debian/0000755000000000000000000000000011540420012007153 5ustar debian/docs0000644000000000000000000000000011526454503010034 0ustar debian/copyright0000644000000000000000000000610111526456307011130 0ustar Format: http://dep.debian.net/deps/dep5 Upstream-Name: sagan-rules Source: http://sagan.softwink.com/ Files: * Copyright: 2009-2010, Softwink, Inc. License: BSD (3 clause) Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: * Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. * Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. * Neither the name of the nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission. . THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. Files: debian/* Copyright: 2011 Pierre Chifflier License: BSD (3 clause) Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: * Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. * Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. * Neither the name of the nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission. . THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. debian/control0000644000000000000000000000161111526455743010604 0ustar Source: sagan-rules Section: admin Priority: extra Maintainer: Pierre Chifflier Build-Depends: debhelper (>= 7.0.50~) Standards-Version: 3.9.1 Homepage: http://sagan.softwink.com/ #Vcs-Git: git://git.debian.org/collab-maint/sagan-rules.git #Vcs-Browser: http://git.debian.org/?p=collab-maint/sagan-rules.git;a=summary Package: sagan-rules Architecture: all Depends: ${misc:Depends} Description: Real-time System & Event Log Monitoring System [rules] Sagan is a multi-threaded, real time system- and event-log monitoring system, but with a twist. Sagan uses a “Snort” like rule set for detecting malicious events happening on your network and/or computer systems. If Sagan detects a potentially bad event, that event can be stored to a Snort database (MySQL/PostgreSQL), send it to a SIEM tool like Prelude, or send an email. . This package provides the rules for Sagan. debian/changelog0000644000000000000000000000024411540415635011044 0ustar sagan-rules (10212010-r1-1) unstable; urgency=low * Initial release (Closes: #618674) -- Pierre Chifflier Tue, 15 Feb 2011 11:45:15 +0100 debian/source/0000755000000000000000000000000011526454503010473 5ustar debian/source/format0000644000000000000000000000001411526454503011701 0ustar 3.0 (quilt) debian/dirs0000644000000000000000000000002011526456061010050 0ustar etc/sagan-rules debian/compat0000644000000000000000000000000211526454503010371 0ustar 7 debian/rules0000755000000000000000000000107711526456345010266 0ustar #!/usr/bin/make -f # -*- makefile -*- # # rules file for Sagan-rules # Written by Pierre Chifflier # # This file was originally written by Joey Hess and Craig Small. # As a special exception, when this file is copied by dh-make into a # dh-make output file, you may use that output file without restriction. # This special exception was added by Craig Small in version 0.37 of dh-make. # Uncomment this to turn on verbose mode. #export DH_VERBOSE=1 override_dh_auto_install: dh_installdirs install -m 0644 *.rules *.config debian/sagan-rules/etc/sagan-rules/ %: dh $@ debian/watch0000644000000000000000000000037011540416446010224 0ustar # watch control file for uscan # Run the "uscan" command to check for upstream updates and more. # See uscan(1) for format # Compulsory line, this is a version 3 file version=3 http://sagan.softwink.com/rules/ sagan-rules-([0-9.]*\-r1)\.tar\.gz