Current status

sguil-server Sguil is a network security monitoring program

0.8.0 security =3 0.8.0Version of this port present on the latest quarterly branch.

DEPRECATED: Not staged. See http://lists.freebsd.org/pipermail/freebsd-ports-announce/2014-May/000080.html
This port expired on: 2014-08-31
IS INTERACTIVE: yes

Maintainer: pauls@utdallas.edu

Port Added: 2006-10-31 02:44:03

Last Update: 2014-08-16 20:10:08

SVN Revision: 365122

People watching this port, also watch: tcpdump, magicrescue, monit

License: not specified in port

Description:

Sguil is an open source tool to implement Network Security Monitoring (NSM). NSM is the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. NSM tools are used more for network audit and specialized applications than traditional alert-centric "intrusion detection" systems. Want to learn more about Network Security Monitoring (NSM)? Then check out Richard Bejtlich's recently released book, The Tao of Network Security Monitoring: Beyond Intrusion Detection. An excerpt reads: "Network security monitoring (NSM) equips security staff to deal with the inevitable consequences of too few resources and too many responsibilities. NSM collects the data needed to generate better assessment, detection, and response processes--resulting in decreased impact from unauthorized activities." WWW: http://sguil.sourceforge.net/index.php pauls@utdallas.edu

SVNWeb : Homepage

There is no configure plist information for this port.

Dependency lines:

• sguil-server>0:security/sguil-server

No installation instructions: this port has been deleted.

The package name of this deleted port was: sguil-server

PKGNAME: sguil-server

Flavors: there is no flavor information for this port.

distinfo:

There is no distinfo for this port.

Dependencies

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Runtime dependencies:

1. tcltls>=0 : devel/tcltls
2. p0f : net-mgmt/p0f
3. tcpflow : net/tcpflow
4. dtplite : devel/tcllib
5. tclx.tcl : lang/tclX

There are no ports dependent upon this port

Configuration Options

===> The following configuration options are available for sguil-server-0.8.0: MYSQL=off: Depend on databases/mysqltcl ===> Use 'make config' to modify these settings

Master Sites:

Expand this list (2 items)

Collapse this list.
1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/
2. http://downloads.sourceforge.net/project/sguil/sguil/sguil-0.8.0/
Collapse this list.

• port moved to security/sguil on 2014-08-16
  REASON: Merged into new port security/sguil
  

remove 3 ports: security/sguid-(client|sensor|server)

These were combined to a single port at security/sguil which is also
a newer version.

- Unbreak after last tcltls changes
- Fix a bad shebang (including STAGEDIR)

Reported by:	pkg-fallout

Add NO_STAGE all over the place in preparation for the staging support (cat:
security)

- Update to 0.8.0
- Optionng
- Trim header

PR:		174591
Submitted by:	maintainer

Move the rc.d scripts of the form *.sh.in to *.in

Where necessary add $FreeBSD$ to the file

No PORTREVISION bump necessary because this is a no-op

In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.

Improve interoperability with mysql-server 5.5

PR:             ports/159763
Submitted by:   Paul Schmehl <pauls@utdallas.edu> (maintainer)
Approved by:    wxs (mentor)

-remove MD5

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

- Switch SourceForge ports to the new File Release System: categories starting
with P,R,S

- Fix database updates

PR:             136391
Submitted by:   Paul Schmehl <pauls@utdallas.edu> (maintainer)

- From PR

 If a user opts out of the first part of the pkg-install script, but
 elects to interact with the second part of the script and decides to
 create new certs, the creation of the certs will fail silently if the
 certs directory does not exist. This is because the certs directory
 is created (if necessary) in the pre-install portion of the pkg-install
 script, but the certs are created in the post-install part of the script.

 This PR corrects this problem by moving the creation of the certs directory
 to the same subroutine that the certs are created in.

PR:             ports/123883
Submitted by:   Paul Schmehl <pauls at utdallas.edu> (maintainer)

- Fixed some errors introduced during the upgrade from version 0.6.1 to 0.7.0.
- Bump PORTREVISION.

PR:             ports/123613
Reported by:    pointyhat via pav
Submitted by:   Pauls Schmehl <pauls@utdallas.edu> (maintainer)
Reviewed by:    araujo (myself)

- Update to 0.7.0.

PR:             ports/122645, ports/122646, ports/122647
Submitted by:   Paul Schmehl <pauls@utdallas.edu> (maintainer)

Another round of the periodic sweep for removal of the
KEYWORD: FreeBSD scourge. We have ignored this keyword
for a long time now, so this is a non-functional change
(therefore no PORTREVISION bumps).

Insert a $FreeBSD tag where needed, and adjust a comment
in mail/milter-regex to match reality.

. correct init scripts,  [1] [2]
. bump PORTREVISIONs.

PR:             107894 [1], 107895 [2]
Submitted by:   Paul Schmehl <pauls at utdallas.edu> (maintainer) [1], [2]

Fix typo in COMMENT

PR:             105391
Submitted by:   Paul Schmehl (maintainer)

- Fix COMMENT

PR:             ports/104987, ports/104991
Submitted by:   Paul Schmehl <pauls@utdallas.edu> (maintainer)

Sguil is an open source tool to implement Network
Security Monitoring (NSM).  NSM is the collection,
analysis, and escalation of indications and warnings
to detect and respond to intrusions.  NSM tools are
used more for network audit and specialized
applications than traditional alert-centric "intrusion
detection" systems.

Want to learn more about Network Security Monitoring
(NSM)? Then check out Richard Bejtlich's recently
released book, The Tao of Network Security Monitoring:
Beyond Intrusion Detection. An excerpt reads:

"Network security monitoring (NSM) equips security
staff to deal with the inevitable consequences of too
few resources and too many responsibilities. NSM collects
the data needed to generate better assessment, detection,
and response processes--resulting in decreased impact from
unauthorized activities."

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:             ports/104227
Submitted by:   Paul Schmehl <pauls at utdallas.edu>

15 vulnerabilities affecting 114 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2021-02-25 03:33:54