110dd FreshPorts -- security/logcheck
FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
logcheck 1.3.15 security on this many watch lists=49 search for ports that depend on this port
Auditing tool for system logs on Unix boxes
Maintained by: glarkin@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
License: not specified in port


Mails anomalies in the system logfiles to the administrator.

Logcheck helps spot problems, anomalies and security violations
in your logfiles automatically and will send the summaries to you
via e-mail. Logcheck is run as a cron job.

WWW: http://logcheck.alioth.debian.org/
SVNWeb : Main Web Site : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only required dependencies information. Optional dependencies are not covered.

Required To Build:
  1. lang/perl5.12
Required To Run:
  1. mail/mime-construct
  2. mail/procmail
  3. shells/bash
  4. lang/perl5.12
There are no ports dependent upon this port

To install the port: cd /usr/ports/security/logcheck/ && make install clean
To add the package: pkg_add -r logcheck


Configuration Options
     No options to configure

Master Sites:
  1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/
  2. ftp://ftp.acc.umu.se/debian/pool/main/l/logcheck/
  3. ftp://ftp.au.debian.org/debian/pool/main/l/logcheck/
  4. ftp://ftp.bg.debian.org/debian/pool/main/l/logcheck/
  5. ftp://ftp.br.debian.org/debian/pool/main/l/logcheck/
  6. ftp://ftp.cl.debian.org/debian/pool/main/l/logcheck/
  7. ftp://ftp.cz.debian.org/debian/pool/main/l/logcheck/
  8. ftp://ftp.de.debian.org/debian/pool/main/l/logcheck/
  9. ftp://ftp.df.lth.se/pub/debian/pool/main/l/logcheck/
  10. ftp://ftp.ee.debian.org/debian/pool/main/l/logcheck/
  11. ftp://ftp.es.debian.org/debian/pool/main/l/logcheck/
  12. ftp://ftp.fi.debian.org/debian/pool/main/l/logcheck/
  13. ftp://ftp.fr.debian.org/debian/pool/main/l/logcheck/
  14. ftp://ftp.hk.debian.org/debian/pool/main/l/logcheck/
  15. ftp://ftp.hr.debian.org/debian/pool/main/l/logcheck/
  16. ftp://ftp.hu.debian.org/debian/pool/main/l/logcheck/
  17. ftp://ftp.ie.debian.org/debian/pool/main/l/logcheck/
  18. ftp://ftp.is.debian.org/debian/pool/main/l/logcheck/
  19. ftp://ftp.it.debian.org/debian/pool/main/l/logcheck/
  20. ftp://ftp.jp.debian.org/debian/pool/main/l/logcheck/
  21. ftp://ftp.nl.debian.org/debian/pool/main/l/logcheck/
  22. ftp://ftp.no.debian.org/debian/pool/main/l/logcheck/
  23. ftp://ftp.pl.debian.org/debian/pool/main/l/logcheck/
  24. ftp://ftp.ru.debian.org/debian/pool/main/l/logcheck/
  25. ftp://ftp.se.debian.org/debian/pool/main/l/logcheck/
  26. ftp://ftp.si.debian.org/debian/pool/main/l/logcheck/
  27. ftp://ftp.sk.debian.org/debian/pool/main/l/logcheck/
  28. ftp://ftp.snt.utwente.nl/pub/linux/debian/pool/main/l/logcheck/
  29. ftp://ftp.uk.debian.org/debian/pool/main/l/logcheck/
  30. ftp://ftp.us.debian.org/debian/pool/main/l/logcheck/
  31. ftp://ftp.wa.au.debian.org/debian/pool/main/l/logcheck/
  32. ftp://ftp2.de.debian.org/debian/pool/main/l/logcheck/
  33. ftp://mirror.symnds.com/debian/pool/main/l/logcheck/
  34. http://ring.nict.go.jp/archives/linux/debian/debian/pool/main/l/logcheck/
  35. http://www.gtlib.gatech.edu/pub/debian/pool/main/l/logcheck/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2008-09-09
    Affects: users of security/logcheck
    Author: glarkin@FreeBSD.org
    Reason: 
      logcheck now stores its configuration files in /usr/local/etc/logcheck
      instead of /usr/local/etc.  If you are upgrading the port from version
      1.1.1 to version 1.2.54, copy the following files to a temporary location,
      in case they are removed during the upgrade:
    
    	/usr/local/etc/logcheck.hacking
    	/usr/local/etc/logcheck.ignore
    	/usr/local/etc/logcheck.violations
    	/usr/local/etc/logcheck.violations.ignore
    
      e.g.:
    
    	cd /usr/local/etc
    	mkdir /tmp/logcheck.saveconf
    	cp logcheck.hacking logcheck.ignore logcheck.violations* \
    	   /tmp/logcheck.saveconf
    
      After the upgrade, integrate your local changes to the files listed
      above into the new configuration files found in the following directories:
    
    	/usr/local/etc/logcheck/cracking.d
    	/usr/local/etc/logcheck/ignore.d.paranoid
    	/usr/local/etc/logcheck/ignore.d.server
    	/usr/local/etc/logcheck/ignore.d.workstation
    	/usr/local/etc/logcheck/violations.d
    	/usr/local/etc/logcheck/violations.ignore.d
    
      Please consult the following files for more information about
      logcheck rules and reporting levels:
    
    	/usr/local/share/doc/logcheck/README.logcheck
    	/usr/local/share/doc/logcheck/README.logcheck-database
    
      Also note that the upgraded port installs a crontab file for user
      "logcheck" that executes the logcheck script every hour and emails
      the results to root.  If the installation process cannot install
      the crontab file, it can be installed manually from
      /usr/local/share/examples/logcheck/crontab.in, e.g.:
    
    	crontab -u logcheck /usr/local/share/examples/logcheck/crontab.in
    
    

Number of commits found: 45

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
16 Dec 2012 06:12:28
Original commit files touched by this commit  1.3.15
az search for other commits by this committer
- Set default perl version for ports which currently using
  (5.x+ and x < 12) scheme.

Approved by: bapt@ (portmgr@)
17 Oct 2012 19:18:56
Original commit files touched by this commit  1.3.15
glarkin search for other commits by this committer
- Converted a remaining conditional to OptionsNG

Feature safe:	yes
17 Oct 2012 19:14:19
Original commit files touched by this commit  1.3.15
glarkin search for other commits by this committer
- Updated to 1.3.15

PR:		ports/172520
Submitted by:	Takefu <takefu@airport.fm>
Feature safe:	yes
20 Mar 2012 20:13:42
Original commit files touched by this commit  1.3.14_1
glarkin search for other commits by this committer
- Reset cwd in pkg-plist back to PREFIX before dynamically adding more
  directives to TMPPLIST. Otherwise %D is "/", and the chown commands
  fail during package installation.
- Bumped PORTREVISION

Feature safe:   yes
08 Dec 2011 23:13:34
Original commit files touched by this commit  1.3.14
glarkin search for other commits by this committer
- Updated to 1.3.14
  ChangeLog:
http://packages.debian.org/changelogs/pool/main/l/logcheck/logcheck_1.3.14/changelog

PR:             ports/162810
Submitted by:   Takefu <takefu@airport.fm>
Feature safe:   yes
23 Nov 2011 19:37:24
Original commit files touched by this commit  1.3.13_1
glarkin search for other commits by this committer
- Updated the PAM ssh rule file to match messages emitted on FreeBSD vs.
  the Linux messages contained in the distro rule file
- Bumped PORTREVISION

PR:             ports/162330
Submitted by:   Shuichi KITAGUCHI <ki@hh.iij4u.or.jp>
Feature safe:   yes
03 Jul 2011 14:03:52
Original commit files touched by this commit  1.3.13
ohauer search for other commits by this committer
-remove MD5
14 Oct 2010 14:23:33
Original commit files touched by this commit  1.3.13
glarkin search for other commits by this committer
- Updated WWW: link to a more useful site

PR:             ports/151439
Submitted by:   "Zane C.B." <vvelox at vvelox dot net>
13 Oct 2010 01:09:44
Original commit files touched by this commit  1.3.13
glarkin search for other commits by this committer
- Updated to 1.3.13

  Changes:

  logcheck (1.3.13) unstable; urgency=low
    * ignore.d.server/pure-ftpd:
      - fixed user name pattern in logout message, thanks to Simon Breuss
        (LP: #619119)
    * violations.ignore.d/logcheck-sudo:
      - match COMMAND=list and TTY=console, thanks to Michel Messerschmidt
        for the patch (closes: #593482)
    * ignore.d.server/amavisd-new:
      - applied changes by Christian Drage (closes: #594605):
        - IPv6 support for IP addresses
        - allow PASSED SPAM in log
        - optional minus sign after "Hits:"
        - optional quarantine in log line
        - optional Message-ID

PR:             ports/151033
Submitted by:   Anton Yuzhaninov <citrin at citrin dot ru>
18 Aug 2010 19:07:03
Original commit files touched by this commit  1.3.12
glarkin search for other commits by this committer
- Updated to 1.3.12

PR:             ports/149770
Submitted by:   NAKAJI Hiroyuki <nakaji at jp dot freebsd dot org>
Approved by:    glarkin (maintainer)
07 Jul 2010 20:57:24
Original commit files touched by this commit  1.3.10
glarkin search for other commits by this committer
- Updated to 1.3.10

PR:             ports/146537
Submitted by:   Takefu <takefu at airport dot fm>
Feature safe:   yes
09 Jun 2010 17:29:38
Original commit files touched by this commit  1.2.69_2
glarkin search for other commits by this committer
- Parameterized more command names and paths to ensure that installation
  works with non-standard build settings.
16 Apr 2010 23:14:01
Original commit files touched by this commit  1.2.69_2
glarkin search for other commits by this committer
- Fix pkg-plist so directories installed out of PREFIX are removed
  when empty

PR:             ports/145741
Submitted by:   sahil
25 Jan 2010 23:23:02
Original commit files touched by this commit  1.2.69_2
glarkin search for other commits by this committer
- Fix permissions on DATADIR so code snippets can be compiled on the
  fly by logtail2.
- Bumped PORTREVISION

PR:             ports/143077, ports/143099
Submitted by:   Berend de Boer <berend@pobox.com>, Yasuhiro KIMURA
<yasu@utahime.org>
19 Jan 2010 14:11:58
Original commit files touched by this commit  1.2.69_1
glarkin search for other commits by this committer
- Fix quoting problem created in previous commit
- Bump PORTREVISION

PR:             ports/142966
Submitted by:   Yasuhiro KIMURA <yasu@utahime.org>
18 Jan 2010 22:38:05
Original commit files touched by this commit  1.2.69
glarkin search for other commits by this committer
- Updated to 1.2.69 [1]
- Added PORTSCOUT variable
- Added patches to clean up some paths that violate hier(7)
- Switched from using logtail to logtail2 (supports rotated log files)

PR:             ports/142017
Submitted by:   bsam [1]
18 Dec 2009 01:31:19
Original commit files touched by this commit  1.2.54_5
glarkin search for other commits by this committer
- Parameterized all non-hier(7)-compliant paths in the logcheck script,
  man page and config files, adding support for a custom PREFIX setting.
- Parameterized the shebang line in the logtail script
- Bumped PORTREVISION

PR:             ports/140981
Submitted by:   Dan Langille <dan@langille.org>
15 Dec 2009 20:09:14
Original commit files touched by this commit  1.2.54_4
glarkin search for other commits by this committer
- Preprocess the single SGML doc file into a man page instead of
  requiring docbook2man as a dependency. Some docbook ports conflict
  with others, and since there's only one file to convert, preprocessing
  is fine.

Reported by:    dan@langille.org and others
26 May 2009 20:25:59
Original commit files touched by this commit  1.2.54_3
glarkin search for other commits by this committer
- Fixed the "Error 255" installation problem when docbook-to-man
  is already installed.  If it's there, use it instead of installing
  docbook2X.
29 Apr 2009 20:57:57
Original commit files touched by this commit  1.2.54_3
glarkin search for other commits by this committer
- Suppress stderr from docbook2man

Reported by:    Various members of freebsd-ports@
25 Apr 2009 02:13:46
Original commit files touched by this commit  1.2.54_3
glarkin search for other commits by this committer
- Switched BUILD_DEPENDS from textproc/docbook-to-man to
  textproc/docbook2X and saved building about 100 extra ports just
  to convert an SGML file to a man page
- Bumped PORTREVISION

Reported by:    n j <nino80 at gmail dot com>
11 Sep 2008 00:30:09
Original commit files touched by this commit  1.2.54_2
glarkin search for other commits by this committer
- Fixed logcheck script silent failure in previous commit
- Added handling for crontab installation problems
- Incorported security fixes from PR opened after previous commit
- Added UPDATING entry since configuration options have changed
  fairly significantly

PR:             ports/122842
Submitted by:   Cezary Morga <cm@therek.net>
PR:             ports/127255
Submitted by:   Yasuhiro KIMURA <yasu at utahime dot org>
Reviewed by:    glarkin
Approved by:    beech (mentor, implicit)
Approved by:    portmgr (marcus)
Security:       Incorrect addition of logcheck user to wheel group
08 Sep 2008 20:09:59
Original commit files touched by this commit  1.2.54_1
glarkin search for other commits by this committer
- Fixed left-over directory problem
- Added entries for logcheck user in UIDs and GIDs
- Fixed package building problems (perms and empty dir creation)

Reported by:    QA Tindy
Approved by:    portmgr (erwin)
07 Sep 2008 01:31:56
Original commit files touched by this commit  1.2.54
glarkin search for other commits by this committer
- Updated to 1.2.54
- Replaced hard-coded paths in pkg-plist with variables
- Cleaned up installation commands
- Moved crontab file to EXAMPLESDIR and updated pkg-install.in
  to handle port knob NOPORTEXAMPLES
- Regenerated patch files with "make makepatch"

PR:             ports/122842
Submitted by:   Cezary Morga <cm at therek dot net>
Approved by:    beech (mentor, implicit)
27 Jul 2008 04:30:53
Original commit files touched by this commit  1.1.1_4
linimon search for other commits by this committer
Reset sergei@ due to maintainer-timeouts and no response to email.

Hat:            portmgr
13 May 2006 04:15:53
Original commit files touched by this commit  1.1.1_4
edwin search for other commits by this committer
Remove USE_REINPLACE from all categories starting with S
25 Nov 2005 14:05:38
Original commit files touched by this commit  1.1.1_4
sergei search for other commits by this committer
- Add SHA256 checksums to my ports
20 Apr 2004 08:36:26
Original commit files touched by this commit  1.1.1_4
kris search for other commits by this committer
Add missing directory
30 Jan 2004 16:03:29
Original commit files touched by this commit  1.1.1_4
sergei search for other commits by this committer
SIZE *DOES* MATTER.
12 Dec 2003 22:58:00
Original commit files touched by this commit  1.1.1_4
sergei search for other commits by this committer
- Add /var/log/security to the default list of input files
- Bump PORTREVISION

PR:             56578
Submitted by:   KIMURA Yasuhiro <yasu@utahime.org>
23 Oct 2003 05:42:49
Original commit files touched by this commit  1.1.1_3
sergei search for other commits by this committer
Change to my @FreeBSD.org address.

Approved by:    krion
26 Aug 2003 00:15:32
Original commit files touched by this commit  1.1.1_3
leeym search for other commits by this committer
- Change MASTER_SITES: the project finally found a new home
(thanks Paulius Bulotas for reporting)
- Avoid ever touching existing configs by installing example files
  with .sample suffix into ${PREFIX}/etc; do not install duplicates
  in ${EXAMPLESDIR}
- Removed unneeded @cwd in pkg-plist
- Bump PORTREVISION due to changed package

PR:             55971
Submitted by:   Sergei Kolobov <sergei@kolobov.com>
14 Apr 2003 15:25:30
Original commit files touched by this commit  1.1.1_2
leeym search for other commits by this committer
- Do not overwrite the existing config files when installing as a port or
as a package
- Bump PORTREVISION

Reported by:    Forrest Aldrich <forrie@forrie.com>
PR:             50915
Submitted by:   Sergei Kolobov <sergei@kolobov.com>
09 Apr 2003 05:41:28
Original commit files touched by this commit  1.1.1_1
leeym search for other commits by this committer
- Remove BROKEN: change temp dir from /tmp to /var/run/logcheck
  (it has to be mode 700) - now complies with hier(7)
- Psionic has been acquired by Cisco in late 2002 and now
  www.psionic.com is an alias to www.cisco.com. Unfortunately,
  the latter does not have any mention of LogSentry or other Abacus tools,
  so remove www.psionic.com from the MASTER_SITES and WWW: tag
- Reword pkg-descr to better reflect reality
- Dont use logcheck's Makefile - build/install completely from port's Makefile
- Make PREFIX-clean
- Install useful documentation
- Assign maintainership to submitter

Removed files:
- files/patch-aa
- pkg-message

PR:             50730
Submitted by:   Sergei Kolobov <sergei@kolobov.com>
23 Mar 2003 15:15:57
Original commit files touched by this commit  1.1.1
foxfair search for other commits by this committer
PR:             49064
Submitted by:   Yonatan@xpert.com <Yonatan@xpert.com>
Switch MASTER_SITE to make this port fetchable.
21 Feb 2003 17:35:15
Original commit files touched by this commit  1.1.1
kris search for other commits by this committer
Mark BROKEN: changes permissions on /tmp to 0700
20 Feb 2003 18:59:13
Original commit files touched by this commit  1.1.1
knu search for other commits by this committer
De-pkg-comment.
10 Sep 2002 14:53:23
Original commit files touched by this commit  1.1.1
roberto search for other commits by this committer
${PREFIX}/var/tmp is obviously wrong. Use /tmp instead.

PR:             ports/41815
Submitted by:   Dan Langille <danl@freebsddiary.org> (fix by me)
23 Jun 2002 20:39:25
Original commit files touched by this commit  1.1.1
pat search for other commits by this committer
PERL -> REINPLACE_CMD

PR:             ports/39729, ports/39727, ports/39726, ports/39724
PR:             ports/39722, ports/39721, ports/39720, ports/39719, ports/39718
Submitted by:   Scott Flatman <sf@dsinw.com>
10 Jun 2002 23:51:04
Original commit files touched by this commit  1.1.1
pat search for other commits by this committer
- chase distfile naming
- whitespace nit
- remove a directory from pkg-plist which is not actually created
- make prefix safe

PR:             ports/39111
Submitted by:   Erwin Lansing <erwin@lansing.dk>
17 Apr 2002 20:48:29
Original commit files touched by this commit  1.1.1
pat search for other commits by this committer
Give maintainership back to ports@

PR:             37191
Submitted by:   maintainer
11 Mar 2001 03:14:12
files touched by this commit
will search for other commits by this committer
Eww.  Cull etc/tmp in favor of var/tmp (even though this is not what   hier(7)
specifically states, it's still better than screwing around with   stuff outside
of ${PREFIX}).    
11 Mar 2001 01:33:38
files touched by this commit
kris search for other commits by this committer
Fix plist.  I don't quite know why this port uses etc/tmp, but don't care  
enough to find out.    
08 Oct 2000 11:23:49
files touched by this commit
asami search for other commits by this committer
Change PKGDIR from pkg/ to .  Also fix places where ${PKGDIR} is   spelled out
(many of which are ${PKGDIR}/MESSAGE -> ${PKGMESSAGE} type   fixes that
shouldn't have been necessary) and the string "/pkg/"   appear.    
08 Oct 2000 07:30:58
files touched by this commit
asami search for other commits by this committer
Convert category security to new layout.  

Number of commits found: 45

2866
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
otrsMay 23
otrsMay 23
otrsMay 23
otrsMay 23
chromiumMay 22
chromiumMay 22
firefox*May 21
firefox-devel*May 21
firefox-esr*May 21
firefox10*May 21
firefox15*May 21
firefox3*May 21
firefox3-devel*May 21
firefox35*May 21
firefox36*May 21

8 vulnerabilities affecting 24 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24536
Broken 215
Deprecated 474
Ignore 630
Forbidden 2
Restricted 292
No CDROM 109
Vulnerable 25
Expired 132
Set to expire 512
Interactive 33
new 24 hours 4
new 48 hours10
new 7 days31
new fortnight62
new month216

This site
What is FreshPorts?
About the Authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact
8e7

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2013 DVL Software Limited. All rights reserved.
0