diff options
| author |   Joshua Brindle <method@gentoo.org> | 2002-12-11 06:24:32 +0000 |
|---|---|---|
| committer | Joshua Brindle <method@gentoo.org> | 2002-12-11 06:24:32 +0000 |
| commit | a38d13b761171e4b1e0bed732a0f748406ef3295 (patch) | |
| tree | 519857afcfe5a0f291bed90a8c9e0e08ab3f8164 | |
| parent | Fixed versioning. Closed 11910. (diff) | |
| download | historical-a38d13b761171e4b1e0bed732a0f748406ef3295.tar.gz historical-a38d13b761171e4b1e0bed732a0f748406ef3295.tar.bz2 historical-a38d13b761171e4b1e0bed732a0f748406ef3295.zip | |
Added stealth module for grsecurity
| -rw-r--r-- | sys-apps/iptables/files/digest-iptables-1.2.7a-r1 | 1 | ||||
| -rw-r--r-- | sys-apps/iptables/iptables-1.2.7a-r1.ebuild | 65 |
2 files changed, 66 insertions, 0 deletions
diff --git a/sys-apps/iptables/files/digest-iptables-1.2.7a-r1 b/sys-apps/iptables/files/digest-iptables-1.2.7a-r1 new file mode 100644 index 000000000000..557c12876948 --- /dev/null +++ b/sys-apps/iptables/files/digest-iptables-1.2.7a-r1 @@ -0,0 +1 @@ +MD5 e9de1c98c86a93934c8ada812fc8b286 iptables-1.2.7a.tar.bz2 118127 diff --git a/sys-apps/iptables/iptables-1.2.7a-r1.ebuild b/sys-apps/iptables/iptables-1.2.7a-r1.ebuild new file mode 100644 index 000000000000..dea0a13f9c4d --- /dev/null +++ b/sys-apps/iptables/iptables-1.2.7a-r1.ebuild @@ -0,0 +1,65 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-apps/iptables/iptables-1.2.7a-r1.ebuild,v 1.3 2002/12/11 06:24:32 method Exp $ + +S=${WORKDIR}/${P} +DESCRIPTION="Kernel 2.4 firewall, NAT and packet mangling tools" +SRC_URI="http://www.iptables.org/files/${P}.tar.bz2" +HOMEPAGE="http://www.iptables.org/" +KEYWORDS="~x86 ~alpha ~sparc" +SLOT="0" +# iptables is dependent on kernel sources. Strange but true. +DEPEND="virtual/glibc" +LICENSE="GPL-2" + +src_unpack() { + unpack ${A} + cd ${S} + patch -p1 < ${FILESDIR}/${P}-imq.diff-3 || die + patch -p0 < ${FILESDIR}/${P}-gentoo.diff || die + + #Add grsecurity stealth module for grsecurity kernels + patch -p1 < ${FILESDIR}/grsecurity-${PV}-iptables.patch + + chmod +x extensions/.IMQ-test* + mv Makefile Makefile.orig + sed -e "s/-O2/${CFLAGS}/g" -e "s:/usr/local::g" Makefile.orig > Makefile +} + +src_compile() { + # iptables and libraries are now installed to /sbin and /lib, so that + # systems with remote network-mounted /usr filesystems can get their + # network interfaces up and running correctly without /usr. + + # use make, not emake + make \ + LIBDIR=/lib \ + BINDIR=/sbin \ + MANDIR=/usr/share/man \ + INCDIR=/usr/include \ + KERNEL_DIR=/usr/src/linux \ + || die +} + +src_install() { + dodir /usr/{lib,share/man/man8,sbin} + make \ + LIBDIR=${D}/lib \ + BINDIR=${D}/sbin \ + MANDIR=${D}/usr/share/man \ + INCDIR=${D}/usr/include \ + install || die + + dodoc COPYING KNOWN_BUGS + dodir /var/lib/iptables + exeinto /etc/init.d + newexe ${FILESDIR}/iptables.init iptables + insinto /etc/conf.d + newins ${FILESDIR}/iptables.confd iptables +} + +pkg_postinst() { + einfo "This package now includes an initscript which loads and saves" + einfo "rules stored in /var/lib/iptables/rules-save" + einfo "This location can be changed in /etc/conf.d/iptables" +} |