sys-apps/rsbac-admin/rsbac-admin-1.2.7.ebuild

# Copyright 1999-2006 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/sys-apps/rsbac-admin/rsbac-admin-1.2.7.ebuild,v 1.1 2006/06/07 10:15:35 kang Exp $

inherit eutils libtool

IUSE="pam"

# RSBAC Adming packet name
#ADMIN=rsbac-admin-v${PV}

DESCRIPTION="Rule Set Based Access Control (RSBAC) Admin Tools"
HOMEPAGE="http://www.rsbac.org/ http://hardened.gentoo.org/rsbac"
SRC_URI="http://download.rsbac.org/code/${PV}/rsbac-admin-${PV}.tar.bz2"

SLOT="0"
LICENSE="GPL-2"
KEYWORDS="~x86 ~amd64"
NSS="1.2.7"

DEPEND="dev-util/dialog
        pam? ( sys-libs/pam )
        sys-apps/baselayout"

RDEPEND=">=sys-libs/ncurses-5.2"

src_unpack() {
        unpack $A
        cd ${S}
        elibtoolize
}

src_compile() {
        local rsbacmakeargs
        rsbacmakeargs="libs tools"
        use pam && {
                rsbacmakeargs="${makeargs} pam nss"
        }
        emake PREFIX=/usr ${rsbacmakeargs} || die "cannot build (${rsbacmakeargs})"
}

src_install() {
        local rsabacinstallargs
        rsbacinstallargs="headers-install libs-install tools-install"
        use pam && {
                rsbacinstallargs="${rsbacinstallargs} pam-install nss-install"
        }
        make PREFIX=/usr DESTDIR=${D} ${rsbacinstallargs} || \
        die "cannot install (${rsbacinstallargs})"
        insinto /etc
        newins ${FILESDIR}/rsbac.conf rsbac.conf ${FILESDIR}/nsswitch.conf
        dodir /secoff
        keepdir /secoff
        dodir /var/log/rsbac
        keepdir /var/log/rsbac
}

pkg_postinst() {
        enewgroup secoff 400 || die "problem adding group secoff"
        enewuser secoff 400 /bin/bash /secoff secoff || \
        die "problem adding user secoff"
        enewgroup audit 404 || die "problem adding group audit"
        enewuser audit 404 -1 /dev/null audit || \
        die "problem adding user audit"

        chmod 700 /secoff /var/log/rsbac ||  \
        die "problem changing permissions of /secoff and/or /secoff/log"
        chown secoff:secoff -R /secoff || \
        die "problem changing ownership of /secoff"
        einfo "It is suggested to run (for example) a separate copy of syslog-ng to"
        einfo "log RSBAC messages, as user audit (uid 404) instead of using the deprecated"
        einfo "rklogd. See http://rsbac.org/documentation/administration_examples/syslog-ng"
        einfo "for more information."
}
1	# Copyright 1999-2006 Gentoo Foundation
2	# Distributed under the terms of the GNU General Public License v2
3	# $Header: /var/cvsroot/gentoo-x86/sys-apps/rsbac-admin/rsbac-admin-1.2.7.ebuild,v 1.1 2006/06/07 10:15:35 kang Exp $
4
5	inherit eutils libtool
6
7	IUSE="pam"
8
9	# RSBAC Adming packet name
10	#ADMIN=rsbac-admin-v${PV}
11
12	DESCRIPTION="Rule Set Based Access Control (RSBAC) Admin Tools"
13	HOMEPAGE="http://www.rsbac.org/ http://hardened.gentoo.org/rsbac"
14	SRC_URI="http://download.rsbac.org/code/${PV}/rsbac-admin-${PV}.tar.bz2"
15
16	SLOT="0"
17	LICENSE="GPL-2"
18	KEYWORDS="~x86 ~amd64"
19	NSS="1.2.7"
20
21	DEPEND="dev-util/dialog
22	pam? ( sys-libs/pam )
23	sys-apps/baselayout"
24
25	RDEPEND=">=sys-libs/ncurses-5.2"
26
27	src_unpack() {
28	unpack $A
29	cd ${S}
30	elibtoolize
31	}
32
33	src_compile() {
34	local rsbacmakeargs
35	rsbacmakeargs="libs tools"
36	use pam && {
37	rsbacmakeargs="${makeargs} pam nss"
38	}
39	emake PREFIX=/usr ${rsbacmakeargs} \|\| die "cannot build (${rsbacmakeargs})"
40	}
41
42	src_install() {
43	local rsabacinstallargs
44	rsbacinstallargs="headers-install libs-install tools-install"
45	use pam && {
46	rsbacinstallargs="${rsbacinstallargs} pam-install nss-install"
47	}
48	make PREFIX=/usr DESTDIR=${D} ${rsbacinstallargs} \|\| \
49	die "cannot install (${rsbacinstallargs})"
50	insinto /etc
51	newins ${FILESDIR}/rsbac.conf rsbac.conf ${FILESDIR}/nsswitch.conf
52	dodir /secoff
53	keepdir /secoff
54	dodir /var/log/rsbac
55	keepdir /var/log/rsbac
56	}
57
58	pkg_postinst() {
59	enewgroup secoff 400 \|\| die "problem adding group secoff"
60	enewuser secoff 400 /bin/bash /secoff secoff \|\| \
61	die "problem adding user secoff"
62	enewgroup audit 404 \|\| die "problem adding group audit"
63	enewuser audit 404 -1 /dev/null audit \|\| \
64	die "problem adding user audit"
65
66	chmod 700 /secoff /var/log/rsbac \|\| \
67	die "problem changing permissions of /secoff and/or /secoff/log"
68	chown secoff:secoff -R /secoff \|\| \
69	die "problem changing ownership of /secoff"
70	einfo "It is suggested to run (for example) a separate copy of syslog-ng to"
71	einfo "log RSBAC messages, as user audit (uid 404) instead of using the deprecated"
72	einfo "rklogd. See http://rsbac.org/documentation/administration_examples/syslog-ng"
73	einfo "for more information."
74	}