mirror of
https://git.yoctoproject.org/meta-security
synced 2026-01-11 15:00:34 +00:00
meta-security-1.0-final
Signed-off-by: Andrei Dinu <andrei.adrianx.dinu@intel.com>
This commit is contained in:
Andrei Dinu
133
README
133
README
@@ -36,9 +36,9 @@ In this section the contents of the layer is listed, along with a short
|
||||
help for each package.
|
||||
|
||||
== bastille ==
|
||||
|
||||
|
||||
Bastille is a system hardening / lockdown program which enhances the
|
||||
security of a Unix host. It configures daemons, system settings and
|
||||
security of a Unix host. It configures daemons, system settings and
|
||||
firewalls to be more secure. It can shut off unneeded services
|
||||
like rcp and rlogin, and helps create "chroot jails" that help limit the
|
||||
vulnerability of common Internet services like Web services and DNS.
|
||||
@@ -53,79 +53,81 @@ help for each package.
|
||||
a config file will be created and run. After these steps, you will have a
|
||||
hardened system.
|
||||
|
||||
If you only want to run the config file, without stepping through the
|
||||
If you only want to run the config file, without stepping through the
|
||||
list of questions, simply write in a terminal :
|
||||
|
||||
|
||||
bastille -b
|
||||
|
||||
More information can be found in the package readme and manual.
|
||||
|
||||
|
||||
|
||||
== redhat-security ==
|
||||
|
||||
Sometimes you want to check different aspects of a distribution for security problems.
|
||||
This can be anything from file permissions to correctness of code. This is a collection of those tools.
|
||||
Sometimes you want to check different aspects of a distribution for security problems.
|
||||
This can be anything from file permissions to correctness of code. This is a collection of those tools.
|
||||
Depending on what information the tool has to access, it may need to be run as root.
|
||||
|
||||
- rpm-chksec.sh : This will take an rpm name as input and verify each ELF file to see if its compiled with the intended flags
|
||||
to most effectively use PIE and RELRO. Green is good, Orange could use work but is acceptable, and Red needs fixing.
|
||||
It has a mode --all that is the equivalent of using rpm -qa and feeding the packages to it.
|
||||
In this mode it will only give a summary result for the package. To find which files don't comply,
|
||||
re-run using just the package name.
|
||||
to most effectively use PIE and RELRO. Green is good, Orange could use work but is acceptable, and Red needs fixing.
|
||||
It has a mode --all that is the equivalent of using rpm -qa and feeding the packages to it.
|
||||
In this mode it will only give a summary result for the package. To find which files don't comply,
|
||||
re-run using just the package name.
|
||||
|
||||
- find-nodrop-groups.sh : This will scan a whole file system to see if a program makes calls to change UID
|
||||
and GID without also calling setgroups or initgroups.
|
||||
- find-nodrop-groups.sh : This will scan a whole file system to see if a program makes calls to change UID
|
||||
and GID without also calling setgroups or initgroups.
|
||||
|
||||
- rpm-drop-groups.sh : Same as above, but takes an rpm name instead.
|
||||
- rpm-drop-groups.sh : Same as above, but takes an rpm name instead.
|
||||
|
||||
- find-chroot.sh : This script scans the whole file system looking for ELF files that calls chroot(2) that also do not include a call to chdir.
|
||||
Programs that fail to do this do not have the cwd inside the chroot. This means the app can escape the protection that was intended.
|
||||
- find-chroot.sh : This script scans the whole file system looking for ELF files that calls chroot(2) that also do not include a call to chdir.
|
||||
Programs that fail to do this do not have the cwd inside the chroot. This means the app can escape the protection that was intended.
|
||||
|
||||
- find-chroot-py.sh : This test is like the one above except it examines python scripts for the same problem.
|
||||
- find-chroot-py.sh : This test is like the one above except it examines python scripts for the same problem.
|
||||
|
||||
- find-execstack.sh : This program scans the whole file system for ELF programs that have marked the stack as being executable.
|
||||
This means that if the program has another vulnerablity such as stack buffer overflow,
|
||||
any code the attacker places there is executable. Any program found must be fixed.
|
||||
- find-execstack.sh : This program scans the whole file system for ELF programs that have marked the stack as being executable.
|
||||
This means that if the program has another vulnerablity such as stack buffer overflow,
|
||||
any code the attacker places there is executable. Any program found must be fixed.
|
||||
|
||||
- find-hidden-exec.sh : This program scans the whole file system looking for excutables that are hidden.
|
||||
Anything found must be investigated since its highly unusual for executables to be hidden.
|
||||
- find-hidden-exec.sh : This program scans the whole file system looking for excutables that are hidden.
|
||||
Anything found must be investigated since its highly unusual for executables to be hidden.
|
||||
|
||||
- find-sh4errors.sh : This program scans the whole file system looking for shell scripts.
|
||||
It then does a sh -n on the script which causes bash to parse the file to see if there are any mistakes.
|
||||
- find-sh4errors.sh : This program scans the whole file system looking for shell scripts.
|
||||
It then does a sh -n on the script which causes bash to parse the file to see if there are any mistakes.
|
||||
|
||||
- selinux-check-devices.sh : This script checks the /dev directory to see if there are any devices that are not correctly labeled.
|
||||
Anything found by this test should be reported so that selinux policy can be fixed.
|
||||
This test is very hardware specific, so to be effective a lot of people with different hardware
|
||||
should run this test each upstream kernel version release.
|
||||
- selinux-check-devices.sh : This script checks the /dev directory to see if there are any devices that are not correctly labeled.
|
||||
Anything found by this test should be reported so that selinux policy can be fixed.
|
||||
This test is very hardware specific, so to be effective a lot of people with different hardware
|
||||
should run this test each upstream kernel version release.
|
||||
|
||||
- selinux-ls-unconfined.sh : This script scans the running processes and looks for anything labeled with initrc_t or inetd.
|
||||
These both mean that there are daemons that do not have policy and are therefore running unconfined.
|
||||
These should be reported as SE Linux policy problems. Because it checks currently running daemons,
|
||||
the more you have running, the better the test is.
|
||||
- selinux-ls-unconfined.sh : This script scans the running processes and looks for anything labeled with initrc_t or inetd.
|
||||
These both mean that there are daemons that do not have policy and are therefore running unconfined.
|
||||
These should be reported as SE Linux policy problems. Because it checks currently running daemons,
|
||||
the more you have running, the better the test is.
|
||||
|
||||
- find-sh4tmp.sh : This script scans the whole filesystem to check if shell scripts are using well known tmp file names
|
||||
- find-sh4tmp.sh : This script scans the whole filesystem to check if shell scripts are using well known tmp file names
|
||||
instead of obscure ones created by something like mktemp.
|
||||
|
||||
- find-elf4tmp.sh : This script scans the whole file system for ELF files using /tmp. When it finds this,
|
||||
it also looks to see if any of the known good random name generator functions is called by looking
|
||||
- find-elf4tmp.sh : This script scans the whole file system for ELF files using /tmp. When it finds this,
|
||||
it also looks to see if any of the known good random name generator functions is called by looking
|
||||
at the symbol table. If not, it will output the string.
|
||||
|
||||
- lib-bin-check.sh : This will check all installed library packages to see if an application is also part of the package.
|
||||
The relationship to security is that the SHA256 hash check will fail if a 32 bit version overwrites it.
|
||||
Also, the less binaries on a system, the more secure it is by virtue of removing the chance for an exploitable bug.
|
||||
- lib-bin-check.sh : This will check all installed library packages to see if an application is also part of the package.
|
||||
The relationship to security is that the SHA256 hash check will fail if a 32 bit version overwrites it.
|
||||
Also, the less binaries on a system, the more secure it is by virtue of removing the chance for an exploitable bug.
|
||||
|
||||
|
||||
|
||||
usage : simply invoke the script name in the terminal.
|
||||
|
||||
|
||||
|
||||
== pax-utils ==
|
||||
|
||||
pax-utils is a small set of various PaX aware and related utilities for
|
||||
ELF binaries.
|
||||
( This package can be found in oe-core )
|
||||
|
||||
- scanelf : With this application you can print out information specific to the ELF structure of a binary.
|
||||
pax-utils is a small set of various PaX aware and related utilities for
|
||||
ELF binaries.
|
||||
|
||||
- scanelf : With this application you can print out information specific to the ELF structure of a binary.
|
||||
For more help please consult the man pages or the readme file.
|
||||
|
||||
|
||||
- pspax : is a user-space utility that scans the proc directory and list
|
||||
ELF types, as well as their respective PaX flags and filenames and
|
||||
attributes. Depending on build options, it may additionaly display the
|
||||
@@ -142,7 +144,7 @@ help for each package.
|
||||
|
||||
usage : simply invoke the script name in the terminal.
|
||||
|
||||
|
||||
|
||||
== buck-security ==
|
||||
|
||||
Buck-Security is a security scanner for Debian and Ubuntu Linux. It runs a couple of important checks and helps you to harden your Linux
|
||||
@@ -150,7 +152,7 @@ help for each package.
|
||||
|
||||
usage : switch to directory /usr/local/buck-security.
|
||||
before running the script, you should check the activated checks in conf/buck-security.conf file.
|
||||
after altering the changes, save the file and simply run :
|
||||
after altering the changes, save the file and simply run :
|
||||
|
||||
./buck-security
|
||||
|
||||
@@ -158,44 +160,44 @@ help for each package.
|
||||
|
||||
More detailed usage can be found typing ./buck-security --help
|
||||
|
||||
|
||||
|
||||
== libseccomp ==
|
||||
|
||||
The libseccomp library provides and easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism: seccomp.
|
||||
The libseccomp API is designed to abstract away the underlying BPF based syscall filter language and present a more conventional
|
||||
The libseccomp library provides and easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism: seccomp.
|
||||
The libseccomp API is designed to abstract away the underlying BPF based syscall filter language and present a more conventional
|
||||
function-call based filtering interface that should be familiar to, and easily adopted by application developers.
|
||||
|
||||
usage : More detailed usage can be found in the man pages and README file of the package.
|
||||
|
||||
|
||||
|
||||
|
||||
== checksecurity ==
|
||||
|
||||
|
||||
checksecurity is a simple package which will scan your system for several simple security holes.
|
||||
It uses a simple collection of plugins, all of which are shell scripts which are configured by environmental variables.
|
||||
|
||||
!! IMPORTANT !!
|
||||
!! IMPORTANT !!
|
||||
|
||||
When including this package in the image, please consider adding the following line to the end of the conf/local.conf file:
|
||||
|
||||
CORE_IMAGE_EXTRA_INSTALL = "coreutils"
|
||||
CORE_IMAGE_EXTRA_INSTALL = "coreutils"
|
||||
|
||||
usage : To start checksecurity simply write in the terminal :
|
||||
|
||||
|
||||
checksecurity
|
||||
|
||||
More detailed usage can be found in the man pages and README file of the package.
|
||||
More detailed usage can be found in the man pages and README file of the package.
|
||||
|
||||
|
||||
== nikto ==
|
||||
|
||||
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items,
|
||||
including over 6500 potentially dangerous files/CGIs, checks for outdated versions of over 1250 servers, and version specific
|
||||
problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files,
|
||||
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items,
|
||||
including over 6500 potentially dangerous files/CGIs, checks for outdated versions of over 1250 servers, and version specific
|
||||
problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files,
|
||||
HTTP server options, and will attempt to identify installed web servers and software.
|
||||
|
||||
usage : To start nikto simply write in the terminal :
|
||||
|
||||
|
||||
nikto
|
||||
|
||||
More detailed usage can be found in the man pages and README file of the package.
|
||||
@@ -203,18 +205,15 @@ help for each package.
|
||||
|
||||
== nmap ==
|
||||
|
||||
Nmap ("Network Mapper") is a free and open source (license) utility for network discovery and security auditing.
|
||||
Many systems and network administrators also find it useful for tasks such as network inventory,
|
||||
managing service upgrade schedules, and monitoring host or service uptime.
|
||||
Nmap ("Network Mapper") is a free and open source (license) utility for network discovery and security auditing.
|
||||
Many systems and network administrators also find it useful for tasks such as network inventory,
|
||||
managing service upgrade schedules, and monitoring host or service uptime.
|
||||
|
||||
usage : To start nikto simply write in the terminal :
|
||||
|
||||
|
||||
nmap
|
||||
|
||||
|
||||
More detailed usage can be found in the man pages and README file of the package.
|
||||
|
||||
|
||||
|
||||
|
||||
License
|
||||
=======
|
||||
|
||||
@@ -18,29 +18,14 @@ SRC_URI = "http://sourceforge.net/projects/bastille-linux/files/bastille-linux/3
|
||||
file://fix_version_parse.patch \
|
||||
file://yocto-standard-patch.patch \
|
||||
file://Curses-and-IOLoader-changes.patch \
|
||||
"
|
||||
"
|
||||
|
||||
SRC_URI[md5sum] = "df803f7e38085aa5da79f85d0539f91b"
|
||||
SRC_URI[sha256sum] = "0ea25191b1dc1c8f91e1b6f8cb5436a3aa1e57418809ef902293448efed5021a"
|
||||
|
||||
S = "${WORKDIR}/Bastille"
|
||||
|
||||
#CONFFILES_${PN} += "${sysconfdir}/init.d/skeleton"
|
||||
#
|
||||
#do_compile () {
|
||||
# ${CC} ${WORKDIR}/skeleton_test.c -o ${WORKDIR}/skeleton-test
|
||||
#}
|
||||
#
|
||||
do_install () {
|
||||
# install -d ${D}${sysconfdir}/init.d
|
||||
# cat ${WORKDIR}/skeleton | \
|
||||
# sed -e 's,/etc,${sysconfdir},g' \
|
||||
# -e 's,/usr/sbin,${sbindir},g' \
|
||||
# -e 's,/var,${localstatedir},g' \
|
||||
# -e 's,/usr/bin,${bindir},g' \
|
||||
# -e 's,/usr,${prefix},g' > ${D}${sysconfdir}/init.d/skeleton
|
||||
# chmod a+x ${D}${sysconfdir}/init.d/skeleton
|
||||
|
||||
install -d ${D}${sbindir}
|
||||
install -d ${D}${libdir}/perl/site_perl/Curses
|
||||
ln -sf perl ${D}/${libdir}/perl5
|
||||
@@ -55,106 +40,100 @@ do_install () {
|
||||
install -d ${D}${localstatedir}/lock/subsys/bastille
|
||||
install -d ${D}${localstatedir}/log/Bastille
|
||||
install -d ${D}${sysconfdir}/Bastille
|
||||
|
||||
install -m 0755 AutomatedBastille ${D}${sbindir}
|
||||
install -m 0755 BastilleBackEnd ${D}${sbindir}
|
||||
install -m 0755 InteractiveBastille ${D}${sbindir}
|
||||
# Questions.txt has been replaced by Modules.txt and Questions/
|
||||
#install -m 0644 Questions.txt ${D}${datadir}/Bastille
|
||||
install -m 0644 Modules.txt ${D}${datadir}/Bastille
|
||||
install -m 0755 AutomatedBastillei ${D}${sbindir}
|
||||
install -m 0755 BastilleBackEnd ${D}${sbindir}
|
||||
install -m 0755 InteractiveBastille ${D}${sbindir}
|
||||
install -m 0644 Modules.txt ${D}${datadir}/Bastille
|
||||
# New Weights file(s).
|
||||
install -m 0644 Weights.txt ${D}${datadir}/Bastille
|
||||
install -m 0644 Weights.txt ${D}${datadir}/Bastille
|
||||
# Castle graphic
|
||||
install -m 0644 bastille.jpg ${D}${datadir}/Bastille/
|
||||
install -m 0644 bastille.jpg ${D}${datadir}/Bastille/
|
||||
# Javascript file
|
||||
install -m 0644 wz_tooltip.js ${D}${datadir}/Bastille/
|
||||
install -m 0644 Credits ${D}${datadir}/Bastille
|
||||
install -m 0644 FKL/configs/fkl_config_redhat.cfg ${D}${datadir}/Bastille/FKL/configs/
|
||||
install -m 0644 wz_tooltip.js ${D}${datadir}/Bastille/
|
||||
install -m 0644 Credits ${D}${datadir}/Bastille
|
||||
install -m 0644 FKL/configs/fkl_config_redhat.cfg ${D}${datadir}/Bastille/FKL/configs/
|
||||
install -m 0755 RevertBastille ${D}${sbindir}
|
||||
install -m 0755 bin/bastille ${D}${sbindir}
|
||||
install -m 0644 bastille-firewall ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-reset ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-schedule ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-tmpdir-defense.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-tmpdir.csh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-tmpdir.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall.cfg ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-ipchains ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-netfilter ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-early.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-pre-audit.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 complete.xbm ${D}${datadir}/Bastille
|
||||
install -m 0644 incomplete.xbm ${D}${datadir}/Bastille
|
||||
install -m 0644 disabled.xpm ${D}${datadir}/Bastille
|
||||
install -m 0644 ifup-local ${D}${datadir}/Bastille
|
||||
install -m 0644 hosts.allow ${D}${datadir}/Bastille
|
||||
|
||||
install -m 0755 RevertBastille ${D}${sbindir}
|
||||
install -m 0755 bin/bastille ${D}${sbindir}
|
||||
install -m 0644 bastille-firewall ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-reset ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-schedule ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-tmpdir-defense.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-tmpdir.csh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-tmpdir.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall.cfg ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-ipchains ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-netfilter ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-early.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 bastille-firewall-pre-audit.sh ${D}${datadir}/Bastille
|
||||
install -m 0644 complete.xbm ${D}${datadir}/Bastille
|
||||
install -m 0644 incomplete.xbm ${D}${datadir}/Bastille
|
||||
install -m 0644 disabled.xpm ${D}${datadir}/Bastille
|
||||
install -m 0644 ifup-local ${D}${datadir}/Bastille
|
||||
install -m 0644 hosts.allow ${D}${datadir}/Bastille
|
||||
install -m 0644 Bastille/AccountSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Apache.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/API.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 ${WORKDIR}/AccountPermission.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/FileContent.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/HPSpecific.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/ServiceAdmin.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/Miscellaneous.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 Bastille/BootSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/ConfigureMiscPAM.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/DisableUserTools.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/DNS.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/FilePermissions.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/FTP.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Firewall.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/OSX_API.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/LogAPI.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/HP_UX.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/IOLoader.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Patches.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Logging.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/MiscellaneousDaemons.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/PatchDownload.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Printing.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/PSAD.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/RemoteAccess.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/SecureInetd.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Sendmail.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/TestDriver.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/TMPDIR.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_AccountSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Apache.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_DNS.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_FTP.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_HP_UX.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_MiscellaneousDaemons.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Patches.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_SecureInetd.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Sendmail.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_BootSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_DisableUserTools.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_FilePermissions.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Logging.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Printing.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/IPFilter.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille_Curses.pm ${D}${libdir}/perl5/site_perl
|
||||
install -m 0644 Bastille_Tk.pm ${D}${libdir}/perl5/site_perl
|
||||
install -m 0644 Curses/Widgets.pm ${D}${libdir}/perl5/site_perl/Curses
|
||||
|
||||
install -m 0644 OSMap/LINUX.bastille ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/LINUX.system ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/LINUX.service ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/HP-UX.bastille ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/HP-UX.system ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/HP-UX.service ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/OSX.bastille ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/OSX.system ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 ${WORKDIR}/config ${D}${sysconfdir}/Bastille/config
|
||||
|
||||
install -m 0644 Bastille/AccountSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Apache.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/API.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 ${WORKDIR}/AccountPermission.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/FileContent.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/HPSpecific.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/ServiceAdmin.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 ${WORKDIR}/Miscellaneous.pm ${D}${libdir}/Bastille/API
|
||||
install -m 0644 Bastille/BootSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/ConfigureMiscPAM.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/DisableUserTools.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/DNS.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/FilePermissions.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/FTP.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Firewall.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/OSX_API.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/LogAPI.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/HP_UX.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/IOLoader.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Patches.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Logging.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/MiscellaneousDaemons.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/PatchDownload.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Printing.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/PSAD.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/RemoteAccess.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/SecureInetd.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/Sendmail.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/TestDriver.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/TMPDIR.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_AccountSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Apache.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_DNS.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_FTP.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_HP_UX.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_MiscellaneousDaemons.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Patches.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_SecureInetd.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Sendmail.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_BootSecurity.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_DisableUserTools.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_FilePermissions.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Logging.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/test_Printing.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille/IPFilter.pm ${D}${libdir}/Bastille
|
||||
install -m 0644 Bastille_Curses.pm ${D}${libdir}/perl5/site_perl
|
||||
install -m 0644 Bastille_Tk.pm ${D}${libdir}/perl5/site_perl
|
||||
install -m 0644 Curses/Widgets.pm ${D}${libdir}/perl5/site_perl/Curses
|
||||
|
||||
|
||||
|
||||
install -m 0644 OSMap/LINUX.bastille ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/LINUX.system ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/LINUX.service ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/HP-UX.bastille ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/HP-UX.system ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/HP-UX.service ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/OSX.bastille ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 OSMap/OSX.system ${D}${datadir}/Bastille/OSMap
|
||||
install -m 0644 ${WORKDIR}/config ${D}${sysconfdir}/Bastille/config
|
||||
|
||||
for file in `cat Modules.txt` ; do
|
||||
install -m 0644 Questions/$file.txt ${D}${datadir}/Bastille/Questions
|
||||
install -m 0644 Questions/$file.txt ${D}${datadir}/Bastille/Questions
|
||||
done
|
||||
|
||||
|
||||
ln -s ${D}${sbindir}/RevertBastille ${D}${sbindir}/UndoBastille
|
||||
}
|
||||
|
||||
|
||||
@@ -22,8 +22,14 @@ do_compile() {
|
||||
}
|
||||
|
||||
do_install() {
|
||||
install -d ${D}${exec_prefix}/local/${PN}
|
||||
cp -r ${S}/* ${D}${exec_prefix}/local/${PN}
|
||||
install -d ${D}${bindir}/buck
|
||||
cp -r ${S}/* ${D}${bindir}/buck
|
||||
cp -r ${S}/buck-security ${D}${bindir}
|
||||
sed -i 's:use lib "checks":use lib "${bindir}/buck/checks":g' ${D}${bindir}/buck-security
|
||||
sed -i 's:use lib "checks/lib":use lib "${bindir}/buck/checks/lib":g' ${D}${bindir}/buck-security
|
||||
sed -i 's:use lib "lib":use lib "${bindir}/buck/lib":g' ${D}${bindir}/buck-security
|
||||
sed -i 's:conf/buck-security.conf:${bindir}/buck/conf/buck-security.conf:g' ${D}${bindir}/buck-security
|
||||
|
||||
}
|
||||
|
||||
FILES_${PN} = "${exec_prefix}/*"
|
||||
FILES_${PN} = "${bindir}/*"
|
||||
|
||||
@@ -11,7 +11,7 @@ SRC_URI = "http://ftp.de.debian.org/debian/pool/main/c/checksecurity/checksecuri
|
||||
SRC_URI[md5sum] = "ad6cfe0cd66ebdd16dd5d4ee5fa8fa17"
|
||||
SRC_URI[sha256sum] = "a2bc2355358d6daf3cb72485d564e82cb541e8516f23b50522c816853ecd13c2"
|
||||
|
||||
do_compile() {
|
||||
do_compile() {
|
||||
}
|
||||
|
||||
do_install() {
|
||||
|
||||
@@ -13,89 +13,89 @@ SRC_URI[md5sum] = "efcc98a918becb77471ee9a5df0a7b1e"
|
||||
SRC_URI[sha256sum] = "0e672a6a46bf2abde419a0e8ea846696d7f32e99ad18a6b405736ee6af07509f"
|
||||
|
||||
do_install() {
|
||||
install -d ${D}${bindir}
|
||||
install -d ${D}${datadir}
|
||||
install -d ${D}${datadir}/man/man1
|
||||
install -d ${D}${datadir}/doc/nikto
|
||||
install -d ${D}${sysconfdir}/nikto
|
||||
install -d ${D}${sysconfdir}/nikto/databases
|
||||
install -d ${D}${sysconfdir}/nikto/plugins
|
||||
install -d ${D}${sysconfdir}/nikto/templates
|
||||
install -d ${D}${bindir}
|
||||
install -d ${D}${datadir}
|
||||
install -d ${D}${datadir}/man/man1
|
||||
install -d ${D}${datadir}/doc/nikto
|
||||
install -d ${D}${sysconfdir}/nikto
|
||||
install -d ${D}${sysconfdir}/nikto/databases
|
||||
install -d ${D}${sysconfdir}/nikto/plugins
|
||||
install -d ${D}${sysconfdir}/nikto/templates
|
||||
|
||||
install -m 0644 databases/db_404_strings ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_content_search ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_dictionary ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_embedded ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_favicon ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_headers ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_httpoptions ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_multiple_index ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_outdated ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_parked_strings ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_realms ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_server_msgs ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_subdomains ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_tests ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_variables ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_404_strings ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_content_search ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_dictionary ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_embedded ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_favicon ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_headers ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_httpoptions ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_multiple_index ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_outdated ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_parked_strings ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_realms ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_server_msgs ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_subdomains ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_tests ${D}${sysconfdir}/nikto/databases
|
||||
install -m 0644 databases/db_variables ${D}${sysconfdir}/nikto/databases
|
||||
|
||||
install -m 0644 plugins/JSON-PP.pm ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/LW2.pm ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_apache_expect_xss.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_apacheusers.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_auth.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_cgi.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_clientaccesspolicy.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_content_search.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_cookies.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_core.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_dictionary_attack.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_embedded.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_favicon.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_fileops.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_headers.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_httpoptions.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_msgs.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_multiple_index.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_outdated.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_parked.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_paths.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_put_del_test.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_csv.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_html.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_msf.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_nbe.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_text.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_xml.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_robots.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_siebel.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_ssl.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_subdomain.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_tests.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/JSON-PP.pm ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/LW2.pm ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_apache_expect_xss.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_apacheusers.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_auth.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_cgi.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_clientaccesspolicy.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_content_search.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_cookies.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_core.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_dictionary_attack.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_embedded.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_favicon.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_fileops.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_headers.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_httpoptions.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_msgs.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_multiple_index.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_outdated.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_parked.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_paths.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_put_del_test.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_csv.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_html.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_msf.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_nbe.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_text.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_report_xml.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_robots.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_siebel.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_ssl.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_subdomain.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
install -m 0644 plugins/nikto_tests.plugin ${D}${sysconfdir}/nikto/plugins
|
||||
|
||||
install -m 0644 templates/htm_close.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_end.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_host_head.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_host_im.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_host_item.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_start.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_stop.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_start.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_summary.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_end.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_host_head.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_host_im.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_host_item.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_start.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_summary.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_close.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_end.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_host_head.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_host_im.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_host_item.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_start.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_stop.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_start.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/htm_summary.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_end.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_host_head.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_host_im.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_host_item.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_start.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
install -m 0644 templates/xml_summary.tmpl ${D}${sysconfdir}/nikto/templates
|
||||
|
||||
install -m 0644 nikto.conf ${D}${sysconfdir}
|
||||
install -m 0644 nikto.conf ${D}${sysconfdir}
|
||||
|
||||
install -m 0755 nikto.pl ${D}${bindir}/nikto
|
||||
install -m 0644 replay.pl ${D}${bindir}
|
||||
install -m 0644 docs/nikto.1 ${D}${datadir}/man/man1
|
||||
install -m 0755 nikto.pl ${D}${bindir}/nikto
|
||||
install -m 0644 replay.pl ${D}${bindir}
|
||||
install -m 0644 docs/nikto.1 ${D}${datadir}/man/man1
|
||||
|
||||
install -m 0644 docs/CHANGES.txt ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/LICENSE.txt ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/nikto.dtd ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/nikto_manual.html ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/CHANGES.txt ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/LICENSE.txt ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/nikto.dtd ${D}${datadir}/doc/nikto
|
||||
install -m 0644 docs/nikto_manual.html ${D}${datadir}/doc/nikto
|
||||
}
|
||||
|
||||
@@ -3,7 +3,7 @@ DESCRIPTION = "Nmap ("Network Mapper") is a free and open source (license) utili
|
||||
SECTION = "security"
|
||||
LICENSE = "GPL-2.0"
|
||||
LIC_FILES_CHKSUM = "file://${COMMON_LICENSE_DIR}/GPL-2.0;md5=801f80980d171dd6425610833a22dbe6"
|
||||
FILES_${PN} += "${target_datadir}/ncat"
|
||||
FILES_${PN} += "${target_datadir}/ncat"
|
||||
|
||||
SRC_URI = "http://nmap.org/dist/${PN}-${PV}.tar.bz2 \
|
||||
file://lua.patch"
|
||||
@@ -15,7 +15,7 @@ inherit autotools
|
||||
|
||||
DEPENDS = "libpcap"
|
||||
|
||||
EXTRA_OECONF = "--without-liblua --without-zenmap"
|
||||
EXTRA_OECONF = "--without-liblua --without-zenmap --without-subversion --with-pcap=linux"
|
||||
|
||||
do_configure() {
|
||||
autoconf
|
||||
|
||||
@@ -1,20 +0,0 @@
|
||||
SUMMARY = "Security-focused ELF files checking tool"
|
||||
DESCRIPTION = "This is a small set of various PaX aware and related \
|
||||
utilities for ELF binaries. It can check ELF binary files and running \
|
||||
processes for issues that might be relevant when using ELF binaries \
|
||||
along with PaX, such as non-PIC code or executable stack and heap."
|
||||
HOMEPAGE = "http://www.gentoo.org/proj/en/hardened/pax-utils.xml"
|
||||
LICENSE = "GPLv2+"
|
||||
LIC_FILES_CHKSUM = "file://COPYING;md5=eb723b61539feef013de476e68b5c50a"
|
||||
|
||||
SRC_URI = "http://gentoo.osuosl.org/distfiles/pax-utils-${PV}.tar.xz"
|
||||
|
||||
SRC_URI[md5sum] = "8ae7743ad11500f7604f2e817221d877"
|
||||
SRC_URI[sha256sum] = "1ac4cee9a9ca97a723505eb29a25e50adeccffba3f0f0ef4f035cf082caf3b84"
|
||||
PR = "r0"
|
||||
|
||||
do_install() {
|
||||
oe_runmake PREFIX=${D}${prefix} DESTDIR=${D} install
|
||||
}
|
||||
|
||||
BBCLASSEXTEND = "native"
|
||||
@@ -18,7 +18,7 @@ S = "${WORKDIR}/libwhisker2-2.5"
|
||||
inherit cpan-base perlnative
|
||||
|
||||
do_install() {
|
||||
install -d 755 ${D}${PERLLIBDIRS}/vendor_perl/${PERLVERSION}
|
||||
install -d 755 ${D}${datadir}/perl/${PERLVERSION}
|
||||
oe_runmake install DESTDIR=${D} INSTALLDIR=${PERLLIBDIRS}/vendor_perl/${PERLVERSION} MANDIR=${datadir}/perl/${PERLVERSION}
|
||||
install -d 755 ${D}${PERLLIBDIRS}/vendor_perl/${PERLVERSION}
|
||||
install -d 755 ${D}${datadir}/perl/${PERLVERSION}
|
||||
oe_runmake install DESTDIR=${D} INSTALLDIR=${PERLLIBDIRS}/vendor_perl/${PERLVERSION} MANDIR=${datadir}/perl/${PERLVERSION}
|
||||
}
|
||||
|
||||
@@ -22,18 +22,18 @@ SRC_URI = "file://find-chroot-py.sh \
|
||||
S = "${WORKDIR}"
|
||||
|
||||
do_install() {
|
||||
install -d ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-chroot-py.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-chroot.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-elf4tmp.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-execstack.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-hidden-exec.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-nodrop-groups.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-sh4errors.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-sh4tmp.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/lib-bin-check.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/rpm-chksec.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/rpm-drop-groups.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/selinux-check-devices.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/selinux-ls-unconfined.sh ${D}${bindir}
|
||||
install -d ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-chroot-py.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-chroot.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-elf4tmp.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-execstack.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-hidden-exec.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-nodrop-groups.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-sh4errors.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/find-sh4tmp.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/lib-bin-check.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/rpm-chksec.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/rpm-drop-groups.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/selinux-check-devices.sh ${D}${bindir}
|
||||
install -m 0755 ${WORKDIR}/selinux-ls-unconfined.sh ${D}${bindir}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user