Ellipsis: Tag unix http://typo.pburkholder.com/articles/tag/unix?tag=unix en-us 40 ... Forensic Server Project (FSP) on Unix/Macosx <p>I&#8217;ve been working with the security incident response tools on the <a href="http://www.e-fense.com/helix">Helix</a> CD, and been intrigued by <a href="http://windowsir.blogspot.com/">Harvey Carlan&#8217;s</a> <a href="http://sourceforge.net/project/showfiles.php?group_id=164158">Forensic Server Project</a></p> <p>However, the Sourceforge files for the <span class="caps">FSP</span> server don&#8217;t run on MacOSX or other Unix-style machines because it uses the Win32::GetCwd and Win32::SetCwd modules. The simple patch, below, can be saved as, say, &#8220;fspc.patch&#8221; in the same directory as the unzipped <span class="caps">FSP</span> files. To patch, run:</p> <p><code>patch -p0 &lt; fscp.patch</code></p> <p>Here&#8217;s the patch:</p> <code><pre> --- fspc.pl.orig 2007-10-24 15:40:22.000000000 -0400 +++ fspc.pl 2007-10-24 16:18:09.000000000 -0400 @@ -18,6 +18,7 @@ use Digest::MD5; use Digest::SHA1; use Getopt::Long; +use Cwd; #-------------------------------------------------------------------------- # Globals @@ -39,7 +40,7 @@ exit 1; } -$setup{basedir} = Win32::GetCwd(); +$setup{basedir} = getcwd(); $setup{casedir} = $config{casedir} || "cases"; $setup{casename} = $config{casename}; $setup{port} = $config{port} || 7070; @@ -296,14 +297,14 @@ #------------------------------------------ sub _setup { # clean up the directory names - $setup{basedir} = $setup{basedir}."\\" unless ($setup{basedir} =~ m/\\$/); - $setup{casedir} = $setup{casedir}."\\" unless ($setup{casedir} =~ m/\\$/); - $setup{casename} = $setup{casename}."\\" unless ($setup{casename} =~ m/\\$/); + $setup{basedir} = $setup{basedir}."/" unless ($setup{basedir} =~ m/\/$/); + $setup{casedir} = $setup{casedir}."/" unless ($setup{casedir} =~ m/\/$/); + $setup{casename} = $setup{casename}."/" unless ($setup{casename} =~ m/\/$/); my $casedir = $setup{basedir}.$setup{casedir}; mkdir $casedir if (! -e $casedir &#38;&#38; ! -d $casedir); my $curr_case = $casedir.$setup{casename}; - mkdir $curr_case if (! -e $curr_case &#38;&#38; ! -d $curr_case); - Win32::SetCwd($curr_case); + mkdir $curr_case if (! -e $curr_case &#38;&#38; ! -d $curr_case); + chdir($curr_case); print "Setup complete.\n" if ($config{verbose}); } @@ -312,5 +313,5 @@ # clears setup data so it can be renewed #------------------------------------------ sub _reset { - Win32::SetCwd($setup{basedir}); + chdir($setup{basedir}); } </pre></code> Fri, 26 Oct 2007 08:23:00 -0700 urn:uuid:d9c963e0-3cf8-4210-847a-70512c68b980 Peter Burkholder http://typo.pburkholder.com/articles/2007/10/26/forensic-server-project-fsp-on-unix-macosx-actually System Administration Security forensics macosx unix linux FSP