diff options
| author | anthraxx | 2015-07-10 02:26:26 +0200 |
|---|---|---|
| committer | anthraxx | 2015-07-10 02:26:26 +0200 |
| commit | b3ee37a84d6348248cda08f1d6e4c5cc1a75db67 (patch) | |
| tree | a825134161d2888dd1b0cb85dbdd00431545a86e | |
| download | aur-b3ee37a84d6348248cda08f1d6e4c5cc1a75db67.tar.gz | |
addpkg: kippo-git v0.9.281.860224d-1
| -rw-r--r-- | .SRCINFO | 24 | ||||
| -rw-r--r-- | PKGBUILD | 55 | ||||
| -rw-r--r-- | kippo.install | 28 | ||||
| -rw-r--r-- | kippo.service | 14 |
4 files changed, 121 insertions, 0 deletions
diff --git a/.SRCINFO b/.SRCINFO new file mode 100644 index 000000000000..94f0baacd213 --- /dev/null +++ b/.SRCINFO @@ -0,0 +1,24 @@ +pkgbase = kippo-git + pkgdesc = A medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker + pkgver = v0.9.281.860224d + pkgrel = 1 + url = https://github.com/desaster/kippo + install = kippo.install + arch = i686 + arch = x86_64 + license = BSD + makedepends = git + depends = python2 + depends = twisted + depends = pycrypto + provides = kippo + conflicts = kippo + source = git+http://github.com/desaster/kippo + source = kippo.service + source = kippo.install + sha512sums = SKIP + sha512sums = 1ef2d5b1223567dbe37ea51ad668fc39d173e85b22cbbf13d85d781bfe0b52a994f9768ef4f2389f5970f8636be9ca3b30b6e8ae7b6b040bb6564c1387d16d42 + sha512sums = d1a15c792912e6f127839665bbe1cde82711ba485f536083c84e568faf6ebdfb4c941abfc7f25e8098d2a6f5f328a900fde78242cf49cc751c7227dfd3584d1a + +pkgname = kippo-git + diff --git a/PKGBUILD b/PKGBUILD new file mode 100644 index 000000000000..0b3e45b8fe21 --- /dev/null +++ b/PKGBUILD @@ -0,0 +1,55 @@ +# Maintainer : Christian Rebischke <echo Q2hyaXMuUmViaXNjaGtlQGdtYWlsLmNvbQo= | base64 -d> +# Contributor: Levente Polyak <levente[at]leventepolyak[dot]net> + +pkgname=kippo-git +pkgver=v0.9.281.860224d +provides=('kippo') +conflicts=('kippo') +pkgrel=1 +pkgdesc="A medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker" +arch=('i686' 'x86_64') +url="https://github.com/desaster/kippo" +license=('BSD') +depends=('python2' 'twisted' 'pycrypto') +makedepends=('git') +source=('git+http://github.com/desaster/kippo' 'kippo.service' 'kippo.install') +sha512sums=( +'SKIP' +'1ef2d5b1223567dbe37ea51ad668fc39d173e85b22cbbf13d85d781bfe0b52a994f9768ef4f2389f5970f8636be9ca3b30b6e8ae7b6b040bb6564c1387d16d42' +'d1a15c792912e6f127839665bbe1cde82711ba485f536083c84e568faf6ebdfb4c941abfc7f25e8098d2a6f5f328a900fde78242cf49cc751c7227dfd3584d1a' +) +install=kippo.install + +pkgver() { + cd $provides + printf "%s.%s.%s" "$(git describe --tags --abbrev=0)" "$(git rev-list --count HEAD)" "$(git rev-parse --short HEAD)" +} + +prepare() { + cd $provides + sed -e 's|env python$|env python2|g' -i utils/* + sed -e 's|/usr/bin/python$|/usr/bin/python2|g' -i utils/fsctl.py + sed -e 's|kippo.cfg|/etc/kippo.cfg|g' -i kippo.tac +} + +build() { + cd $provides + python2 -m compileall . + python2 -O -m compileall . +} + +package() { + cd $provides + + install -Dm 644 kippo.cfg.dist "${pkgdir}/etc/kippo.cfg" + install -Dm 644 ../kippo.service \ + "${pkgdir}/usr/lib/systemd/system/kippo.service" + + find . -type f -not \( -name kippo.cfg.dist -o -name start.sh -o -name stop.sh \) \ + -exec install -Dm 644 {} "${pkgdir}/opt/kippo/{}" \; + + install -Dm 644 doc/COPYRIGHT "${pkgdir}/usr/share/licenses/${pkgname}/LICENSE" + install -Dm 644 doc/README "${pkgdir}/usr/share/doc/${pkgname}/README" +} + +# vim:set et sw=2 ts=2 tw=80: diff --git a/kippo.install b/kippo.install new file mode 100644 index 000000000000..bddd23d35bd1 --- /dev/null +++ b/kippo.install @@ -0,0 +1,28 @@ +post_install() { + echo "By default, kippo runs on port 2222. Do not try to run it on port 22." + echo "Instead, use something like" + echo " iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 22 -j REDIRECT --to-port 2222" + echo "to make it reachable on port 22." + echo "The whole kippo installation lives in /opt/kippo to make it isolated from the real system." + + /usr/bin/getent group kippo > /dev/null || /usr/sbin/groupadd kippo + /usr/bin/getent passwd kippo > /dev/null || \ + /usr/sbin/useradd -d /opt/kippo -g kippo -s /bin/nologin kippo + + chown -R kippo:kippo /opt/kippo +} + +post_upgrade() { + post_install +} + +pre_remove() { + if [[ -f /opt/kippo/kippo.pid ]]; then + systemctl stop kippo + fi +} + +post_remove() { + /usr/sbin/userdel kippo > /dev/null +} +# vim: ts=2 sw=2 et: diff --git a/kippo.service b/kippo.service new file mode 100644 index 000000000000..18ed77731792 --- /dev/null +++ b/kippo.service @@ -0,0 +1,14 @@ +[Unit] +Description=Kippo Honey Pot +After=network.target + +[Service] +Type=forking +WorkingDirectory=/opt/kippo +User=kippo +Group=kippo +PIDFile=/opt/kippo/kippo.pid +ExecStart=/usr/bin/twistd -y kippo.tac -l log/kippo.log --pidfile kippo.pid + +[Install] +WantedBy=multi-user.target |