Initial import of mod_httpbl that allows using Project Honey Pot's blacklist to filter HTTP requests.

Package-Manager: portage-2.2_rc51/cvs/Linux x86_64

5 files changed, 113 insertions, 0 deletions

diff --git a/www-apache/mod_httpbl/ChangeLog b/www-apache/mod_httpbl/ChangeLog
new file mode 100644
index 000000000000..1cc2addf40f1
--- /dev/null
+++ b/www-apache/mod_httpbl/ChangeLog
@@ -0,0 +1,11 @@
+# ChangeLog for www-apache/mod_httpbl
+# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2
+# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_httpbl/ChangeLog,v 1.1 2009/11/26 10:37:09 flameeyes Exp $
+
+*mod_httpbl-1.5 (26 Nov 2009)
+
+  26 Nov 2009; Diego E. Pettenò <flameeyes@gentoo.org>
+  +files/99_mod_httpbl.conf, +mod_httpbl-1.5.ebuild, +metadata.xml:
+  Initial import of mod_httpbl that allows using Project Honey Pot's
+  blacklist to filter HTTP requests.
+
diff --git a/www-apache/mod_httpbl/Manifest b/www-apache/mod_httpbl/Manifest
new file mode 100644
index 000000000000..6a7815b74bd7
--- /dev/null
+++ b/www-apache/mod_httpbl/Manifest
@@ -0,0 +1,15 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA1
+
+AUX 99_mod_httpbl.conf 197 RMD160 453eb8ee5caf722748b2a3f58aadedc656d50c99 SHA1 997bd02218318fd9c620f56ad2f338c0d73516b5 SHA256 de7ce4c9efd96864a69488815f69a8b2c9f8b28a7abfa37d05b3e9e3d5461556
+DIST mod_httpbl-1.5.c 360927 RMD160 5eb4445671a9d68e783a0dc7833916c92215142e SHA1 87b21bdfb387e68c740a0ab62c512fd7ba1d3fb5 SHA256 803c76aab001e123e2bbb74407d036c0986c598ef775ded7d70618a311520a00
+EBUILD mod_httpbl-1.5.ebuild 1902 RMD160 201abc875bc017aac891d79ce066a6920eb7e833 SHA1 953c622f94718877003ccda46ad595cee4e30681 SHA256 d6260866431837c9e9ced747552090a79b46fc4f713718669cdf2336f98a6b41
+MISC ChangeLog 480 RMD160 1824f280344af6d6cbb4936005ad1dfa26f1be4a SHA1 980d6ca31377e7321bc99be442160bad817b1f07 SHA256 8069cc56332616da0f0fe186ad2fc7b30ab100c3269d55cfff14b6e0b332aca7
+MISC metadata.xml 267 RMD160 511ac4eac08cf7c7598b7f0dd2c2a7b54b2a6d17 SHA1 7cfd482a8ab9b30e3e424c19cfef49ccc93013c8 SHA256 0c11886362b779764fbeda77806037b3625b1c11375b7ecc1b7ad3e20ec6a1ac
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v2.0.13 (GNU/Linux)
+
+iEYEARECAAYFAksOWk0ACgkQAiZjviIA2Xh34gCcDBQQ9YeEPC8z/ShEODuVNxdO
+JMIAnAtM8FyUYdqkvX6rTkXE14J+6dVx
+=itEs
+-----END PGP SIGNATURE-----
diff --git a/www-apache/mod_httpbl/files/99_mod_httpbl.conf b/www-apache/mod_httpbl/files/99_mod_httpbl.conf
new file mode 100644
index 000000000000..f7352e4e57c3
--- /dev/null
+++ b/www-apache/mod_httpbl/files/99_mod_httpbl.conf
@@ -0,0 +1,8 @@
+<IfDefine HTTPBL>
+LoadModule httpbl_module modules/mod_httpbl.so
+
+HTTPBLLogDir /var/log/apache2/httpbl
+HTTPBLReposDir /var/cache/mod_httpbl
+
+HTTPBLAccessKey # You should set yours here
+</IfDefine>
diff --git a/www-apache/mod_httpbl/metadata.xml b/www-apache/mod_httpbl/metadata.xml
new file mode 100644
index 000000000000..51450645398c
--- /dev/null
+++ b/www-apache/mod_httpbl/metadata.xml
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+  <herd>apache</herd>
+  <maintainer>
+    <email>flameeyes@gentoo.org</email>
+    <name>Diego E. Pettenò</name>
+  </maintainer>
+</pkgmetadata>
diff --git a/www-apache/mod_httpbl/mod_httpbl-1.5.ebuild b/www-apache/mod_httpbl/mod_httpbl-1.5.ebuild
new file mode 100644
index 000000000000..ee4516b068cc
--- /dev/null
+++ b/www-apache/mod_httpbl/mod_httpbl-1.5.ebuild
@@ -0,0 +1,70 @@
+# Copyright 1999-2009 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_httpbl/mod_httpbl-1.5.ebuild,v 1.1 2009/11/26 10:37:09 flameeyes Exp $
+
+EAPI=2
+
+inherit apache-module
+
+DESCRIPTION="http:BL implementation for Apache 2"
+HOMEPAGE="http://www.projecthoneypot.org/httpbl_download.php"
+SRC_URI="http://httpbl.cvs.sourceforge.net/viewvc/*checkout*/httpbl/mod_httpbl_for_apache_2.0/mod_httpbl_source/mod_httpbl.c?revision=${PV} -> ${P}.c"
+
+LICENSE="GPL-2"
+SLOT="0"
+IUSE=""
+
+KEYWORDS="~amd64"
+
+S=${WORKDIR}
+
+APACHE2_MOD_FILE=".libs/${PN}.so"
+APACHE2_MOD_CONF="99_mod_httpbl"
+APACHE2_MOD_DEFINE="HTTPBL"
+
+need_apache2
+
+# We have to copy the file in the work directory because otherwise
+# apxs will try to build it within distdir (which is luckily read
+# only).
+src_unpack() {
+	cp "${DISTDIR}"/${P}.c ${PN}.c || die
+}
+
+src_compile() {
+	APXS_FLAGS=
+	for flag in ${CFLAGS}; do
+		APXS_FLAGS="${APXS_FLAGS} -Wc,${flag}"
+	done
+
+	# Yes we need to prefix it _twice_
+	for flag in ${LDFLAGS}; do
+		APXS_FLAGS="${APXS_FLAGS} -Wl,${flag}"
+	done
+
+	${APXS} -c ${APXS_FLAGS} ${PN}.c || die
+}
+
+src_install() {
+	apache-module_src_install
+
+	keepdir /var/log/apache2/httpbl
+	fowners apache:apache /var/log/apache2/httpbl || die
+	fperms 0770 /var/log/apache2/httpbl || die
+
+	keepdir /var/cache/mod_httpbl || die
+	fowners apache:apache /var/cache/mod_httpbl || die
+	fperms 0770 /var/cache/mod_httpbl || die
+}
+
+pkg_postinst() {
+	apache-module_pkg_postinst
+
+	elog "To use http:BL you will need the API key from Project Honey Pot"
+	elog "that you can receive being an active member."
+	elog "See ${HOMEPAGE} for details."
+	elog ""
+	elog "By default all requests are filtered with the blacklist, you probably"
+	elog "want to restrict that to virtual hosts where actual applications are"
+	elog "running and/or on possibly vulnerable locations."
+}