diff options
author | Tiziano Müller <dev-zero@gentoo.org> | 2006-08-13 00:15:47 +0000 |
---|---|---|
committer | Tiziano Müller <dev-zero@gentoo.org> | 2006-08-13 00:15:47 +0000 |
commit | 3c1f39f83e818538ed5b40f484df391eff3b8f2e (patch) | |
tree | 317a54dd272c9acaf66fb451c8e235dd8615bf98 | |
parent | dev-cpp/wt: New ebuild for bug #143731 (diff) | |
download | sunrise-3c1f39f83e818538ed5b40f484df391eff3b8f2e.tar.gz sunrise-3c1f39f83e818538ed5b40f484df391eff3b8f2e.tar.bz2 sunrise-3c1f39f83e818538ed5b40f484df391eff3b8f2e.zip |
net-misc/moblock: New ebuild for bug #143535
svn path=/sunrise/; revision=880
-rw-r--r-- | net-misc/moblock/ChangeLog | 9 | ||||
-rw-r--r-- | net-misc/moblock/Manifest | 28 | ||||
-rwxr-xr-x | net-misc/moblock/files/confd | 19 | ||||
-rw-r--r-- | net-misc/moblock/files/digest-moblock-0.8 | 3 | ||||
-rwxr-xr-x | net-misc/moblock/files/initd | 93 | ||||
-rw-r--r-- | net-misc/moblock/files/moblock-0.8-makefile.patch | 30 | ||||
-rw-r--r-- | net-misc/moblock/metadata.xml | 5 | ||||
-rw-r--r-- | net-misc/moblock/moblock-0.8.ebuild | 43 |
8 files changed, 230 insertions, 0 deletions
diff --git a/net-misc/moblock/ChangeLog b/net-misc/moblock/ChangeLog new file mode 100644 index 000000000..48bcb617c --- /dev/null +++ b/net-misc/moblock/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-misc/moblock +# Copyright 1999-2006 Gentoo Foundation; Distributed under the GPL v2 +# $Header: $ + + 13 Aug 2006; Tiziano Müller <gentoo@dev-zero.ch> +moblock-0.8.ebuild, + +files/moblock-0.8-makefile.patch, +files/confd, +files/initd, + +metadata.xml: + New ebuild for bug #143535 + diff --git a/net-misc/moblock/Manifest b/net-misc/moblock/Manifest new file mode 100644 index 000000000..5131008e1 --- /dev/null +++ b/net-misc/moblock/Manifest @@ -0,0 +1,28 @@ +AUX confd 413 RMD160 18c2e24e5d4806d7b4941588581f505d88816ce8 SHA1 14064540969b27377557552edebd99fd60f97041 SHA256 a463f9078de42566b166bda491a65aedb4eb5145c49f784706c4071fee86769a +MD5 c2edae864085a209f882de78a4c59d56 files/confd 413 +RMD160 18c2e24e5d4806d7b4941588581f505d88816ce8 files/confd 413 +SHA256 a463f9078de42566b166bda491a65aedb4eb5145c49f784706c4071fee86769a files/confd 413 +AUX initd 2409 RMD160 f621fae5624e565f24a1430b5ab865d57a2fe031 SHA1 6aea2787ad08c6bdc6f254ce9cd4a8f1bc8336d1 SHA256 13a14c0ebb504ff3f9695675412cc045c9819e4fda862494e3af600ea95e0402 +MD5 7dd5fec6b6c7a382bbca13a7cd1db391 files/initd 2409 +RMD160 f621fae5624e565f24a1430b5ab865d57a2fe031 files/initd 2409 +SHA256 13a14c0ebb504ff3f9695675412cc045c9819e4fda862494e3af600ea95e0402 files/initd 2409 +AUX moblock-0.8-makefile.patch 825 RMD160 1fc36ed1c33267a391d2daffaff5c60043c69017 SHA1 260c99a69a6aa7a3df697330898783b98e72e072 SHA256 0d780e33c7f762d62ee9223b072b3ac0ccbf52e81934a4d505933528b3d48ca7 +MD5 970d2e5ecc5fc03560d650516c9d032e files/moblock-0.8-makefile.patch 825 +RMD160 1fc36ed1c33267a391d2daffaff5c60043c69017 files/moblock-0.8-makefile.patch 825 +SHA256 0d780e33c7f762d62ee9223b072b3ac0ccbf52e81934a4d505933528b3d48ca7 files/moblock-0.8-makefile.patch 825 +DIST MoBlock-0.8-i586.tar.bz2 18553 RMD160 2190cfb55977ad23176ddb43e410ee5d9293a518 SHA1 e9e7b47622eb606b6c429fc507fc50d0c037487e SHA256 30d6d56fe72606ffa308fb8e6edd44c2b1806dfa4da8a13bde046964601fd904 +EBUILD moblock-0.8.ebuild 976 RMD160 1822cdfd4d97c1f0b17d13e318064ec848c0546f SHA1 109de0b4b61c6d943dc3e5a55b6347e8534e6a84 SHA256 002a8215f394320c050937307fc3a9d0ea0cacf2898061ca93354254246b0ed6 +MD5 45b145fffdd071aa48a747fb996532a0 moblock-0.8.ebuild 976 +RMD160 1822cdfd4d97c1f0b17d13e318064ec848c0546f moblock-0.8.ebuild 976 +SHA256 002a8215f394320c050937307fc3a9d0ea0cacf2898061ca93354254246b0ed6 moblock-0.8.ebuild 976 +MISC ChangeLog 302 RMD160 e9149f667ff2b9d755f3ab3083b4f41095fee1c0 SHA1 2ca615ea570c6eb652c3260e7de664d7fbf090fd SHA256 f86b480fb3fa21e0cf76b72ed749061356ffdc2bd5d246babc0efcf59f7ff6f2 +MD5 14e9725998e3e6834188be4f18e323ed ChangeLog 302 +RMD160 e9149f667ff2b9d755f3ab3083b4f41095fee1c0 ChangeLog 302 +SHA256 f86b480fb3fa21e0cf76b72ed749061356ffdc2bd5d246babc0efcf59f7ff6f2 ChangeLog 302 +MISC metadata.xml 170 RMD160 645927a396fdc21cdeb089fe42c5397332420ea6 SHA1 ac7f48a14fec325926f9ce1be8fbf1f311b4f2e4 SHA256 d797a2ec6f9dc516c9f9c1a758ee87ad3e8c43101b5dc76c2f872d5bd4639b42 +MD5 1e678929a9fec6632e227bdf2262e9a1 metadata.xml 170 +RMD160 645927a396fdc21cdeb089fe42c5397332420ea6 metadata.xml 170 +SHA256 d797a2ec6f9dc516c9f9c1a758ee87ad3e8c43101b5dc76c2f872d5bd4639b42 metadata.xml 170 +MD5 b8ef1a9e4b2c707b24f7800829722037 files/digest-moblock-0.8 250 +RMD160 9cc1915881af58414b4130ad74fbacfe9aca6541 files/digest-moblock-0.8 250 +SHA256 184cfe6e1bdaf2b5af938daaa7d8ff360f60b404da2656ba2d84f150e4710971 files/digest-moblock-0.8 250 diff --git a/net-misc/moblock/files/confd b/net-misc/moblock/files/confd new file mode 100755 index 000000000..57d2b0fb4 --- /dev/null +++ b/net-misc/moblock/files/confd @@ -0,0 +1,19 @@ + +ACTIVATE_CHAINS=1 +WHITE_TCP_IN="" +WHITE_UDP_IN="" +WHITE_TCP_OUT="" +WHITE_UDP_OUT="" +WHITE_TCP_FORWARD="" +WHITE_UDP_FORWARD="" + +TARGET="NFQUEUE" + +PIDFILE="/var/run/moblock.pid" +LOGFILE="/var/log/moblock.log" + +# -d blocklist is an ipfilter.dat file +# -n blocklist is a peerguardian 2.x file (.p2b) +# -p blocklist is a peerguardian file (.p2p) +BLOCKLISTTYPE="-n" +BLOCKLISTFILE="/etc/moblock/p2p.p2b" diff --git a/net-misc/moblock/files/digest-moblock-0.8 b/net-misc/moblock/files/digest-moblock-0.8 new file mode 100644 index 000000000..9fbefff49 --- /dev/null +++ b/net-misc/moblock/files/digest-moblock-0.8 @@ -0,0 +1,3 @@ +MD5 199967adb48b153be90db10fe21325c5 MoBlock-0.8-i586.tar.bz2 18553 +RMD160 2190cfb55977ad23176ddb43e410ee5d9293a518 MoBlock-0.8-i586.tar.bz2 18553 +SHA256 30d6d56fe72606ffa308fb8e6edd44c2b1806dfa4da8a13bde046964601fd904 MoBlock-0.8-i586.tar.bz2 18553 diff --git a/net-misc/moblock/files/initd b/net-misc/moblock/files/initd new file mode 100755 index 000000000..7f84fb148 --- /dev/null +++ b/net-misc/moblock/files/initd @@ -0,0 +1,93 @@ +#!/sbin/runscript +# Copyright 1999-2006 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: $ + +checkconfig() { + if [ ! -f "${BLOCKLISTFILE}" ]; then + eerror "Configuration file ${BLOCKLISTFILE} not found" + return 1 + fi +} + +start() { + checkconfig || return 1 + + ebegin "Starting MoBlock" + + modprobe ipt_NFQUEUE + + # Filter all traffic, edit for your needs + + iptables -N MOBLOCK_IN + iptables -N MOBLOCK_OUT + iptables -N MOBLOCK_FW + + if [ ${ACTIVATE_CHAINS} -eq 1 ]; then + iptables -I INPUT -p all -m state --state NEW -j MOBLOCK_IN + iptables -I OUTPUT -p all -m state --state NEW -j MOBLOCK_OUT + iptables -I FORWARD -p all -m state --state NEW -j MOBLOCK_FW + fi + + iptables -I MOBLOCK_IN -p all -j ${TARGET} + iptables -I MOBLOCK_OUT -p all -j ${TARGET} + iptables -I MOBLOCK_FW -p all -j ${TARGET} + + for PORT in ${WHITE_TCP_OUT}; do + iptables -I MOBLOCK_OUT -p tcp --dport ${PORT} -j ACCEPT + done + for PORT in ${WHITE_UDP_OUT}; do + iptables -I MOBLOCK_OUT -p udp --dport ${PORT} -j ACCEPT + done + + for PORT in ${WHITE_TCP_IN}; do + iptables -I MOBLOCK_IN -p tcp --dport ${PORT} -j ACCEPT + done + for PORT in ${WHITE_UDP_IN}; do + iptables -I MOBLOCK_IN -p udp --dport ${PORT} -j ACCEPT + done + + for PORT in ${WHITE_TCP_FORWARD}; do + iptables -I MOBLOCK_FW -p tcp --dport ${PORT} -j ACCEPT + done + for PORT in ${WHITE_UDP_FORWARD}; do + iptables -I MOBLOCK_FW -p udp --dport ${PORT} -j ACCEPT + done + + + # Loopback traffic fix + + iptables -I INPUT -p all -i lo -j ACCEPT + iptables -I OUTPUT -p all -o lo -j ACCEPT + + # Here you can change block list and log files + + start-stop-daemon --start --quiet --background --pidfile ${PIDFILE} \ + --exec /usr/sbin/moblock -- ${BLOCKLISTTYPE} "${BLOCKLISTFILE}" "${LOGFILE}" + eend ${?} +} + +stop() { + + ebegin "Stopping MoBlock" + start-stop-daemon --stop --pidfile ${PID} + eend ${?} + + # On exit delete the rules we added + + if [ ${ACTIVATE_CHAINS} -eq 1 ]; then + iptables -D INPUT -p all -m state --state NEW -j MOBLOCK_IN + iptables -D OUTPUT -p all -m state --state NEW -j MOBLOCK_OUT + iptables -D FORWARD -p all -m state --state NEW -j MOBLOCK_FW + fi + + iptables -D INPUT -p all -i lo -j ACCEPT + iptables -D OUTPUT -p all -o lo -j ACCEPT + + iptables -F MOBLOCK_IN + iptables -X MOBLOCK_IN + iptables -F MOBLOCK_OUT + iptables -X MOBLOCK_OUT + iptables -F MOBLOCK_FW + iptables -X MOBLOCK_FW +} diff --git a/net-misc/moblock/files/moblock-0.8-makefile.patch b/net-misc/moblock/files/moblock-0.8-makefile.patch new file mode 100644 index 000000000..613dad634 --- /dev/null +++ b/net-misc/moblock/files/moblock-0.8-makefile.patch @@ -0,0 +1,30 @@ +--- Makefile.orig 2006-08-13 00:55:15.000000000 +0200 ++++ Makefile 2006-08-13 00:55:27.000000000 +0200 +@@ -7,9 +7,7 @@ + #QUEUE_LIB=LIBIPQ + QUEUE_LIB=NFQUEUE + +-CFLAGS=-Wall -O2 -march=i586 -mtune=i686 -fomit-frame-pointer -ffast-math \ +- -D_GNU_SOURCE -D$(QUEUE_LIB) -L/usr/include/libipq +-CC=gcc ++CFLAGS+=-Wall -D_GNU_SOURCE -D$(QUEUE_LIB) -L/usr/include/libipq + + all: moblock + +@@ -17,7 +15,6 @@ + moblock: MoBlock.o rbt.o + gcc -o $@ MoBlock.o rbt.o -lnetfilter_queue -lnfnetlink + #gcc -o $@ MoBlock.o rbt.o -lipq +- strip $@ + + moblock-static: MoBlock.o rbt.o + gcc -static -o $@ MoBlock.o rbt.o -lnetfilter_queue -lnfnetlink +@@ -28,6 +25,7 @@ + rm -f *.o *~ *# moblock + + install: +- install -m 755 moblock $(DESTDIR)/usr/bin ++ mkdir -p "$(DESTDIR)/usr/bin" ++ install -m 755 moblock "$(DESTDIR)/usr/bin" + + .PHONY: clean diff --git a/net-misc/moblock/metadata.xml b/net-misc/moblock/metadata.xml new file mode 100644 index 000000000..7e3286984 --- /dev/null +++ b/net-misc/moblock/metadata.xml @@ -0,0 +1,5 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> +<pkgmetadata> +<herd>maintainer-wanted</herd> +</pkgmetadata> diff --git a/net-misc/moblock/moblock-0.8.ebuild b/net-misc/moblock/moblock-0.8.ebuild new file mode 100644 index 000000000..69603ad25 --- /dev/null +++ b/net-misc/moblock/moblock-0.8.ebuild @@ -0,0 +1,43 @@ +# Copyright 1999-2006 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: $ + +inherit eutils toolchain-funcs + +KEYWORDS="~x86" + +MY_P=${P/mob/MoB} + +DESCRIPTION="A linux console application that blocks connections from/to hosts listed in a file in peerguardian format using iptables." +HOMEPAGE="http://moblock.berlios.de/" +SRC_URI="http://download.berlios.de/${PN}/${MY_P}-i586.tar.bz2" +LICENSE="GPL-2" +SLOT="0" +IUSE="" + +DEPEND=">=net-firewall/libnetfilter_queue-0.0.11 + >=net-firewall/libnfnetlink-0.0.14" +RDEPEND="${DEPEND}" + +S=${WORKDIR}/${MY_P} + +src_unpack() { + unpack ${A} + cd "${S}" + epatch "${FILESDIR}/${P}-makefile.patch" +} + +src_compile() { + emake CC=$(tc-getCC) || die "emake failed" +} + +src_install() { + dosbin moblock + newconfd "${FILESDIR}/confd" moblock + newinitd "${FILESDIR}/initd" moblock + dodir /etc/moblock + touch "${D}/etc/moblock/p2p.p2b" + dodir /var/log + touch "${D}/var/log/moblock.log" + dodoc Changelog README +} |