subject:"\[UPDATE\] sysutils\/sleuthkit"

Fwd: [UPDATE] sysutils/sleuthkit

2018-06-18 Thread Remi Pointel



ping

 Forwarded Message 
Subject: [UPDATE] sysutils/sleuthkit
Date: Wed, 9 May 2018 08:17:57 +0200
From: Remi Pointel 
To: Nigel Taylor , The OpenBSD ports mailing-list 



Hi,

attached is the diff to update sleuthkit to latest release.
PostgreSQL, libvhdi, & libvmdk are now supported, so use them.

More information:
https://github.com/sleuthkit/sleuthkit/releases/tag/sleuthkit-4.6.1

Ok?

Cheers,

Remi.

Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.24
diff -u -p -u -p -r1.24 Makefile
--- Makefile	7 Apr 2018 23:15:28 -	1.24
+++ Makefile	9 May 2018 06:05:13 -
@@ -2,9 +2,8 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-4.6.0
+DISTNAME=		sleuthkit-4.6.1
 CATEGORIES=		sysutils security
-REVISION=		0
 
 SHARED_LIBS +=		tsk	1.0 # 17.0
 
@@ -18,7 +17,8 @@ PERMIT_PACKAGE_FTP=	Yes
 
 MASTER_SITES =		https://github.com/sleuthkit/sleuthkit/releases/download/${DISTNAME}/
 
-WANTLIB += 		c m pthread ${COMPILER_LIBCXX} sqlite3 z
+WANTLIB += ${COMPILER_LIBCXX} bfio c crypto m pq sqlite3 ssl vhdi
+WANTLIB += vmdk z
 
 CONFIGURE_STYLE =	gnu
 
@@ -29,7 +29,10 @@ CONFIGURE_ARGS += 	--mandir='${PREFIX}/m
 
 CONFIGURE_ENV =		ac_cv_path_CPPUNIT_CONFIG=no
 RUN_DEPENDS =		converters/p5-DateManip
-LIB_DEPENDS =		databases/sqlite3
+LIB_DEPENDS =		databases/sqlite3 \
+			databases/postgresql,-main \
+			sysutils/libvhdi \
+			sysutils/libvmdk
 
 NO_TEST =		Yes
 
Index: distinfo
===
RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.13
diff -u -p -u -p -r1.13 distinfo
--- distinfo	14 Mar 2018 12:39:17 -	1.13
+++ distinfo	9 May 2018 06:05:13 -
@@ -1,2 +1,2 @@
-SHA256 (sleuthkit-4.6.0.tar.gz) = 9SoIqw3geBgsDy0Z0+GzQUJKngwWM6YcO4kvs4+ay5c=
-SIZE (sleuthkit-4.6.0.tar.gz) = 8634432
+SHA256 (sleuthkit-4.6.1.tar.gz) = H2jztZg6zbhxowWS+3NaMvTbk/BB/PMYvPPshxKKtDM=
+SIZE (sleuthkit-4.6.1.tar.gz) = 8642960
Index: patches/patch-tools_srchtools_sigfind_cpp
===
RCS file: patches/patch-tools_srchtools_sigfind_cpp
diff -N patches/patch-tools_srchtools_sigfind_cpp
--- patches/patch-tools_srchtools_sigfind_cpp	7 Apr 2018 23:15:28 -	1.4
+++ /dev/null	1 Jan 1970 00:00:00 -
@@ -1,26 +0,0 @@
-$OpenBSD: patch-tools_srchtools_sigfind_cpp,v 1.4 2018/04/07 23:15:28 nigel Exp $
-
-Index: tools/srchtools/sigfind.cpp
 tools/srchtools/sigfind.cpp.orig
-+++ tools/srchtools/sigfind.cpp
-@@ -302,7 +302,7 @@ main(int argc, char **argv)
- break;
- }
- else if (retval == -1) {
--fprintf(stderr, "error reading bytes %"PRIuOFF"\n", i);
-+fprintf(stderr, "error reading bytes %" PRIuOFF "\n", i);
- exit(1);
- }
- 
-@@ -312,9 +312,9 @@ main(int argc, char **argv)
- ((sig_size < 3) || (block[rel_offset + 2] == sig[2])) &&
- ((sig_size < 4) || (block[rel_offset + 3] == sig[3]))) {
- if (prev_hit == -1)
--printf("Block: %"PRIuOFF" (-)\n",  i);
-+printf("Block: %" PRIuOFF " (-)\n",  i);
- else
--printf("Block: %"PRIuOFF" (+%"PRIuOFF")\n", i,
-+printf("Block: %" PRIuOFF " (+%" PRIuOFF ")\n", i,
-(i - prev_hit));
- 
- prev_hit = i;

Re: [UPDATE] sysutils/sleuthkit

2018-05-25 Thread Remi Pointel


ping

Le 09-05-2018 08:17, Remi Pointel a écrit :

Hi,

attached is the diff to update sleuthkit to latest release.
PostgreSQL, libvhdi, & libvmdk are now supported, so use them.

More information:
https://github.com/sleuthkit/sleuthkit/releases/tag/sleuthkit-4.6.1

Ok?

Cheers,

Remi.

[UPDATE] sysutils/sleuthkit

2018-05-09 Thread Remi Pointel


Hi,

attached is the diff to update sleuthkit to latest release.
PostgreSQL, libvhdi, & libvmdk are now supported, so use them.

More information:
https://github.com/sleuthkit/sleuthkit/releases/tag/sleuthkit-4.6.1

Ok?

Cheers,

Remi.
Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.24
diff -u -p -u -p -r1.24 Makefile
--- Makefile	7 Apr 2018 23:15:28 -	1.24
+++ Makefile	9 May 2018 06:05:13 -
@@ -2,9 +2,8 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-4.6.0
+DISTNAME=		sleuthkit-4.6.1
 CATEGORIES=		sysutils security
-REVISION=		0
 
 SHARED_LIBS +=		tsk	1.0 # 17.0
 
@@ -18,7 +17,8 @@ PERMIT_PACKAGE_FTP=	Yes
 
 MASTER_SITES =		https://github.com/sleuthkit/sleuthkit/releases/download/${DISTNAME}/
 
-WANTLIB += 		c m pthread ${COMPILER_LIBCXX} sqlite3 z
+WANTLIB += ${COMPILER_LIBCXX} bfio c crypto m pq sqlite3 ssl vhdi
+WANTLIB += vmdk z
 
 CONFIGURE_STYLE =	gnu
 
@@ -29,7 +29,10 @@ CONFIGURE_ARGS += 	--mandir='${PREFIX}/m
 
 CONFIGURE_ENV =		ac_cv_path_CPPUNIT_CONFIG=no
 RUN_DEPENDS =		converters/p5-DateManip
-LIB_DEPENDS =		databases/sqlite3
+LIB_DEPENDS =		databases/sqlite3 \
+			databases/postgresql,-main \
+			sysutils/libvhdi \
+			sysutils/libvmdk
 
 NO_TEST =		Yes
 
Index: distinfo
===
RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.13
diff -u -p -u -p -r1.13 distinfo
--- distinfo	14 Mar 2018 12:39:17 -	1.13
+++ distinfo	9 May 2018 06:05:13 -
@@ -1,2 +1,2 @@
-SHA256 (sleuthkit-4.6.0.tar.gz) = 9SoIqw3geBgsDy0Z0+GzQUJKngwWM6YcO4kvs4+ay5c=
-SIZE (sleuthkit-4.6.0.tar.gz) = 8634432
+SHA256 (sleuthkit-4.6.1.tar.gz) = H2jztZg6zbhxowWS+3NaMvTbk/BB/PMYvPPshxKKtDM=
+SIZE (sleuthkit-4.6.1.tar.gz) = 8642960
Index: patches/patch-tools_srchtools_sigfind_cpp
===
RCS file: patches/patch-tools_srchtools_sigfind_cpp
diff -N patches/patch-tools_srchtools_sigfind_cpp
--- patches/patch-tools_srchtools_sigfind_cpp	7 Apr 2018 23:15:28 -	1.4
+++ /dev/null	1 Jan 1970 00:00:00 -
@@ -1,26 +0,0 @@
-$OpenBSD: patch-tools_srchtools_sigfind_cpp,v 1.4 2018/04/07 23:15:28 nigel Exp $
-
-Index: tools/srchtools/sigfind.cpp
 tools/srchtools/sigfind.cpp.orig
-+++ tools/srchtools/sigfind.cpp
-@@ -302,7 +302,7 @@ main(int argc, char **argv)
- break;
- }
- else if (retval == -1) {
--fprintf(stderr, "error reading bytes %"PRIuOFF"\n", i);
-+fprintf(stderr, "error reading bytes %" PRIuOFF "\n", i);
- exit(1);
- }
- 
-@@ -312,9 +312,9 @@ main(int argc, char **argv)
- ((sig_size < 3) || (block[rel_offset + 2] == sig[2])) &&
- ((sig_size < 4) || (block[rel_offset + 3] == sig[3]))) {
- if (prev_hit == -1)
--printf("Block: %"PRIuOFF" (-)\n",  i);
-+printf("Block: %" PRIuOFF " (-)\n",  i);
- else
--printf("Block: %"PRIuOFF" (+%"PRIuOFF")\n", i,
-+printf("Block: %" PRIuOFF " (+%" PRIuOFF ")\n", i,
-(i - prev_hit));
- 
- prev_hit = i;

Re: Update: sysutils/sleuthkit clang fallout

2018-04-07 Thread Stuart Henderson

On 2018/04/07 23:12, Nigel Taylor wrote:
> Attach updated
> 
> patch is from upstream github
> 
> https://github.com/sleuthkit/sleuthkit/commit/acefb22e7d18917d434853b02b6f7e9b5f4d329f#diff-474ff1f8f4117ed01cc6b517b1fb556e
> 
> Builds on amd64. Ok?

OK.


> Index: Makefile
> ===
> RCS file: /home/cvs/ports/sysutils/sleuthkit/Makefile,v
> retrieving revision 1.23
> diff -u -p -r1.23 Makefile
> --- Makefile  14 Mar 2018 12:39:17 -  1.23
> +++ Makefile  7 Apr 2018 21:58:06 -
> @@ -4,6 +4,7 @@ COMMENT=  forensic toolkit based on TCT
>  
>  DISTNAME=sleuthkit-4.6.0
>  CATEGORIES=  sysutils security
> +REVISION=0
>  
>  SHARED_LIBS +=   tsk 1.0 # 17.0
>  
> Index: patches/patch-tools_srchtools_sigfind_cpp
> ===
> RCS file: patches/patch-tools_srchtools_sigfind_cpp
> diff -N patches/patch-tools_srchtools_sigfind_cpp
> --- /dev/null 1 Jan 1970 00:00:00 -
> +++ patches/patch-tools_srchtools_sigfind_cpp 7 Apr 2018 21:55:54 -
> @@ -0,0 +1,26 @@
> +$OpenBSD$
> +
> +Index: tools/srchtools/sigfind.cpp
> +--- tools/srchtools/sigfind.cpp.orig
>  tools/srchtools/sigfind.cpp
> +@@ -302,7 +302,7 @@ main(int argc, char **argv)
> + break;
> + }
> + else if (retval == -1) {
> +-fprintf(stderr, "error reading bytes %"PRIuOFF"\n", i);
> ++fprintf(stderr, "error reading bytes %" PRIuOFF "\n", i);
> + exit(1);
> + }
> + 
> +@@ -312,9 +312,9 @@ main(int argc, char **argv)
> + ((sig_size < 3) || (block[rel_offset + 2] == sig[2])) &&
> + ((sig_size < 4) || (block[rel_offset + 3] == sig[3]))) {
> + if (prev_hit == -1)
> +-printf("Block: %"PRIuOFF" (-)\n",  i);
> ++printf("Block: %" PRIuOFF " (-)\n",  i);
> + else
> +-printf("Block: %"PRIuOFF" (+%"PRIuOFF")\n", i,
> ++printf("Block: %" PRIuOFF " (+%" PRIuOFF ")\n", i,
> +(i - prev_hit));
> + 
> + prev_hit = i;

Update: sysutils/sleuthkit clang fallout

2018-04-07 Thread Nigel Taylor

Attach updated

patch is from upstream github

https://github.com/sleuthkit/sleuthkit/commit/acefb22e7d18917d434853b02b6f7e9b5f4d329f#diff-474ff1f8f4117ed01cc6b517b1fb556e

Builds on amd64. Ok?
Index: Makefile
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.23
diff -u -p -r1.23 Makefile
--- Makefile	14 Mar 2018 12:39:17 -	1.23
+++ Makefile	7 Apr 2018 21:58:06 -
@@ -4,6 +4,7 @@ COMMENT=		forensic toolkit based on TCT
 
 DISTNAME=		sleuthkit-4.6.0
 CATEGORIES=		sysutils security
+REVISION=		0
 
 SHARED_LIBS +=		tsk	1.0 # 17.0
 
Index: patches/patch-tools_srchtools_sigfind_cpp
===
RCS file: patches/patch-tools_srchtools_sigfind_cpp
diff -N patches/patch-tools_srchtools_sigfind_cpp
--- /dev/null	1 Jan 1970 00:00:00 -
+++ patches/patch-tools_srchtools_sigfind_cpp	7 Apr 2018 21:55:54 -
@@ -0,0 +1,26 @@
+$OpenBSD$
+
+Index: tools/srchtools/sigfind.cpp
+--- tools/srchtools/sigfind.cpp.orig
 tools/srchtools/sigfind.cpp
+@@ -302,7 +302,7 @@ main(int argc, char **argv)
+ break;
+ }
+ else if (retval == -1) {
+-fprintf(stderr, "error reading bytes %"PRIuOFF"\n", i);
++fprintf(stderr, "error reading bytes %" PRIuOFF "\n", i);
+ exit(1);
+ }
+ 
+@@ -312,9 +312,9 @@ main(int argc, char **argv)
+ ((sig_size < 3) || (block[rel_offset + 2] == sig[2])) &&
+ ((sig_size < 4) || (block[rel_offset + 3] == sig[3]))) {
+ if (prev_hit == -1)
+-printf("Block: %"PRIuOFF" (-)\n",  i);
++printf("Block: %" PRIuOFF " (-)\n",  i);
+ else
+-printf("Block: %"PRIuOFF" (+%"PRIuOFF")\n", i,
++printf("Block: %" PRIuOFF " (+%" PRIuOFF ")\n", i,
+(i - prev_hit));
+ 
+ prev_hit = i;

Re: [UPDATE] sysutils/sleuthkit

2018-03-03 Thread nigel

On 03/03/18 08:25, Remi Pointel wrote:
> ping
> 
> On 02/26/18 15:14, Remi Pointel wrote:
>> Hi,
>>
>> this is the diff to update sleuthkit to latest release.
>>
>> Ok?
>>
>> Cheers,
>>
>> Remi.
> 
> 
Been a little occupied with other things. Builds fine on amd64 can't do
much to test.

Ok with me.

Re: [UPDATE] sysutils/sleuthkit

2018-03-03 Thread Remi Pointel


ping

On 02/26/18 15:14, Remi Pointel wrote:

Hi,

this is the diff to update sleuthkit to latest release.

Ok?

Cheers,

Remi.

[UPDATE] sysutils/sleuthkit

2018-02-26 Thread Remi Pointel


Hi,

this is the diff to update sleuthkit to latest release.

Ok?

Cheers,

Remi.
Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.22
diff -u -p -u -p -r1.22 Makefile
--- Makefile	31 Oct 2017 21:38:28 -	1.22
+++ Makefile	26 Feb 2018 14:00:58 -
@@ -2,7 +2,7 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-4.5.0
+DISTNAME=		sleuthkit-4.6.0
 CATEGORIES=		sysutils security
 
 SHARED_LIBS +=		tsk	1.0 # 17.0
Index: distinfo
===
RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.12
diff -u -p -u -p -r1.12 distinfo
--- distinfo	31 Oct 2017 21:38:28 -	1.12
+++ distinfo	26 Feb 2018 14:00:58 -
@@ -1,2 +1,2 @@
-SHA256 (sleuthkit-4.5.0.tar.gz) = 906xbnF1mAVqVmSuhC2KzSdqz8NA6Ou9h9CUgWfniaw=
-SIZE (sleuthkit-4.5.0.tar.gz) = 8611141
+SHA256 (sleuthkit-4.6.0.tar.gz) = 9SoIqw3geBgsDy0Z0+GzQUJKngwWM6YcO4kvs4+ay5c=
+SIZE (sleuthkit-4.6.0.tar.gz) = 8634432

Re: [UPDATE] sysutils/sleuthkit

2017-10-31 Thread nigel

On 10/31/17 15:47, Remi Pointel wrote:
> Hi,
> 
> this is the diff to update sleuthkit to latest release.
> 
> Ok?
> 
> Cheers,
> 
> Remi.
Did you base this on my update sent to ports@ below

Look like a no, naddy@ complained about the version 4.3.0
not using gnu CONFIGURE_STYLE, sthen@ suggested shared library 
version should be updated, and not sure without checking 4.5.0 
but I found sqlite3 was needed. Also dropped using cppunit.

diff -u -p -r1.21 Makefile
--- Makefile26 Jul 2017 22:45:30 -  1.21
+++ Makefile7 Sep 2017 21:13:24 -
@@ -2,11 +2,10 @@
 
 COMMENT=   forensic toolkit based on TCT
 
-DISTNAME=  sleuthkit-4.3.0
+DISTNAME=  sleuthkit-4.4.2
 CATEGORIES=sysutils security
-REVISION=  0
 
-SHARED_LIBS += tsk 0.0 # 14.0
+SHARED_LIBS += tsk 1.0 # 16.1
 
 HOMEPAGE=  http://www.sleuthkit.org/
 
@@ -18,17 +17,19 @@ PERMIT_PACKAGE_FTP= Yes
 
 MASTER_SITES = 
https://github.com/sleuthkit/sleuthkit/releases/download/${DISTNAME}/
 
-WANTLIB += c m pthread ${COMPILER_LIBCXX} z
+WANTLIB += c m pthread ${COMPILER_LIBCXX} sqlite3 z
 
-CONFIGURE_STYLE =  simple
+CONFIGURE_STYLE =  gnu
 
 CONFIGURE_ARGS +=  --mandir='${PREFIX}/man' \
--disable-java \
--without-afflib \
--without-libewf
 
-BUILD_DEPENDS= devel/cppunit
+CONFIGURE_ENV =ac_cv_path_CPPUNIT_CONFIG=no
+
 RUN_DEPENDS=   converters/p5-DateManip
+LIB_DEPENDS =  databases/sqlite3
 
 NO_TEST =  Yes

Re: [UPDATE] sysutils/sleuthkit

2017-10-31 Thread nigel

On 10/31/17 15:47, Remi Pointel wrote:
> Hi,
> 
> this is the diff to update sleuthkit to latest release.
> 
> Ok?
> 
> Cheers,
> 
> Remi.

ccpunit - just reminded myself, I removed as used for testing, and
Makefile has NO_TEST=yes, testing has to be done manually.

Thanks, and Ok

Re: [UPDATE] sysutils/sleuthkit

2017-10-31 Thread Remi Pointel


On 10/31/17 18:35, ni...@openbsd.org wrote:

On 10/31/17 15:47, Remi Pointel wrote:

Hi,

this is the diff to update sleuthkit to latest release.

Ok?

Cheers,

Remi.

Did you base this on my update sent to ports@ below

Look like a no, naddy@ complained about the version 4.3.0
not using gnu CONFIGURE_STYLE, sthen@ suggested shared library
version should be updated, and not sure without checking 4.5.0
but I found sqlite3 was needed. Also dropped using cppunit.



Hi,

sorry I forgot it. Are you ok with this diff?

Cheers,

Remi.
Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.21
diff -u -p -u -p -r1.21 Makefile
--- Makefile	26 Jul 2017 22:45:30 -	1.21
+++ Makefile	31 Oct 2017 19:59:10 -
@@ -2,11 +2,10 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-4.3.0
+DISTNAME=		sleuthkit-4.5.0
 CATEGORIES=		sysutils security
-REVISION=		0
 
-SHARED_LIBS +=		tsk	0.0 # 14.0
+SHARED_LIBS +=		tsk	1.0 # 17.0
 
 HOMEPAGE=		http://www.sleuthkit.org/
 
@@ -18,17 +17,18 @@ PERMIT_PACKAGE_FTP=	Yes
 
 MASTER_SITES =		https://github.com/sleuthkit/sleuthkit/releases/download/${DISTNAME}/
 
-WANTLIB += 		c m pthread ${COMPILER_LIBCXX} z
+WANTLIB += 		c m pthread ${COMPILER_LIBCXX} sqlite3 z
 
-CONFIGURE_STYLE =	simple
+CONFIGURE_STYLE =	gnu
 
 CONFIGURE_ARGS += 	--mandir='${PREFIX}/man' \
 			--disable-java \
 			--without-afflib \
 			--without-libewf
 
-BUILD_DEPENDS=		devel/cppunit
-RUN_DEPENDS=		converters/p5-DateManip
+CONFIGURE_ENV =		ac_cv_path_CPPUNIT_CONFIG=no
+RUN_DEPENDS =		converters/p5-DateManip
+LIB_DEPENDS =		databases/sqlite3
 
 NO_TEST =		Yes
 
Index: distinfo
===
RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.11
diff -u -p -u -p -r1.11 distinfo
--- distinfo	10 Oct 2016 18:58:38 -	1.11
+++ distinfo	31 Oct 2017 19:59:10 -
@@ -1,2 +1,2 @@
-SHA256 (sleuthkit-4.3.0.tar.gz) = mJxpGD5Le+w3NGQlOIAs3KvjRqbcrTHN5F7ry5v8GR8=
-SIZE (sleuthkit-4.3.0.tar.gz) = 8539568
+SHA256 (sleuthkit-4.5.0.tar.gz) = 906xbnF1mAVqVmSuhC2KzSdqz8NA6Ou9h9CUgWfniaw=
+SIZE (sleuthkit-4.5.0.tar.gz) = 8611141
Index: pkg/PLIST
===
RCS file: /cvs/ports/sysutils/sleuthkit/pkg/PLIST,v
retrieving revision 1.8
diff -u -p -u -p -r1.8 PLIST
--- pkg/PLIST	10 Oct 2016 18:58:38 -	1.8
+++ pkg/PLIST	31 Oct 2017 19:59:10 -
@@ -33,10 +33,11 @@ bin/sorter
 @bin bin/tsk_gettimes
 @bin bin/tsk_loaddb
 @bin bin/tsk_recover
+@bin bin/usnjls
 include/tsk/
 include/tsk/auto/
-include/tsk/auto/sqlite3.h
 include/tsk/auto/tsk_auto.h
+include/tsk/auto/tsk_is_image_supported.h
 include/tsk/base/
 include/tsk/base/tsk_base.h
 include/tsk/base/tsk_os.h
@@ -94,6 +95,7 @@ lib/libtsk.la
 @man man/man1/tsk_gettimes.1
 @man man/man1/tsk_loaddb.1
 @man man/man1/tsk_recover.1
+@man man/man1/usnjls.1
 share/tsk/
 share/tsk/sorter/
 share/tsk/sorter/default.sort

Re: [UPDATE] sysutils/sleuthkit

2016-10-10 Thread nigel

On 10/10/16 18:29, Remi Pointel wrote:
> On 10/10/16 09:55, ni...@openbsd.org wrote:
>> On 10/10/16 06:34, Remi Pointel wrote:
>>> Hi,
>>>
>>> this is the diff to update sleuthkit to latest release.
>>>
>>> Ok?
>>>
>>> Cheers,
>>>
>>> Remi.
>> I had done an update to 4.2.
>>
>> missing change from perl to sed in pre-configure
>>
>>  pre-configure:
>> -   @perl -pi -e "s:%%PREFIX%%:${PREFIX}:" ${WRKSRC}/man/sorter.1
>> +   @sed -i 's:%%PREFIX%%:${PREFIX}:' ${WRKSRC}/man/sorter.1
> 
> Done.
> 
>> Needed an additional conflict with freeze in pkg/PLIST
>>
>>  @conflict ja-jvim-*
>> +@conflict freeze-*
> 
> Done.
> 
>> This is required in 4.3, as freeze has a bin/fcat which has been added
>> to 4.2/4.3 sleuthkit.
>>
>> Otherwise changes to 4.3 look to be nearly same as for 4.2.
>>
>> As now moved to github for 4.3 then should use GH_* in Makefile.
>>
>> GH_ACCOUNT =sleuthkit
>> GH_PROJECT =sleuthkit
>> GH_TAGNAME =4.3.0
>>
>> Then adjust rest of Makefile.
>>
> 
> I don't want to use the tag, because if I did it I must play with
> autoconf/automake and all these shits, so I prefer to keep the tarball
> which already has the configure file.
> 
> Ok for the update?
> 
> Cheers,
> 
> Remi.

Ok.

Re: [UPDATE] sysutils/sleuthkit

2016-10-10 Thread Remi Pointel


On 10/10/16 09:55, ni...@openbsd.org wrote:

On 10/10/16 06:34, Remi Pointel wrote:

Hi,

this is the diff to update sleuthkit to latest release.

Ok?

Cheers,

Remi.

I had done an update to 4.2.

missing change from perl to sed in pre-configure

 pre-configure:
-   @perl -pi -e "s:%%PREFIX%%:${PREFIX}:" ${WRKSRC}/man/sorter.1
+   @sed -i 's:%%PREFIX%%:${PREFIX}:' ${WRKSRC}/man/sorter.1


Done.


Needed an additional conflict with freeze in pkg/PLIST

 @conflict ja-jvim-*
+@conflict freeze-*


Done.


This is required in 4.3, as freeze has a bin/fcat which has been added
to 4.2/4.3 sleuthkit.

Otherwise changes to 4.3 look to be nearly same as for 4.2.

As now moved to github for 4.3 then should use GH_* in Makefile.

GH_ACCOUNT =sleuthkit
GH_PROJECT =sleuthkit
GH_TAGNAME =4.3.0

Then adjust rest of Makefile.



I don't want to use the tag, because if I did it I must play with 
autoconf/automake and all these shits, so I prefer to keep the tarball 
which already has the configure file.


Ok for the update?

Cheers,

Remi.
Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.16
diff -u -p -u -p -r1.16 Makefile
--- Makefile	16 Feb 2015 22:57:13 -	1.16
+++ Makefile	10 Oct 2016 17:23:18 -
@@ -2,11 +2,10 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-3.0.1
-REVISION =		0
+DISTNAME=		sleuthkit-4.3.0
 CATEGORIES=		sysutils security
 
-SHARED_LIBS=		tsk3 4.3
+SHARED_LIBS +=		tsk	0.0 # 14.0
 
 HOMEPAGE=		http://www.sleuthkit.org/
 
@@ -16,17 +15,22 @@ MAINTAINER=		Nigel Taylor  system.md5
 +	# md5 -s /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/* > system.md5
  
--	# hfind -i md5sum system.md5
+-	# hfind \-i md5sum system.md5
 +	# hfind -i md5 -s system.md5
  
  To look entries up, the following will work:
  
-@@ -114,7 +114,7 @@ To look entries up, the following will work:
+@@ -115,7 +115,7 @@ To

Re: [UPDATE] sysutils/sleuthkit

2016-10-10 Thread nigel

On 10/10/16 06:34, Remi Pointel wrote:
> Hi,
> 
> this is the diff to update sleuthkit to latest release.
> 
> Ok?
> 
> Cheers,
> 
> Remi.
I had done an update to 4.2.

missing change from perl to sed in pre-configure

 pre-configure:
-   @perl -pi -e "s:%%PREFIX%%:${PREFIX}:" ${WRKSRC}/man/sorter.1
+   @sed -i 's:%%PREFIX%%:${PREFIX}:' ${WRKSRC}/man/sorter.1

Needed an additional conflict with freeze in pkg/PLIST

 @conflict ja-jvim-*
+@conflict freeze-*

This is required in 4.3, as freeze has a bin/fcat which has been added
to 4.2/4.3 sleuthkit.

Otherwise changes to 4.3 look to be nearly same as for 4.2.

As now moved to github for 4.3 then should use GH_* in Makefile.

GH_ACCOUNT =sleuthkit
GH_PROJECT =sleuthkit
GH_TAGNAME =4.3.0

Then adjust rest of Makefile.

[UPDATE] sysutils/sleuthkit

2016-10-09 Thread Remi Pointel


Hi,

this is the diff to update sleuthkit to latest release.

Ok?

Cheers,

Remi.
Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.16
diff -u -p -u -p -r1.16 Makefile
--- Makefile	16 Feb 2015 22:57:13 -	1.16
+++ Makefile	10 Oct 2016 05:24:33 -
@@ -2,11 +2,10 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-3.0.1
-REVISION =		0
+DISTNAME=		sleuthkit-4.3.0
 CATEGORIES=		sysutils security
 
-SHARED_LIBS=		tsk3 4.3
+SHARED_LIBS +=		tsk	0.0 # 14.0
 
 HOMEPAGE=		http://www.sleuthkit.org/
 
@@ -16,15 +15,20 @@ MAINTAINER=		Nigel Taylor  system.md5
 +	# md5 -s /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/* > system.md5
  
--	# hfind -i md5sum system.md5
+-	# hfind \-i md5sum system.md5
 +	# hfind -i md5 -s system.md5
  
  To look entries up, the following will work:
  
-@@ -114,7 +114,7 @@ To look entries up, the following will work:
+@@ -115,7 +115,7 @@ To look entries up, the following will work:
  
  or
  
--	# md5sum -q /bin/* | hfind system.md5
+-	# md5sum \-q /bin/* | hfind system.md5
 +	# md5 -s /bin/* | hfind system.md5
  
  	928682269cd3edb1acdf9a7f7e606ff2  /bin/bash
  
-@@ -122,7 +122,7 @@ or
+@@ -123,7 +123,7 @@ or
  
  or
  
--	# md5sum -q /bin/* > bin.md5
+-	# md5sum \-q /bin/* > bin.md5
 +	# md5 -s /bin/* > bin.md5
  
- 	# hfind -f bin.md5 system.md5
+ 	# hfind \-f bin.md5 system.md5
  
Index: patches/patch-man_sorter_1
===
RCS file: /cvs/ports/sysutils/sleuthkit/patches/patch-man_sorter_1,v
retrieving revision 1.2
diff -u -p -u -p -r1.2 patch-man_sorter_1
--- patches/patch-man_sorter_1	5 Jan 2009 22:15:56 -	1.2
+++ patches/patch-man_sorter_1	10 Oct 2016 05:24:33 -
@@ -1,13 +1,13 @@
 $OpenBSD: patch-man_sorter_1,v 1.2 2009/01/05 22:15:56 rui Exp $
 man/sorter.1.orig	Mon Sep 29 00:02:46 2008
-+++ man/sorter.1	Sun Dec 28 14:02:02 2008
-@@ -76,7 +76,7 @@ have priority over the standard files.  
+---

Re: UPDATE sysutils/sleuthkit

2014-10-23 Thread ni...@openbsd.org

On 10/10/14 01:43, ni...@cvs.openbsd.org wrote:
 On 10/10/14 00:58, Josh Grosse wrote:
 On Wed, Oct 08, 2014 at 01:22:12PM +0100, ni...@cvs.openbsd.org wrote:

 Builds on other than amd64?

 Yes - it builds and runs on i386. Limited, non-destructive testing done via
 the Autopsy webserver 2.24. 


 Thanks.
 
 
Attached a revised diff

SHARED_LIBS, as per comment from sthen@

Removed the new command fcat for now, conflict with freeze port.
ifind+icat do the same. freeze port is old not used by other ports.

Removed extra white spaces from DESCR

Removed USE_GROFF=Yes

Index: Makefile
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.15
diff -u -p -r1.15 Makefile
--- Makefile	11 Mar 2013 11:41:32 -	1.15
+++ Makefile	23 Oct 2014 16:32:48 -
@@ -2,11 +2,10 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-3.0.1
-REVISION =		0
+DISTNAME=		sleuthkit-4.1.3
 CATEGORIES=		sysutils security
 
-SHARED_LIBS=		tsk3 4.3
+SHARED_LIBS=		tsk	0.0	# 12.0
 
 HOMEPAGE=		http://www.sleuthkit.org/
 
@@ -18,10 +17,13 @@ PERMIT_PACKAGE_FTP=	Yes
 
 MASTER_SITES=		${MASTER_SITE_SOURCEFORGE:=sleuthkit/}
 
-WANTLIB=		c m stdc++
+WANTLIB=		c m stdc++ pthread z
 
 CONFIGURE_STYLE=simple
-USE_GROFF =		Yes
+CONFIGURE_ARGS =	--mandir=${PREFIX}/man \
+			--disable-java \
+			--without-afflib \
+			--without-libewf
 
 RUN_DEPENDS=		converters/p5-DateManip
 
Index: distinfo
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.9
diff -u -p -r1.9 distinfo
--- distinfo	17 May 2009 19:54:40 -	1.9
+++ distinfo	7 Oct 2014 22:23:01 -
@@ -1,5 +1,2 @@
-MD5 (sleuthkit-3.0.1.tar.gz) = VZVt07v6bJ4uvMaFwqlWnQ==
-RMD160 (sleuthkit-3.0.1.tar.gz) = lmYT74elUjE0stZILug0//uYse4=
-SHA1 (sleuthkit-3.0.1.tar.gz) = pXjQLAJsy0OJ/UY0Rdnn0ymu6vk=
-SHA256 (sleuthkit-3.0.1.tar.gz) = cPrFTDn4YxpuztxEs5OV3bPRf5I21x1QvL+r9ei2Dd0=
-SIZE (sleuthkit-3.0.1.tar.gz) = 814032
+SHA256 (sleuthkit-4.1.3.tar.gz) = Z/nSoxqIhNWGmNYSL8Ghv6m/I4WCveK0kijsm4mfAyc=
+SIZE (sleuthkit-4.1.3.tar.gz) = 7952733
Index: patches/patch-man_hfind_1
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/patches/patch-man_hfind_1,v
retrieving revision 1.2
diff -u -p -r1.2 patch-man_hfind_1
--- patches/patch-man_hfind_1	5 Jan 2009 22:15:56 -	1.2
+++ patches/patch-man_hfind_1	1 Oct 2013 21:51:32 -
@@ -1,6 +1,6 @@
 $OpenBSD: patch-man_hfind_1,v 1.2 2009/01/05 22:15:56 rui Exp $
 man/hfind.1.orig	Mon Sep 29 00:02:46 2008
-+++ man/hfind.1	Sun Dec 28 14:02:02 2008
+--- man/hfind.1.orig	Wed Sep 25 10:26:29 2013
 man/hfind.1	Mon Sep 30 17:18:36 2013
 @@ -13,7 +13,7 @@ hfind \- Lookup a hash value in a hash database
  looks up hash values in a database using a binary search algorithm. 
  This allows one to easily create a hash database and identify if a file
@@ -9,7 +9,7 @@ $OpenBSD: patch-man_hfind_1,v 1.2 2009/0
 +Library (NSRL) and the output of 'md5'.  
  
  Before the database can be used by 'hfind', an index file must be created
- with the '-i' option.  
+ with the '\-i' option.
 @@ -28,7 +28,7 @@ search algorithm instead of a linear search such as 'g
  .IP -i db_type
  Create an index file for the database.  This step must be done before
@@ -28,7 +28,7 @@ $OpenBSD: patch-man_hfind_1,v 1.2 2009/0
  databases.  'hfind' can take data in both common formats:
  
  	MD5 (test.txt) = 76b1f4de1522c20b67acc132937cf82e
-@@ -100,11 +100,11 @@ You can even do both SHA-1 and MD5 if you want:
+@@ -101,11 +101,11 @@ You can even do both SHA-1 and MD5 if you want:
  
  	80001A80B3F1B80076B297CEE8805AAA04E1B5BA  thrdcore.cpp
  
@@ -36,28 +36,28 @@ $OpenBSD: patch-man_hfind_1,v 1.2 2009/0
 +To make a database of critical binaries of a trusted system, use 'md5':
  
 -	# md5sum /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/*  system.md5
-+	# md5 -s /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/*  system.md5
++	# md5 /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/*  system.md5
  
--	# hfind -i md5sum system.md5
-+	# hfind -i md5 -s system.md5
+-	# hfind \-i md5sum system.md5
++	# hfind \-i md5 system.md5
  
  To look entries up, the following will work:
  
-@@ -114,7 +114,7 @@ To look entries up, the following will work:
+@@ -115,7 +115,7 @@ To look entries up, the following will work:
  
  or
  
--	# md5sum -q /bin/* | hfind system.md5
-+	# md5 -s /bin/* | hfind system.md5
+-	# md5sum \-q /bin/* | hfind system.md5
++	# md5 \-s /bin/* | hfind system.md5
  
  	928682269cd3edb1acdf9a7f7e606ff2  /bin/bash
  
-@@ -122,7 +122,7 @@ or
+@@ -123,7 +123,7 @@ or
  
  or
  
--	# md5sum -q /bin/*  bin.md5
-+	# md5 -s /bin/*  bin.md5
+-	# md5sum \-q /bin/*  bin.md5
++	# md5 \-s /bin/*  bin.md5
  
- 	# hfind -f bin.md5 system.md5
+ 	# hfind \-f bin.md5 system.md5

Re: UPDATE sysutils/sleuthkit

2014-10-23 Thread Stuart Henderson

On 2014/10/23 17:57, ni...@openbsd.org wrote:
 Removed the new command fcat for now, conflict with freeze port.
 ifind+icat do the same. freeze port is old not used by other ports.

I wouldn't worry about a conflict with freeze, it isn't packaged anyway
(PERMIT_*=No), just record the conflict (or just remove freeze?)

Re: UPDATE sysutils/sleuthkit

2014-10-09 Thread Josh Grosse

On Wed, Oct 08, 2014 at 01:22:12PM +0100, ni...@cvs.openbsd.org wrote:

 Builds on other than amd64?

Yes - it builds and runs on i386. Limited, non-destructive testing done via
the Autopsy webserver 2.24.

Re: UPDATE sysutils/sleuthkit

2014-10-09 Thread ni...@cvs.openbsd.org

On 10/10/14 00:58, Josh Grosse wrote:
 On Wed, Oct 08, 2014 at 01:22:12PM +0100, ni...@cvs.openbsd.org wrote:
 
 Builds on other than amd64?
 
 Yes - it builds and runs on i386. Limited, non-destructive testing done via
 the Autopsy webserver 2.24. 
 
 
Thanks.

UPDATE sysutils/sleuthkit

2014-10-08 Thread ni...@cvs.openbsd.org

Update to 4.1.3 shown as latest version available by portroach.

Builds for me on amd64,

java has been disabled. Configuration would have tried looking for
various java versions. The java bindings might be added as a subpackage
in the future.

libewf/afflib are not available on OpenBSD, in case added at some future
time the configure argument disable these.

Builds on other than amd64?

Comments Ok?
Index: Makefile
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.15
diff -u -p -r1.15 Makefile
--- Makefile	11 Mar 2013 11:41:32 -	1.15
+++ Makefile	7 Oct 2014 22:48:31 -
@@ -2,11 +2,10 @@
 
 COMMENT=		forensic toolkit based on TCT
 
-DISTNAME=		sleuthkit-3.0.1
-REVISION =		0
+DISTNAME=		sleuthkit-4.1.3
 CATEGORIES=		sysutils security
 
-SHARED_LIBS=		tsk3 4.3
+SHARED_LIBS=		tsk 11.1
 
 HOMEPAGE=		http://www.sleuthkit.org/
 
@@ -18,9 +17,13 @@ PERMIT_PACKAGE_FTP=	Yes
 
 MASTER_SITES=		${MASTER_SITE_SOURCEFORGE:=sleuthkit/}
 
-WANTLIB=		c m stdc++
+WANTLIB=		c m stdc++ pthread z
 
 CONFIGURE_STYLE=simple
+CONFIGURE_ARGS =	--mandir=${PREFIX}/man \
+			--disable-java \
+			--without-afflib \
+			--without-libewf
 USE_GROFF =		Yes
 
 RUN_DEPENDS=		converters/p5-DateManip
Index: distinfo
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.9
diff -u -p -r1.9 distinfo
--- distinfo	17 May 2009 19:54:40 -	1.9
+++ distinfo	7 Oct 2014 22:23:01 -
@@ -1,5 +1,2 @@
-MD5 (sleuthkit-3.0.1.tar.gz) = VZVt07v6bJ4uvMaFwqlWnQ==
-RMD160 (sleuthkit-3.0.1.tar.gz) = lmYT74elUjE0stZILug0//uYse4=
-SHA1 (sleuthkit-3.0.1.tar.gz) = pXjQLAJsy0OJ/UY0Rdnn0ymu6vk=
-SHA256 (sleuthkit-3.0.1.tar.gz) = cPrFTDn4YxpuztxEs5OV3bPRf5I21x1QvL+r9ei2Dd0=
-SIZE (sleuthkit-3.0.1.tar.gz) = 814032
+SHA256 (sleuthkit-4.1.3.tar.gz) = Z/nSoxqIhNWGmNYSL8Ghv6m/I4WCveK0kijsm4mfAyc=
+SIZE (sleuthkit-4.1.3.tar.gz) = 7952733
Index: patches/patch-man_hfind_1
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/patches/patch-man_hfind_1,v
retrieving revision 1.2
diff -u -p -r1.2 patch-man_hfind_1
--- patches/patch-man_hfind_1	5 Jan 2009 22:15:56 -	1.2
+++ patches/patch-man_hfind_1	1 Oct 2013 21:51:32 -
@@ -1,6 +1,6 @@
 $OpenBSD: patch-man_hfind_1,v 1.2 2009/01/05 22:15:56 rui Exp $
 man/hfind.1.orig	Mon Sep 29 00:02:46 2008
-+++ man/hfind.1	Sun Dec 28 14:02:02 2008
+--- man/hfind.1.orig	Wed Sep 25 10:26:29 2013
 man/hfind.1	Mon Sep 30 17:18:36 2013
 @@ -13,7 +13,7 @@ hfind \- Lookup a hash value in a hash database
  looks up hash values in a database using a binary search algorithm. 
  This allows one to easily create a hash database and identify if a file
@@ -9,7 +9,7 @@ $OpenBSD: patch-man_hfind_1,v 1.2 2009/0
 +Library (NSRL) and the output of 'md5'.  
  
  Before the database can be used by 'hfind', an index file must be created
- with the '-i' option.  
+ with the '\-i' option.
 @@ -28,7 +28,7 @@ search algorithm instead of a linear search such as 'g
  .IP -i db_type
  Create an index file for the database.  This step must be done before
@@ -28,7 +28,7 @@ $OpenBSD: patch-man_hfind_1,v 1.2 2009/0
  databases.  'hfind' can take data in both common formats:
  
  	MD5 (test.txt) = 76b1f4de1522c20b67acc132937cf82e
-@@ -100,11 +100,11 @@ You can even do both SHA-1 and MD5 if you want:
+@@ -101,11 +101,11 @@ You can even do both SHA-1 and MD5 if you want:
  
  	80001A80B3F1B80076B297CEE8805AAA04E1B5BA  thrdcore.cpp
  
@@ -36,28 +36,28 @@ $OpenBSD: patch-man_hfind_1,v 1.2 2009/0
 +To make a database of critical binaries of a trusted system, use 'md5':
  
 -	# md5sum /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/*  system.md5
-+	# md5 -s /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/*  system.md5
++	# md5 /bin/* /sbin/* /usr/bin/* /usr/bin/* /usr/local/bin/* /usr/local/sbin/*  system.md5
  
--	# hfind -i md5sum system.md5
-+	# hfind -i md5 -s system.md5
+-	# hfind \-i md5sum system.md5
++	# hfind \-i md5 system.md5
  
  To look entries up, the following will work:
  
-@@ -114,7 +114,7 @@ To look entries up, the following will work:
+@@ -115,7 +115,7 @@ To look entries up, the following will work:
  
  or
  
--	# md5sum -q /bin/* | hfind system.md5
-+	# md5 -s /bin/* | hfind system.md5
+-	# md5sum \-q /bin/* | hfind system.md5
++	# md5 \-s /bin/* | hfind system.md5
  
  	928682269cd3edb1acdf9a7f7e606ff2  /bin/bash
  
-@@ -122,7 +122,7 @@ or
+@@ -123,7 +123,7 @@ or
  
  or
  
--	# md5sum -q /bin/*  bin.md5
-+	# md5 -s /bin/*  bin.md5
+-	# md5sum \-q /bin/*  bin.md5
++	# md5 \-s /bin/*  bin.md5
  
- 	# hfind -f bin.md5 system.md5
+ 	# hfind \-f bin.md5 system.md5
  
Index: patches/patch-man_sorter_1
===
RCS file: /home/cvs/ports/sysutils/sleuthkit/patches/patch-man_sorter_1,v

update: sysutils/sleuthkit

2008-05-04 Thread Rui Reis

here's an update to sysutils/sleuthkit, works for me on i386 
and amd64.

Announce here:
http://marc.info/?l=sleuthkit-usersm=120785373310111w=2

ok?

cheers,
rui


Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.8
diff -u -r1.8 Makefile
--- Makefile18 Feb 2008 18:19:35 -  1.8
+++ Makefile4 May 2008 07:11:27 -
@@ -2,10 +2,10 @@
 
 COMMENT=   forensic toolkit based on TCT
 
-DISTNAME=  sleuthkit-2.51
+DISTNAME=  sleuthkit-2.52
 CATEGORIES=sysutils security
 
-SHARED_LIBS=   tsk 1.1
+SHARED_LIBS=   tsk 1.2
 
 HOMEPAGE=  http://www.sleuthkit.org/
 
@@ -19,7 +19,7 @@
 
 MASTER_SITES=  ${MASTER_SITE_SOURCEFORGE:=sleuthkit/}
 
-WANTLIB=   c
+WANTLIB=   c m stdc++
 
 CONFIGURE_STYLE=simple
 
Index: distinfo
===
RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.6
diff -u -r1.6 distinfo
--- distinfo18 Feb 2008 18:19:35 -  1.6
+++ distinfo4 May 2008 07:11:27 -
@@ -1,5 +1,5 @@
-MD5 (sleuthkit-2.51.tar.gz) = FN7vxEvDF4f8mfwjkST3Cw==
-RMD160 (sleuthkit-2.51.tar.gz) = CTjSsfsVKFpwl204EuaNlLO8yQQ=
-SHA1 (sleuthkit-2.51.tar.gz) = iXCXtGSFIvUCPQ2W3Mi50HuWf4w=
-SHA256 (sleuthkit-2.51.tar.gz) = lZCKcUhVx/37+yb9MBb15pePFzDwA9nOve7O5mvH/tw=
-SIZE (sleuthkit-2.51.tar.gz) = 817416
+MD5 (sleuthkit-2.52.tar.gz) = P5O8d5Ae9AuLPyp+SCIUpQ==
+RMD160 (sleuthkit-2.52.tar.gz) = GFK4vd2W3aGoYPc7fCHRL8fJWWA=
+SHA1 (sleuthkit-2.52.tar.gz) = 4ujrxB5L56p1N2/vOOE89vLWIG8=
+SHA256 (sleuthkit-2.52.tar.gz) = 2JRLsAU6MB6qM5Bsa6zHJAFLPLeNvP5yLv6KrxAUAp4=
+SIZE (sleuthkit-2.52.tar.gz) = 819357
Index: patches/patch-tools_timeline_mactime_base
===
RCS file: patches/patch-tools_timeline_mactime_base
diff -N patches/patch-tools_timeline_mactime_base
--- patches/patch-tools_timeline_mactime_base   18 Feb 2008 18:19:36 -  
1.1
+++ /dev/null   1 Jan 1970 00:00:00 -
@@ -1,12 +0,0 @@
-$OpenBSD: patch-tools_timeline_mactime_base,v 1.1 2008/02/18 18:19:36 rui Exp $
 tools/timeline/mactime.base.orig   Sat Feb 16 22:39:24 2008
-+++ tools/timeline/mactime.baseSat Feb 16 22:40:03 2008
-@@ -405,7 +405,7 @@ sub print_tl {
- $delim = ,;
- }
- 
--for $key (sort { $a = $b } keys %time2macstr) {
-+for $key (sort { $a cmp $b } keys %time2macstr) {
- if ($key =~ /^(\d+),([\d-]+),(.*)$/) {
- $time  = $1;
- $inode = $2;

Re: update: sysutils/sleuthkit

2008-02-17 Thread Rui Reis

You can also play with Autopsy...

Installing Autopsy is a little strange, anyway here's an useful
Autopsy port (attached). 

$ cat pkg/DESCR
The Autopsy forensic browser is a graphical interface to utilities
in The Sleuth Kit. The Sleuth Kit and Autopsy provide many of the same
features as commercial digital forensics tools for the analysis of
Microsoft and UNIX file systems (NTFS, FAT, FFS, EXT2FS, and EXT3FS).

It allows the allocated and deleted files, directories, blocks, and
inodes of file system images to be analyzed in a read-only environment.
Images can be searched for strings and regular expressions to recover
deleted material.  It also allows one to create a detailed time line of
the Modified, Access, and Changed times of files.

As Autopsy is HTML-based, the investigator can connect to the Autopsy
server from any platform using a web browser.

comments?

cheers,
rui



On Sat, Feb 16, 2008 at 10:55:04PM +, Rui Reis wrote:
 here's an update to sleuthkit-2.51.
 its a lot cleaner than last time I checked it.
 
 works for me on i386, macppc, sparc64 and amd64.
 
 ok?
 
 cheers,
 rui 
 
 
 Index: Makefile
 ===
 RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
 retrieving revision 1.7
 diff -u -r1.7 Makefile
 --- Makefile  15 Sep 2007 21:14:02 -  1.7
 +++ Makefile  16 Feb 2008 22:45:40 -
 @@ -2,49 +2,32 @@
  
  COMMENT= forensic toolkit based on TCT
  
 -VERSION= 1.73
 -DISTNAME=sleuthkit-${VERSION}
 -PKGNAME= ${DISTNAME}p0
 +DISTNAME=sleuthkit-2.51
  CATEGORIES=  sysutils security
  
 +SHARED_LIBS= tsk 1.1
 +
  HOMEPAGE=http://www.sleuthkit.org/
  
 -MASTER_SITES=${MASTER_SITE_SOURCEFORGE:=sleuthkit/} \
 - ${MASTER_SITE_PACKETSTORM:=UNIX/utilities/}
 +MAINTAINER=  Rui Reis [EMAIL PROTECTED]
  
 -# IBM  GPL
 +# CPLv1  IBM  GPLv2
  PERMIT_PACKAGE_CDROM=commercial contributor must indemnify all others
  PERMIT_PACKAGE_FTP=  Yes
  PERMIT_DISTFILES_CDROM=  commercial contributor must indemnify all others
  PERMIT_DISTFILES_FTP=Yes
 +
 +MASTER_SITES=${MASTER_SITE_SOURCEFORGE:=sleuthkit/}
 +
  WANTLIB= c
  
 -RUN_DEPENDS= :p5-DateManip-*:converters/p5-DateManip
 +CONFIGURE_STYLE=simple
  
 -MAKE_FLAGS=  CC=${CC} OPT=${CFLAGS} DEBUG=
 +RUN_DEPENDS= :p5-DateManip-*:converters/p5-DateManip
  
  NO_REGRESS=  Yes
  
 -SCRIPTS= mactime sorter
 -PROGRAMS=dcalc dcat diskstat dls dstat ffind fls fsstat \
 - hfind icat ifind ils istat jcat jls mmls sigfind \
 - sstrings
 -DOCS=README.txt docs/* tct.docs/*
 -SORTFILES=   share/sorter/*
 -
  pre-configure:
 - @perl -pi -e s:%%PREFIX%%:${PREFIX}: ${WRKSRC}/src/sorter/install \
 - ${WRKSRC}/man/man1/sorter.1
 + @perl -pi -e s:%%PREFIX%%:${PREFIX}: ${WRKSRC}/man/sorter.1
  
 -do-install:
 - ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/sleuthkit
 - ${INSTALL_DATA_DIR} ${PREFIX}/share/sleuthkit
 - ${INSTALL_DATA_DIR} ${PREFIX}/share/sleuthkit/sorter
 - cd ${WRKSRC}/bin  ${INSTALL_SCRIPT} ${SCRIPTS} ${PREFIX}/bin
 - cd ${WRKSRC}/bin  ${INSTALL_PROGRAM} ${PROGRAMS} ${PREFIX}/bin
 - cd ${WRKSRC}/man/man1  ${INSTALL_MAN} * ${PREFIX}/man/man1
 - cd ${WRKSRC}  ${INSTALL_DATA} ${DOCS} ${PREFIX}/share/doc/sleuthkit
 - cd ${WRKSRC}  ${INSTALL_DATA} ${SORTFILES} \
 - ${PREFIX}/share/sleuthkit/sorter
 -  
  .include bsd.port.mk
 Index: distinfo
 ===
 RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
 retrieving revision 1.5
 diff -u -r1.5 distinfo
 --- distinfo  5 Apr 2007 17:26:12 -   1.5
 +++ distinfo  16 Feb 2008 22:45:40 -
 @@ -1,5 +1,5 @@
 -MD5 (sleuthkit-1.73.tar.gz) = dzxI3QXKoCYtcgFUmP2Szg==
 -RMD160 (sleuthkit-1.73.tar.gz) = HkskH+7HRavm3GcBsGkie9EZtTw=
 -SHA1 (sleuthkit-1.73.tar.gz) = nvoorIWdVeS2JHxtbjo0LAwKXm4=
 -SHA256 (sleuthkit-1.73.tar.gz) = y9JCEXPqb6mcBDg4JFDJXAox3+xsZAR/ZFXDnOeKrdc=
 -SIZE (sleuthkit-1.73.tar.gz) = 727263
 +MD5 (sleuthkit-2.51.tar.gz) = FN7vxEvDF4f8mfwjkST3Cw==
 +RMD160 (sleuthkit-2.51.tar.gz) = CTjSsfsVKFpwl204EuaNlLO8yQQ=
 +SHA1 (sleuthkit-2.51.tar.gz) = iXCXtGSFIvUCPQ2W3Mi50HuWf4w=
 +SHA256 (sleuthkit-2.51.tar.gz) = lZCKcUhVx/37+yb9MBb15pePFzDwA9nOve7O5mvH/tw=
 +SIZE (sleuthkit-2.51.tar.gz) = 817416
 Index: patches/patch-Makefile
 ===
 RCS file: patches/patch-Makefile
 diff -N patches/patch-Makefile
 --- patches/patch-Makefile16 Feb 2005 20:41:27 -  1.1
 +++ /dev/null 1 Jan 1970 00:00:00 -
 @@ -1,12 +0,0 @@
 -$OpenBSD: patch-Makefile,v 1.1 2005/02/16 20:41:27 sturm Exp $
  Makefile.origWed Feb 16 21:27:22 2005
 -+++ Makefile Wed

update: sysutils/sleuthkit

2008-02-16 Thread Rui Reis

here's an update to sleuthkit-2.51.
its a lot cleaner than last time I checked it.

works for me on i386, macppc, sparc64 and amd64.

ok?

cheers,
rui 


Index: Makefile
===
RCS file: /cvs/ports/sysutils/sleuthkit/Makefile,v
retrieving revision 1.7
diff -u -r1.7 Makefile
--- Makefile15 Sep 2007 21:14:02 -  1.7
+++ Makefile16 Feb 2008 22:45:40 -
@@ -2,49 +2,32 @@
 
 COMMENT=   forensic toolkit based on TCT
 
-VERSION=   1.73
-DISTNAME=  sleuthkit-${VERSION}
-PKGNAME=   ${DISTNAME}p0
+DISTNAME=  sleuthkit-2.51
 CATEGORIES=sysutils security
 
+SHARED_LIBS=   tsk 1.1
+
 HOMEPAGE=  http://www.sleuthkit.org/
 
-MASTER_SITES=  ${MASTER_SITE_SOURCEFORGE:=sleuthkit/} \
-   ${MASTER_SITE_PACKETSTORM:=UNIX/utilities/}
+MAINTAINER=Rui Reis [EMAIL PROTECTED]
 
-# IBM  GPL
+# CPLv1  IBM  GPLv2
 PERMIT_PACKAGE_CDROM=  commercial contributor must indemnify all others
 PERMIT_PACKAGE_FTP=Yes
 PERMIT_DISTFILES_CDROM=commercial contributor must indemnify all others
 PERMIT_DISTFILES_FTP=  Yes
+
+MASTER_SITES=  ${MASTER_SITE_SOURCEFORGE:=sleuthkit/}
+
 WANTLIB=   c
 
-RUN_DEPENDS=   :p5-DateManip-*:converters/p5-DateManip
+CONFIGURE_STYLE=simple
 
-MAKE_FLAGS=CC=${CC} OPT=${CFLAGS} DEBUG=
+RUN_DEPENDS=   :p5-DateManip-*:converters/p5-DateManip
 
 NO_REGRESS=Yes
 
-SCRIPTS=   mactime sorter
-PROGRAMS=  dcalc dcat diskstat dls dstat ffind fls fsstat \
-   hfind icat ifind ils istat jcat jls mmls sigfind \
-   sstrings
-DOCS=  README.txt docs/* tct.docs/*
-SORTFILES= share/sorter/*
-
 pre-configure:
-   @perl -pi -e s:%%PREFIX%%:${PREFIX}: ${WRKSRC}/src/sorter/install \
-   ${WRKSRC}/man/man1/sorter.1
+   @perl -pi -e s:%%PREFIX%%:${PREFIX}: ${WRKSRC}/man/sorter.1
 
-do-install:
-   ${INSTALL_DATA_DIR} ${PREFIX}/share/doc/sleuthkit
-   ${INSTALL_DATA_DIR} ${PREFIX}/share/sleuthkit
-   ${INSTALL_DATA_DIR} ${PREFIX}/share/sleuthkit/sorter
-   cd ${WRKSRC}/bin  ${INSTALL_SCRIPT} ${SCRIPTS} ${PREFIX}/bin
-   cd ${WRKSRC}/bin  ${INSTALL_PROGRAM} ${PROGRAMS} ${PREFIX}/bin
-   cd ${WRKSRC}/man/man1  ${INSTALL_MAN} * ${PREFIX}/man/man1
-   cd ${WRKSRC}  ${INSTALL_DATA} ${DOCS} ${PREFIX}/share/doc/sleuthkit
-   cd ${WRKSRC}  ${INSTALL_DATA} ${SORTFILES} \
-   ${PREFIX}/share/sleuthkit/sorter
-
 .include bsd.port.mk
Index: distinfo
===
RCS file: /cvs/ports/sysutils/sleuthkit/distinfo,v
retrieving revision 1.5
diff -u -r1.5 distinfo
--- distinfo5 Apr 2007 17:26:12 -   1.5
+++ distinfo16 Feb 2008 22:45:40 -
@@ -1,5 +1,5 @@
-MD5 (sleuthkit-1.73.tar.gz) = dzxI3QXKoCYtcgFUmP2Szg==
-RMD160 (sleuthkit-1.73.tar.gz) = HkskH+7HRavm3GcBsGkie9EZtTw=
-SHA1 (sleuthkit-1.73.tar.gz) = nvoorIWdVeS2JHxtbjo0LAwKXm4=
-SHA256 (sleuthkit-1.73.tar.gz) = y9JCEXPqb6mcBDg4JFDJXAox3+xsZAR/ZFXDnOeKrdc=
-SIZE (sleuthkit-1.73.tar.gz) = 727263
+MD5 (sleuthkit-2.51.tar.gz) = FN7vxEvDF4f8mfwjkST3Cw==
+RMD160 (sleuthkit-2.51.tar.gz) = CTjSsfsVKFpwl204EuaNlLO8yQQ=
+SHA1 (sleuthkit-2.51.tar.gz) = iXCXtGSFIvUCPQ2W3Mi50HuWf4w=
+SHA256 (sleuthkit-2.51.tar.gz) = lZCKcUhVx/37+yb9MBb15pePFzDwA9nOve7O5mvH/tw=
+SIZE (sleuthkit-2.51.tar.gz) = 817416
Index: patches/patch-Makefile
===
RCS file: patches/patch-Makefile
diff -N patches/patch-Makefile
--- patches/patch-Makefile  16 Feb 2005 20:41:27 -  1.1
+++ /dev/null   1 Jan 1970 00:00:00 -
@@ -1,12 +0,0 @@
-$OpenBSD: patch-Makefile,v 1.1 2005/02/16 20:41:27 sturm Exp $
 Makefile.orig  Wed Feb 16 21:27:22 2005
-+++ Makefile   Wed Feb 16 21:27:30 2005
-@@ -9,7 +9,7 @@ static:$(DIRS) compile-static
- $(DIRS):
-   mkdir -p $@
- 
--compile: no-perl mactime sorter file test 
-+compile: no-perl mactime sorter test 
- 
- compile-static: no-perl-static mactime sorter file test
- 
Index: patches/patch-check-install
===
RCS file: patches/patch-check-install
diff -N patches/patch-check-install
--- patches/patch-check-install 16 Feb 2005 20:41:27 -  1.1
+++ /dev/null   1 Jan 1970 00:00:00 -
@@ -1,12 +0,0 @@
-$OpenBSD: patch-check-install,v 1.1 2005/02/16 20:41:27 sturm Exp $
 check-install.orig Tue Oct 12 04:00:23 2004
-+++ check-install  Wed Feb 16 21:30:17 2005
-@@ -47,8 +47,6 @@ fi
- 
- if (test -x bin/file) then
-   blah=1;
--else
--  echo ERROR: Missing 'file' command;
- fi
- 
- if (test -x bin/mactime) then
Index: patches/patch-man_hfind_1
===
RCS file:

Fwd: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

[UPDATE] sysutils/sleuthkit

Re: Update: sysutils/sleuthkit clang fallout

Update: sysutils/sleuthkit clang fallout

Re: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

[UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

Re: [UPDATE] sysutils/sleuthkit

[UPDATE] sysutils/sleuthkit

Re: UPDATE sysutils/sleuthkit

Re: UPDATE sysutils/sleuthkit

Re: UPDATE sysutils/sleuthkit

Re: UPDATE sysutils/sleuthkit

UPDATE sysutils/sleuthkit

update: sysutils/sleuthkit

Re: update: sysutils/sleuthkit

update: sysutils/sleuthkit

23 matches

Site Navigation

Mail list logo

Footer information