Ticket #42678: Portfile

# -*- coding: utf-8; mode: tcl; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- vim:fenc=utf-8:ft=tcl:et:sw=4:ts=4:sts=4
# $Id: Portfile 111353 2013-09-19 07:21:56Z ryandesign@macports.org $

PortSystem          1.0

PortGroup           github 1.0

github.setup        ossec ossec-wui 0.8 v
categories          security
platforms           darwin
maintainers         nomaintainer
license             GPL-3
description         host-based intrusion detection system Web user interface
long_description    OSSEC is an Open Source Host-based Intrusion \
                    Detection System that performs log analysis, \
                    file integrity checking, policy monitoring, \
                    rootkit detection, real-time alerting and \
                    active response.
homepage            http://www.ossec.net/

depends_run-append port:ossec
use_configure       no
build {}
set webroot         ${prefix}/www/ossec
set ossecroot       ${prefix}/var/ossec

destroot {

    xinstall -d -m 755 ${destroot}${webroot}
    foreach f [glob -directory ${worksrcpath} *] {
        copy $f ${destroot}${webroot}
    }
    reinplace "s|/var/ossec|${ossecroot}|" ${destroot}${webroot}/ossec_conf.php

    xinstall -d -m 755 ${destroot}${prefix}/share/examples/${name}/
    copy ${filespath}/nginx-ossec.conf ${destroot}${prefix}/share/examples/${name}/nginx-ossec.conf.sample
    reinplace "s|>/var/ossec|>${prefix}/var/ossec|g" \
        ${destroot}${prefix}/share/examples/${name}/nginx-ossec.conf.sample
    
}
post-activate {
    if ![file exists ${prefix}/etc/nginx/nginx-ossec.conf] {
        copy ${prefix}/share/examples/${name}/nginx-ossec.conf.sample ${prefix}/etc/nginx/nginx-ossec.conf
    }
}

if {${subport} eq ${name}} {

    checksums           rmd160  b6c4716c16f6520ecde478e0117715fe6502ee60 \
                        sha256  1d578e780116e9d1c1931555a6cd1b4cb07de4546003671f05915a63eeffbdd3

    conflicts           ${name}-devel

    livecheck.type      regex
    livecheck.url       ${homepage}/?page_id=19
    livecheck.regex     "Web UI (\\d+\\.\\d+)"

}

subport ${name}-devel {

    #fetch.type git
    #git.url    https://github.com/ossec/ossec-wui
    #git.branch 3d3b626875cbe239588b57f4b6e16cf3d08b64d7
    ## 2014-02-19
    version     20140219
    distname    3d3b626875cbe239588b57f4b6e16cf3d08b64d7
    checksums           rmd160  b6c4716c16f6520ecde478e0117715fe6502ee60 \
                        sha256  1d578e780116e9d1c1931555a6cd1b4cb07de4546003671f05915a63eeffbdd3

    conflicts  ${name}
    livecheck.type      none

}

notes "
Project is currently little maintained. So be prepared if you use in production.
http://ossec-docs.readthedocs.org/en/latest/faq/ossec-wui.html
OR ?OSSIM, ...
http://ddpbsd.blogspot.ca/2011/10/3woo-you-got-your-ossec-in-my-logstash.html

To finish install:
1) You will need a web server and PHP (not covered)
2) Do setup (equivalent of setup.sh which is Linux based)
    w apache
    # echo \"AuthUserFile ${webroot}/.htpasswd\" > ${webroot}/.htaccess
    # cat ${webroot}/htaccess_def.txt >> ${webroot}/.htaccess
    w nginx, add to ${prefix}/etc/nginx/nginx.conf and restart it
    include nginx-ossec.conf
    (in your server part)
    w apache/nginx or other
    # htpasswd -c ${webroot}/.htaccess youruser
    # install -d -m 1777 ${webroot}/tmp
3) Add your web server user (apache, www-data or nobody) to the ossec group
    # dseditgroup -o edit -a nobody -t user ossec
4) If you have a large ossec install, you may want to
     re-configure PHP to support longer lasting scripts
     and higher memory utilization. The following entries
     on php.ini can be increased:

     max_execution_time = 180
     max_input_time = 180
     memory_limit = 30M


6) Try to access the UI.

     http ://localhost/ossec/

"