meta-security-1.0-final

Signed-off-by: Andrei Dinu <andrei.adrianx.dinu@intel.com>

9 files changed, 261 insertions, 297 deletions

diff --git a/README b/README
index 4e42bc5..c37b2fc 100644
--- a/README
+++ b/README
@@ -36,9 +36,9 @@ In this section the contents of the layer is listed, along with a short
 help for each package.
 
          == bastille ==
-        
+
         Bastille  is  a  system hardening / lockdown program which enhances the
-        security of a Unix host.  It configures daemons, system settings and 
+        security of a Unix host.  It configures daemons, system settings and
         firewalls to be more secure.  It can shut off unneeded services
         like rcp and rlogin, and helps create "chroot jails" that help limit the
         vulnerability of common Internet services like Web services and DNS.
@@ -53,79 +53,81 @@ help for each package.
                 a config file will be created and run. After these steps, you will have a
                 hardened system.
 
-                If you only want to run the config file, without stepping through the 
+                If you only want to run the config file, without stepping through the
                 list of questions, simply write in a terminal :
-        
+
                 bastille -b
 
         More information can be found in the package readme and manual.
 
-        
+
         == redhat-security ==
 
-        Sometimes you want to check different aspects of a distribution for security problems. 
-        This can be anything from file permissions to correctness of code. This is a collection of those tools. 
+        Sometimes you want to check different aspects of a distribution for security problems.
+        This can be anything from file permissions to correctness of code. This is a collection of those tools.
         Depending on what information the tool has to access, it may need to be run as root.
 
         - rpm-chksec.sh : This will take an rpm name as input and verify each ELF file to see if its compiled with the intended flags
-                          to most effectively use PIE and RELRO. Green is good, Orange could use work but is acceptable, and Red needs fixing. 
-                          It has a mode --all that is the equivalent of using rpm -qa and feeding the packages to it. 
-                          In this mode it will only give a summary result for the package. To find which files don't comply, 
-                          re-run using just the package name. 
+                          to most effectively use PIE and RELRO. Green is good, Orange could use work but is acceptable, and Red needs fixing.
+                          It has a mode --all that is the equivalent of using rpm -qa and feeding the packages to it.
+                          In this mode it will only give a summary result for the package. To find which files don't comply,
+                          re-run using just the package name.
 
-        - find-nodrop-groups.sh : This will scan a whole file system to see if a program makes calls to change UID 
-                                  and GID without also calling setgroups or initgroups. 
+        - find-nodrop-groups.sh : This will scan a whole file system to see if a program makes calls to change UID
+                                  and GID without also calling setgroups or initgroups.
 
-        - rpm-drop-groups.sh : Same as above, but takes an rpm name instead. 
+        - rpm-drop-groups.sh : Same as above, but takes an rpm name instead.
 
-        - find-chroot.sh : This script scans the whole file system looking for ELF files that calls chroot(2) that also do not include a call to chdir. 
-                           Programs that fail to do this do not have the cwd inside the chroot. This means the app can escape the protection that was intended. 
+        - find-chroot.sh : This script scans the whole file system looking for ELF files that calls chroot(2) that also do not include a call to chdir.
+                           Programs that fail to do this do not have the cwd inside the chroot. This means the app can escape the protection that was intended.
 
-        - find-chroot-py.sh : This test is like the one above except it examines python scripts for the same problem. 
+        - find-chroot-py.sh : This test is like the one above except it examines python scripts for the same problem.
 
-        - find-execstack.sh : This program scans the whole file system for ELF programs that have marked the stack as being executable. 
-                              This means that if the program has another vulnerablity such as stack buffer overflow, 
-                              any code the attacker places there is executable. Any program found must be fixed. 
+        - find-execstack.sh : This program scans the whole file system for ELF programs that have marked the stack as being executable.
+                              This means that if the program has another vulnerablity such as stack buffer overflow,
+                              any code the attacker places there is executable. Any program found must be fixed.
 
-        - find-hidden-exec.sh : This program scans the whole file system looking for excutables that are hidden. 
-                                Anything found must be investigated since its highly unusual for executables to be hidden. 
+        - find-hidden-exec.sh : This program scans the whole file system looking for excutables that are hidden.
+                                Anything found must be investigated since its highly unusual for executables to be hidden.
 
-        - find-sh4errors.sh : This program scans the whole file system looking for shell scripts. 
-                              It then does a sh -n on the script which causes bash to parse the file to see if there are any mistakes. 
+        - find-sh4errors.sh : This program scans the whole file system looking for shell scripts.
+                              It then does a sh -n on the script which causes bash to parse the file to see if there are any mistakes.
 
-        - selinux-check-devices.sh : This script checks the /dev directory to see if there are any devices that are not correctly labeled. 
-                                     Anything found by this test should be reported so that selinux policy can be fixed. 
-                                     This test is very hardware specific, so to be effective a lot of people with different hardware 
-                                     should run this test each upstream kernel version release. 
+        - selinux-check-devices.sh : This script checks the /dev directory to see if there are any devices that are not correctly labeled.
+                                     Anything found by this test should be reported so that selinux policy can be fixed.
+                                     This test is very hardware specific, so to be effective a lot of people with different hardware
+                                     should run this test each upstream kernel version release.
 
-        - selinux-ls-unconfined.sh :  This script scans the running processes and looks for anything labeled with initrc_t or inetd. 
-                                      These both mean that there are daemons that do not have policy and are therefore running unconfined. 
-                                      These should be reported as SE Linux policy problems. Because it checks currently running daemons, 
-                                      the more you have running, the better the test is. 
+        - selinux-ls-unconfined.sh :  This script scans the running processes and looks for anything labeled with initrc_t or inetd.
+                                      These both mean that there are daemons that do not have policy and are therefore running unconfined.
+                                      These should be reported as SE Linux policy problems. Because it checks currently running daemons,
+                                      the more you have running, the better the test is.
 
-        - find-sh4tmp.sh : This script scans the whole filesystem to check if shell scripts are using well known tmp file names 
+        - find-sh4tmp.sh : This script scans the whole filesystem to check if shell scripts are using well known tmp file names
                            instead of obscure ones created by something like mktemp.
 
-        - find-elf4tmp.sh : This script scans the whole file system for ELF files using /tmp. When it finds this,       
-                            it also looks to see if any of the known good random name generator functions is called by looking 
+        - find-elf4tmp.sh : This script scans the whole file system for ELF files using /tmp. When it finds this,
+                            it also looks to see if any of the known good random name generator functions is called by looking
                             at the symbol table. If not, it will output the string.
 
-        - lib-bin-check.sh : This will check all installed library packages to see if an application is also part of the package. 
-                             The relationship to security is that the SHA256 hash check will fail if a 32 bit version overwrites it. 
-                             Also, the less binaries on a system, the more secure it is by virtue of removing the chance for an exploitable bug. 
+        - lib-bin-check.sh : This will check all installed library packages to see if an application is also part of the package.
+                             The relationship to security is that the SHA256 hash check will fail if a 32 bit version overwrites it.
+                             Also, the less binaries on a system, the more secure it is by virtue of removing the chance for an exploitable bug.
+
 
-        
                 usage : simply invoke the script name in the terminal.
 
-        
+
         == pax-utils ==
 
+                ( This package can be found in oe-core )
+
         pax-utils is a small set of various PaX aware and related utilities for
-        ELF binaries. 
+        ELF binaries.
 
-        - scanelf : With this application you can print out information specific to the ELF structure of a binary. 
+        - scanelf : With this application you can print out information specific to the ELF structure of a binary.
                     For more help please consult the man pages or the readme file.
-        
+
         - pspax : is a user-space utility that scans the proc directory and list
                   ELF types, as well as their respective PaX flags and filenames and
                   attributes. Depending on build options, it may additionaly display the
@@ -142,7 +144,7 @@ help for each package.
 
                 usage : simply invoke the script name in the terminal.
 
-        
+
         == buck-security ==
 
         Buck-Security is a security scanner for Debian and Ubuntu Linux. It runs a couple of important checks and helps you to harden your Linux
@@ -150,7 +152,7 @@ help for each package.
 
                 usage : switch to directory /usr/local/buck-security.
                         before running the script, you should check the activated checks in conf/buck-security.conf file.
-                        after altering the changes, save the file and simply run : 
+                        after altering the changes, save the file and simply run :
 
                         ./buck-security
 
@@ -158,44 +160,44 @@ help for each package.
 
                         More detailed usage can be found typing ./buck-security --help
 
-        
+
         == libseccomp ==
 
-        The libseccomp library provides and easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism: seccomp.  
-        The libseccomp API is designed to abstract away the underlying BPF based syscall filter language and present a more conventional 
+        The libseccomp library provides and easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism: seccomp.
+        The libseccomp API is designed to abstract away the underlying BPF based syscall filter language and present a more conventional
         function-call based filtering interface that should be familiar to, and easily adopted by application developers.
 
                 usage : More detailed usage can be found in the man pages and README file of the package.
 
 
-        
+
         == checksecurity ==
-                        
+
         checksecurity is a simple package which will scan your system for several simple security holes.
         It uses a simple collection of plugins, all of which are shell scripts which are configured by environmental variables.
 
-        !! IMPORTANT !! 
+        !! IMPORTANT !!
 
         When including this package in the image, please consider adding the following line to the end of the conf/local.conf file:
 
-        CORE_IMAGE_EXTRA_INSTALL = "coreutils" 
+        CORE_IMAGE_EXTRA_INSTALL = "coreutils"
 
                 usage : To start checksecurity simply write in the terminal :
-                        
+
                         checksecurity
 
-        More detailed usage can be found in the man pages and README file of the package.    
+        More detailed usage can be found in the man pages and README file of the package.
 
 
         == nikto ==
 
-        Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, 
-        including over 6500 potentially dangerous files/CGIs, checks for outdated versions of over 1250 servers, and version specific 
-        problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, 
+        Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items,
+        including over 6500 potentially dangerous files/CGIs, checks for outdated versions of over 1250 servers, and version specific
+        problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files,
         HTTP server options, and will attempt to identify installed web servers and software.
 
                 usage : To start nikto simply write in the terminal :
-        
+
                         nikto
 
         More detailed usage can be found in the man pages and README file of the package.
@@ -203,18 +205,15 @@ help for each package.
 
         == nmap ==
 
-        Nmap ("Network Mapper") is a free and open source (license) utility for network discovery and security auditing. 
-        Many systems and network administrators also find it useful for tasks such as network inventory, 
-        managing service upgrade schedules, and monitoring host or service uptime. 
+        Nmap ("Network Mapper") is a free and open source (license) utility for network discovery and security auditing.
+        Many systems and network administrators also find it useful for tasks such as network inventory,
+        managing service upgrade schedules, and monitoring host or service uptime.
 
                 usage : To start nikto simply write in the terminal :
-        
+
                         nmap
-       
+
         More detailed usage can be found in the man pages and README file of the package.
-        
-        
-                        
 
 License
 =======
diff --git a/recipes-security/bastille/bastille_3.2.1.bb b/recipes-security/bastille/bastille_3.2.1.bb
index 36c30e5..ae7fe15 100644
--- a/recipes-security/bastille/bastille_3.2.1.bb
+++ b/recipes-security/bastille/bastille_3.2.1.bb
@@ -18,29 +18,14 @@ SRC_URI = "http://sourceforge.net/projects/bastille-linux/files/bastille-linux/3
            file://fix_version_parse.patch \
            file://yocto-standard-patch.patch \
            file://Curses-and-IOLoader-changes.patch \
-          "
+           "
 
 SRC_URI[md5sum] = "df803f7e38085aa5da79f85d0539f91b"
 SRC_URI[sha256sum] = "0ea25191b1dc1c8f91e1b6f8cb5436a3aa1e57418809ef902293448efed5021a"
 
 S = "${WORKDIR}/Bastille"
 
-#CONFFILES_${PN} += "${sysconfdir}/init.d/skeleton"
-#
-#do_compile () {
-#       ${CC} ${WORKDIR}/skeleton_test.c -o ${WORKDIR}/skeleton-test
-#}
-#
 do_install () {
-#       install -d ${D}${sysconfdir}/init.d
-#       cat ${WORKDIR}/skeleton | \
-#         sed -e 's,/etc,${sysconfdir},g' \
-#             -e 's,/usr/sbin,${sbindir},g' \
-#             -e 's,/var,${localstatedir},g' \
-#             -e 's,/usr/bin,${bindir},g' \
-#             -e 's,/usr,${prefix},g' > ${D}${sysconfdir}/init.d/skeleton
-#       chmod a+x ${D}${sysconfdir}/init.d/skeleton
-
         install -d ${D}${sbindir}
         install -d ${D}${libdir}/perl/site_perl/Curses
         ln -sf perl ${D}/${libdir}/perl5
@@ -55,106 +40,100 @@ do_install () {
         install -d ${D}${localstatedir}/lock/subsys/bastille
         install -d ${D}${localstatedir}/log/Bastille
         install -d ${D}${sysconfdir}/Bastille
-         
-        install -m 0755 AutomatedBastille                       ${D}${sbindir}
-        install -m 0755 BastilleBackEnd                         ${D}${sbindir}
-        install -m 0755 InteractiveBastille                     ${D}${sbindir}
-        # Questions.txt has been replaced by Modules.txt and Questions/
-        #install -m 0644 Questions.txt                          ${D}${datadir}/Bastille
-        install -m 0644 Modules.txt                             ${D}${datadir}/Bastille
+        install -m 0755 AutomatedBastillei    ${D}${sbindir}
+        install -m 0755 BastilleBackEnd    ${D}${sbindir}
+        install -m 0755 InteractiveBastille    ${D}${sbindir}
+        install -m 0644 Modules.txt    ${D}${datadir}/Bastille
         # New Weights file(s).
-        install -m 0644 Weights.txt                             ${D}${datadir}/Bastille
+        install -m 0644 Weights.txt    ${D}${datadir}/Bastille
         # Castle graphic
-        install -m 0644 bastille.jpg                            ${D}${datadir}/Bastille/
+        install -m 0644 bastille.jpg    ${D}${datadir}/Bastille/
         # Javascript file
-        install -m 0644 wz_tooltip.js                           ${D}${datadir}/Bastille/
-        install -m 0644 Credits                                 ${D}${datadir}/Bastille
-        install -m 0644 FKL/configs/fkl_config_redhat.cfg       ${D}${datadir}/Bastille/FKL/configs/
+        install -m 0644 wz_tooltip.js    ${D}${datadir}/Bastille/
+        install -m 0644 Credits    ${D}${datadir}/Bastille
+        install -m 0644 FKL/configs/fkl_config_redhat.cfg    ${D}${datadir}/Bastille/FKL/configs/
+        install -m 0755 RevertBastille    ${D}${sbindir}
+        install -m 0755 bin/bastille    ${D}${sbindir}
+        install -m 0644 bastille-firewall    ${D}${datadir}/Bastille
+        install -m 0644 bastille-firewall-reset    ${D}${datadir}/Bastille
+        install -m 0644 bastille-firewall-schedule    ${D}${datadir}/Bastille
+        install -m 0644 bastille-tmpdir-defense.sh    ${D}${datadir}/Bastille
+        install -m 0644 bastille-tmpdir.csh    ${D}${datadir}/Bastille
+        install -m 0644 bastille-tmpdir.sh    ${D}${datadir}/Bastille
+        install -m 0644 bastille-firewall.cfg    ${D}${datadir}/Bastille
+        install -m 0644 bastille-ipchains    ${D}${datadir}/Bastille
+        install -m 0644 bastille-netfilter    ${D}${datadir}/Bastille
+        install -m 0644 bastille-firewall-early.sh    ${D}${datadir}/Bastille
+        install -m 0644 bastille-firewall-pre-audit.sh    ${D}${datadir}/Bastille
+        install -m 0644 complete.xbm    ${D}${datadir}/Bastille
+        install -m 0644 incomplete.xbm    ${D}${datadir}/Bastille
+        install -m 0644 disabled.xpm    ${D}${datadir}/Bastille
+        install -m 0644 ifup-local    ${D}${datadir}/Bastille
+        install -m 0644 hosts.allow    ${D}${datadir}/Bastille
+
+        install -m 0644 Bastille/AccountSecurity.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/Apache.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/API.pm    ${D}${libdir}/Bastille
+        install -m 0644 ${WORKDIR}/AccountPermission.pm    ${D}${libdir}/Bastille/API
+        install -m 0644 ${WORKDIR}/FileContent.pm    ${D}${libdir}/Bastille/API
+        install -m 0644 ${WORKDIR}/HPSpecific.pm    ${D}${libdir}/Bastille/API
+        install -m 0644 ${WORKDIR}/ServiceAdmin.pm    ${D}${libdir}/Bastille/API
+        install -m 0644 ${WORKDIR}/Miscellaneous.pm    ${D}${libdir}/Bastille/API
+        install -m 0644 Bastille/BootSecurity.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/ConfigureMiscPAM.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/DisableUserTools.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/DNS.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/FilePermissions.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/FTP.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/Firewall.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/OSX_API.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/LogAPI.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/HP_UX.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/IOLoader.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/Patches.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/Logging.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/MiscellaneousDaemons.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/PatchDownload.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/Printing.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/PSAD.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/RemoteAccess.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/SecureInetd.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/Sendmail.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/TestDriver.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/TMPDIR.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_AccountSecurity.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_Apache.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_DNS.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_FTP.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_HP_UX.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_MiscellaneousDaemons.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_Patches.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_SecureInetd.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_Sendmail.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_BootSecurity.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_DisableUserTools.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_FilePermissions.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_Logging.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/test_Printing.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille/IPFilter.pm    ${D}${libdir}/Bastille
+        install -m 0644 Bastille_Curses.pm    ${D}${libdir}/perl5/site_perl
+        install -m 0644 Bastille_Tk.pm    ${D}${libdir}/perl5/site_perl
+        install -m 0644 Curses/Widgets.pm    ${D}${libdir}/perl5/site_perl/Curses
 
-        install -m 0755 RevertBastille                          ${D}${sbindir}
-        install -m 0755 bin/bastille                            ${D}${sbindir}
-        install -m 0644 bastille-firewall                       ${D}${datadir}/Bastille
-        install -m 0644 bastille-firewall-reset                 ${D}${datadir}/Bastille
-        install -m 0644 bastille-firewall-schedule              ${D}${datadir}/Bastille
-        install -m 0644 bastille-tmpdir-defense.sh              ${D}${datadir}/Bastille
-        install -m 0644 bastille-tmpdir.csh                     ${D}${datadir}/Bastille
-        install -m 0644 bastille-tmpdir.sh                      ${D}${datadir}/Bastille
-        install -m 0644 bastille-firewall.cfg                   ${D}${datadir}/Bastille
-        install -m 0644 bastille-ipchains                       ${D}${datadir}/Bastille
-        install -m 0644 bastille-netfilter                      ${D}${datadir}/Bastille
-        install -m 0644 bastille-firewall-early.sh              ${D}${datadir}/Bastille
-        install -m 0644 bastille-firewall-pre-audit.sh          ${D}${datadir}/Bastille
-        install -m 0644 complete.xbm                            ${D}${datadir}/Bastille
-        install -m 0644 incomplete.xbm                          ${D}${datadir}/Bastille
-        install -m 0644 disabled.xpm                            ${D}${datadir}/Bastille
-        install -m 0644 ifup-local                              ${D}${datadir}/Bastille
-        install -m 0644 hosts.allow                             ${D}${datadir}/Bastille
+        install -m 0644 OSMap/LINUX.bastille    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/LINUX.system    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/LINUX.service    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/HP-UX.bastille    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/HP-UX.system    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/HP-UX.service    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/OSX.bastille    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 OSMap/OSX.system    ${D}${datadir}/Bastille/OSMap
+        install -m 0644 ${WORKDIR}/config ${D}${sysconfdir}/Bastille/config
 
-        install -m 0644 Bastille/AccountSecurity.pm             ${D}${libdir}/Bastille
-        install -m 0644 Bastille/Apache.pm                      ${D}${libdir}/Bastille
-        install -m 0644 Bastille/API.pm                         ${D}${libdir}/Bastille
-        install -m 0644 ${WORKDIR}/AccountPermission.pm ${D}${libdir}/Bastille/API
-        install -m 0644 ${WORKDIR}/FileContent.pm               ${D}${libdir}/Bastille/API
-        install -m 0644 ${WORKDIR}/HPSpecific.pm                ${D}${libdir}/Bastille/API
-        install -m 0644 ${WORKDIR}/ServiceAdmin.pm              ${D}${libdir}/Bastille/API
-        install -m 0644 ${WORKDIR}/Miscellaneous.pm             ${D}${libdir}/Bastille/API
-        install -m 0644 Bastille/BootSecurity.pm                ${D}${libdir}/Bastille
-        install -m 0644 Bastille/ConfigureMiscPAM.pm            ${D}${libdir}/Bastille
-        install -m 0644 Bastille/DisableUserTools.pm            ${D}${libdir}/Bastille
-    install -m 0644 Bastille/DNS.pm                             ${D}${libdir}/Bastille
-        install -m 0644 Bastille/FilePermissions.pm             ${D}${libdir}/Bastille
-        install -m 0644 Bastille/FTP.pm                         ${D}${libdir}/Bastille
-        install -m 0644 Bastille/Firewall.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille/OSX_API.pm                     ${D}${libdir}/Bastille
-        install -m 0644 Bastille/LogAPI.pm                      ${D}${libdir}/Bastille
-        install -m 0644 Bastille/HP_UX.pm                       ${D}${libdir}/Bastille
-        install -m 0644 Bastille/IOLoader.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille/Patches.pm                     ${D}${libdir}/Bastille
-        install -m 0644 Bastille/Logging.pm                     ${D}${libdir}/Bastille
-        install -m 0644 Bastille/MiscellaneousDaemons.pm        ${D}${libdir}/Bastille
-        install -m 0644 Bastille/PatchDownload.pm               ${D}${libdir}/Bastille
-        install -m 0644 Bastille/Printing.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille/PSAD.pm                        ${D}${libdir}/Bastille
-        install -m 0644 Bastille/RemoteAccess.pm                ${D}${libdir}/Bastille
-        install -m 0644 Bastille/SecureInetd.pm                 ${D}${libdir}/Bastille
-        install -m 0644 Bastille/Sendmail.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille/TestDriver.pm                  ${D}${libdir}/Bastille
-        install -m 0644 Bastille/TMPDIR.pm                      ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_AccountSecurity.pm        ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_Apache.pm                 ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_DNS.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_FTP.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_HP_UX.pm                  ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_MiscellaneousDaemons.pm   ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_Patches.pm                ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_SecureInetd.pm            ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_Sendmail.pm               ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_BootSecurity.pm           ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_DisableUserTools.pm       ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_FilePermissions.pm        ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_Logging.pm                ${D}${libdir}/Bastille
-        install -m 0644 Bastille/test_Printing.pm               ${D}${libdir}/Bastille
-        install -m 0644 Bastille/IPFilter.pm                    ${D}${libdir}/Bastille
-        install -m 0644 Bastille_Curses.pm      ${D}${libdir}/perl5/site_perl
-        install -m 0644 Bastille_Tk.pm          ${D}${libdir}/perl5/site_perl
-        install -m 0644 Curses/Widgets.pm       ${D}${libdir}/perl5/site_perl/Curses
-        
-        
-        
-        install -m 0644 OSMap/LINUX.bastille    ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/LINUX.system      ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/LINUX.service     ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/HP-UX.bastille    ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/HP-UX.system      ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/HP-UX.service     ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/OSX.bastille      ${D}${datadir}/Bastille/OSMap
-        install -m 0644 OSMap/OSX.system        ${D}${datadir}/Bastille/OSMap
-    install -m 0644 ${WORKDIR}/config ${D}${sysconfdir}/Bastille/config 
-        
         for file in `cat Modules.txt` ; do
-           install -m 0644 Questions/$file.txt ${D}${datadir}/Bastille/Questions
+                install -m 0644 Questions/$file.txt ${D}${datadir}/Bastille/Questions
         done
-        
+
         ln -s ${D}${sbindir}/RevertBastille ${D}${sbindir}/UndoBastille
 }
 
diff --git a/recipes-security/buck-security/buck-security_0.6.bb b/recipes-security/buck-security/buck-security_0.6.bb
index 23bf1b1..9d4f884 100644
--- a/recipes-security/buck-security/buck-security_0.6.bb
+++ b/recipes-security/buck-security/buck-security_0.6.bb
@@ -22,8 +22,14 @@ do_compile() {
 }
 
 do_install() {
-    install -d ${D}${exec_prefix}/local/${PN}
-    cp -r ${S}/* ${D}${exec_prefix}/local/${PN}
+    install -d ${D}${bindir}/buck
+    cp -r ${S}/* ${D}${bindir}/buck
+    cp -r ${S}/buck-security ${D}${bindir}
+    sed -i 's:use lib "checks":use lib "${bindir}/buck/checks":g' ${D}${bindir}/buck-security
+    sed -i 's:use lib "checks/lib":use lib "${bindir}/buck/checks/lib":g' ${D}${bindir}/buck-security
+    sed -i 's:use lib "lib":use lib "${bindir}/buck/lib":g' ${D}${bindir}/buck-security
+    sed -i 's:conf/buck-security.conf:${bindir}/buck/conf/buck-security.conf:g' ${D}${bindir}/buck-security
+
 }
 
-FILES_${PN} = "${exec_prefix}/*"
+FILES_${PN} = "${bindir}/*"
diff --git a/recipes-security/checksecurity/checksecurity_2.0.14.bb b/recipes-security/checksecurity/checksecurity_2.0.14.bb
index 72d6c64..fc7aedb 100644
--- a/recipes-security/checksecurity/checksecurity_2.0.14.bb
+++ b/recipes-security/checksecurity/checksecurity_2.0.14.bb
@@ -11,7 +11,7 @@ SRC_URI = "http://ftp.de.debian.org/debian/pool/main/c/checksecurity/checksecuri
 SRC_URI[md5sum] = "ad6cfe0cd66ebdd16dd5d4ee5fa8fa17"
 SRC_URI[sha256sum] = "a2bc2355358d6daf3cb72485d564e82cb541e8516f23b50522c816853ecd13c2"
 
-do_compile() {    
+do_compile() {
 }
 
 do_install() {
diff --git a/recipes-security/nikto/nikto_2.1.5.bb b/recipes-security/nikto/nikto_2.1.5.bb
index 3ca31ca..4609717 100644
--- a/recipes-security/nikto/nikto_2.1.5.bb
+++ b/recipes-security/nikto/nikto_2.1.5.bb
@@ -13,89 +13,89 @@ SRC_URI[md5sum] = "efcc98a918becb77471ee9a5df0a7b1e"
 SRC_URI[sha256sum] = "0e672a6a46bf2abde419a0e8ea846696d7f32e99ad18a6b405736ee6af07509f"
 
 do_install() {
-             install    -d  ${D}${bindir}
-         install    -d  ${D}${datadir}
-         install    -d  ${D}${datadir}/man/man1
-         install    -d  ${D}${datadir}/doc/nikto
-         install    -d  ${D}${sysconfdir}/nikto
-         install    -d  ${D}${sysconfdir}/nikto/databases
-         install    -d  ${D}${sysconfdir}/nikto/plugins
-         install    -d  ${D}${sysconfdir}/nikto/templates
+        install -d ${D}${bindir}
+        install -d ${D}${datadir}
+        install -d ${D}${datadir}/man/man1
+        install -d ${D}${datadir}/doc/nikto
+        install -d ${D}${sysconfdir}/nikto
+        install -d ${D}${sysconfdir}/nikto/databases
+        install -d ${D}${sysconfdir}/nikto/plugins
+        install -d ${D}${sysconfdir}/nikto/templates
 
-         install    -m  0644    databases/db_404_strings ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_content_search ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_dictionary ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_embedded ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_favicon ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_headers ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_httpoptions ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_multiple_index ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_outdated ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_parked_strings ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_realms ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_server_msgs ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_subdomains ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_tests ${D}${sysconfdir}/nikto/databases
-         install    -m  0644    databases/db_variables ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_404_strings    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_content_search    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_dictionary    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_embedded    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_favicon    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_headers    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_httpoptions    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_multiple_index    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_outdated    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_parked_strings    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_realms    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_server_msgs    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_subdomains    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_tests    ${D}${sysconfdir}/nikto/databases
+        install -m 0644 databases/db_variables    ${D}${sysconfdir}/nikto/databases
 
-         install    -m  0644    plugins/JSON-PP.pm ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/LW2.pm ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_apache_expect_xss.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_apacheusers.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_auth.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_cgi.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_clientaccesspolicy.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_content_search.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_cookies.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_core.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_dictionary_attack.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_embedded.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_favicon.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_fileops.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_headers.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_httpoptions.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_msgs.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_multiple_index.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_outdated.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_parked.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_paths.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_put_del_test.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_report_csv.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_report_html.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_report_msf.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_report_nbe.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_report_text.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_report_xml.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_robots.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_siebel.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_ssl.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_subdomain.plugin ${D}${sysconfdir}/nikto/plugins
-         install    -m  0644    plugins/nikto_tests.plugin ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/JSON-PP.pm    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/LW2.pm    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_apache_expect_xss.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_apacheusers.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_auth.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_cgi.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_clientaccesspolicy.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_content_search.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_cookies.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_core.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_dictionary_attack.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_embedded.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_favicon.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_fileops.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_headers.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_httpoptions.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_msgs.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_multiple_index.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_outdated.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_parked.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_paths.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_put_del_test.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_report_csv.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_report_html.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_report_msf.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_report_nbe.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_report_text.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_report_xml.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_robots.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_siebel.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_ssl.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_subdomain.plugin    ${D}${sysconfdir}/nikto/plugins
+        install -m 0644 plugins/nikto_tests.plugin    ${D}${sysconfdir}/nikto/plugins
 
-         install    -m  0644    templates/htm_close.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_end.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_host_head.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_host_im.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_host_item.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_start.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_stop.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_start.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/htm_summary.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/xml_end.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/xml_host_head.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/xml_host_im.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/xml_host_item.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/xml_start.tmpl ${D}${sysconfdir}/nikto/templates
-         install    -m  0644    templates/xml_summary.tmpl ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_close.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_end.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_host_head.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_host_im.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_host_item.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_start.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_stop.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_start.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/htm_summary.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/xml_end.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/xml_host_head.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/xml_host_im.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/xml_host_item.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/xml_start.tmpl    ${D}${sysconfdir}/nikto/templates
+        install -m 0644 templates/xml_summary.tmpl    ${D}${sysconfdir}/nikto/templates
 
-         install    -m  0644    nikto.conf ${D}${sysconfdir}
+        install -m 0644 nikto.conf    ${D}${sysconfdir}
 
-         install    -m  0755    nikto.pl ${D}${bindir}/nikto
-         install    -m  0644    replay.pl ${D}${bindir}
-         install    -m  0644    docs/nikto.1 ${D}${datadir}/man/man1
+        install -m 0755 nikto.pl    ${D}${bindir}/nikto
+        install -m 0644 replay.pl    ${D}${bindir}
+        install -m 0644 docs/nikto.1    ${D}${datadir}/man/man1
 
-         install    -m  0644    docs/CHANGES.txt ${D}${datadir}/doc/nikto
-         install    -m  0644    docs/LICENSE.txt ${D}${datadir}/doc/nikto
-         install    -m  0644    docs/nikto.dtd ${D}${datadir}/doc/nikto
-         install    -m  0644    docs/nikto_manual.html ${D}${datadir}/doc/nikto
+        install -m 0644 docs/CHANGES.txt    ${D}${datadir}/doc/nikto
+        install -m 0644 docs/LICENSE.txt    ${D}${datadir}/doc/nikto
+        install -m 0644 docs/nikto.dtd    ${D}${datadir}/doc/nikto
+        install -m 0644 docs/nikto_manual.html    ${D}${datadir}/doc/nikto
 }
diff --git a/recipes-security/nmap/nmap_6.25.bb b/recipes-security/nmap/nmap_6.25.bb
index cb5f7d3..aff5c63 100644
--- a/recipes-security/nmap/nmap_6.25.bb
+++ b/recipes-security/nmap/nmap_6.25.bb
@@ -3,7 +3,7 @@ DESCRIPTION = "Nmap ("Network Mapper") is a free and open source (license) utili
 SECTION = "security"
 LICENSE = "GPL-2.0"
 LIC_FILES_CHKSUM = "file://${COMMON_LICENSE_DIR}/GPL-2.0;md5=801f80980d171dd6425610833a22dbe6"
-FILES_${PN} += "${target_datadir}/ncat" 
+FILES_${PN} += "${target_datadir}/ncat"
 
 SRC_URI = "http://nmap.org/dist/${PN}-${PV}.tar.bz2 \
            file://lua.patch"
@@ -15,7 +15,7 @@ inherit autotools
 
 DEPENDS = "libpcap"
 
-EXTRA_OECONF = "--without-liblua --without-zenmap"
+EXTRA_OECONF = "--without-liblua --without-zenmap --without-subversion --with-pcap=linux"
 
 do_configure() {
     autoconf
diff --git a/recipes-security/pax-utils/pax-utils_0.7.bb b/recipes-security/pax-utils/pax-utils_0.7.bb
deleted file mode 100644
index 63cf0ea..0000000
--- a/recipes-security/pax-utils/pax-utils_0.7.bb
+++ /dev/null
@@ -1,20 +0,0 @@
-SUMMARY = "Security-focused ELF files checking tool"
-DESCRIPTION = "This is a small set of various PaX aware and related \
-utilities for ELF binaries. It can check ELF binary files and running \
-processes for issues that might be relevant when using ELF binaries \
-along with PaX, such as non-PIC code or executable stack and heap."
-HOMEPAGE = "http://www.gentoo.org/proj/en/hardened/pax-utils.xml"
-LICENSE = "GPLv2+"
-LIC_FILES_CHKSUM = "file://COPYING;md5=eb723b61539feef013de476e68b5c50a"
-
-SRC_URI = "http://gentoo.osuosl.org/distfiles/pax-utils-${PV}.tar.xz"
-
-SRC_URI[md5sum] = "8ae7743ad11500f7604f2e817221d877"
-SRC_URI[sha256sum] = "1ac4cee9a9ca97a723505eb29a25e50adeccffba3f0f0ef4f035cf082caf3b84"
-PR = "r0"
-
-do_install() {
-    oe_runmake PREFIX=${D}${prefix} DESTDIR=${D} install
-}
-
-BBCLASSEXTEND = "native"
diff --git a/recipes-security/perl/libwhisker2-perl_2.5.bb b/recipes-security/perl/libwhisker2-perl_2.5.bb
index 477f995..a98bde0 100644
--- a/recipes-security/perl/libwhisker2-perl_2.5.bb
+++ b/recipes-security/perl/libwhisker2-perl_2.5.bb
@@ -18,7 +18,7 @@ S = "${WORKDIR}/libwhisker2-2.5"
 inherit cpan-base perlnative
 
 do_install() {
-    install -d 755 ${D}${PERLLIBDIRS}/vendor_perl/${PERLVERSION}
-    install -d 755 ${D}${datadir}/perl/${PERLVERSION}
-    oe_runmake install DESTDIR=${D} INSTALLDIR=${PERLLIBDIRS}/vendor_perl/${PERLVERSION} MANDIR=${datadir}/perl/${PERLVERSION}
+        install -d 755 ${D}${PERLLIBDIRS}/vendor_perl/${PERLVERSION}
+        install -d 755 ${D}${datadir}/perl/${PERLVERSION}
+        oe_runmake install DESTDIR=${D} INSTALLDIR=${PERLLIBDIRS}/vendor_perl/${PERLVERSION} MANDIR=${datadir}/perl/${PERLVERSION}
 }
diff --git a/recipes-security/redhat-security/redhat-security_1.0.bb b/recipes-security/redhat-security/redhat-security_1.0.bb
index 442688b..52d07d1 100644
--- a/recipes-security/redhat-security/redhat-security_1.0.bb
+++ b/recipes-security/redhat-security/redhat-security_1.0.bb
@@ -22,18 +22,18 @@ SRC_URI = "file://find-chroot-py.sh \
 S = "${WORKDIR}"
 
 do_install() {
-             install    -d  ${D}${bindir}
-             install    -m  0755    ${WORKDIR}/find-chroot-py.sh    ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-chroot.sh   ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-elf4tmp.sh  ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-execstack.sh    ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-hidden-exec.sh  ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-nodrop-groups.sh    ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-sh4errors.sh    ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/find-sh4tmp.sh   ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/lib-bin-check.sh ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/rpm-chksec.sh    ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/rpm-drop-groups.sh   ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/selinux-check-devices.sh ${D}${bindir}
-         install    -m  0755    ${WORKDIR}/selinux-ls-unconfined.sh ${D}${bindir}
+        install -d ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-chroot-py.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-chroot.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-elf4tmp.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-execstack.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-hidden-exec.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-nodrop-groups.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-sh4errors.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/find-sh4tmp.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/lib-bin-check.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/rpm-chksec.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/rpm-drop-groups.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/selinux-check-devices.sh    ${D}${bindir}
+        install -m 0755 ${WORKDIR}/selinux-ls-unconfined.sh    ${D}${bindir}
 }