[packages/prelude-correlator.git] / prelude-correlator.spec

# TODO: verify if %%py_postclean can be done
Summary:	Real time correlator of events received by Prelude Manager
Summary(pl.UTF-8):	Narzędzie kojarzące w czasie rzeczywistym zdarzenia odebrane przez Prelude Managera
Name:		prelude-correlator
Version:	5.1.0
Release:	2
License:	GPL v2+
Group:		Applications/Networking
#Source0Download: https://www.prelude-siem.org/projects/prelude/files
Source0:	https://www.prelude-siem.org/attachments/download/1173/%{name}-%{version}.tar.gz
# Source0-md5:	0916b2391a35ed7a4808ba7c8656d833
Source1:	%{name}.init
Patch0:		%{name}-vardir.patch
URL:		https://www.prelude-siem.org/
BuildRequires:	python-devel
BuildRequires:	python-setuptools >= 0.6-2.c11
BuildRequires:	rpmbuild(macros) >= 1.714
Requires(pre):	/usr/sbin/useradd
Requires(post):	/sbin/chkconfig
Requires(preun):	/sbin/chkconfig
Requires(preun):	/sbin/service
Requires(postun):	/sbin/service
BuildArch:	noarch
BuildRoot:	%{tmpdir}/%{name}-%{version}-root-%(id -u -n)

%description
Prelude-Correlator allows conducting multi-stream correlations thanks
to a powerful programming language for writing correlation rules. With
any type of alert able to be correlated, event analysis becomes
simpler, quicker and more incisive. This correlation alert then
appears within the Prewikka interface and indicates the potential
target information via the set of correlation rules.

%description -l pl.UTF-8
Prelude-Correlator pozwala na wykonywanie wielostrumieniowych
skojarzeń dzięki potężnemu językowi programowania do tworzenia reguł
korelacji. Dzięki możliwości skorelowania dowolnego rodzaju alarmu,
analiza zdarzeń robi się prostsza, szybsza i dokładniejsza. Tak
skorelowane alarmy pojawiają się następnie w interfejsie Prewikki i
określają potencjalną informację o celu poprzez zbiór reguł korelacji.

%prep
%setup -q
%patch0 -p1

%build
%py_build

%install
rm -rf $RPM_BUILD_ROOT

%py_install

install -d $RPM_BUILD_ROOT/etc/rc.d/init.d
install %{SOURCE1} $RPM_BUILD_ROOT/etc/rc.d/init.d/%{name}

%clean
rm -rf $RPM_BUILD_ROOT

%post
/sbin/chkconfig --add %{name}
%service %{name} restart

%preun
if [ "$1" = "0" ]; then
        %service -q %{name} stop
        /sbin/chkconfig --del %{name}
fi

%files
%defattr(644,root,root,755)
%doc AUTHORS NEWS README
%attr(700,root,root) %dir %{_sysconfdir}/%{name}
%config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/%{name}/%{name}.conf
%dir %{_sysconfdir}/%{name}/conf.d
%dir %{_sysconfdir}/%{name}/rules
%dir %{_sysconfdir}/%{name}/rules/python
%{_sysconfdir}/%{name}/rules/python/*.py
%attr(754,root,root) /etc/rc.d/init.d/%{name}
%attr(755,root,root) %{_bindir}/%{name}
%dir %{_var}/lib/%{name}
%{_var}/lib/%{name}/*.dat
%{py_sitescriptdir}/preludecorrelator
%{py_sitescriptdir}/prelude_correlator-%{version}-py*.egg-info
Commit	Line	Data
f63d8b34	1	# TODO: verify if %%py_postclean can be done
7041a6d8	2	Summary: Real time correlator of events received by Prelude Manager
f63d8b34	3	Summary(pl.UTF-8): Narzędzie kojarzące w czasie rzeczywistym zdarzenia odebrane przez Prelude Managera
7041a6d8	4	Name: prelude-correlator
07f4a607	5	Version: 5.1.0
ae175777	6	Release: 2
7041a6d8 SP	7	License: GPL v2+
7041a6d8 SP	8	Group: Applications/Networking
55ab4014	9	#Source0Download: https://www.prelude-siem.org/projects/prelude/files
07f4a607 JB	10	Source0: https://www.prelude-siem.org/attachments/download/1173/%{name}-%{version}.tar.gz
07f4a607 JB	11	# Source0-md5: 0916b2391a35ed7a4808ba7c8656d833
7041a6d8	12	Source1: %{name}.init
a117af49	13	Patch0: %{name}-vardir.patch
55ab4014	14	URL: https://www.prelude-siem.org/
7041a6d8 SP	15	BuildRequires: python-devel
7041a6d8 SP	16	BuildRequires: python-setuptools >= 0.6-2.c11
a117af49	17	BuildRequires: rpmbuild(macros) >= 1.714
7041a6d8 SP	18	Requires(pre): /usr/sbin/useradd
	19	Requires(post): /sbin/chkconfig
	20	Requires(preun): /sbin/chkconfig
	21	Requires(preun): /sbin/service
	22	Requires(postun): /sbin/service
7041a6d8	23	BuildArch: noarch
f63d8b34	24	BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
7041a6d8 SP	25
	26	%description
	27	Prelude-Correlator allows conducting multi-stream correlations thanks
	28	to a powerful programming language for writing correlation rules. With
	29	any type of alert able to be correlated, event analysis becomes
	30	simpler, quicker and more incisive. This correlation alert then
	31	appears within the Prewikka interface and indicates the potential
	32	target information via the set of correlation rules.
	33
f63d8b34 JB	34	%description -l pl.UTF-8
	35	Prelude-Correlator pozwala na wykonywanie wielostrumieniowych
	36	skojarzeń dzięki potężnemu językowi programowania do tworzenia reguł
	37	korelacji. Dzięki możliwości skorelowania dowolnego rodzaju alarmu,
	38	analiza zdarzeń robi się prostsza, szybsza i dokładniejsza. Tak
	39	skorelowane alarmy pojawiają się następnie w interfejsie Prewikki i
	40	określają potencjalną informację o celu poprzez zbiór reguł korelacji.
	41
7041a6d8 SP	42	%prep
7041a6d8 SP	43	%setup -q
a117af49 JB	44	%patch0 -p1
	45
	46	%build
	47	%py_build
7041a6d8	48
7041a6d8 SP	49	%install
7041a6d8 SP	50	rm -rf $RPM_BUILD_ROOT
f63d8b34	51
a117af49	52	%py_install
f63d8b34 JB	53
	54	install -d $RPM_BUILD_ROOT/etc/rc.d/init.d
	55	install %{SOURCE1} $RPM_BUILD_ROOT/etc/rc.d/init.d/%{name}
7041a6d8 SP	56
	57	%clean
	58	rm -rf $RPM_BUILD_ROOT
	59
7041a6d8 SP	60	%post
7041a6d8 SP	61	/sbin/chkconfig --add %{name}
f63d8b34	62	%service %{name} restart
7041a6d8 SP	63
7041a6d8 SP	64	%preun
f63d8b34 JB	65	if [ "$1" = "0" ]; then
f63d8b34 JB	66	%service -q %{name} stop
7041a6d8 SP	67	/sbin/chkconfig --del %{name}
	68	fi
	69
7041a6d8 SP	70	%files
7041a6d8 SP	71	%defattr(644,root,root,755)
55ab4014	72	%doc AUTHORS NEWS README
f63d8b34 JB	73	%attr(700,root,root) %dir %{_sysconfdir}/%{name}
f63d8b34 JB	74	%config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/%{name}/%{name}.conf
a117af49 JB	75	%dir %{_sysconfdir}/%{name}/conf.d
	76	%dir %{_sysconfdir}/%{name}/rules
	77	%dir %{_sysconfdir}/%{name}/rules/python
	78	%{_sysconfdir}/%{name}/rules/python/*.py
f63d8b34	79	%attr(754,root,root) /etc/rc.d/init.d/%{name}
7041a6d8 SP	80	%attr(755,root,root) %{_bindir}/%{name}
7041a6d8 SP	81	%dir %{_var}/lib/%{name}
f63d8b34	82	%{_var}/lib/%{name}/*.dat
55ab4014	83	%{py_sitescriptdir}/preludecorrelator
f63d8b34	84	%{py_sitescriptdir}/prelude_correlator-%{version}-py*.egg-info