COMPILING AND INSTALLING AUDIT ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 1. Needed Libraries 2. Quick Install 3. Custom Install 4. Notes 1. NEEDED LIBRARIES ~~~~~~~~~~~~~~~~~~~ To compile and run audit you need the following libraries: o Zlib: Homepage: http://www.gzip.org/zlib/ Windows DLL: http://www.winimage.com/zLibDll/ o OpenSSL's libcrypto (version => 0.9.6): Homepage: http://www.openssl.org MS Dev Studio Workspace: http://www.iconsinc.com/~agray/ossldev/ On *nix systems you also may need: o MySQL development files Homepage: http://www.mysql.com/ o PostgreSQL development files Homepage: http://pgsql.com/ 2. QUICK INSTALL ~~~~~~~~~~~~~~~~ 2.1. OpenBSD: ~~~~~~~~~~~~~ 1. Run 'make' 2. As root run 'make install' 2.2. NetBSD, FreeBSD, Linux: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 1. Run 'configure' 2. Run 'make' 3. As root run 'make install' 2.3. Other Unices: ~~~~~~~~~~~~~~~~~~ Audit may not work on other unices yet. 2.3. Windows NT: ~~~~~~~~~~~~~~~~ Only audit client runs on Windows NT; audit server will do in future releases. To compile audit load your visual studio and open the audit_client workspace, then click on Build->Build. 3. CUSTOMIZING INSTALL ~~~~~~~~~~~~~~~~~~~~~~ Mysql and pgsql modules are optional and you should include them if your syslog daemon is logging into an SQL database (ie. using modular syslog, http://www.corest.com/download/download.html). By default both modules are not compiled, if you want them, the following development libraries are needed: o MySQL include files (commonly at /usr/local/include/mysql/) o MySQL client library (commonly at /usr/local/lib/) o PGSQL include files (commonly at /usr/local/include/postgresql/) o PGSQL pq library (commonly at /usr/local/lib/) 3.1. OpenBSD: ~~~~~~~~~~~~~ Make flags: o WITH_PGSQL: Forces the compilation of pgsql module, you need the PostgreSQL development files. o PGSQL_INCDIR: Specifies the PostgreSQL include path. o PGSQL_LIBDIR: Specifies the PostgreSQL library path. o WITH_MYSQL: Forces the compilation of mysql module, you need the MySQL development files. o MYSQL_INCDIR: Specifes the MySQL include path. o MYSQL_LIBDIR: Specifies the MySQL library path. Example: the following compiles audit including the pgsql module but not mysql: $ make WITH_PGSQL= 3.2. NetBSD, FreeBSD, Linux: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ You can customize the compilation and installation by setting appropiate arguments to the configure script; check the output of ./configure --help: --with-pgsql Forces the compilation of pgsql module, you need the PostgreSQL development files. --with-pgsql-incdir=dir Specifes the PostgreSQL include path. --with-pgsql-libdir=dir Specifies the PostgreSQL library path. --with-mysql Forces the compilation of mysql module, you need the MySQL development files. --with-mysql-incdir=dir Specifies the MySQL include path. --with-mysql-libdir=dir Specifies the MySQL library path. --with-binown=owner Binaries owner; default is 0. --with-bingrp=group Binaries group; default is 0. --with-binmode=mode Binaries mode; default is 555. --with-manown=owner Man pages owner; default is 0. --with-mangrp=group Man pages group; default is 0. --with-manmode=mode Man pages mode; default is 444. --with-dirmode=mode New directories mode; default is 755. --with-audit-libdir=dir Specifies the Audit libraries path; default is /usr/local/lib/alat. 4. NOTES ~~~~~~~~ 4.1. Notes about SRP authentication module: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To be able to use this module, an 'SRPPass' resource should be created 'by hand'. If you are using the 'local' resources module you can edit /var/audit/resources/ file (where is the auditor's name) with something like this: [ SRPPass ] are the password verifier and the random salt. You can generate this resource by compiling and executing the program located at src/modules/auth/srp/srpp.c, to compile it you can execute the command "make -f others.mk srpp" under the src/modules/auth/srp directory; if you are too busy to do that, the following can be cut&pasted instead (remember to change the password the first time you connect): [ SRPPass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ith the above, your srp password is: "change_this_password_now". Note that the SRP module is not based on the RFC2945. $CoreSDI: INSTALL,v 1.20 2001/12/31 16:26:17 claudio Exp $