|
|
9282aab |
# Notes about rpmlint
|
|
|
9282aab |
# - crypto-policy-non-compliance-gnutls-{1,2} fixed with patch
|
|
|
9282aab |
# prelude-lml-3.1.0-gnutls_priority_set_direct.patch
|
|
|
9282aab |
|
|
|
9282aab |
Name: prelude-lml
|
|
|
9282aab |
Version: 3.1.0
|
|
|
9282aab |
Release: 1%{?dist}
|
|
|
9282aab |
Summary: Log analyzer sensor with IDMEF output
|
|
|
9282aab |
# Prelude is GPL-2.0+
|
|
|
9282aab |
# libmissing is LGPL-2.1+
|
|
|
9282aab |
License: GPLv2+
|
|
|
9282aab |
URL: https://www.prelude-siem.org/
|
|
|
9282aab |
Source0: https://www.prelude-siem.org/pkg/src/3.1.0/%{name}-%{version}.tar.gz
|
|
|
9282aab |
Source1: %{name}.service
|
|
|
9282aab |
Source2: %{name}-tmpfiles.conf
|
|
|
9282aab |
# https://www.prelude-siem.org/issues/862
|
|
|
9282aab |
Patch0: prelude-lml-3.1.0-gnutls_priority_set_direct.patch
|
|
|
9282aab |
# https://www.prelude-siem.org/issues/870
|
|
|
9282aab |
Patch1: prelude-lml-3.1.0-fix_etc_perms.patch
|
|
|
9282aab |
# https://www.prelude-siem.org/issues/872
|
|
|
9282aab |
Patch2: prelude-lml-3.1.0-fix_check.patch
|
|
|
9282aab |
%{?systemd_requires}
|
|
|
9282aab |
BuildRequires: chrpath
|
|
|
9282aab |
BuildRequires: systemd
|
|
|
9282aab |
BuildRequires: libgcrypt-devel
|
|
|
9282aab |
BuildRequires: libgpg-error-devel
|
|
|
9282aab |
BuildRequires: pkgconfig(gnutls)
|
|
|
9282aab |
BuildRequires: pkgconfig(icu-io)
|
|
|
9282aab |
BuildRequires: pkgconfig(libevdev)
|
|
|
9282aab |
BuildRequires: pkgconfig(libpcre)
|
|
|
9282aab |
BuildRequires: pkgconfig(libprelude) >= %{version}
|
|
|
9282aab |
|
|
|
9282aab |
%ifnarch s390
|
|
|
9282aab |
BuildRequires: valgrind
|
|
|
9282aab |
%endif
|
|
|
9282aab |
|
|
|
9282aab |
# Upstream do not use explicit version of gnulib, just checkout
|
|
|
9282aab |
# and update files. In libprelude 3.1.0, the checkout has been done
|
|
|
9282aab |
# on 2016-06-16
|
|
|
9282aab |
Provides: bundled(gnulib) = 20160616
|
|
|
9282aab |
|
|
|
9282aab |
ExcludeArch: ppc64 ppc64le aarch64 armv7hl
|
|
|
9282aab |
|
|
|
9282aab |
%description
|
|
|
9282aab |
The Prelude Log Monitoring Lackey (LML) is the host-based sensor program part of
|
|
|
9282aab |
the Prelude SIEM suite. It can act as a centralized log collector for local or
|
|
|
9282aab |
remote systems, or as a simple log analyzer (such as swatch). It can run as a
|
|
|
9282aab |
network server listening on a syslog port or analyze log files. It supports log
|
|
|
9282aab |
files in the BSD syslog format and is able to analyze any log file by using the
|
|
|
9282aab |
PCRE library. It can apply log file specific analysis through plugins such as
|
|
|
9282aab |
PAX. It can send an alert to the Prelude Manager when a suspicious log entry is
|
|
|
9282aab |
detected.
|
|
|
9282aab |
|
|
|
9282aab |
%package devel
|
|
|
9282aab |
Summary: Libraries and headers for Prelude-LML
|
|
|
9282aab |
Requires: %{name}%{?_isa} = %{version}-%{release}
|
|
|
9282aab |
|
|
|
9282aab |
%description devel
|
|
|
9282aab |
Devel headers for the Prelude Log Monitoring Lackey (LML). It is the host-based
|
|
|
9282aab |
sensor program part of the Prelude SIEM suite. It can act as a centralized log
|
|
|
9282aab |
collector for local or remote systems, or as a simple log analyzer (such as
|
|
|
9282aab |
swatch). It can run as a network server listening on a syslog port or analyze
|
|
|
9282aab |
log files. It supports log files in the BSD syslog format and is able to analyze
|
|
|
9282aab |
any log file by using the PCRE library. It can apply log file specific analysis
|
|
|
9282aab |
through plugins such as PAX. It can send an alert to the Prelude Manager when a
|
|
|
9282aab |
suspicious log entry is detected.
|
|
|
9282aab |
|
|
|
9282aab |
%package doc
|
|
|
9282aab |
Summary: Documentation for prelude-lml
|
|
|
9282aab |
BuildArch: noarch
|
|
|
9282aab |
|
|
|
9282aab |
%description doc
|
|
|
9282aab |
Provides documentation for prelude-lml.
|
|
|
9282aab |
|
|
|
9282aab |
%prep
|
|
|
9282aab |
%autosetup -p1
|
|
|
9282aab |
|
|
|
9282aab |
%build
|
|
|
9282aab |
%configure \
|
|
|
9282aab |
--bindir=%{_sbindir} \
|
|
|
9282aab |
--enable-shared \
|
|
|
9282aab |
--disable-static \
|
|
|
9282aab |
--with-libprelude-prefix=%{_prefix}
|
|
|
9282aab |
%make_build
|
|
|
9282aab |
|
|
|
9282aab |
%install
|
|
|
9282aab |
%make_install
|
|
|
9282aab |
|
|
|
9282aab |
find %{buildroot} -name '*.la' -delete
|
|
|
9282aab |
|
|
|
9282aab |
# Empty dir but kept by debuginfo
|
|
|
9282aab |
rm -rf src/.libs
|
|
|
9282aab |
|
|
|
9282aab |
mkdir -p %{buildroot}%{_localstatedir}/lib/%{name}
|
|
|
9282aab |
|
|
|
9282aab |
chrpath -d %{buildroot}%{_sbindir}/%{name}
|
|
|
9282aab |
|
|
|
9282aab |
# install init script
|
|
|
9282aab |
install -D -p -m 0644 %{SOURCE1} %{buildroot}%{_unitdir}/%{name}.service
|
|
|
9282aab |
|
|
|
9282aab |
# tmpfiles
|
|
|
9282aab |
mkdir -p %{buildroot}%{_tmpfilesdir}
|
|
|
9282aab |
install -m 0644 %{SOURCE2} %{buildroot}%{_tmpfilesdir}/%{name}.conf
|
|
|
9282aab |
mkdir -p %{buildroot}/run
|
|
|
9282aab |
install -d -m 0755 %{buildroot}/run/%{name}/
|
|
|
9282aab |
|
|
|
9282aab |
%check
|
|
|
9282aab |
make check
|
|
|
9282aab |
|
|
|
9282aab |
%post
|
|
|
9282aab |
%systemd_post %{name}.service
|
|
|
9282aab |
|
|
|
9282aab |
%preun
|
|
|
9282aab |
%systemd_preun %{name}.service
|
|
|
9282aab |
|
|
|
9282aab |
%postun
|
|
|
9282aab |
%systemd_postun_with_restart %{name}.service
|
|
|
9282aab |
|
|
|
9282aab |
%files
|
|
|
9282aab |
%license COPYING HACKING.README
|
|
|
9282aab |
%doc README
|
|
|
9282aab |
%{_sbindir}/%{name}
|
|
|
9282aab |
%{_unitdir}/%{name}.service
|
|
|
9282aab |
%dir %{_libdir}/%{name}
|
|
|
9282aab |
%{_libdir}/%{name}/*.so
|
|
|
9282aab |
%dir %{_localstatedir}/lib/%{name}
|
|
|
9282aab |
%dir %{_sysconfdir}/%{name}
|
|
|
9282aab |
%config(noreplace) %{_sysconfdir}/%{name}/*.rules
|
|
|
9282aab |
%config(noreplace) %{_sysconfdir}/%{name}/*.conf
|
|
|
9282aab |
%dir %{_localstatedir}/lib/%{name}
|
|
|
9282aab |
%dir /run/%{name}/
|
|
|
9282aab |
%{_tmpfilesdir}/%{name}.conf
|
|
|
9282aab |
|
|
|
9282aab |
%files devel
|
|
|
9282aab |
%dir %{_includedir}/%{name}
|
|
|
9282aab |
%{_includedir}/%{name}/*.h
|
|
|
9282aab |
|
|
|
9282aab |
%files doc
|
|
|
9282aab |
%license COPYING HACKING.README
|
|
|
9282aab |
%doc ChangeLog README NEWS AUTHORS
|
|
|
9282aab |
|
|
|
9282aab |
%changelog
|
|
|
9282aab |
* Wed Jan 25 2017 Thomas Andrejak <thomas.andrejak@gmail.com> - 3.1.0-1
|
|
|
9282aab |
- Bump version
|
|
|
9282aab |
|
|
|
9282aab |
* Sun Mar 10 2013 Steve Grubb <sgrubb@redhat.com> - 1:1.0.0-10
|
|
|
9282aab |
- Add libtool-ltdl-devel BuildRequires
|
|
|
9282aab |
|
|
|
9282aab |
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.0.0-9
|
|
|
9282aab |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
|
|
|
9282aab |
|
|
|
9282aab |
* Thu Sep 06 2012 Steve Grubb <sgrubb@redhat.com> - 1:1.0.0-8
|
|
|
9282aab |
- Add provides bundled gnulib
|
|
|
9282aab |
- Add systemd service file
|
|
|
9282aab |
|
|
|
9282aab |
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.0.0-7
|
|
|
9282aab |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
|
|
|
9282aab |
|
|
|
9282aab |
* Fri Feb 10 2012 Petr Pisar <ppisar@redhat.com> - 1:1.0.0-6
|
|
|
9282aab |
- Rebuild against PCRE 8.30
|
|
|
9282aab |
|
|
|
9282aab |
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.0.0-5
|
|
|
9282aab |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
|
|
|
9282aab |
|
|
|
9282aab |
* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.0.0-4
|
|
|
9282aab |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
|
|
|
9282aab |
|
|
|
9282aab |
* Sun May 02 2010 Steve Grubb <sgrubb@redhat.com> 1.0.0-3
|
|
|
9282aab |
- Fixed requires
|
|
|
9282aab |
|
|
|
9282aab |
* Fri Apr 30 2010 Steve Grubb <sgrubb@redhat.com> 1.0.0-2
|
|
|
9282aab |
- new upstream release
|
|
|
9282aab |
|
|
|
9282aab |
* Mon Feb 08 2010 Steve Grubb <sgrubb@redhat.com> 1.0.0rc2-1
|
|
|
9282aab |
- new upstream release
|
|
|
9282aab |
|
|
|
9282aab |
* Sat Jan 30 2010 Steve Grubb <sgrubb@redhat.com> 1.0.0rc1-1
|
|
|
9282aab |
- new upstream release
|
|
|
9282aab |
|
|
|
9282aab |
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.9.15-2
|
|
|
9282aab |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
|
|
|
9282aab |
|
|
|
9282aab |
* Tue Jul 21 2009 Steve Grubb <sgrubb@redhat.com> 0.9.15-1
|
|
|
9282aab |
- new upstream release
|
|
|
9282aab |
|
|
|
9282aab |
* Wed Apr 22 2009 Steve Grubb <sgrubb@redhat.com> 0.9.14-3
|
|
|
9282aab |
- Adjust dir and config file permissions
|
|
|
9282aab |
|
|
|
9282aab |
* Thu Feb 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.9.14-2
|
|
|
9282aab |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
|
|
|
9282aab |
|
|
|
9282aab |
* Fri Oct 17 2008 Steve Grubb <sgrubb@redhat.com> 0.9.14-1
|
|
|
9282aab |
- new upstream release fixing bz #463459
|
|
|
9282aab |
|
|
|
9282aab |
* Sat Oct 11 2008 Steve Grubb <sgrubb@redhat.com> 0.9.13-2
|
|
|
9282aab |
- improved mod_security rules
|
|
|
9282aab |
|
|
|
9282aab |
* Wed Aug 27 2008 Steve Grubb <sgrubb@redhat.com> 0.9.13-1
|
|
|
9282aab |
- new upstream release
|
|
|
9282aab |
|
|
|
9282aab |
* Wed Jun 25 2008 Tomas Mraz <tmraz@redhat.com> - 0.9.12.2-2
|
|
|
9282aab |
- rebuild with new gnutls
|
|
|
9282aab |
|
|
|
9282aab |
* Thu Apr 24 2008 Steve Grubb <sgrubb@redhat.com> 0.9.12.2-1
|
|
|
9282aab |
- new upstream release
|
|
|
9282aab |
|
|
|
9282aab |
* Wed Feb 20 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 0.9.11-2
|
|
|
9282aab |
- Autorebuild for GCC 4.3
|
|
|
9282aab |
|
|
|
9282aab |
* Mon Jan 14 2008 Steve Grubb <sgrubb@redhat.com> 0.9.11-1
|
|
|
9282aab |
- new upstream version 0.9.11
|
|
|
9282aab |
|
|
|
9282aab |
* Tue Jan 09 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-5
|
|
|
9282aab |
- changed init-script description
|
|
|
9282aab |
|
|
|
9282aab |
* Mon Jan 08 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-4
|
|
|
9282aab |
- added new /var/lib directory
|
|
|
9282aab |
|
|
|
9282aab |
* Fri Jan 05 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-3
|
|
|
9282aab |
- added init-script
|
|
|
9282aab |
- changed some macros in %%files
|
|
|
9282aab |
|
|
|
9282aab |
* Tue Jan 02 2007 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-2
|
|
|
9282aab |
- fixed debug problems
|
|
|
9282aab |
- fixed encoding problems
|
|
|
9282aab |
|
|
|
9282aab |
* Fri Dec 29 2006 Thorsten Scherf <tscherf@redhat.com> 0.9.8.1-1
|
|
|
9282aab |
- moved to new upstream version 0.9.8.1
|
|
|
9282aab |
- changed dirowner of /etc/prelude-lml
|
|
|
9282aab |
|
|
|
9282aab |
* Mon Nov 20 2006 Thorsten Scherf <tscherf@redhat.com> 0.9.7-2
|
|
|
9282aab |
- Some minor fixes in requirements
|
|
|
9282aab |
|
|
|
9282aab |
* Mon Oct 23 2006 Thorsten Scherf <tscherf@redhat.com> 0.9.7-1
|
|
|
9282aab |
- New Fedora build based on release 0.9.7
|
|
|
9282aab |
|