From ceb90dda6ed16f2640fb7f54a66633d9463e5529 Mon Sep 17 00:00:00 2001
From: Boris V <david.cla2@gmail.com>
Date: Mon, 30 Jan 2017 19:06:04 +0700
Subject: network/psad: Added (Intrusion Detection and Log Analysis).

Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
---
 network/psad/doinst.sh | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)
 create mode 100644 network/psad/doinst.sh

(limited to 'network/psad/doinst.sh')

diff --git a/network/psad/doinst.sh b/network/psad/doinst.sh
new file mode 100644
index 000000000000..740c9470bc11
--- /dev/null
+++ b/network/psad/doinst.sh
@@ -0,0 +1,35 @@
+config() {
+  NEW="$1"
+  OLD="$(dirname $NEW)/$(basename $NEW .new)"
+  # If there's no config file by that name, mv it over:
+  if [ ! -r $OLD ]; then
+    mv $NEW $OLD
+  elif [ "$(cat $OLD | md5sum)" = "$(cat $NEW | md5sum)" ]; then
+    # toss the redundant copy
+    rm $NEW
+  fi
+  # Otherwise, we leave the .new copy for the admin to consider...
+}
+
+preserve_perms() {
+  NEW="$1"
+  OLD="$(dirname $NEW)/$(basename $NEW .new)"
+  if [ -e $OLD ]; then
+    cp -a $OLD ${NEW}.incoming
+    cat $NEW > ${NEW}.incoming
+    mv ${NEW}.incoming $NEW
+  fi
+  config $NEW
+}
+
+preserve_perms etc/rc.d/rc.psad.new
+config etc/psad/auto_dl.new
+config etc/psad/icmp6_types.new
+config etc/psad/icmp_types.new
+config etc/psad/ip_options.new
+config etc/psad/pf.os.new
+config etc/psad/posf.new
+config etc/psad/protocols.new
+config etc/psad/psad.conf.new
+config etc/psad/signatures.new
+config etc/psad/snort_rule_dl.new
-- 
cgit v1.2.3