debian/0000755000000000000000000000000011735106505007171 5ustar debian/source/0000755000000000000000000000000011735106505010471 5ustar debian/source/format0000644000000000000000000000001411735104225011674 0ustar 3.0 (quilt) debian/patches/0000755000000000000000000000000011735106505010620 5ustar debian/patches/series0000644000000000000000000000001511735104225012026 0ustar fix_prototyp debian/patches/fix_prototyp0000755000000000000000000000071311735104225013312 0ustar From: dann frazier Subject: fix missing function prototype definition --- dns-flood-detector-1.10/dns_flood_detector.c~ 2003-12-29 20:53:38.000000000 -0700 +++ dns-flood-detector-1.10/dns_flood_detector.c 2006-11-18 17:38:47.000000000 -0700 @@ -79,6 +79,7 @@ #include #include #include +#include #include #include #include debian/control0000644000000000000000000000210611735104746010600 0ustar Source: dns-flood-detector Section: net Priority: optional Maintainer: Jan Wagner Build-Depends: debhelper (>= 9), libpcap0.8-dev Homepage: http://www.adotout.com/ Vcs-Browser: https://scm.uncompleted.org/projects/debian/repository/show/dns-flood-detector Vcs-Svn: https://scm.uncompleted.org/svn/debian/dns-flood-detector/trunk Standards-Version: 3.9.3 Package: dns-flood-detector Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Description: detect abusive usage levels on high traffic nameservers This package provides the dns-flood-detector daemon. . It was developed to detect abusive usage levels on high traffic nameservers and to enable quick response in halting the use of one's nameserver to facilitate spam. It uses libpcap (in non-promiscuous mode) to monitor incoming dns queries to a nameserver. The tool may be run in one of two modes, either daemon mode or "bindsnap" mode. In daemon mode, the tool will alarm via syslog. In bindsnap mode, the user is able to get near-real-time stats on usage to aid in more detailed troubleshooting. debian/default0000644000000000000000000000046410642775674010563 0ustar # Defaults for dns-flood-detector initscript # sourced by /etc/init.d/dns-flood-detector # installed at /etc/default/dns-flood-detector by the maintainer scripts # options that are passed to the Daemon. # here: daemon mode, be more verbose, alarm at > 5/s, stats every 3 secs DAEMON_OPTS="-d -v -v -t5 -w3" debian/watch0000644000000000000000000000006410642775674010241 0ustar version=3 http://www.adotout.com/dnsflood-(.*)\.tgz debian/dns-flood-detector.80000644000000000000000000000235310642775674013000 0ustar .TH DNS-FLOOD-DETECTOR 8 "2006-11-03" "1.10" "dns flood detection tool" .SH NAME DNS-FLOOD-DETECTOR \- dns flood detection and alert tool .SH SYNOPSIS .B dns-flood-detector .RB [\| \-b \||\| \-d \|] .RB [\| \-v \|] .RB [\| \-h \|] .RB [\| \-i .IR device \|] .RB [\| -t .IR n \|] .RB [\| -a .IR n \|] .RB [\| -w .IR n \|] .RB [\| -x .IR n \|] .RB [\| -m .IR n \|] .SH DESCRIPTION .B DNS Flood Detector was developed to detect abusive usage levels on high traffic nameservers and to enable quick response to the use of one's nameserver to facilitate spam. .SH OPTIONS .B .TP .B \-b run in foreground in bindsnap mode .TP .B \-d run in background in daemon mode .TP .B \-v verbose output \- use again for more verbosity .TP .B \-h display help .TP .B \-i device specify device name to listen on .TP .B \-t n alarm at >n queries per second .TP .B \-a n reset alarm after n seconds .TP .B \-w n calculate stats every n seconds .TP .B \-x n create n buckets .TP .B \-m n report overall stats every n seconds .SH SEE ALSO .B Website .SH AUTHOR DNS-FLOOD-DETECTOR was written by Dennis Opacki . .PP This manual page was written by Jan Wagner , for the Debian project (but may be used by others). debian/preinst0000755000000000000000000000037011232704130010571 0ustar #!/bin/sh set -e # generate correct pid file, for versions where was non or incorrect if [ "$1" = "upgrade" ] && [ "$2" ] && dpkg --compare-versions "$2" <= "1.12-1"; then pidof dns-flood-detector > /var/run/dns-flood-detector.pid fi #DEBHELPER# debian/docs0000644000000000000000000000000710642775674010060 0ustar README debian/changelog0000644000000000000000000000552611735106504011052 0ustar dns-flood-detector (1.12-7) unstable; urgency=low * Add trailing trunk/ at Vcs-Svn-field * Updating standards version to 3.9.3, no changes needed * Switch over to packaging format 3.0 (quit) (closes: #664409) * Remove build-dependency of dpatch * Use dh_prep instead of dh_clean -k * Add build-arch and build-indep targets to debian/rules -- Jan Wagner Thu, 29 Mar 2012 18:26:14 +0200 dns-flood-detector (1.12-6) unstable; urgency=low * Add "Copyright" to all copyrights in debian/copyright * Updating standards version to 3.8.4 - Add README.source * Migrate Vcs-Fields over to scm.uncompleted.org * Add 1.0 to debian/source/format * Add ${misc:Depends} to dependencies -- Jan Wagner Wed, 10 Mar 2010 00:07:06 +0100 dns-flood-detector (1.12-5) unstable; urgency=low * Updating standards version to 3.8.2, no changes needed * remove absolute path of pidof from preinst -- Jan Wagner Sun, 26 Jul 2009 00:31:45 +0200 dns-flood-detector (1.12-4) unstable; urgency=low * Updating standards version to 3.8.0, no changes needed * implement machine-interpretable copyright file -- Jan Wagner Sun, 20 Jul 2008 12:53:51 +0200 dns-flood-detector (1.12-3) unstable; urgency=low * added Vcs- fields, moved Homepage into source header's field * bump standards version to 3.7.3 (no changes needed) * change copyright of packaging to 2008 in debian/copyright * get rid of 'ps aux' in init script and preinst, using pidof instead -- Jan Wagner Mon, 14 Apr 2008 22:39:46 +0200 dns-flood-detector (1.12-2) unstable; urgency=low * some cosmetic fixes to init script * make start-stop-daemon working instead of using kill (Closes: #431676). * providing upgrade path via preinst * drop own maintainers scripts and make again use of debhelper -- Jan Wagner Wed, 04 Jul 2007 12:29:06 +0200 dns-flood-detector (1.12-1) unstable; urgency=medium * New upstream release * modified fix_prototyp patch for upstream -- Jan Wagner Thu, 23 Nov 2006 13:35:11 +0100 dns-flood-detector (1.10-4) unstable; urgency=low * included fix_prototyp patch provided by "dann frazier " (Closes: #399283). * build depend to dpatch -- Jan Wagner Sun, 19 Nov 2006 10:18:55 +0100 dns-flood-detector (1.10-3) unstable; urgency=low * using killall in init script to get daemon stopped * same for prerm -- Jan Wagner Thu, 9 Nov 2006 20:49:10 +0100 dns-flood-detector (1.10-2) unstable; urgency=low * fixed typo in initscript -- Jan Wagner Sat, 4 Nov 2006 21:46:03 +0100 dns-flood-detector (1.10-1) unstable; urgency=low * Initial release (Closes: #396618). -- Jan Wagner Fri, 3 Nov 2006 12:39:42 +0100 debian/copyright0000644000000000000000000000260611232713642011126 0ustar Format-Specification: http://wiki.debian.org/Proposals/CopyrightFormat?action=recall&rev=196 Packaged-By: Jan Wagner Packaged-Date: Fri, 3 Nov 2006 12:39:42 +0100 Upstream-Name: DNS Flood Detector Upstream-Maintainer: Dennis Opacki Upstream-Source: http://www.adotout.com/ Files: * Copyright: Copyright (C) 2003 Dennis Opacki License: GPL-2+ Files: debian/* Copyright: Copyright (C) 2006, 2008 Jan Wagner License: GPL-2+ License: GPL-2+ This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA On Debian systems, the complete text of the GNU General Public License can be found in /usr/share/common-licenses/GPL-2 file. debian/rules0000755000000000000000000000311611735106504010251 0ustar #!/usr/bin/make -f # written by Jan Wagner # # Uncomment this to turn on verbose mode. #export DH_VERBOSE=1 CFLAGS += -D_BSD_SOURCE -Wall -g LDLIBS += -lpcap -lpthread -lm ifneq (,$(findstring noopt,$(DEB_BUILD_OPTIONS))) CFLAGS += -O0 else CFLAGS += -O2 endif build: build-arch build-indep build-arch: build-stamp build-indep: build-stamp build-stamp: dh_testdir # Add here commands to compile the package. $(CC) $(CFLAGS) dns_flood_detector.c $(LDLIBS) -o dns_flood_detector touch $@ clean: dh_testdir dh_testroot rm -f build-stamp # Add here commands to clean up after the build process. rm -rf dns_flood_detector *.o *~ dh_clean install: build dh_testdir dh_testroot dh_prep dh_installdirs # Add here commands to install the package into debian/dns-flood-detector. install -D -m 0755 dns_flood_detector debian/dns-flood-detector/usr/bin/dns-flood-detector install -D -m 0644 debian/default debian/dns-flood-detector/etc/default/dns-flood-detector install -D -m 0755 debian/init.d debian/dns-flood-detector/etc/init.d/dns-flood-detector # Build architecture-independent files here. binary-indep: build install # We have nothing to do by default. # Build architecture-dependent files here. binary-arch: build install dh_testdir dh_testroot dh_installchangelogs dh_installdocs dh_installman debian/dns-flood-detector.8 dh_installinit -- defaults 40 dh_link dh_strip dh_compress dh_fixperms dh_shlibdeps dh_installdeb dh_gencontrol dh_md5sums dh_builddeb binary: binary-indep binary-arch .PHONY: build clean binary-indep binary-arch binary install debian/init.d0000644000000000000000000000337011000723006010266 0ustar #!/bin/sh # Written by Miquel van Smoorenburg . # Modified for Debian # by Ian Murdock . # # Version: @(#)skeleton 1.9 26-Feb-2001 miquels@cistron.nl # /etc/init.d/dns-flood-detector: v1 2006/11/03 Jan Wagner ### BEGIN INIT INFO # Provides: dns-flood-detector # Required-Start: $local_fs $network $remote_fs $syslog # Required-Stop: $local_fs $network $remote_fs $syslog # Default-Start: 2 3 4 5 # Default-Stop: 0 1 6 # Short-Description: start and stop the dns-flood-detector daemon # Description: detect abusive usage levels on high traffic nameservers ### END INIT INFO PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin DAEMON=/usr/bin/dns-flood-detector NAME=dns-flood-detector DESC=dns-flood-detector test -x $DAEMON || exit 0 # Include dns-flood-detector defaults if available if [ -f /etc/default/dns-flood-detector ] ; then . /etc/default/dns-flood-detector fi set -e case "$1" in start) echo -n "Starting $DESC: " start-stop-daemon --start --quiet --pidfile /var/run/$NAME.pid \ --exec $DAEMON -- $DAEMON_OPTS /bin/pidof $DAEMON > /var/run/$NAME.pid echo "$NAME." ;; stop) echo -n "Stopping $DESC: " start-stop-daemon --stop --quiet --pidfile /var/run/$NAME.pid \ --exec $DAEMON echo "$NAME." ;; restart|force-reload) echo -n "Restarting $DESC: " start-stop-daemon --stop --quiet --pidfile \ /var/run/$NAME.pid --exec $DAEMON start-stop-daemon --start --quiet --pidfile \ /var/run/$NAME.pid --exec $DAEMON -- $DAEMON_OPTS /bin/pidof $DAEMON > /var/run/$NAME.pid echo "$NAME." ;; *) N=/etc/init.d/$NAME # echo "Usage: $N {start|stop|restart|reload|force-reload}" >&2 echo "Usage: $N {start|stop|restart|force-reload}" >&2 exit 1 ;; esac exit 0 debian/compat0000644000000000000000000000000211735104225010364 0ustar 9