Bump to 3.0.9, fixing various bugs. Remove old, broken versions.

(Portage version: 2.2_rc20/cvs/Linux 2.6.28 x86_64)
author: Bryan Stine <battousai@gentoo.org> 2009-01-09 00:36:14 +0000
committer: Bryan Stine <battousai@gentoo.org> 2009-01-09 00:36:14 +0000
commit: 774d8ba99773753c572eb215266cc56187aa19ca (patch)
tree: ada19467da22375aa253ae8db0c2dfd1ee0e8412 /app-admin
parent: Add tk to IUSE. (diff)
download: gentoo-2-774d8ba99773753c572eb215266cc56187aa19ca.tar.gz
gentoo-2-774d8ba99773753c572eb215266cc56187aa19ca.tar.bz2
gentoo-2-774d8ba99773753c572eb215266cc56187aa19ca.zip
7 files changed, 23 insertions, 354 deletions
diff --git a/app-admin/bastille/ChangeLog b/app-admin/bastille/ChangeLog
index 219046522e28..201d5606aa73 100644
--- a/app-admin/bastille/ChangeLog
+++ b/app-admin/bastille/ChangeLog
@@ -1,6 +1,21 @@
 # ChangeLog for app-admin/bastille
-# Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/ChangeLog,v 1.21 2007/10/28 12:46:02 phreak Exp $
+# Copyright 2000-2009 Gentoo Foundation; Distributed under the GPL v2
+# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/ChangeLog,v 1.22 2009/01/09 00:36:14 battousai Exp $
+
+*bastille-3.0.9 (08 Jan 2009)
+
+  08 Jan 2009; Bryan Stine <battousai@gentoo.org>
+  -files/bastille-2.1.1-firewall.init,
+  -files/bastille-2.1.1-hlist-fix.patch,
+  -files/bastille-3.0.2-firewall.init, -files/bastille-firewall-imap.patch,
+  -bastille-2.1.1-r3.ebuild, -bastille-3.0.2.ebuild, +bastille-3.0.9.ebuild:
+  Version bump to 3.0.9. Restores compatibility with various distribution
+  changes, such as coreutils program locations, etc. Also added many little
+  fixes. Moved firewall init script into patch distribution, so no future
+  versions will require FILESDIR. This version should bring the package out
+  of p.mask, fixing version bump bug #157187 and issues bug #154002. Removed
+  old versions that no longer work with those distribution changes mentioned
+  above.
 
   28 Oct 2007; Christian Heim <phreak@gentoo.org> bastille-2.1.1-r1.ebuild,
   bastille-2.1.1-r2.ebuild, bastille-2.1.1-r3.ebuild, bastille-3.0.2.ebuild:
diff --git a/app-admin/bastille/bastille-2.1.1-r3.ebuild b/app-admin/bastille/bastille-2.1.1-r3.ebuild
deleted file mode 100644
index d2585de5c225..000000000000
--- a/app-admin/bastille/bastille-2.1.1-r3.ebuild
+++ /dev/null
@@ -1,98 +0,0 @@
-# Copyright 1999-2008 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-2.1.1-r3.ebuild,v 1.6 2008/06/16 15:40:49 drac Exp $
-
-inherit perl-app eutils
-
-PATCHVER=0.1
-MY_PN=${PN/b/B}
-MY_P=${MY_PN}-${PV}
-S=${WORKDIR}/${MY_PN}
-DESCRIPTION="Bastille-Linux is a security hardening tool"
-HOMEPAGE="http://bastille-linux.org/"
-SRC_URI="mirror://sourceforge/${PN}-linux/${MY_P}.tar.bz2
-	mirror://gentoo/${P}-gentoo-${PATCHVER}.patch.bz2"
-
-LICENSE="GPL-2"
-SLOT="0"
-KEYWORDS="x86 ppc ~sparc alpha amd64"
-IUSE="X"
-
-RDEPEND="net-firewall/iptables
-	app-admin/logrotate
-	dev-perl/Curses
-	net-firewall/psad
-	X? ( dev-perl/perl-tk )
-	virtual/logger"
-
-src_unpack() {
-	unpack ${A}
-	epatch "${WORKDIR}"/${P}-gentoo-${PATCHVER}.patch
-	epatch "${FILESDIR}"/bastille-firewall-imap.patch
-	epatch "${FILESDIR}"/${P}-hlist-fix.patch
-}
-
-src_compile() {
-	cp "${FILESDIR}"/bastille-${PV}-firewall.init ./bastille-firewall
-
-	cd "${S}"/psad/Psad.pm
-	perl-module_src_compile
-}
-
-src_install() {
-	keepdir /var/lock/subsys/${PN}
-	dodir /etc/Bastille
-
-	into /usr
-	dosbin bastille AutomatedBastille InteractiveBastille \
-		BastilleBackEnd RevertBastille *.pl
-
-	dosym RevertBastille /usr/sbin/UndoBastille
-
-	insinto /usr/share/Bastille
-	doins Questions* Credits bastille-* *.xbm *.config
-
-	insinto /usr/share/Bastille
-	doins Questions.txt Credits complete.xbm incomplete.xbm \
-		ifup-local hosts.allow
-
-	exeinto /usr/share/Bastille
-	doexe bastille-firewall* bastille-tmpdir* \
-		bastille-ipchains bastille-netfilter \
-		firewall/*.sh
-
-	perlinfo
-	insinto ${SITE_LIB}
-	doins Bastille_Curses.pm
-	use X && doins Bastille_Tk.pm
-	insinto ${SITE_LIB}/Curses
-	doins Curses/Widgets.pm
-
-	doman docs/bastille.1m
-	dodoc docs/* firewall/*.txt
-
-	cd "${S}"/Bastille
-
-	insinto /usr/lib/Bastille
-	doins AccountSecurity.pm Apache.pm API.pm OSX_API.pm BootSecurity.pm \
-		ConfigureMiscPAM.pm DisableUserTools.pm DNS.pm \
-		FilePermissions.pm FTP.pm Firewall.pm HP_API.pm HP_UX.pm \
-		IOLoader.pm Patches.pm Logging.pm \
-		MiscellaneousDaemons.pm PatchDownload.pm Printing.pm \
-		RemoteAccess.pm SecureInetd.pm Sendmail.pm TMPDIR.pm  \
-		test_AccountSecurity.pm test_Apache.pm test_DNS.pm \
-		test_FTP.pm test_HP_UX.pm test_MiscellaneousDaemons.pm \
-		test_SecureInetd.pm test_Sendmail.pm TestAPI.pm IPFilter.pm
-
-	# psad interface module
-	cd "${S}"/psad/Psad.pm
-	newins Psad.pm PSAD.pm
-
-	# Documentation
-	cd "${S}"
-	dodoc *.txt BUGS Change* README*
-}
-
-pkg_postinst() {
-	use X || elog "When not using the Tk interface you will need to start use the -c flag when calling ${PN} from command line. example ${PN} -c --os GE1.4"
-}
diff --git a/app-admin/bastille/bastille-3.0.2.ebuild b/app-admin/bastille/bastille-3.0.9.ebuild
index 19c83478513d..6ba1d8fb6c86 100644
--- a/app-admin/bastille/bastille-3.0.2.ebuild
+++ b/app-admin/bastille/bastille-3.0.9.ebuild
@@ -1,10 +1,10 @@
-# Copyright 1999-2007 Gentoo Foundation
+# Copyright 1999-2009 Gentoo Foundation
 # Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-3.0.2.ebuild,v 1.5 2007/10/28 12:46:02 phreak Exp $
+# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/bastille-3.0.9.ebuild,v 1.1 2009/01/09 00:36:14 battousai Exp $
 
 inherit eutils
 
-PATCHVER=0.1
+PATCHVER=0.2
 MY_PN=${PN/b/B}
 MY_P=${MY_PN}-${PV}
 S=${WORKDIR}/${MY_PN}
@@ -30,7 +30,6 @@ src_unpack() {
 	epatch "${WORKDIR}"/${P}-gentoo-${PATCHVER}.patch
 
 	cd "${S}"
-	cp "${FILESDIR}"/bastille-${PV}-firewall.init ./bastille-firewall
 	chmod a+x Install.sh bastille-ipchains bastille-netfilter
 }
 
@@ -44,11 +43,13 @@ src_install() {
 	insinto /usr/share/Bastille
 	doins *.config
 
-	newinitd "${FILESDIR}"/${P}-firewall.init ${PN}-firewall
+	newinitd ${PN}-firewall.gentoo-init ${PN}-firewall
 
 	# Documentation
 	cd "${S}"
 	dodoc *.txt BUGS Change* README*
+	cd "${S}"/docs
+	doman *.1m
 }
 
 pkg_postinst() {
diff --git a/app-admin/bastille/files/bastille-2.1.1-firewall.init b/app-admin/bastille/files/bastille-2.1.1-firewall.init
deleted file mode 100644
index 5dd9bfbc757a..000000000000
--- a/app-admin/bastille/files/bastille-2.1.1-firewall.init
+++ /dev/null
@@ -1,41 +0,0 @@
-#!/sbin/runscript
-# Copyright 1999-2004 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2         
-# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/files/bastille-2.1.1-firewall.init,v 1.2 2004/07/14 21:09:15 agriffis Exp $
-
-opts="start stop"
-
-depend() {
-        need logger
-}
-
-start() {
-	# "Borrowed" from the original bastille-firewall init script ((c) P. Watkins)
-	REALSCRIPT=/sbin/bastille-ipchains
-	if [ -n "$(uname -r | awk -F. ' $1 == 2 && $2 > 2 {print}')" ]; then
-	        # We are using Linux 2.3 or newer; use the netfilter script if available
-	        if [ -x /sbin/bastille-netfilter ]; then
-	                REALSCRIPT=/sbin/bastille-netfilter
-	        fi
-	fi
-	
-        ebegin "Starting bastille-firewall"
-        $REALSCRIPT start
-        eend $? "Failed to start bastille-firewall"
-}
-
-stop() {
-	# "Borrowed" from the original bastille-firewall init script ((c) P. Watkins)
-	REALSCRIPT=/sbin/bastille-ipchains
-	if [ -n "$(uname -r | awk -F. ' $1 == 2 && $2 > 2 {print}')" ]; then
-	        # We are using Linux 2.3 or newer; use the netfilter script if available
-	        if [ -x /sbin/bastille-netfilter ]; then
-	                REALSCRIPT=/sbin/bastille-netfilter
-	        fi
-	fi
-	
-	ebegin "Stopping bastille-firewall"
-	$REALSCRIPT stop
-	eend $? "Failed to stop bastille-firewall"
-}
-
diff --git a/app-admin/bastille/files/bastille-2.1.1-hlist-fix.patch b/app-admin/bastille/files/bastille-2.1.1-hlist-fix.patch
deleted file mode 100644
index ad4de0abb836..000000000000
--- a/app-admin/bastille/files/bastille-2.1.1-hlist-fix.patch
+++ /dev/null
@@ -1,12 +0,0 @@
-diff -urN Bastille.orig/Bastille_Tk.pm Bastille/Bastille_Tk.pm
---- Bastille.orig/Bastille_Tk.pm	2005-04-05 12:28:47.000000000 -0400
-+++ Bastille/Bastille_Tk.pm	2005-04-05 12:27:19.000000000 -0400
-@@ -734,7 +734,7 @@
- # This is the listbox callback
- #
- sub hlist_callback {
--    my $sel = $list->info(selection);
-+    my ($sel) = $list->info(selection);
-     if($sel ne ""){
- 	$list->selectionClear('0', $reverse_module_index{"End"});
- 	$list->selectionSet($sel);
diff --git a/app-admin/bastille/files/bastille-3.0.2-firewall.init b/app-admin/bastille/files/bastille-3.0.2-firewall.init
deleted file mode 100644
index 5537418db804..000000000000
--- a/app-admin/bastille/files/bastille-3.0.2-firewall.init
+++ /dev/null
@@ -1,42 +0,0 @@
-#!/sbin/runscript
-# Copyright 1999-2004 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2         
-# $Header: /var/cvsroot/gentoo-x86/app-admin/bastille/files/bastille-3.0.2-firewall.init,v 1.1 2005/07/31 05:21:10 battousai Exp $
-
-opts="start stop"
-BASTILLEPREFIX="/usr/share/Bastille"
-
-depend() {
-        need logger
-}
-
-start() {
-	# "Borrowed" from the original bastille-firewall init script ((c) P. Watkins)
-	REALSCRIPT=${BASTILLEPREFIX}/bastille-ipchains
-	if [ -n "$(uname -r | awk -F. ' $1 == 2 && $2 > 2 {print}')" ]; then
-	        # We are using Linux 2.3 or newer; use the netfilter script if available
-	        if [ -x ${BASTILLEPREFIX}/bastille-netfilter ]; then
-	                REALSCRIPT=${BASTILLEPREFIX}/bastille-netfilter
-	        fi
-	fi
-	
-        ebegin "Starting bastille-firewall"
-        $REALSCRIPT start
-        eend $? "Failed to start bastille-firewall"
-}
-
-stop() {
-	# "Borrowed" from the original bastille-firewall init script ((c) P. Watkins)
-	REALSCRIPT=${BASTILLEPREFIX}/bastille-ipchains
-	if [ -n "$(uname -r | awk -F. ' $1 == 2 && $2 > 2 {print}')" ]; then
-	        # We are using Linux 2.3 or newer; use the netfilter script if available
-	        if [ -x ${BASTILLEPREFIX}/bastille-netfilter ]; then
-	                REALSCRIPT=${BASTILLEPREFIX}/bastille-netfilter
-	        fi
-	fi
-	
-	ebegin "Stopping bastille-firewall"
-	$REALSCRIPT stop
-	eend $? "Failed to stop bastille-firewall"
-}
-
diff --git a/app-admin/bastille/files/bastille-firewall-imap.patch b/app-admin/bastille/files/bastille-firewall-imap.patch
deleted file mode 100644
index ebde15524341..000000000000
--- a/app-admin/bastille/files/bastille-firewall-imap.patch
+++ /dev/null
@@ -1,154 +0,0 @@
-diff -urN Bastille-orig/Bastille/Firewall.pm Bastille/Bastille/Firewall.pm
---- Bastille-orig/Bastille/Firewall.pm	2004-03-22 18:45:36.376652656 -0500
-+++ Bastille/Bastille/Firewall.pm	2004-03-22 18:47:57.909136448 -0500
-@@ -71,7 +71,7 @@
- 
- 	{
- 	'varname' => "TCP_AUDIT_SERVICES",
--	'default' => "telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh",
-+	'default' => "telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh",
- 	'stanza' => "2",
- 	'configname' => 'ip_s_tcpaudit',
- 	},
-diff -urN Bastille-orig/Questions.txt Bastille/Questions.txt
---- Bastille-orig/Questions.txt	2004-03-22 18:45:36.367654024 -0500
-+++ Bastille/Questions.txt	2004-03-22 18:46:13.815961016 -0500
-@@ -1584,7 +1584,7 @@
- some standalone services like OpenSSH, and --unless otherwise configured--
- services running under Red Hat's xinetd super-server, you can configure
- restrictions based on network address in /etc/hosts.allow. The services
--using inetd or xinetd typically include telnet, ftp, pop, imap, finger,
-+using inetd or xinetd typically include telnet, ftp, pop, imap2, finger,
- and a number of other services.
- 
- If you would like, Bastille can configure a default policy for all inetd,
-@@ -4119,11 +4119,11 @@
- interfaces (only the \"public\" interfaces) to these ports and/or services. This is
- useful to spot possible probes or attacks. The default setting records connection
- attempts to several services, although you may not have them installed or enabled. "
--QUESTION: "TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login
-+QUESTION: "TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login
- linuxconf ssh]"
- REQUIRE_DISTRO: LINUX DB SE TB GE
- SKIP_CHILD: ip_s_udpaudit
--DEFAULT_ANSWER: telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh
-+DEFAULT_ANSWER: telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh
- CONFIRM_TEXT: " \nY"
- YN_TOGGLE: 0
- YES_EXP:
-@@ -4237,8 +4237,8 @@
- 
- For instance, a corporate firewall/mailserver might have \"smtp\" enabled
- on the public side to accept outside mail, and for \"internal\" interfaces it might
--allow both \"smtp\" and \"imap\" so local users can both send and get mail; in that
--case you would set this value to \"smtp imap\". This does not affect IP Masquerading's
-+allow both \"smtp\" and \"imap2\" so local users can both send and get mail; in that
-+case you would set this value to \"smtp imap2\". This does not affect IP Masquerading's
- ability to let masq'ed users access any services on outside/Internet hosts. "
- QUESTION: "TCP service names or port numbers to allow on private interfaces: [ ]"
- REQUIRE_DISTRO: LINUX DB SE TB GE
-@@ -4651,11 +4651,11 @@
- interfaces (only the \"public\" interfaces) to these ports and/or services. This is
- useful to spot possible probes or attacks. The default setting records connection
- attempts to several services, although you may not have them installed or enabled. "
--QUESTION: "TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login
-+QUESTION: "TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login
- linuxconf ssh]"
- REQUIRE_DISTRO: LINUX DB SE TB GE
- SKIP_CHILD: ip_b_udpaudit
--DEFAULT_ANSWER: telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh
-+DEFAULT_ANSWER: telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh
- CONFIRM_TEXT: " \nY"
- YN_TOGGLE: 0
- YES_EXP:
-diff -urN Bastille-orig/Server-modify-by-Spong Bastille/Server-modify-by-Spong
---- Bastille-orig/Server-modify-by-Spong	2004-03-22 18:45:36.363654632 -0500
-+++ Bastille/Server-modify-by-Spong	2004-03-22 18:46:31.595258152 -0500
-@@ -10,8 +10,8 @@
- IPChains.ip_b_trustiface="lo"
- # Q: Public interfaces: [eth+ ppp+ slip+]
- IPChains.ip_b_publiciface="eth+ ppp+ slip+"
--# Q: TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh]
--IPChains.ip_b_tcpaudit="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh"
-+# Q: TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh]
-+IPChains.ip_b_tcpaudit="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh"
- # Q: UDP services to audit: [31337]
- IPChains.ip_b_udpaudit="31337"
- # Q: TCP service names or port numbers to allow on public interfaces: [ ]
-diff -urN Bastille-orig/ServerModerate.config Bastille/ServerModerate.config
---- Bastille-orig/ServerModerate.config	2004-03-22 18:45:36.361654936 -0500
-+++ Bastille/ServerModerate.config	2004-03-22 18:46:41.919688600 -0500
-@@ -10,8 +10,8 @@
- IPChains.ip_b_trustiface="lo"
- # Q: Public interfaces: [eth+ ppp+ slip+]
- IPChains.ip_b_publiciface="eth+ ppp+ slip+"
--# Q: TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh]
--IPChains.ip_b_tcpaudit="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh"
-+# Q: TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh]
-+IPChains.ip_b_tcpaudit="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh"
- # Q: UDP services to audit: [31337]
- IPChains.ip_b_udpaudit="31337"
- # Q: TCP service names or port numbers to allow on public interfaces: [ ]
-diff -urN Bastille-orig/ServerParanoia.config Bastille/ServerParanoia.config
---- Bastille-orig/ServerParanoia.config	2004-03-22 18:45:36.379652200 -0500
-+++ Bastille/ServerParanoia.config	2004-03-22 18:46:50.680356776 -0500
-@@ -10,8 +10,8 @@
- IPChains.ip_b_trustiface="lo"
- # Q: Public interfaces: [eth+ ppp+ slip+]
- IPChains.ip_b_publiciface="eth+ ppp+ slip+"
--# Q: TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh]
--IPChains.ip_b_tcpaudit="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh"
-+# Q: TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh]
-+IPChains.ip_b_tcpaudit="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh"
- # Q: UDP services to audit: [31337]
- IPChains.ip_b_udpaudit="31337"
- # Q: TCP service names or port numbers to allow on public interfaces: [ ]
-diff -urN Bastille-orig/WorkstationModerate.config Bastille/WorkstationModerate.config
---- Bastille-orig/WorkstationModerate.config	2004-03-22 18:45:36.359655240 -0500
-+++ Bastille/WorkstationModerate.config	2004-03-22 18:46:59.968944696 -0500
-@@ -10,8 +10,8 @@
- IPChains.ip_b_trustiface="lo"
- # Q: Public interfaces: [eth+ ppp+ slip+]
- IPChains.ip_b_publiciface="eth+ ppp+ slip+"
--# Q: TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh]
--IPChains.ip_b_tcpaudit="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh"
-+# Q: TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh]
-+IPChains.ip_b_tcpaudit="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh"
- # Q: UDP services to audit: [31337]
- IPChains.ip_b_udpaudit="31337"
- # Q: TCP service names or port numbers to allow on public interfaces: [ ]
-diff -urN Bastille-orig/WorkstationParanoia.config Bastille/WorkstationParanoia.config
---- Bastille-orig/WorkstationParanoia.config	2004-03-22 18:45:36.379652200 -0500
-+++ Bastille/WorkstationParanoia.config	2004-03-22 18:47:08.842595696 -0500
-@@ -10,8 +10,8 @@
- IPChains.ip_b_trustiface="lo"
- # Q: Public interfaces: [eth+ ppp+ slip+]
- IPChains.ip_b_publiciface="eth+ ppp+ slip+"
--# Q: TCP services to audit: [telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh]
--IPChains.ip_b_tcpaudit="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh"
-+# Q: TCP services to audit: [telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh]
-+IPChains.ip_b_tcpaudit="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh"
- # Q: UDP services to audit: [31337]
- IPChains.ip_b_udpaudit="31337"
- # Q: TCP service names or port numbers to allow on public interfaces: [ ]
-diff -urN Bastille-orig/bastille-firewall.cfg Bastille/bastille-firewall.cfg
---- Bastille-orig/bastille-firewall.cfg	2004-03-22 18:45:36.378652352 -0500
-+++ Bastille/bastille-firewall.cfg	2004-03-22 18:47:24.028287120 -0500
-@@ -84,7 +84,7 @@
- #
- #	Also see item 12, LOG_FAILURES
- #
--#TCP_AUDIT_SERVICES="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh" 
-+#TCP_AUDIT_SERVICES="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh" 
- # anyone probing for BackOrifice?
- #UDP_AUDIT_SERVICES="31337"
- # how about ICMP?
-@@ -102,7 +102,7 @@
- # Please make sure variable assignments are on single lines; do NOT
- # use the "\" continuation character (so Bastille can change the
- # values if it is run more than once)
--TCP_AUDIT_SERVICES="telnet ftp imap pop3 finger sunrpc exec login linuxconf ssh" 
-+TCP_AUDIT_SERVICES="telnet ftp imap2 pop3 finger sunrpc exec login linuxconf ssh" 
- UDP_AUDIT_SERVICES="31337"
- ICMP_AUDIT_TYPES=""
-
author	Bryan Stine <battousai@gentoo.org>	2009-01-09 00:36:14 +0000
committer	Bryan Stine <battousai@gentoo.org>	2009-01-09 00:36:14 +0000
commit	774d8ba99773753c572eb215266cc56187aa19ca (patch)
tree	ada19467da22375aa253ae8db0c2dfd1ee0e8412 /app-admin
parent	Add tk to IUSE. (diff)
download	gentoo-2-774d8ba99773753c572eb215266cc56187aa19ca.tar.gz gentoo-2-774d8ba99773753c572eb215266cc56187aa19ca.tar.bz2 gentoo-2-774d8ba99773753c572eb215266cc56187aa19ca.zip