1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-27 05:10:36 +00:00

Initial import of snort-1.2, a

lightweight network intrusion detection system.
This commit is contained in:
Dirk Froemberg 1999-08-02 10:14:11 +00:00
parent 1d9ab0ae28
commit 35896a4e7a
Notes: svn2git 2021-03-31 03:12:20 +00:00
svn path=/head/; revision=20489
5 changed files with 59 additions and 0 deletions

25
security/snort/Makefile Normal file
View File

@ -0,0 +1,25 @@
# New ports collection makefile for: snort
# Version required: 1.2
# Date created: Mon Aug 2 12:04:08 CEST 1999
# Whom: Dirk Froemberg <dirk@FreeBSD.org>
#
# $Id$
#
DISTNAME= snort-1.2
CATEGORIES= security net
MASTER_SITES= http://www.clark.net/~roesch/ \
http://www.physik.TU-Berlin.DE/~ibex/ports/distfiles/
MAINTAINER= dirk@FreeBSD.org
GNU_CONFIGURE= yes
post-install:
${MKDIR} ${PREFIX}/share/snort
.for i in CREDITS RULES.SAMPLE USAGE backdoor-lib misc-lib overflow-lib \
scan-lib snort-lib web-lib
${INSTALL_DATA} ${WRKSRC}/$i ${PREFIX}/share/snort
.endfor
.include <bsd.port.mk>

1
security/snort/distinfo Normal file
View File

@ -0,0 +1 @@
MD5 (snort-1.2.tar.gz) = 5cc7f80915e1f7719bf6a2a310b77948

View File

@ -0,0 +1 @@
Lightweight network intrusion detection system

21
security/snort/pkg-descr Normal file
View File

@ -0,0 +1,21 @@
Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network intrusion detection system. It features rules based logging
and can perform content searching/matching in addition to being used to detect
a variety of other attacks and probes, such as buffer overflows, stealth port
scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting
capabilty, with alerts being sent to syslog, a seperate "alert" file, or even
to a Windows computer via Samba.
Packets are logged in their decoded form to directories which are generated
based upon the IP address of the remote peer. This allows Snort to be used as
a sort of "poor man's intrusion detection system" if you specify what traffic
you want to record and what to let through.
For instance, I use it to record traffic of interest to the six computers in
my office at work while I'm away on travel or gone for the weekend. It's
also nice for debugging network code since it shows you most of the Important
Stuff(TM) about your packets (as I see it anyway). The code is pretty easy
to modify to provide more complete packet decoding, so feel free to make
suggestions.
WWW: http://http://www.clark.net/~roesch/security.html

11
security/snort/pkg-plist Normal file
View File

@ -0,0 +1,11 @@
bin/snort
share/snort/CREDITS
share/snort/RULES.SAMPLE
share/snort/USAGE
share/snort/backdoor-lib
share/snort/misc-lib
share/snort/overflow-lib
share/snort/scan-lib
share/snort/snort-lib
share/snort/web-lib
@dirrm share/snort