Merge branch 'master-IDSv3' into temp-c164-development

lfs/configroot

@@ -138,6 +138,7 @@ $(TARGET) :
 	# Install snort to suricata converter.
 	cp $(DIR_SRC)/config/suricata/convert-snort	/usr/sbin/convert-snort
 	cp $(DIR_SRC)/config/suricata/convert-ids-modifysids-file   /usr/sbin/convert-ids-modifysids-file
+	cp $(DIR_SRC)/config/suricata/convert-ids-multiple-providers /usr/sbin/convert-ids-multiple-providers
 
 	# set converters executable
 	chmod 755 /usr/sbin/convert-*

lfs/suricata

@@ -100,15 +100,19 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
 	# Install yaml file for loading default rules.
 	install -m 0664 $(DIR_SRC)/config/suricata/suricata-default-rules.yaml /var/ipfire/suricata
 
+	# Set correct ownership for the default rules file.
+	chown nobody:nobody /var/ipfire/suricata/suricata-default-rules.yaml
+
 	# Create emtpy rules directory.
 	-mkdir -p /var/lib/suricata
 
 	# Move config files for references, threshold and classification
 	# to the rules directory.
-	mv /etc/suricata/*.config /var/lib/suricata
+	rm -rfv /etc/suricata/*.config
 
-	# Set correct permissions for the files.
-	chmod 644 /var/lib/suricata/*.config
+	# Set correct ownership for the classifiction config file.
+	# (File has to be writeable for the nobody user)
+	chown nobody:nobody /usr/share/suricata/classification.config
 
 	# Set correct ownership for /var/lib/suricata and the
 	# contained files