net-misc/moblock: New ebuild for bug #143535

svn path=/sunrise/; revision=880

8 files changed, 230 insertions, 0 deletions

diff --git a/net-misc/moblock/ChangeLog b/net-misc/moblock/ChangeLog
new file mode 100644
index 000000000..48bcb617c
--- /dev/null
+++ b/net-misc/moblock/ChangeLog
@@ -0,0 +1,9 @@
+# ChangeLog for net-misc/moblock
+# Copyright 1999-2006 Gentoo Foundation; Distributed under the GPL v2
+# $Header: $
+
+  13 Aug 2006; Tiziano Müller <gentoo@dev-zero.ch> +moblock-0.8.ebuild,
+  +files/moblock-0.8-makefile.patch, +files/confd, +files/initd,
+  +metadata.xml:
+  New ebuild for bug #143535
+
diff --git a/net-misc/moblock/Manifest b/net-misc/moblock/Manifest
new file mode 100644
index 000000000..5131008e1
--- /dev/null
+++ b/net-misc/moblock/Manifest
@@ -0,0 +1,28 @@
+AUX confd 413 RMD160 18c2e24e5d4806d7b4941588581f505d88816ce8 SHA1 14064540969b27377557552edebd99fd60f97041 SHA256 a463f9078de42566b166bda491a65aedb4eb5145c49f784706c4071fee86769a
+MD5 c2edae864085a209f882de78a4c59d56 files/confd 413
+RMD160 18c2e24e5d4806d7b4941588581f505d88816ce8 files/confd 413
+SHA256 a463f9078de42566b166bda491a65aedb4eb5145c49f784706c4071fee86769a files/confd 413
+AUX initd 2409 RMD160 f621fae5624e565f24a1430b5ab865d57a2fe031 SHA1 6aea2787ad08c6bdc6f254ce9cd4a8f1bc8336d1 SHA256 13a14c0ebb504ff3f9695675412cc045c9819e4fda862494e3af600ea95e0402
+MD5 7dd5fec6b6c7a382bbca13a7cd1db391 files/initd 2409
+RMD160 f621fae5624e565f24a1430b5ab865d57a2fe031 files/initd 2409
+SHA256 13a14c0ebb504ff3f9695675412cc045c9819e4fda862494e3af600ea95e0402 files/initd 2409
+AUX moblock-0.8-makefile.patch 825 RMD160 1fc36ed1c33267a391d2daffaff5c60043c69017 SHA1 260c99a69a6aa7a3df697330898783b98e72e072 SHA256 0d780e33c7f762d62ee9223b072b3ac0ccbf52e81934a4d505933528b3d48ca7
+MD5 970d2e5ecc5fc03560d650516c9d032e files/moblock-0.8-makefile.patch 825
+RMD160 1fc36ed1c33267a391d2daffaff5c60043c69017 files/moblock-0.8-makefile.patch 825
+SHA256 0d780e33c7f762d62ee9223b072b3ac0ccbf52e81934a4d505933528b3d48ca7 files/moblock-0.8-makefile.patch 825
+DIST MoBlock-0.8-i586.tar.bz2 18553 RMD160 2190cfb55977ad23176ddb43e410ee5d9293a518 SHA1 e9e7b47622eb606b6c429fc507fc50d0c037487e SHA256 30d6d56fe72606ffa308fb8e6edd44c2b1806dfa4da8a13bde046964601fd904
+EBUILD moblock-0.8.ebuild 976 RMD160 1822cdfd4d97c1f0b17d13e318064ec848c0546f SHA1 109de0b4b61c6d943dc3e5a55b6347e8534e6a84 SHA256 002a8215f394320c050937307fc3a9d0ea0cacf2898061ca93354254246b0ed6
+MD5 45b145fffdd071aa48a747fb996532a0 moblock-0.8.ebuild 976
+RMD160 1822cdfd4d97c1f0b17d13e318064ec848c0546f moblock-0.8.ebuild 976
+SHA256 002a8215f394320c050937307fc3a9d0ea0cacf2898061ca93354254246b0ed6 moblock-0.8.ebuild 976
+MISC ChangeLog 302 RMD160 e9149f667ff2b9d755f3ab3083b4f41095fee1c0 SHA1 2ca615ea570c6eb652c3260e7de664d7fbf090fd SHA256 f86b480fb3fa21e0cf76b72ed749061356ffdc2bd5d246babc0efcf59f7ff6f2
+MD5 14e9725998e3e6834188be4f18e323ed ChangeLog 302
+RMD160 e9149f667ff2b9d755f3ab3083b4f41095fee1c0 ChangeLog 302
+SHA256 f86b480fb3fa21e0cf76b72ed749061356ffdc2bd5d246babc0efcf59f7ff6f2 ChangeLog 302
+MISC metadata.xml 170 RMD160 645927a396fdc21cdeb089fe42c5397332420ea6 SHA1 ac7f48a14fec325926f9ce1be8fbf1f311b4f2e4 SHA256 d797a2ec6f9dc516c9f9c1a758ee87ad3e8c43101b5dc76c2f872d5bd4639b42
+MD5 1e678929a9fec6632e227bdf2262e9a1 metadata.xml 170
+RMD160 645927a396fdc21cdeb089fe42c5397332420ea6 metadata.xml 170
+SHA256 d797a2ec6f9dc516c9f9c1a758ee87ad3e8c43101b5dc76c2f872d5bd4639b42 metadata.xml 170
+MD5 b8ef1a9e4b2c707b24f7800829722037 files/digest-moblock-0.8 250
+RMD160 9cc1915881af58414b4130ad74fbacfe9aca6541 files/digest-moblock-0.8 250
+SHA256 184cfe6e1bdaf2b5af938daaa7d8ff360f60b404da2656ba2d84f150e4710971 files/digest-moblock-0.8 250
diff --git a/net-misc/moblock/files/confd b/net-misc/moblock/files/confd
new file mode 100755
index 000000000..57d2b0fb4
--- /dev/null
+++ b/net-misc/moblock/files/confd
@@ -0,0 +1,19 @@
+
+ACTIVATE_CHAINS=1
+WHITE_TCP_IN=""
+WHITE_UDP_IN=""
+WHITE_TCP_OUT=""
+WHITE_UDP_OUT=""
+WHITE_TCP_FORWARD=""
+WHITE_UDP_FORWARD=""
+
+TARGET="NFQUEUE"
+
+PIDFILE="/var/run/moblock.pid"
+LOGFILE="/var/log/moblock.log"
+
+# -d      blocklist is an ipfilter.dat file
+# -n      blocklist is a peerguardian 2.x file (.p2b)
+# -p      blocklist is a peerguardian file (.p2p)
+BLOCKLISTTYPE="-n"
+BLOCKLISTFILE="/etc/moblock/p2p.p2b"
diff --git a/net-misc/moblock/files/digest-moblock-0.8 b/net-misc/moblock/files/digest-moblock-0.8
new file mode 100644
index 000000000..9fbefff49
--- /dev/null
+++ b/net-misc/moblock/files/digest-moblock-0.8
@@ -0,0 +1,3 @@
+MD5 199967adb48b153be90db10fe21325c5 MoBlock-0.8-i586.tar.bz2 18553
+RMD160 2190cfb55977ad23176ddb43e410ee5d9293a518 MoBlock-0.8-i586.tar.bz2 18553
+SHA256 30d6d56fe72606ffa308fb8e6edd44c2b1806dfa4da8a13bde046964601fd904 MoBlock-0.8-i586.tar.bz2 18553
diff --git a/net-misc/moblock/files/initd b/net-misc/moblock/files/initd
new file mode 100755
index 000000000..7f84fb148
--- /dev/null
+++ b/net-misc/moblock/files/initd
@@ -0,0 +1,93 @@
+#!/sbin/runscript
+# Copyright 1999-2006 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: $
+
+checkconfig() {
+        if [ ! -f "${BLOCKLISTFILE}" ]; then
+                eerror "Configuration file ${BLOCKLISTFILE} not found"
+                return 1
+        fi
+}
+
+start() {
+	checkconfig || return 1
+
+	ebegin "Starting MoBlock"
+	
+	modprobe ipt_NFQUEUE
+
+	# Filter all traffic, edit for your needs
+
+	iptables -N MOBLOCK_IN
+	iptables -N MOBLOCK_OUT
+	iptables -N MOBLOCK_FW
+
+	if [ ${ACTIVATE_CHAINS} -eq 1 ]; then
+		iptables -I INPUT -p all -m state --state NEW -j MOBLOCK_IN
+		iptables -I OUTPUT -p all -m state --state NEW -j MOBLOCK_OUT
+		iptables -I FORWARD -p all -m state --state NEW -j MOBLOCK_FW	
+	fi
+
+	iptables -I MOBLOCK_IN -p all -j ${TARGET}
+	iptables -I MOBLOCK_OUT -p all -j ${TARGET}
+	iptables -I MOBLOCK_FW -p all -j ${TARGET}
+
+	for PORT in ${WHITE_TCP_OUT}; do
+		iptables -I MOBLOCK_OUT -p tcp --dport ${PORT} -j ACCEPT
+	done
+	for PORT in ${WHITE_UDP_OUT}; do
+		iptables -I MOBLOCK_OUT -p udp --dport ${PORT} -j ACCEPT
+	done
+
+	for PORT in ${WHITE_TCP_IN}; do
+		iptables -I MOBLOCK_IN -p tcp --dport ${PORT} -j ACCEPT
+	done
+	for PORT in ${WHITE_UDP_IN}; do
+		iptables -I MOBLOCK_IN -p udp --dport ${PORT} -j ACCEPT
+	done
+
+	for PORT in ${WHITE_TCP_FORWARD}; do
+		iptables -I MOBLOCK_FW -p tcp --dport ${PORT} -j ACCEPT
+	done
+	for PORT in ${WHITE_UDP_FORWARD}; do
+		iptables -I MOBLOCK_FW -p udp --dport ${PORT} -j ACCEPT
+	done
+
+
+	# Loopback traffic fix
+
+	iptables -I INPUT -p all -i lo -j ACCEPT
+	iptables -I OUTPUT -p all -o lo -j ACCEPT
+
+	# Here you can change block list and log files
+
+	start-stop-daemon --start --quiet --background --pidfile ${PIDFILE} \
+		--exec /usr/sbin/moblock -- ${BLOCKLISTTYPE} "${BLOCKLISTFILE}" "${LOGFILE}"
+	eend ${?}
+}
+
+stop() {
+	
+	ebegin "Stopping MoBlock"
+	start-stop-daemon --stop --pidfile ${PID}
+	eend ${?}
+	
+	# On exit delete the rules we added
+
+	if [ ${ACTIVATE_CHAINS} -eq 1 ]; then
+		iptables -D INPUT -p all -m state --state NEW -j MOBLOCK_IN
+		iptables -D OUTPUT -p all -m state --state NEW -j MOBLOCK_OUT
+		iptables -D FORWARD -p all -m state --state NEW -j MOBLOCK_FW
+	fi
+
+	iptables -D INPUT -p all -i lo -j ACCEPT
+	iptables -D OUTPUT -p all -o lo -j ACCEPT
+
+	iptables -F MOBLOCK_IN
+	iptables -X MOBLOCK_IN
+	iptables -F MOBLOCK_OUT
+	iptables -X MOBLOCK_OUT
+	iptables -F MOBLOCK_FW
+	iptables -X MOBLOCK_FW
+}
diff --git a/net-misc/moblock/files/moblock-0.8-makefile.patch b/net-misc/moblock/files/moblock-0.8-makefile.patch
new file mode 100644
index 000000000..613dad634
--- /dev/null
+++ b/net-misc/moblock/files/moblock-0.8-makefile.patch
@@ -0,0 +1,30 @@
+--- Makefile.orig	2006-08-13 00:55:15.000000000 +0200
++++ Makefile	2006-08-13 00:55:27.000000000 +0200
+@@ -7,9 +7,7 @@
+ #QUEUE_LIB=LIBIPQ
+ QUEUE_LIB=NFQUEUE
+ 
+-CFLAGS=-Wall -O2 -march=i586 -mtune=i686 -fomit-frame-pointer -ffast-math \
+-	-D_GNU_SOURCE -D$(QUEUE_LIB) -L/usr/include/libipq
+-CC=gcc
++CFLAGS+=-Wall -D_GNU_SOURCE -D$(QUEUE_LIB) -L/usr/include/libipq
+ 
+ all: moblock
+ 
+@@ -17,7 +15,6 @@
+ moblock: MoBlock.o rbt.o
+ 	gcc -o $@ MoBlock.o rbt.o -lnetfilter_queue -lnfnetlink
+ 	#gcc -o $@ MoBlock.o rbt.o -lipq
+-	strip $@
+ 
+ moblock-static: MoBlock.o rbt.o
+ 	gcc -static -o $@ MoBlock.o rbt.o -lnetfilter_queue -lnfnetlink
+@@ -28,6 +25,7 @@
+ 	rm -f *.o *~ *# moblock
+ 
+ install:
+-	install -m 755 moblock $(DESTDIR)/usr/bin
++	mkdir -p "$(DESTDIR)/usr/bin"
++	install -m 755 moblock "$(DESTDIR)/usr/bin"
+ 
+ .PHONY: clean
diff --git a/net-misc/moblock/metadata.xml b/net-misc/moblock/metadata.xml
new file mode 100644
index 000000000..7e3286984
--- /dev/null
+++ b/net-misc/moblock/metadata.xml
@@ -0,0 +1,5 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+<herd>maintainer-wanted</herd>
+</pkgmetadata>
diff --git a/net-misc/moblock/moblock-0.8.ebuild b/net-misc/moblock/moblock-0.8.ebuild
new file mode 100644
index 000000000..69603ad25
--- /dev/null
+++ b/net-misc/moblock/moblock-0.8.ebuild
@@ -0,0 +1,43 @@
+# Copyright 1999-2006 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: $
+
+inherit eutils toolchain-funcs
+
+KEYWORDS="~x86"
+
+MY_P=${P/mob/MoB}
+
+DESCRIPTION="A linux console application that blocks connections from/to hosts listed in a file in peerguardian format using iptables."
+HOMEPAGE="http://moblock.berlios.de/"
+SRC_URI="http://download.berlios.de/${PN}/${MY_P}-i586.tar.bz2"
+LICENSE="GPL-2"
+SLOT="0"
+IUSE=""
+
+DEPEND=">=net-firewall/libnetfilter_queue-0.0.11
+		>=net-firewall/libnfnetlink-0.0.14"
+RDEPEND="${DEPEND}"
+
+S=${WORKDIR}/${MY_P}
+
+src_unpack() {
+	unpack ${A}
+	cd "${S}"
+	epatch "${FILESDIR}/${P}-makefile.patch"
+}
+
+src_compile() {
+	emake CC=$(tc-getCC) || die "emake failed"
+}
+
+src_install() {
+	dosbin moblock
+	newconfd "${FILESDIR}/confd" moblock
+	newinitd "${FILESDIR}/initd" moblock
+	dodir /etc/moblock
+	touch "${D}/etc/moblock/p2p.p2b"
+	dodir /var/log
+	touch "${D}/var/log/moblock.log"
+	dodoc Changelog README
+}