2 # - SECURITY: http://securitytracker.com/alerts/2004/Apr/1009838.html
3 # - put logtail to bin instead of sbin?
4 Summary: Logcheck system log analyzer
5 Summary(es): Analizador de logs
6 Summary(pl): Logcheck - analizator logów systemu
7 Summary(pt_BR): Um analisador de logs
8 Summary(ru): Logcheck - ÁÎÁÌÉÚÁÔÏÒ log-ÆÁÊÌÏ×
9 Summary(uk): Logcheck - ÁÎÁ̦ÚÁÔÏÒ log-ÆÁÊ̦×
10 Summary(zh_CN): ϵͳÈÕÖ¾·ÖÎö¹¤¾ß
15 Group: Applications/System
16 #Source0: http://www.psionic.com/tools/%{name}-%{version}.tar.gz
17 # Adopted by Debian ? They have 1.3.14 in pool
18 # Debian has 1.2.32 now.
19 Source0: %{name}-%{version}.tar.gz
20 # Source0-md5: e97c2f096e219e20310c1b80e9e1bc29
21 Patch0: %{name}-pld.patch
22 Vendor: Craig H. Rowland <crowland@psionic.com>
23 #URL: http://www.psionic.com/abacus
24 Requires: /usr/sbin/sendmail
26 Requires: logtail = %{epoch}:%{version}-%{release}
27 BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
29 %define _sysconfdir /etc/logcheck
32 Logcheck is software package that is designed to automatically run and
33 check system log files for security violations and unusual activity.
34 Logcheck utilizes a program called logtail that remembers the last
35 position it read from in a log file and uses this position on
36 subsequent runs to process new information. All source code is
37 available for review and the implementation was kept simple to avoid
38 problems. This package is a clone of the frequentcheck.sh script from
39 the Trusted Information Systems Gauntlet(tm) firewall package. TIS has
40 granted permission for me to clone this package.
46 Pakiet zawiera logcheck - aplikacjê przeznaczon± do automatycznego
47 analizowania logów systemowych i przesy³aniu ich po wstêpnej obróbce
48 poczt± elektroniczn± do administratora systemu. Aplikacja ta jest
49 klonem skryptu frequentcheck.sh z Trusted Information Systems
53 O logcheck é um software que foi desenvolvido para automaticamente rodar e
54 checar logs do sistema para violações de segurança, e atividade não usual.
57 Logcheck - ÐÒÏÇÒÁÍÍÁ ÄÌÑ ÏÔÓÌÅÖÉ×ÁÎÉÑ × ÓÉÓÔÅÍÎÙÈ ÌÏÇÁÈ ÎÅÏÂÙÞÎÙÈ ÄÅÊÓÔ×ÉÊ
58 É ÐÏÐÙÔÏË ÎÅÓÁÎËÃÉÏÎÉÒÏ×ÁÎÎÏÇÏ ÄÏÓÔÕÐÁ.
61 Logcheck - ÐÒÏÇÒÁÍÁ ÄÌÑ ×¦ÄÓ̦ÄËÏ×Õ×ÁÎÎÑ × ÓÉÓÔÅÍÎÉÈ ÌÏÇÁÈ ÎÅÚ×ÉÞÁÊÎÉÈ Ä¦Ê
62 ÔÁ ÓÐÒÏ ÎÅÓÁÎËæÏÎÏ×ÁÎÏÇÏ ÄÏÓÔÕÐÕ.
65 Summary: logtail program from logcheck package
66 Group: Applications/System
68 %description -n logtail
69 This package contains logtail that remembers the last position it read
70 from in a log file and uses this position on subsequent runs to
71 process new information.
78 rm -rf $RPM_BUILD_ROOT
79 install -d $RPM_BUILD_ROOT{%{_sysconfdir},/etc/cron.hourly,%{_sbindir}}
85 cat <<EOF > $RPM_BUILD_ROOT/etc/cron.hourly/logcheck
87 exec %{_sbindir}/logcheck
91 rm -rf $RPM_BUILD_ROOT
94 %defattr(644,root,root,755)
95 %doc CHANGES CREDITS README* systems/linux/README*
96 %attr(700,root,root) %dir %{_sysconfdir}
97 %attr(600,root,root) %config(noreplace) %verify(not size mtime md5) %{_sysconfdir}/*
98 %attr(700,root,root) %config(missingok) /etc/cron.hourly/logcheck
99 %attr(755,root,root) %{_sbindir}/logcheck
102 %defattr(644,root,root,755)
103 %attr(755,root,root) %{_sbindir}/logtail