# Contributor: IT Offshore <developer@it-offshore.co.uk>
# Maintainer:
pkgname=psad
pkgver=2.2.1
pkgrel=1
pkgdesc="3 lightweight system daemons that analyze iptables log messages to detect port scans and other suspicious traffic"
url="http://cipherdyne.org/psad/"
arch="all"
license="GPL"
depends="perl iptables ip6tables ssmtp mailx psmisc perl-bit-vector perl-date-calc perl-iptables-chainmgr perl-iptables-parse perl-net-ipv4addr perl-unix-syslog net-tools"
subpackages="$pkgname-doc"
source="http://cipherdyne.org/psad/download/$pkgname-nodeps-$pkgver.tar.gz
	psad.initd
	psad.confd
	"

_builddir="$srcdir"/$pkgname-$pkgver

build() {
	cd "$_builddir"

	#Set the config dirs
  sed -e "s|'/usr/sbin'|'$pkgdir/usr/sbin'|" \
      -e "s|'/usr/bin'|'$pkgdir/usr/bin'|" \
      -e "s|my \$mpath = \"/usr/share/man/man\$section\";|my \$mpath = \"$pkgdir/usr/share/man/man\$section\";|" \
          ./install.pl -i
       #/usr/sbin/psadwatchd set with last cmd
  sed -e "s|/var/log/psad|$pkgdir&|" \
      -e "s|/var/run/psad|$pkgdir&|" \
      -e "s|/var/lib/psad|$pkgdir&|" \
      -e "s|/usr/lib/psad|$pkgdir&|" \
      -e "s|/etc/psad|$pkgdir&|" \
      -e "s|/usr/bin/whois_psad|$pkgdir/usr/bin/whois|" \
      -e "s|/usr/sbin/fwcheck_psad|$pkgdir&|" \
      -e "s|/usr/sbin/kmsgsd|$pkgdir&|" \
      -e "s|/usr/sbin/psad|$pkgdir&|" \
        ./psad.conf -i

       # set mail command to mailx
  sed -e 's|/bin/mail;|/usr/bin/mail;|g' -i ./psad.conf

	#Disable install of generic init script & setting numeric run level
	START=$(sed -n '/if ($init_dir and &is_root()) {/=' ./install.pl)
	END=$(expr $START + 7)
        #Busybox sed does not support +7d
	sed -e ''$START','$END'd' ./install.pl -i

	#populate install.answers so build does not wait for them
	echo -e "Would you like to merge the config from the existing psad installation:\t n;" > ./install.answers
        echo -e "Preserve any user modfications in etc psad signatures:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad icmp_types:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad icmp6_types:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad posf:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad auto_dl:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad snort_rule_dl:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad pf os:\t y;" >> ./install.answers
        echo -e "Preserve any user modfications in etc psad ip_options:\t y;" >> ./install.answers
        echo -e "Would you like alerts sent to a different address:\t y;" >> ./install.answers
        echo -e "Email addresses:\t root@localhost;" >> ./install.answers
        echo -e "Would you like psad to only parse specific strings in iptables messages:\t n;" >> ./install.answers
        echo -e "First is it ok to leave the HOME_NET setting as any:\t y;" >> ./install.answers
        echo -e "Would you like to enable DShield alerts:\t n;" >> ./install.answers
        echo -e "Would you like to install the latest signatures from http www cipherdyne org psad signatures:\t n;" >> ./install.answers
        echo -e "Enable psad at boot time:\t n;" >> ./install.answers
}

package() {
	cd "$_builddir"

	mkdir -p $pkgdir/etc/psad \
                 $pkgdir/usr/bin \
                 $pkgdir/usr/sbin \
                 $pkgdir/usr/share/man/man8 \
                 $pkgdir/var/lib/psad \
                 $pkgdir/var/log/psad \
                 $pkgdir/var/run/psad
	# add dummy whois so build completes
	ln -s /bin/busybox $pkgdir/usr/bin/whois
	# dummy runlevel 1 / skip perl module installation
	./install.pl --runlevel 1 --Use-answers --Skip-mod-install

        #Set correct permissions
	chmod -R o+r $pkgdir/etc/psad
	chmod -R o+r $pkgdir/usr/sbin/*
	chmod 0700 $pkgdir/var/lib/psad
	#remove whois symbolic link
	rm -rf $pkgdir/usr/bin/whois

	# Fix the config
	sed -e "s|$pkgdir||" $pkgdir/etc/psad/psad.conf -i
	sed -e "s|$pkgdir||" $pkgdir/var/log/psad/install.log -i

	#install init script & config defaults
	install -m755 -D "$srcdir"/$pkgname.initd \
		"$pkgdir"/etc/init.d/$pkgname || return 1
	install -m644 -D "$srcdir"/$pkgname.confd \
		"$pkgdir"/etc/conf.d/$pkgname || return 1
}

md5sums="ee600d9b6b4b915b026370c9a3726b5f  psad-nodeps-2.2.1.tar.gz
e079dfcd533bc9bcf6f32525868fdd9b  psad.initd
bc07efebb41cc23c4be129bbbacc874b  psad.confd"
sha256sums="0422cdd1a37d4c8fcc1a4ce6e7c4a6974e58fdde82242f45b83eb6beb85708b5  psad-nodeps-2.2.1.tar.gz
f1570450fd5e4e6a6e044b52ecd342d8f2bc2034ec8699c244b9f1a79d38026c  psad.initd
74c72225fa37c367a458321b737050cacaf262f32b0cc13babc54468ff1988b9  psad.confd"
sha512sums="9e3f475376c3c7b753e71676f5c9d639e9fffd93caf864faa130f8030e37f9a6c57ba59c9519d2bd8dde945f7ff7a014ca2a710bd4b7be9721ca7f13f879b970  psad-nodeps-2.2.1.tar.gz
e4daea5c93b72d9818388435dd90d24360336cc3a46c698feb01162e40b78a0f96241054368303b3093e64f1cd517db08de4b6e128a8e0ec77e6b9770e10cec9  psad.initd
a80666f59356cc6157a9f5dca132991d4f1e0afda8f673d602de2557219d5521bec9ae148330e98d9483175d14d96e4cc2ccd11541d8b187b0e47f44ba4ada54  psad.confd"