Package: arpwatch / 2.1a15-7

Metadata

Package Version Patches format
arpwatch 2.1a15-7 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
005_awkpath | (download)

massagevendor | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 installed arpwatch's *.awk scripts into /usr/lib/arpwatch
 and edited massagevendor to set AWKPATH before running awk
008_addresses h_arpwatch conf | (download)

addresses.h | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 a file that likely shouldn't be here


009_bihourly_bihourly sh | (download)

bihourly.sh | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 made bihourly.sh an example
05debian_fhs | (download)

Makefile.in | 2 1 + 1 - 0 !
arpsnmp.8 | 6 3 + 3 - 0 !
arpwatch.8 | 6 3 + 3 - 0 !
arpwatch.h | 2 1 + 1 - 0 !
4 files changed, 8 insertions(+), 8 deletions(-)

 fix paths to conform to fhs
06debian_manpages | (download)

arpsnmp.8 | 10 5 + 5 - 0 !
arpwatch.8 | 22 11 + 11 - 0 !
2 files changed, 16 insertions(+), 16 deletions(-)

 fix manpages
07debian_srcdir | (download)

Makefile.in | 2 1 + 1 - 0 !
aclocal.m4 | 2 1 + 1 - 0 !
configure.in | 18 9 + 9 - 0 !
3 files changed, 11 insertions(+), 11 deletions(-)

 fix debian srcdir
10getopt_patchable | (download)

arpsnmp.8 | 17 16 + 1 - 0 !
arpsnmp.c | 13 11 + 2 - 0 !
arpwatch.8 | 41 38 + 3 - 0 !
arpwatch.c | 46 42 + 4 - 0 !
util.c | 2 2 + 0 - 0 !
util.h | 2 2 + 0 - 0 !
6 files changed, 111 insertions(+), 10 deletions(-)

 prepare for the simple addition of options through patches
11opt_sendmail_path | (download)

arpsnmp.8 | 17 17 + 0 - 0 !
arpsnmp.c | 7 7 + 0 - 0 !
arpwatch.8 | 17 17 + 0 - 0 !
arpwatch.c | 12 12 + 0 - 0 !
report.c | 3 2 + 1 - 0 !
5 files changed, 55 insertions(+), 1 deletion(-)

 option -s to specify the path to sendmail
12opt_nopromisc | (download)

arpwatch.8 | 18 18 + 0 - 0 !
arpwatch.c | 13 12 + 1 - 0 !
util.c | 3 3 + 0 - 0 !
util.h | 3 3 + 0 - 0 !
4 files changed, 36 insertions(+), 1 deletion(-)

 option -p to disable promiscuous operation
13opt_allsubnets | (download)

arpsnmp.c | 12 7 + 5 - 0 !
arpwatch.8 | 21 21 + 0 - 0 !
arpwatch.c | 46 31 + 15 - 0 !
db.c | 33 21 + 12 - 0 !
db.h | 4 2 + 2 - 0 !
file.c | 11 10 + 1 - 0 !
file.h | 2 1 + 1 - 0 !
report.c | 14 9 + 5 - 0 !
report.h | 2 1 + 1 - 0 !
util.c | 21 11 + 10 - 0 !
util.h | 7 5 + 2 - 0 !
11 files changed, 119 insertions(+), 54 deletions(-)

 add option -a to allow monitoring bogons
14opt_mailto | (download)

arpsnmp.8 | 17 17 + 0 - 0 !
arpsnmp.c | 6 6 + 0 - 0 !
arpwatch.8 | 19 19 + 0 - 0 !
arpwatch.c | 11 11 + 0 - 0 !
report.c | 2 1 + 1 - 0 !
util.c | 4 4 + 0 - 0 !
util.h | 3 3 + 0 - 0 !
7 files changed, 61 insertions(+), 1 deletion(-)

 optoin -m to specify the e-mail address for reports
15opt_username | (download)

arpwatch.8 | 22 22 + 0 - 0 !
arpwatch.c | 47 44 + 3 - 0 !
2 files changed, 66 insertions(+), 3 deletions(-)

 options -u and -r
 -u to drop root privileges and change the UID to username
 -R to restart in s seconds after the interface went down
16opt_quiet | (download)

arpwatch.8 | 13 13 + 0 - 0 !
arpwatch.c | 12 12 + 0 - 0 !
report.c | 4 4 + 0 - 0 !
util.c | 3 3 + 0 - 0 !
util.h | 3 3 + 0 - 0 !
5 files changed, 35 insertions(+)

 option -q prevents arpwatch from sending reports by mail
17opt_ignorenet | (download)

arpwatch.8 | 18 18 + 0 - 0 !
arpwatch.c | 47 47 + 0 - 0 !
2 files changed, 65 insertions(+)

 add option -z ignorenet/ignoremask
 Used to set a range of ip addresses to ignore (such as a DHCP range).
 Netmask is specified as 255.255.128.0.
21arp2ethers | (download)

arp2ethers | 80 76 + 4 - 0 !
1 file changed, 76 insertions(+), 4 deletions(-)

 debian changes to arp2ethers
 - Use sh(1) instead of csh(1)
 - Use next instead of continue in included p.awk
 - Use a default file or the one provided in the command line
22secure_tempfile | (download)

mkdep | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 use secure tempfiles
 two cases of insecure tempfile usage no longer apply, as arpfetch
 was changed between 2.1a13 and 2.1a15
24from_field | (download)

Makefile.in | 4 2 + 2 - 0 !
localhost.c | 70 70 + 0 - 0 !
localhost.h | 1 1 + 0 - 0 !
report.c | 3 2 + 1 - 0 !
4 files changed, 75 insertions(+), 3 deletions(-)

 include host name in from: field


25ignore_zero_ip | (download)

db.c | 5 5 + 0 - 0 !
1 file changed, 5 insertions(+)

 ignore 0.0.0.0
26unconf_iface | (download)

arpwatch.c | 16 13 + 3 - 0 !
1 file changed, 13 insertions(+), 3 deletions(-)

 assume unconfigured interface rather than exit
33_bug315215_zero pad MAC | (download)

ec.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 ethernet address format fix
 Enclosed is a patch to make the format of the ethernet MAC addresses
 that arpwatch prints match the format used by other tools (like ifconfig
 and dhcpd).  This makes it easier to, for example, copy the mac address
 from the arpwatch email and paste it into a grep.
35_bug289426_arpwatch interface | (download)

file.c | 19 11 + 8 - 0 !
1 file changed, 11 insertions(+), 8 deletions(-)

 #289426 interface not read from arp.dat
 In the file_loop function, the interface variable is not initialized when it is
 passed to fn (which is ent_add). Actually, the interface is not even read.
37_bug288994_arpwatch subject | (download)

report.c | 9 3 + 6 - 0 !
1 file changed, 3 insertions(+), 6 deletions(-)

 #288994 display ip in subject if hostname unknown
 This is a very simple patch to display the IP address in the subject in
 case no hostname is known. A subject line such as "new station eth0" is not
 only very uninformative, but also quite confusing at the beginning.
39_bug674715 initgroups ldflags | (download)

Makefile.in | 7 4 + 3 - 0 !
arpwatch.c | 2 1 + 1 - 0 !
2 files changed, 5 insertions(+), 4 deletions(-)

 changes from 2.1a15-1.2 nmu
  * Fix initgroups() adding the gid 0 group to the list. Instead of dropping
    privileges it was in fact adding it. This is CVE-2012-2653. closes: #674715
  * Makefile.in: add LDFLAGS support.
41_bug705894 long hostnames | (download)

db.c | 9 6 + 3 - 0 !
1 file changed, 6 insertions(+), 3 deletions(-)

 fix buffer overflow with long hostnames
    (the rest of the patch is in debian/patches/13opt_allsubnets)
42_pass CPPFLAGS | (download)

Makefile.in | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 pass $cppflags to c compiler, too.
 Fixes lintian warning hardening-no-fortify-functions.
43_fix sort plus column usage in arp2ethers | (download)

arp2ethers | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix no more working "sort +<n>" syntax in arp2ethers
 (Yes, the "2" needs to be replaced with at "3". See
 https://en.wikipedia.org/wiki/Sort_(Unix)#Columns_or_fields)
44_netinet if_ether.h is part of libc6 dev.patch | (download)

configure.in | 4 0 + 4 - 0 !
linux-include/netinet/if_ether.h | 88 0 + 88 - 0 !
2 files changed, 92 deletions(-)

 netinet/if_ether.h is part of libc6-dev

the header files which are part of libc6-dev apply the __packed__
attribute to struct ether_header correctly; no dependency required as
libc6-dev is part of build-essential

Closes: #155182

45_ignore 802.1q vlan frames.patch | (download)

arpwatch.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 ignore 802.1q (vlan) frames

these frames are not parsed correctly by arpwatch as it does not account
for the 2 octets offset; therefore we ignore them completely, they can
still be watched by adding a vlan interface and running arpwatch there
as well

Closes: #625796

47_fix configure.in aclocal.m4 errors for autoreconf.patch | (download)

aclocal.m4 | 6 3 + 3 - 0 !
configure.in | 2 0 + 2 - 0 !
2 files changed, 3 insertions(+), 5 deletions(-)

 fix configure.in/aclocal.m4 errors for autoreconf

- enclose AC_CACHE_VAL parameters in square brackets
- AC_LBL_CHECK_TYPE without parameters is meaningless, removed

48_massagevendor needs GNU awk minor fixes.patch | (download)

massagevendor | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 massagevendor needs gnu awk, minor fixes

* massagevendor does not work with mawk, make sure we use gawk by
  explicitly calling it
49_Makefile.in create sbin dir.patch | (download)

Makefile.in | 3 1 + 2 - 0 !
1 file changed, 1 insertion(+), 2 deletions(-)

 makefile.in: create sbin dir

patch Makefile.in to create the sbin dir if it does not already exist

50_change N to only stop reporting bogons.patch | (download)

arpwatch.c | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 change -n to only stop reporting bogons

the -N option does not disable bogon reporting, as advertised by the man
page, but completely disables bogon detection instead. That means
packages detected as bogons previously are processed just as packets
part of the local subnet if the -N option is in use.

Thanks: Gokdeniz Karadag
Closes: #480835

51_exit with status 0 when stopping with SIGTERM.patch | (download)

arpwatch.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 exit with status 0 when stopping with sigterm
 With this patch systemd can distinguish an unclean shutdown from a clean one.
 This is useful for implementing an automatic restart in case arpwatch crashes.

52_allow specifying a custom pcap filter.patch | (download)

arpwatch.8 | 18 18 + 0 - 0 !
arpwatch.c | 48 47 + 1 - 0 !
2 files changed, 65 insertions(+), 1 deletion(-)

 allow specifying a custom pcap filter
Bug-Debian: https://bugs.debian.org/600886

Giving the user an option to specify a custom pcap filter is both very
versatile (can be used to satisfy the request from multiple wishlist bugs) and
little intrusive (the code is only run during startup) addition.

Slightly adjusted by Lukas Schwaighofer <lukas@schwaighofer.name> from the
patch submitted by Stefan Voelkel <bd@bc-bd.org> to the Debian BTS.

53_stop using _getshort.patch | (download)

dns.c | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 replace private function _getshort with ns_get16
 _getshort is a private function, triggers a build log warning because it's
 not present in any header file.  We switch to the functionally equivalent
 ns_get16.