+# TODO:
+# - SECURITY: http://securitytracker.com/alerts/2004/Apr/1009838.html
Summary: Logcheck system log analyzer
Summary(es): Analizador de logs
Summary(pl): Logcheck - analizator logów systemu
Summary(zh_CN): ϵͳÈÕÖ¾·ÖÎö¹¤¾ß
Name: logcheck
Version: 1.1.1
-Release: 1
+Release: 3.2
License: GPL
Group: Applications/System
-Source0: http://www.psionic.com/tools/%{name}-%{version}.tar.gz
+#Source0: http://www.psionic.com/tools/%{name}-%{version}.tar.gz
+# Adopted by Debian ? They have 1.3.14 in pool
+# Debian has 1.2.32 now.
+Source0: %{name}-%{version}.tar.gz
+# Source0-md5: e97c2f096e219e20310c1b80e9e1bc29
Patch0: %{name}-pld.patch
-Vendor: Craig Rowland <crowland@psionic.com>
-URL: http://www.psionic.com/abacus
+#URL: http://www.psionic.com/abacus
Requires: /usr/sbin/sendmail
+Requires: crondaemon
+Requires: logtail = %{epoch}:%{version}-%{release}
BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
%define _sysconfdir /etc/logcheck
%description -l pl
Pakiet zawiera logcheck - aplikacjê przeznaczon± do automatycznego
-analizowania logów systemowych i przesy³aniu ich po wstêpnjej obróbce
+analizowania logów systemowych i przesy³aniu ich po wstêpnej obróbce
poczt± elektroniczn± do administratora systemu. Aplikacja ta jest
klonem skryptu frequentcheck.sh z Trusted Information Systems
Gauntlet(tm).
%description -l pt_BR
-O logcheck é um software que foi desenvolvido para automaticamente rodar e
-checar logs do sistema para violações de segurança, e atividade não usual.
+O logcheck é um software que foi desenvolvido para automaticamente
+rodar e checar logs do sistema para violações de segurança, e
+atividade não usual.
%description -l ru
-Logcheck - ÐÒÏÇÒÁÍÍÁ ÄÌÑ ÏÔÓÌÅÖÉ×ÁÎÉÑ × ÓÉÓÔÅÍÎÙÈ ÌÏÇÁÈ ÎÅÏÂÙÞÎÙÈ ÄÅÊÓÔ×ÉÊ
-É ÐÏÐÙÔÏË ÎÅÓÁÎËÃÉÏÎÉÒÏ×ÁÎÎÏÇÏ ÄÏÓÔÕÐÁ.
+Logcheck - ÐÒÏÇÒÁÍÍÁ ÄÌÑ ÏÔÓÌÅÖÉ×ÁÎÉÑ × ÓÉÓÔÅÍÎÙÈ ÌÏÇÁÈ ÎÅÏÂÙÞÎÙÈ
+ÄÅÊÓÔ×ÉÊ É ÐÏÐÙÔÏË ÎÅÓÁÎËÃÉÏÎÉÒÏ×ÁÎÎÏÇÏ ÄÏÓÔÕÐÁ.
%description -l uk
-Logcheck - ÐÒÏÇÒÁÍÁ ÄÌÑ ×¦ÄÓ̦ÄËÏ×Õ×ÁÎÎÑ × ÓÉÓÔÅÍÎÉÈ ÌÏÇÁÈ ÎÅÚ×ÉÞÁÊÎÉÈ Ä¦Ê
-ÔÁ ÓÐÒÏ ÎÅÓÁÎËæÏÎÏ×ÁÎÏÇÏ ÄÏÓÔÕÐÕ.
+Logcheck - ÐÒÏÇÒÁÍÁ ÄÌÑ ×¦ÄÓ̦ÄËÏ×Õ×ÁÎÎÑ × ÓÉÓÔÅÍÎÉÈ ÌÏÇÁÈ ÎÅÚ×ÉÞÁÊÎÉÈ
+Ä¦Ê ÔÁ ÓÐÒÏ ÎÅÓÁÎËæÏÎÏ×ÁÎÏÇÏ ÄÏÓÔÕÐÕ.
+
+%package -n logtail
+Summary: logtail program from logcheck package
+Group: Applications/System
+
+%description -n logtail
+This package contains logtail that remembers the last position it read
+from in a log file and uses this position on subsequent runs to
+process new information.
%prep
%setup -q
%install
rm -rf $RPM_BUILD_ROOT
-install -d $RPM_BUILD_ROOT{%{_sysconfdir},/etc/cron.hourly,%{_sbindir}}
+install -d $RPM_BUILD_ROOT{%{_sysconfdir},/etc/cron.hourly,%{_sbindir},%{_bindir}}
%{__make} linux \
- CC=%{__cc} \
+ CC="%{__cc}" \
CFLAGS="%{rpmcflags}"
cat <<EOF > $RPM_BUILD_ROOT/etc/cron.hourly/logcheck
exec %{_sbindir}/logcheck
EOF
+mv $RPM_BUILD_ROOT{%{_sbindir},%{_bindir}}/logtail
+
%clean
rm -rf $RPM_BUILD_ROOT
%defattr(644,root,root,755)
%doc CHANGES CREDITS README* systems/linux/README*
%attr(700,root,root) %dir %{_sysconfdir}
-%attr(600,root,root) %config(noreplace) %verify(not size mtime md5) %{_sysconfdir}/*
+%attr(600,root,root) %config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/*
%attr(700,root,root) %config(missingok) /etc/cron.hourly/logcheck
%attr(755,root,root) %{_sbindir}/logcheck
-%attr(755,root,root) %{_sbindir}/logtail
+
+%files -n logtail
+%defattr(644,root,root,755)
+%attr(755,root,root) %{_bindir}/logtail