[oe] [meta-networking][PATCH] snort: fix for snort.conf
jackie.huang at windriver.com
jackie.huang at windriver.com
Mon Jun 26 07:04:59 UTC 2017
From: Jackie Huang <jackie.huang at windriver.com>
The /etc/snort/snort.conf doesn't work since
there are hardcoded paths and lib names, and
it tries to include many rules that are not
provided.
Signed-off-by: Jackie Huang <jackie.huang at windriver.com>
---
meta-networking/recipes-connectivity/snort/snort_2.9.7.5.bb | 11 +++++++++++
1 file changed, 11 insertions(+)
diff --git a/meta-networking/recipes-connectivity/snort/snort_2.9.7.5.bb b/meta-networking/recipes-connectivity/snort/snort_2.9.7.5.bb
index 57a04f2e7..dfd6ba971 100644
--- a/meta-networking/recipes-connectivity/snort/snort_2.9.7.5.bb
+++ b/meta-networking/recipes-connectivity/snort/snort_2.9.7.5.bb
@@ -57,6 +57,17 @@ do_install_append() {
for i in map config conf dtd; do
cp ${S}/etc/*.$i ${D}${sysconfdir}/snort/
done
+
+ # fix the hardcoded path and lib name
+ # comment out the rules that are not provided
+ sed -i -e 's#/usr/local/lib#${libdir}#' \
+ -e 's#\.\./\(.*rules\)#${sysconfdir}/snort/\1#' \
+ -e 's#\(libsf_engine.so\)#\1.0#' \
+ -e 's/^\(include $RULE_PATH\)/#\1/' \
+ -e 's/^\(dynamicdetection\)/#\1/' \
+ -e '/preprocessor reputation/,/blacklist/ s/^/#/' \
+ ${D}${sysconfdir}/snort/snort.conf
+
cp ${S}/preproc_rules/*.rules ${D}${sysconfdir}/snort/preproc_rules/
install -m 755 ${WORKDIR}/snort.init ${D}${sysconfdir}/init.d/snort
mkdir -p ${D}${localstatedir}/log/snort
--
2.11.0
More information about the Openembedded-devel
mailing list