Package Details: passivedns-git r287.d757713-1

Git Clone URL: https://aur.archlinux.org/passivedns-git.git (read-only, click to copy)
Package Base: passivedns-git
Description: A network sniffer that logs all DNS server replies for use in a passive DNS setup
Upstream URL: https://github.com/gamelinux/passivedns
Keywords: dns monitor network pcap
Licenses: GPLv2
Provides: passivedns
Submitter: whoisroot
Maintainer: hexhu
Last Packager: hexhu
Votes: 1
Popularity: 0.000000
First Submitted: 2019-04-03 15:21 (UTC)
Last Updated: 2021-06-15 06:24 (UTC)

Dependencies (4)

Required by (0)

Sources (2)

Latest Comments

hexhu commented on 2021-06-15 05:50 (UTC)

@m040601 sounds good, will add them shortly

m040601 commented on 2021-05-18 00:42 (UTC) (edited on 2021-05-18 00:48 (UTC) by m040601)

@hexhu: thanks for taking time to had the systemd service

REQUEST: please add the "tools", the "doc" and the README to this PKGBUILD

Currently this PKGBUILD only install this

passivedns-git /usr/bin/passivedns
passivedns-git /usr/lib/systemd/system/passivedns.service

There is no man page and no documentation. Even running "passivedns --help" only gives you a very brief help.

The github repo however contains much more

much more than provided by "passivedns --help"

important info like for example, "how it works" etc. This is not for only developers, it's also important for end users

Contains scripts and instructions for extra functionality for using passivedns to log to a sql database for post processing.

Again this is also for end users.

These all should end up in

/usr/share/doc/passivedns/README
/usr/share/doc/passivedns/tools/
/usr/share/doc/passivedns/doc/

Thanks in advance.

hexhu commented on 2020-09-28 15:17 (UTC) (edited on 2020-09-28 15:49 (UTC) by hexhu)

@m040601 looooool glad to see gamelinux got the recovery codes back

Updated PKGBUILD: https://pastebin.aosc.io/paste/2jP4uyj529O3R1bDD67Ttg

Updated PKGBUILD w/ passivedns.service: https://pastebin.aosc.io/paste/bD1J4Ug90qnjkQX2JnS7Kg

Yeah a systemd unit would be cool. Here is a skeleton:

/etc/systemd/system/passivedns.service

[Unit]
Description=A network sniffer that logs all DNS server replies for use in a passive DNS setup
Documentation=https://github.com/gamelinux/passivedns
# Not sure whether network-online.target should be required
After=network.target

[Service]
Type=simple
## log to syslog
#ExecStart=/usr/bin/passivedns -y
# log to /var/log/passivedns.log
ExecStart=/usr/bin/passivedns

[Install]
WantedBy=default.target

m040601 commented on 2020-09-18 16:14 (UTC) (edited on 2020-09-18 18:14 (UTC) by m040601)

@hexhu: thanks for the tip. I really hate packages using non standard locations.

In the mean while, good news. I went to github to check the status of this project. The absent owner has returned, patched it, and seems eager to continue supporting it.

https://github.com/gamelinux/passivedns/issues/116 https://github.com/gamelinux/passivedns/issues/115

I see, the original submitter, whoisroot, only has this package in AUR. Is there someone here who wants to take over this AUR package and update it, in case whoisroot doesnt show that interest ?

Another idea, would be to add a systemd service for this package.

There are other classical tools, one can use, like tcpdump or ngrep. And of course heavy stuff like wireshark and tshark.

But this is an extremely simple and usefull little tool for collecting just dns requests, when one's main focus is just that. Think of the case, each and every day more relevant, "I want to know who is my computer/browser phoning home"

It can log to either a text file or, very interesting, to journald (syslog), it is very usefull for long time analyses, and post processing. Just by using other tools and machinery already part of your system.

hexhu commented on 2020-09-16 11:50 (UTC) (edited on 2020-10-10 21:54 (UTC) by hexhu)

@m040601 yeah it's non-standard, to fix it replace ./configure with ./configure --prefix=/usr in build(). Here is the PKGBUILD I use: https://pastebin.aosc.io/paste/-hR5aJldBSO3LvKsqqiNpg

$ pacman -Ql passivedns-git

passivedns-git /usr/
passivedns-git /usr/bin/
passivedns-git /usr/bin/passivedns

After installing the new package, all folders under /usr/local are empty except /usr/local/share/ which contains a dead softlink, so I just cleaned it up

m040601 commented on 2020-09-11 05:14 (UTC) (edited on 2020-09-11 05:39 (UTC) by m040601) 

....  a patch is required ...

@hexhu: Good catch. Thanks for the info. Was just about to test this usefull tool

I applied the patch and it compiled. But then I noticed this:

$ pacman -Ql passivedns-git

passivedns-git /usr/
passivedns-git /usr/local/
passivedns-git /usr/local/bin/
passivedns-git /usr/local/bin/passivedns

Any reason for this package being installed in a non standard location ?

hexhu commented on 2020-09-10 10:09 (UTC)

For anyone encountered the error below, a patch is required to build passivedns with gcc10, as in https://github.com/gamelinux/passivedns/issues/115

gcc -o passivedns passivedns.o dns.o -Wl,-O1,--sort-common,--as-needed,-z,relro,-z,now -lpcap -lldns
/usr/bin/ld: dns.o:(.bss+0x7c00): multiple definition of `config'; passivedns.o:(.bss+0x80040): first defined here
collect2: error: ld returned 1 exit status
make[1]: *** [Makefile:600: passivedns] Error 1
make[1]: Leaving directory '/dev/shm/makepkg/passivedns-git/src/passivedns/src'
make: *** [Makefile:345: all-recursive] Error 1
==> ERROR: A failure occurred in build().
    Aborting...
error making: passivedns-git

Full log: https://pastebin.aosc.io/paste/rqeOqNS4ynLkoK855Cpj-A