# Install IPFire related config file.
install -m 0644 $(DIR_SRC)/config/suricata/suricata.yaml /etc/suricata
- # Install yaml file for loading default rules.
- install -m 0664 $(DIR_SRC)/config/suricata/suricata-default-rules.yaml /var/ipfire/suricata
-
- # Set correct ownership for the default rules file.
- chown nobody:nobody /var/ipfire/suricata/suricata-default-rules.yaml
-
# Create emtpy rules directory.
-mkdir -p /var/lib/suricata
+ # Create empty cache directory.
+ -mkdir -p /var/cache/suricata
+
# Move config files for references, threshold and classification
# to the rules directory.
rm -rfv /etc/suricata/*.config
# (File has to be writeable for the nobody user)
chown nobody:nobody /usr/share/suricata/classification.config
+ # Create empty threshold config file.
+ touch /usr/share/suricata/threshold.config
+
+ # Set correct ownership for the threshold.config file.
+ chown nobody:nobody /usr/share/suricata/threshold.config
+
# Set correct ownership for /var/lib/suricata and the
# contained files
chown -R nobody:nobody /var/lib/suricata
+ # Set correct ownership for the cache directory.
+ chown nobody:nobody /var/cache/suricata
+
# Create logging directory.
-mkdir -p /var/log/suricata