On Tue, Dec 18, 2018 at 8:21 PM Stuart Henderson <s...@spacehopper.org> wrote: > > On 2018/12/12 10:45, Paul Irofti wrote: > > Hi, > > > > Here is an updated port that I would like to import. > > > > This contains many fixes, mostly permissions tweaking but also an rc > > script, and wrappers for the inotify fiasco. It has been tested in > > production since before release and all seems to be running fine. > > > > OK? > > The wrappers fail to install for me (permission denied). But they > shouldn't really be necessary anyway - does the attached version work > for you? It uses -Wl,-rpath to hopefully fix up library paths instead, > and I passed CFLAGS across (you successfully removed upstreams > hardcoded values but didn't use ports ones, so it was building > without any -O flags). > > The UIDs need an update to free spots in infrastructure/db/user.list. > I haven't done that in the attached file to ease your testing, but > that will need doing before commit. > > (There are some other tweaks to make - hardcoded /usr/local in a couple > of places, and I think some chunks of patch are probably not needed - > but I don't think those are blockers and can be done after it's in tree). >
Hi! I fumble with the OSSEC source (although I won't take responsibility for creating the build system), and thought I'd chime in with a couple of things. I am fairly sleep deprived today, so feel free to ignore if I'm way off base. The zlib patch can be removed by using the 'ZLIB_SYSTEM=yes' option. I haven't noticed any issues when using the one provided by OpenBSD. I'm hoping to move in this direction by default Using 'LUA_ENABLE=no' could remove the need for the the lua patch. It isn't really used at the moment, and I'd much prefer to use a system provided lua if/when we get to it. Thanks for the comments on the build system. It's really something we need to work on, just need to find the time =] dan
