Portage is a package management system used by Gentoo Linux
# ChangeLog for app-forensics/pyflag
# Copyright 1999-2007 Gentoo Foundation; Distributed under the GPL v2
# $Header: /var/cvsroot/gentoo-x86/app-forensics/pyflag/ChangeLog,v 1.7 2007/01/24 03:20:44 genone Exp $
24 Jan 2007; Marius Mauch
pyflag-0.82.ebuild:
Replacing einfo with elog
23 Nov 2006; Francesco Riosa
pyflag-0.82.ebuild:
dev-db/mysql => virtual/mysql
*pyflag-0.82 (28 Jun 2006)
28 Jun 2006; Daniel Black
+files/pyflag-0.82-nodbtool.patch, +pyflag-0.82.ebuild:
version bump
15 Feb 2006; Markus Ullmann
Removing virtual/libpcap wrt bug #117898
*pyflag-0.80.1 (08 Feb 2006)
08 Feb 2006; Daniel Black
+files/pyflag-0.80.1-nodbtool.patch, -files/pyflag-0.80-nodbtool.patch,
-pyflag-0.80.ebuild, +pyflag-0.80.1.ebuild:
version bump
04 Feb 2006; Daniel Black
autoconf abbreviations - thanks Diego
*pyflag-0.80 (22 Jan 2006)
22 Jan 2006; Daniel Black
+files/pyflag-0.80-nodbtool.patch, +metadata.xml, +pyflag-0.80.ebuild:
initial import as per bug #73301
AUX pyflag-0.80.1-nodbtool.patch 2128 RMD160 6961838551bad11e57a00c8ae92ed6ee2b194722 SHA1 3bbf7c94de6ebae06b1147e24b89d2c9ba2d3cb4 SHA256 bc8159511adeb193a1a0ea58a73af8691fa20d2c9c02f5fd25a64aff763b191a
AUX pyflag-0.82-nodbtool.patch 1710 RMD160 4763c7908230a78342d1a0a588fa0210ffa7af16 SHA1 a5ab47d17fc466573bf0039d2e7f4ff2998cae07 SHA256 cb176c7b19b2dbfc1beb39d4951f7ac1f71a9ca382889eeba5f072afd2fa6cee
DIST pyflag-0.80.1.tar.gz 964751 RMD160 748f8fc4915d7deac42953e60ae1bf6a4c321b04 SHA1 18cca1fb621df4482ae96b3f8354de12760089cc SHA256 d1cd6fbbf541011b7b95ebabb6c9e53095b7d878cfdd2658d48da97940cee5ba
DIST pyflag-0.82.tar.bz2 944549 RMD160 42d4d8b1e8b45afa93f243f853ed02ee8b903d7b SHA1 a4aa0cd556bc5cdf319a83e074d3899005f56b79 SHA256 fa42c5e42e927e8eb00aff0bad009e25b62576291dcfccc7d18d5397b9fe1ed2
EBUILD pyflag-0.80.1.ebuild 2679 RMD160 0feec0466f1f4f8304cb8a831622870879b2eeac SHA1 ab6983295f5e9b1c783768287f28ee7e27805406 SHA256 391006ecd9d1a99eb029374eb28d9f38fa57b0e2ac735784c72762cc414d47f4
EBUILD pyflag-0.82.ebuild 2440 RMD160 d08d579e8d10637abb69e72b373613a6df5eefb5 SHA1 ce1da01912777a272bd39352d85759a239ca63bf SHA256 4b91cba144b69edd7c63bbfaa6f8eb4a3e775595dabdeb10a140fd750ef24828
MISC ChangeLog 1253 RMD160 b8b0442bbb0f7830bf4717052b5c0846610887ea SHA1 5aefad00c89a4639dd8fbc24471817316287a7d3 SHA256 669d2ae24cc76b73bbe9ad6a2f2b409a6a3bc955a9d8bb9433b6d968bd558d5e
MISC metadata.xml 841 RMD160 83f805589c660b532bc92b4f06ca8c7ab47fa83d SHA1 f46fe62702a5f2425ed8fae0be90692aebaa4399 SHA256 1c673beca06d796a808a13e173ede075f61ae13ce499f3f0d56313d30234afa9
FLAG (Forensic and Log Analysis GUI) was designed to simplify the process of log
file analysis and forensic investigations. Often, when investigating a large
case, a great deal of data needs to be analysed and correlated. PyFlag uses a
database as a backend to assist in managing the large volumes of data. This
allows PyFlag to remain responsive and expedite data manipulation operations.
Since PyFLAG is web based, it is able to be deployed on a central server and
shared with a number of users at the same time. Data is loaded into cases which
keeps information separated.
# Copyright 1999-2007 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/app-forensics/pyflag/pyflag-0.80.1.ebuild,v 1.4 2007/01/24 03:20:44 genone Exp $
inherit eutils autotools
DESCRIPTION="Tool for analysing log files, tcpdump files and hard disk images"
HOMEPAGE="http://pyflag.sf.net"
SRC_URI="mirror://sourceforge/${PN}/${P}.tar.gz"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="~x86"
IUSE=""
COMMON_DEPEND="
net-libs/libpcap
sys-apps/file
dev-python/mysql-python
sys-libs/zlib
app-antivirus/clamav
>=app-forensics/sleuthkit-2.03
dev-python/pexpect
dev-python/imaging
media-libs/ploticus"
RDEPEND="${COMMON_DEPEND}
virtual/mysql"
DEPEND=">=dev-lang/swig-1.3
${COMMON_DEPEND}"
#
# TODO: init scripts
#
# dev-python/pexpect
# dev-python/imaging
# media-libs/ploticus
# app-forensics/sleuthkit to RDEPEND as it realy only checks they are
# installed
#
src_unpack() {
unpack "${A}"
epatch "${FILESDIR}/${P}-nodbtool.patch"
cd "${S}"
AT_M4DIR="config" eautoreconf
}
src_install() {
make DESTDIR="${D}" install || die
# don't include pyflag use include files - its just silly
rm -rf "${D}/usr/include"
#maybe later
#newinitd "${FILESDIR}/${P}-init" pyflag
#newconfd "${FILESDIR}/${P}-conf" pyflag
}
pkg_postinst() {
elog "Optionally enter database details in /etc/pyflagrc"
elog
elog "To start PyFlag just run \"pyflag\" as a normal user"
elog "then open your web browser on http://localhost:8000"
elog
elog "To create a database user \"emerge --config =${PF}\""
}
pkg_config() {
ewarn "This creates the approprate adminstrative user for pyflag"
ewarn "Run pyflag with the entered credentials to create the"
ewarn "tables and database."
einfo
einfo "Enter user to create:"
read USER
einfo "Enter user's password:"
read PASSWORD
# note - poor privledge separation is used in pyflag
# recommend not sharing with other security consious databases.
# it may be possible to imporve this a bit using manual permission setting.
einfo "Enter mysql root database password:"
echo GRANT ALL PRIVILEGES ON "*.*" TO $USER@localhost \
IDENTIFIED BY \"$PASSWORD\"\; FLUSH PRIVILEGES\; \
| /usr/bin/mysql -u root -p
einfo "Do you want this data to be used for all users (y/n)?"
ewarn "Warning - all credentials will be in a world readable file"
ewarn "This overwrites settings in ${ROOT}/etc/pyflagrc"
read GLOBAL
if [ "${GLOBAL}" == "y" ] || [ "${GLOBAL}" == "Y" ]; then
einfo "updating global settings"
sed -i -e "s:PYFLAG_DBUSER=.*:PYFLAG_DBUSER=$USER:" \
-e "s:PYFLAG_DBPASSWD=.*:PYFLAG_DBPASSWD=$PASSWORD:" \
"${ROOT}/etc/pyflagrc"
fi
}
# Copyright 1999-2007 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/app-forensics/pyflag/pyflag-0.82.ebuild,v 1.3 2007/01/24 03:20:44 genone Exp $
inherit eutils autotools
DESCRIPTION="Tool for analysing log files, tcpdump files and hard disk images"
HOMEPAGE="http://pyflag.sf.net"
SRC_URI="mirror://sourceforge/${PN}/${P}.tar.bz2"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="~x86"
IUSE=""
COMMON_DEPEND="
net-libs/libpcap
sys-apps/file
dev-python/mysql-python
sys-libs/zlib
app-antivirus/clamav
>=app-forensics/sleuthkit-2.03
dev-python/pexpect
dev-python/imaging
media-libs/ploticus"
RDEPEND="${COMMON_DEPEND}
virtual/mysql"
DEPEND=">=dev-lang/swig-1.3
${COMMON_DEPEND}"
#
# TODO: init scripts
#
src_unpack() {
unpack "${A}"
epatch "${FILESDIR}/${P}-nodbtool.patch"
cd "${S}"
AT_M4DIR="config" eautoreconf
}
src_install() {
emake DESTDIR="${D}" install || die
#maybe later
#newinitd "${FILESDIR}/${P}-init" pyflag
#newconfd "${FILESDIR}/${P}-conf" pyflag
}
pkg_postinst() {
elog "Optionally enter database details in /etc/pyflagrc"
elog
elog "To start PyFlag just run \"pyflag\" as a normal user"
elog "then open your web browser on http://localhost:8000"
elog
elog "To create a database user \"emerge --config =${PF}\""
}
pkg_config() {
ewarn "This creates the approprate adminstrative user for pyflag"
ewarn "Run pyflag with the entered credentials to create the"
ewarn "tables and database."
einfo
einfo "Enter user to create:"
read USER
einfo "Enter user's password:"
read PASSWORD
# note - poor privledge separation is used in pyflag
# recommend not sharing with other security consious databases.
# it may be possible to imporve this a bit using manual permission setting.
einfo "Enter mysql root database password:"
echo GRANT ALL PRIVILEGES ON "*.*" TO $USER@localhost \
IDENTIFIED BY \"$PASSWORD\"\; FLUSH PRIVILEGES\; \
| /usr/bin/mysql -u root -p
einfo "Do you want this data to be used for all users (y/n)?"
ewarn "Warning - all credentials will be in a world readable file"
ewarn "This overwrites settings in ${ROOT}/etc/pyflagrc"
read GLOBAL
if [ "${GLOBAL}" == "y" ] || [ "${GLOBAL}" == "Y" ]; then
einfo "updating global settings"
sed -i -e "s:PYFLAG_DBUSER=.*:PYFLAG_DBUSER=$USER:" \
-e "s:PYFLAG_DBPASSWD=.*:PYFLAG_DBPASSWD=$PASSWORD:" \
"${ROOT}/etc/pyflagrc"
fi
}