ' ' "--with-pgsql-log" + var_append CPPFLAGS ' ' "-I$root$( pkgprefix includedir postgresql )" + var_append CFLAGS ' ' "-I$root$( pkgprefix includedir postgresql )" + var_append LDFLAGS ' ' "-L$root$( pkgprefix libdir postgresql )" + export CPPFLAGS CFLAGS LDFLAGS +fi + +# Support user activity logging in syslog +var_append confopt ' ' "--with-syslog-log" + +# Support LDAP directory for users and acl lookup +if pkginstalled openldap ; then + pkgprefix -t openldap + var_append confopt ' ' "--with-ldap" + var_append CPPFLAGS ' ' "-I$root$( pkgprefix includedir openldap )" + var_append CFLAGS ' ' "-I$root$( pkgprefix includedir openldap )" + var_append LDFLAGS ' ' "-L$root$( pkgprefix libdir openldap )" + export CPPFLAGS CFLAGS LDFLAGS +fi diff --git a/security/nufw/nufw.desc b/security/nufw/nufw.desc new file mode 100644 index 000000000..2310a6361 --- /dev/null +++ b/security/nufw/nufw.desc @@ -0,0 +1,35 @@ +[COPY] --- SDE-COPYRIGHT-NOTE-BEGIN --- +[COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch. +[COPY] +[COPY] Filename: package/.../nufw/nufw.desc +[COPY] Copyright (C) 2007 The OpenSDE Project +[COPY] +[COPY] More information can be found in the files COPYING and README. +[COPY] +[COPY] This program is free software; you can redistribute it and/or modify +[COPY] it under the terms of the GNU General Public License as published by +[COPY] the Free Software Foundation; version 2 of the License. A copy of the +[COPY] GNU General Public License can be found in the file COPYING. +[COPY] --- SDE-COPYRIGHT-NOTE-END --- + +[I] A user level packet filtering suite for Linux + +[T] NuFW is an authentication firewall suite: the gateway authorizes a +[T] packet depending on which remote user has sent it. It can also set +[T] quality of service on a per-user basis and log user activities into a +[T] SQL database. Furthermore, it can use an external authentication source +[T] such as an LDAP directory and be the key of a Single Sign On solution. + +[U] http://www.nufw.org/ + +[A] Eric Leblond +[M] Christian Wiese + +[C] extra/security + +[L] GPL +[S] Stable +[V] 2.2.3 +[P] X -----5---9 800.000 + +[D] 2000498693 nufw-2.2.3.tar.bz2 http://www.nufw.org/download/nufw/