David E. O'Brien
e05c25a8bf
Restore useless version required comments.
2000-03-22 00:28:26 +00:00
Michael Haro
c59cdd451a
PREFIX -> LOCALBASE (portlint)
2000-03-21 23:53:15 +00:00
Michael Haro
e4525dd13c
portlint:
...
PREFIX -> LOCALBASE
remove blank lines
2000-03-21 23:52:28 +00:00
Satoshi Asami
490adac052
" http://www.FreeBSD.org/~user/ " -> " http://people.FreeBSD.org/~user/ "
2000-03-21 23:01:18 +00:00
Chris D. Faulhaber
061f22ade7
Update port to 2.0.beta2
...
Add 2 MASTER_SITES
PR: 17341
Submitted by: Maintainer
2000-03-21 00:46:36 +00:00
Michael Haro
c2695de3f2
upgrade to 1.6.2p3
2000-03-20 23:53:41 +00:00
Michael Haro
c950d814d8
remove whitespace and PREFIX->LOCALBASE (portlint)
2000-03-20 22:16:48 +00:00
Bill Fenner
b144d742c6
Fix socklen_t for FreeBSD 3.
...
PR: ports/17491
2000-03-20 04:51:02 +00:00
David E. O'Brien
da36feaffe
Remove the "version required" line.
2000-03-20 02:37:50 +00:00
Foxfair Hu
89d74dcb41
PR: 17325(part of)
...
Submitted by: Anders Nordby <anders@fix.no>
Update to 0.99.7, also updater nessus-* to the same version.
Patches submitted by : port's maintainer.
Now Nessus supports CVE ID, you can search its plugins by CVE ID.
2000-03-19 04:06:14 +00:00
Foxfair Hu
b9e0883ee6
PR: 17325(Part of)
...
Submitted by: Anders Nordby <anders@fix.no>
Update to 0.99.7, also updater nessus-* to the same version.
Patches submitted by : port's maintainer.
2000-03-19 04:02:23 +00:00
Chris D. Faulhaber
c9d05d5fe3
Update port to 0.16
...
* Add support for PGP 6.5
PR: 17119
Submitted by: Maintainer
2000-03-11 13:56:54 +00:00
David E. O'Brien
57f06be82e
Support OpenSSH in the base system as the ssh1 component.
2000-03-11 12:58:43 +00:00
Chris D. Faulhaber
18737047c3
Activate seahorse (found by bento)
2000-03-10 14:03:44 +00:00
Wes Peters
46d17aef3b
Port for Seahorse, a Gnome front end for GnuPG.
...
PR: 17295
Submitted by: Dave McKay <dave@elvis.mu.org>
Obtained from: Dave McKay <dave@elvis.mu.org>
2000-03-10 01:22:54 +00:00
Dirk Froemberg
2b831e8031
Fix usage of libc_r (i. e. replace -lc_r with -pthread) and simplify
...
prefix handling.
OK'ed by: maintainer
2000-03-07 13:21:22 +00:00
Kris Kennaway
fb289f8f70
lxnb is a NetBus 1.60 client for remote administration of Windows machines
...
Obtained from: OpenBSD
2000-03-05 10:25:53 +00:00
Brian Feldman
672ba2f225
Update this to a CVS_DATE of a few minutes ago.
2000-03-03 06:10:10 +00:00
Brian Somers
b29a09511f
Allow manual PORTS_CVS_SERVER and CVS_SITES settings.
...
Approved by: maintainer
2000-03-02 06:43:18 +00:00
Dirk Froemberg
d7905faa33
Fix build error by adding ${OPENSSLINC}/openssl to the include path.
...
Submitted by: Jim Bloom <bloom@acm.org>
2000-02-28 21:36:02 +00:00
Peter Wemm
b6983955fd
Try my hand at a port/package for making a modular librsaintl library
...
plugin for libcrypto in order to implement RSA using the better rsa_eay.c
code instead of having to use rsaref. Naturally this is for non-US folks.
'make world' will install this directly, this port is only needed to
make life easier for sysinstall on binary installs.
2000-02-28 13:38:42 +00:00
Kris Kennaway
b62cf31096
ssh-askpass is a small X app which OpenSSH's ssh-add(1) will try and spawn
...
if called without a controlling terminal, e.g. if called during the X
login process. It is somewhat configurable through app-defaults.
Makefile shamelessly ripped from: green's OpenSSH port.
2000-02-28 06:51:15 +00:00
Yoshinobu Inoue
f24b58ff79
Woops fix my previous incorrect patch.
...
For green's honor, the patch I sent him for review was correct.
But because it is one line fix, I hand merged it into my
cvs committing environment, and then mistake happend.
This time, I applied correct fix which should have been aplied
at last commit.
2000-02-27 20:07:10 +00:00
Jeremy Lea
e531baf8c1
PLIST related fixes.
2000-02-27 08:56:20 +00:00
Jeremy Lea
3e6d72cc8d
Respect CFLAGS.
...
No response by: maintainer
2000-02-27 08:48:55 +00:00
Kris Kennaway
de7da9166d
Prompt for license confirmation when pkg_add'ing the port, and some minor
...
tweaks.
2000-02-27 06:46:05 +00:00
Kris Kennaway
9e7bb76189
Fix build.
...
Submitted by: Jim Bloom <bloom@acm.org>
2000-02-27 06:21:10 +00:00
Kris Kennaway
8570cca952
Chase the checksum (README changed)
2000-02-27 04:27:15 +00:00
Ade Lovett
4dac7fad8a
Update to 2.1.8.8p1 (previous version no longer available
...
at MASTER_SITE). Two extra patches to fix build warnings, and
make the inetd->xinetd configuration file translator work
a little better.
Submitted by: Mikhail Teterin <mi@video-collage.com>
2000-02-26 21:25:20 +00:00
Brian Feldman
50cae6391f
Fix a coredump-y bug that crept in recently.
2000-02-25 05:35:33 +00:00
Chris D. Faulhaber
405c418953
Update port to 1.0.1
2000-02-24 20:05:37 +00:00
Munechika SUMIKAWA
b734a81d1c
- re-enable TCP_NODELAY
...
Submitted by: Arjan.deVet@adv.iae.nl (Arjan de Vet)
- do not exit in failure to connect using IPv6 and try to IPv4
when connecting to dualstack hosts.
Approved by: torstenb
2000-02-24 14:11:58 +00:00
Munechika SUMIKAWA
6e0bfd0c33
Make IPv6-enable ssh works on socks environment.
...
Submitted by: Masahide -mac- NODA <mac@clave.gr.jp>
Reviewed by: shin, Robert Muir <rmuir@looksharp.net>
Toshihiko Kodama <kodama@ayame.mfd.cs.fujitsu.co.jp>
Approved by: torstenb
2000-02-24 08:27:36 +00:00
Satoshi Asami
8cdbcbd8da
Bump shlib versions of kdelibs11 and kdesupport11.
2000-02-24 07:01:14 +00:00
Jacques Vidrine
03706db785
Update 0.2p -> 0.2q
2000-02-23 15:29:03 +00:00
Brian Feldman
81d4a6cdbd
Change install -C usage to install -c usage, fixing the install for older
...
install(1)s.
Submitted by: Jim Archuleta <JimArchuleta@usa.net>
2000-02-23 11:30:04 +00:00
Chris D. Faulhaber
34367285f1
Remove RESTRICTED entry...source/binaries may be distributed; not that this
...
matters since the DISTFILES must be manually fetched.
2000-02-22 20:53:58 +00:00
Chris D. Faulhaber
34fa53beb1
Activate its4
2000-02-22 20:46:02 +00:00
Chris D. Faulhaber
e73674c6f6
Initial import of ITS4:
...
ITS4 is a tool that statically scans C and C++ source code for
potential security vulnerabilities.
2000-02-22 20:43:47 +00:00
Kris Kennaway
e6375bd7da
Display the plain english translation of the RSAREF license and require
...
acceptance before building the package to avoid legal ramifications for
our users. The legalese version is available in files/LICENSE to clear
up any remaining confusion about the terms.
No prompting is done when installing the package, although it should be.
2000-02-22 06:57:04 +00:00
Jun Kuriyama
1789f7dc34
Unbreak for -current.
...
Remove blank directories.
2000-02-22 05:22:57 +00:00
Jun Kuriyama
ac8b27f90c
Unbreak for -current.
2000-02-22 05:21:09 +00:00
Jun Kuriyama
dc962ee586
Unbreak for -current.
...
Use USE_LIBTOOL.
2000-02-22 05:20:00 +00:00
Kris Kennaway
77199efb13
Oops, previous commit broke installing. Fix this and reorganise a bit
...
more.
2000-02-21 11:38:00 +00:00
Kris Kennaway
ff80a7bc86
Clean up the makefile a bit (PR) and add a bunch of new MASTER_SITEs
...
PR: 15970
Submitted by: tkato@prontomail.ne.jp
2000-02-21 09:19:19 +00:00
Jacques Vidrine
7efa022330
Update to 0.2p
2000-02-21 02:16:38 +00:00
Munechika SUMIKAWA
7b2ffcdb39
Make buildable on IPv4-only kernel.
...
Specified by: ache
Reviewed by: torstenb
2000-02-20 17:30:54 +00:00
Dirk Froemberg
08001a1462
Store pid file in /var/run/.
...
PR: ports/16805
Submitted by: maintainer
2000-02-20 15:05:06 +00:00
Kris Kennaway
90d213a393
Zombiezapper sends commands to DDoS agents to stop flooding, leaving them
...
around for further forensics. As with most of the DDoS tools, this assumes
the agents are using the default settings.
2000-02-20 10:29:12 +00:00
Yoshinobu Inoue
5b8db68630
Use 'IPv4or6' instead of AF_UNSPEC for 1st getaddrinfo() ai_family.
...
Without this fix, still query to AAAA recored happens even if
-4 options is specified.
Reviewed by: green
2000-02-19 16:50:55 +00:00
Mark Murray
86365c08b2
Add p5-Crypt-CBC.
2000-02-18 12:19:46 +00:00
Mark Murray
44b827b5d1
This is Crypt::CBC, a Perl-only implementation of the cryptographic
...
cipher block chaining mode (CBC). In combination with a block
cipher such as Crypt::DES or Crypt::IDEA, you can encrypt and
decrypt messages of arbitrarily long length. The encrypted messages
are compatible with the encryption format used by B<SSLeay>.
2000-02-18 12:11:52 +00:00
Archie Cobbs
77116ce79e
The "-I/sys" hack should no longer be necessary to build this port
...
thanks to bde's rev 1.109 fix to <sys/systm.h>.
PR: ports/16496
2000-02-18 01:53:50 +00:00
Daniel Baker
1c0ddbd0e6
New patch to eliminate editorial in reference file.
...
Submitted by: David McNett <nugget@slacker.com>
2000-02-17 23:28:32 +00:00
Andrey A. Chernov
d2369a2dd8
distfile is missing from both mirror sites - update both of them with new ones
2000-02-16 15:51:53 +00:00
Brian Feldman
ca2a43f884
Change a MAKE_ENV= to MAKE_ENV+=. This may fix problems people on
...
-STABLE are reporting.
2000-02-16 04:52:59 +00:00
R. Imura
46789bfcb4
Remove giflib dependence.
...
Only changed giflib -> libungif in kdegraphics.
They realy do NOT want libgif, and do NOT use libgif anywhere.
Some ports are checking its existence in configure, but they
are nonsense at all!!
2000-02-15 13:45:23 +00:00
Munechika SUMIKAWA
abcd350dae
When IPv4-only client connected to a server which have IPv4 and IPv6
...
addresses, the client couldn't connect to the server via IPv4 because
the client gave up on first rresevport_af().
2000-02-15 13:09:45 +00:00
Kris Kennaway
74ea82f5a0
Update PLIST
...
Submitted by: Maintainer
2000-02-15 07:48:08 +00:00
Kris Kennaway
7b88f52d0f
Upgrade to stunnel 3.7
...
PR: 16554 (updated)
Submitted by: Martti Kuparinen <martti.kuparinen@lmf.ericsson.se>
2000-02-15 07:09:55 +00:00
Andrey A. Chernov
5ce5ad59b1
Disable ipv6 until it will be fixed by someone.
...
With latest -current configure fails:
checking getaddrinfo bug... buggy
Fatal: You must get working getaddrinfo() function.
or you can specify "--disable-ipv6".
2000-02-14 21:52:05 +00:00
Munechika SUMIKAWA
c47e327b56
Support IPv6.
...
Submitted by: Hajimu UMEMOTO <ume@mahoroba.org>
Approved by: torstenb
2000-02-14 15:12:37 +00:00
Munechika SUMIKAWA
7f1c13ce26
Add 'ipv6' on CATEGORIES.
...
Approved by: torstenb
2000-02-14 12:29:16 +00:00
Kris Kennaway
058359db3f
USE_OPENSSL
...
Submitted by: Jim Bloom <bloom@acm.org>
2000-02-14 04:12:22 +00:00
David E. O'Brien
17f19b27fd
release slurpie & trinokiller
2000-02-14 04:02:10 +00:00
David E. O'Brien
47878a089b
This program remotely kills trino nodes on version 1.07b2+f3 and below.
...
It abuses the careless coding in trinoo nodes and causes them to exit.
2000-02-14 03:46:32 +00:00
David E. O'Brien
ea1a4b4c7e
Slurpie is a passwd file cracker similar to CrackerJack and John the Ripper
...
except that it can be run in a distributed environment (multiple computers
aka nodes).
2000-02-14 03:24:01 +00:00
David E. O'Brien
5f0e434144
release rid
2000-02-14 02:59:59 +00:00
David E. O'Brien
8b129ae903
RID is a configurable tool which uses intrusion fingerprints to track down
...
compromised hosts. RID can remotely detect Stacheldraht, TFN, Trinoo and TFN2k
if the attacker did not change the default ports.
2000-02-14 02:59:36 +00:00
David E. O'Brien
9b4d19e8d0
Forgot the README's.
2000-02-14 02:47:05 +00:00
David E. O'Brien
29828e3fa2
``find_ddos'' will detect these denial of service programs: tfn2k client,
...
tfn2k daemon, trinoo daemon, trinoo master, tfn daemon, tfn client,
stacheldraht master, stacheldraht client, stachelddraht demon and tfn-rush
client.
2000-02-14 02:22:45 +00:00
David E. O'Brien
85b3b3d5b3
release find_ddos onto the world!
2000-02-14 02:19:27 +00:00
David E. O'Brien
cddbaf1ae0
Release gag and dds upon the world!
2000-02-14 01:59:36 +00:00
David E. O'Brien
8195e0e245
"dds" is a program to scan for a limited set of distributed denial of
...
service (ddos) agents.
At present, it scans for active instances of "trinoo", "Tribe Flood
Network" ("TFN") and "stacheldraht" agents, which were compiled
using the default values in known source distributions.
It will *not* detect TFN2K agents.
2000-02-14 01:58:38 +00:00
David E. O'Brien
0a86fb398a
"gag" is a program to scan for "stacheldraht" agents, which are part
...
of an active "stacheldraht" network. It will not detect trinoo,
the original Tribe Flood Network (TFN), or TFN2K agents.
2000-02-14 01:52:02 +00:00
Steve Price
7f41c5f050
Split up the freebsd build target into one for the i386 and one for the
...
Alpha so the Alpha users can use pgp too.
2000-02-13 16:54:51 +00:00
David E. O'Brien
b5d1cecde4
Style nits in the ports I maintain.
2000-02-13 03:25:05 +00:00
Brian Feldman
df4e9a1d72
Clean things up by using the new knob for OpenSSL usage.
...
Submitted by: kris
2000-02-12 23:55:48 +00:00
Torsten Blum
62e8b86072
Checfor OSVERSION _or_ USE_INET6 when deciding if IPv6 support should
...
be added. This is done to support the build on pre 4.0 machines with
the KAME IPv6 stack installed. It has been verified to build+work
with both 4.0 and 3.4+kame.
Org. patch Submitted By: Munechika SUMIKAWA <sumikawa@ebina.hitachi.co.jp>
2000-02-12 19:27:40 +00:00
Kris Kennaway
b6974210ce
USE_OPENSSL
...
Submitted by: Jim Bloom <bloom@acm.org>
2000-02-12 10:37:45 +00:00
Brian Feldman
145cf70f67
Tell the user that they're doing something wrong when USA_RESIDENT is
...
not set.
2000-02-10 12:23:49 +00:00
Munechika SUMIKAWA
442343e099
Simplify IPv6 checking.
...
Suggested by: green
2000-02-09 03:28:48 +00:00
Peter Wemm
02c5b6c7c6
Change all www.freebsd.org/~user references to people.FreeBSD.org/~user,
...
as the days of the former are numbered.
Reviewed by: asami
2000-02-08 09:29:51 +00:00
Bill Fumerola
c9decc57c9
Add a patch that stops sslproxy from leaving zombies all over the place.
...
Submitted by: rwatson
Upgrade to sslproxy.2000_Jan_29, with appropriate changes.
2000-02-07 22:17:58 +00:00
Kris Kennaway
e0eb382554
Respect CC and CFLAGS
2000-02-07 02:45:45 +00:00
Kris Kennaway
cda9d9b14a
USE_OPENSSL
...
Assisted by: Jim Bloom <bloom@acm.org>
2000-02-06 22:25:15 +00:00
Kris Kennaway
d5e63f727e
USE_OPENSSL, respect CC, CFLAGS, LOCALBASE
...
Assisted by: Jim Bloom <bloom@acm.org>
2000-02-06 21:58:21 +00:00
Kris Kennaway
5bb50d962a
USE_OPENSSL, respect CC, LOCALBASE (indirectly via OPENSSLLIB)
...
Assisted by: Jim Bloom <bloom@acm.org>
2000-02-06 21:55:45 +00:00
Kris Kennaway
0732e1763f
USE_OPENSSL, respect CC, CFLAGS, LOCALBASE
...
Assisted by: Jim Bloom <bloom@acm.org>
2000-02-06 21:53:04 +00:00
Kris Kennaway
5da30313e5
USE_OPENSSL, respect CC and CFLAGS
...
Assisted by: Jim Bloom <bloom@acm.org>
2000-02-06 21:48:31 +00:00
Kris Kennaway
c20fdcd69f
USE_OPENSSL
...
Assisted by: Jim Bloom <bloom@acm.org>A
2000-02-06 21:38:29 +00:00
Vanilla I. Shu
5d3e32750b
Upgrade to 2.1.8.8.pre11
2000-02-06 09:17:33 +00:00
Michael Haro
32a7767a51
update to 1.6.2p1
2000-02-05 08:37:44 +00:00
Archie Cobbs
78e06a1b17
portlint
2000-02-03 23:13:16 +00:00
Archie Cobbs
467fbeb227
Add -I/sys to the KLD compilation flags. This is a workaround,
...
but not a fix, for ports/16496.
PR: ports/16496
Submitted by: Matthew Reimer <mreimer@vpop.net>
2000-02-02 21:42:18 +00:00
Archie Cobbs
a919714314
Accomodate change in struct ipprotosw to fix port on -current.
...
Add a patch file that got missed last time somehow.
PR: ports/16496
Submitted by: Matthew Reimer <mreimer@vpop.net>
2000-02-01 18:39:09 +00:00
Munechika SUMIKAWA
ff51f86e8c
the condition for USE_INET6 setting was opposite.
2000-02-01 17:04:02 +00:00
Brian Feldman
168595c023
Fix a "USET" -> "USE" again. IPv6 should work for this port. Again.
...
Go to a much more convenient scheme for distfiles/ignorefiles. There
will be a lot less change from now on... the release name not being
embedded in them helps a lot.
Fix an unquoted "${CVS_DATE}" so cvs update isn't always run when
we're in one of the first 9 days of a month in CVS_DATE.
Update to OpenSSH-1.2.2, which doesn't really mean anything since there
are no source releases anyway...
The port has been verified to work with pdksh 5.2.14 as /bin/sh, and
about 7 times faster.
2000-02-01 08:12:06 +00:00
Chris D. Faulhaber
ab67010544
Update port to 0.99.4
...
PR: 16478
Submitted by: Maintainer
2000-02-01 00:07:54 +00:00
Michael Haro
8a59ed7b88
Update saint to 1.5
...
Submitted by: maintainer
PR: 16491
2000-01-31 23:48:18 +00:00
Kris Kennaway
7b18144fb6
Oops, remove manpage from PLIST
...
Noticed by: bento
2000-01-31 01:19:10 +00:00
Steve Price
e3a63b2d16
Adding saint version 1.5beta2.
...
A Security Administrator's Integrated Network Tool.
PR: 16406
Submitted by: Carl Johan Madestrand <calle.madestrand@norrgarden.se>
2000-01-29 22:33:19 +00:00
Dirk Froemberg
818c132334
snort has a manpage, now.
2000-01-29 14:26:12 +00:00
Dirk Froemberg
7eb85b5d65
Upgrade to 1.5.1.
2000-01-29 13:15:25 +00:00
Dirk Froemberg
db54ed8188
Check against ${OSVERSION} instead of the existence of the library files
...
whether openssl should be build or not.
2000-01-28 22:05:15 +00:00
David E. O'Brien
d980a16013
Make pkgname match the directory the port lives in, and to reduce collsion
...
with the ssh1 port.
Asked for by: several on the ports list over time
[the maintainer has not responded to multiple emails asking about this change]
2000-01-28 19:39:20 +00:00
Steve Price
718310a37a
Update to version 0.99.3, update PLIST accordingly, and enable encryption
...
between the client and server.
PR: 16018
Submitted by: maintainer
2000-01-28 17:34:12 +00:00
David E. O'Brien
e3e5569e35
UpDat3 t0 v3r$i0n 2.3 B3ta 14
...
Among bug fixes, we have the new skript kiddie output mode! Try it out by
adding "-oS - " to your nmap command line:
amy# nmap -sS -oS - -O -v vectra
$TartInG nmap V. 2.3B3tA14 bY fy0D0r@!n$ecure.org ( www.ins3cuR3.0Rg/nmap/)
!nt3r3$t|nG pOrtz On v3cTrA.yuma.nEt (192.168.0.5):
P0rt $tate PrOtOc0L $3rv!c3
13 Op3n tCp Dayt|m3
22 0pEn Tcp $SH
23 open tcp tEln3t
79 op3N tcp f!ng3r
513 0peN Tcp lOgIn
514 OpEn tcp $h3ll
TcP S3QuEncE PReDiCtion: ClA$s=random p0$|TivE incr3m3nts
DIffIculty=24696 (WorthY Challeng3)
s3quEnce numb3rz: 61B825b7 61b83793 61B88114 61b8B073 61B90DB2 61BA306B
R3m0t3 operAtInG sy$t3m gue$z: OpeNBSD 2.2 - 2.3
NMAP run c0mpleteD -- 1 IP adDR3ss (1 h0sT up) $CAnNed in 1 SEC0nd
2000-01-28 10:04:59 +00:00
David E. O'Brien
afad78b9d4
Update to version 2.3 Beta 14
2000-01-28 10:02:12 +00:00
Kris Kennaway
f109a2186b
Upgrade to dsniff 1.3. The new patch is a hack because I didn't have time
...
to work out why configure wasn't noticing our db.h..
2000-01-28 06:22:43 +00:00
Brian Feldman
d9da1a8a4c
Take off RESTRICTED, since this has been a proper package for some
...
time now, and is not a legal problem (see Bruce Schneier's latest
Crypto-Gram). Basically, since it's unencumbered, it is alright.
2000-01-27 21:19:20 +00:00
Satoshi Asami
c34477283d
List CVS files in IGNOREFILES so they will be properly deleted by "distclean".
...
Approved by: green (well, I thought he was going to *do* it, but anyway....)
2000-01-26 11:34:28 +00:00
Archie Cobbs
a3dd62941f
Bash this port until it compiles under -current again.
2000-01-26 01:55:28 +00:00
Archie Cobbs
e122a8ab58
We were forgetting to install "README.FreeBSD+NAT".
2000-01-26 01:52:02 +00:00
Munechika SUMIKAWA
857a522865
Use ${OSVERSION} instead of ${USE_INET6}.
2000-01-25 22:12:09 +00:00
Steve Price
b901a9df67
Update to version 1.5.15.
...
PR: 16130
Submitted by: maintainer
2000-01-24 05:22:22 +00:00
Daniel Baker
59378ebd8b
Update v1.2.0 -> v1.3.0
...
Submitted by: Greg Hewgill <greg@hewgill.com>
2000-01-23 05:32:37 +00:00
Kris Kennaway
13a7598a80
Respect CFLAGS
2000-01-23 00:03:51 +00:00
Michael Haro
88b9a9d54e
add WWW:
...
PR: 16264, 16265, 16266, 16267
Submitted by: joseph.scott@owp.csus.edu
2000-01-22 09:11:48 +00:00
Satoshi Asami
27596d33f2
bento says USE_XLIB.
...
Submitted by: bento
2000-01-21 07:19:02 +00:00
Kris Kennaway
9daf266e5e
Respect CC and CFLAGS
2000-01-20 17:16:07 +00:00
Brian Feldman
47be594a53
Fix IPv6 support: change a typo "USET_IPV6" to "USE_IPV6".
2000-01-19 02:53:21 +00:00
Munechika SUMIKAWA
d95ffdf7e4
Add 'ipv6' on CATEGORIES.
2000-01-18 12:54:55 +00:00
Munechika SUMIKAWA
9df24a1938
- remove me from another MAINTAINER
...
- add 'ipv6' on CATEGORIES
- use ${OSVERSION} instead of ${USE_INET6} for checking getaddrinfo()
existence.
- fix broken ${ECHO_MSG}
- avoid duplicate copying rcmd.c
2000-01-18 11:18:25 +00:00
Jacques Vidrine
a16e97dfc4
. fix packing list for cases with/without X, with/without KRB4
...
. restore HEIMDAL_HOME for PREFIX handling
2000-01-17 20:07:39 +00:00
David E. O'Brien
f0e5c58672
Upgrade to version 2.3 BETA 13.
2000-01-17 09:22:13 +00:00
Jacques Vidrine
252c7a91fa
Remove unavailable MASTER_SITES entry
2000-01-16 19:12:05 +00:00
Jacques Vidrine
001fea0ac5
Update 1.1 -> 1.1.1
2000-01-16 19:10:58 +00:00
Brian Feldman
28632e4637
Add sumikawa@FreeBSD.org as another MAINTAINER. Hopefully, this will
...
reduce my workload, and maybe there'll now be someone who remembers
to notify markm when updating CVS_DATE ;)
2000-01-15 23:17:13 +00:00
Vanilla I. Shu
2b11f27d45
Upgrade to 2.1.8.8pre8, and correct the xinetd.sh.
...
Submitted by: John Polstra <jdp@polstra.com>
2000-01-15 09:08:50 +00:00
Jun Kuriyama
803a0d0909
Use @unexec to remove locale directories.
2000-01-15 04:07:26 +00:00
Torsten Blum
eb66565459
Add IPv6 support to ssh.
...
The IPv6 patch was obtained from the kame repository and has been
been writen by KIKUCHI Takahiro <kick@kyoto.wide.ad.jp>
Due to the whole mess with different patches it was necessary to include
both the IPv6 patch and patch-ssh-1.2.27-bsd.tty.chown in ${PATCHDIR}.
Since both patches modify the configure script it was also necessary
to rebuild it via autoconf from configure.in. I've decided to use
USE_AUTOCONF instead of including the re-build configure script in
${FILESDIR}
Obtained from: KAME/WIDE
2000-01-14 19:37:39 +00:00
Brian Feldman
dcd2c0fc89
Add the actual change of names in sockaddr_storage. This broke things
...
for people after what time my system was previously made. Sorry.
Submitted by: sumikawa
2000-01-14 07:07:18 +00:00
Satoshi Asami
1f6491de9d
Add dsniff, fragrouter and whisker.
2000-01-14 02:12:49 +00:00
Brian Feldman
8d55d19095
Update to a more current OpenSSH, including...
...
IPv6 support!!
Thank you very much, Sumikawa san.
Submitted by: Munechika SUMIKAWA <sumikawa@ebina.hitachi.co.jp>
2000-01-13 23:22:17 +00:00
David E. O'Brien
06b36d5868
Update to version 0.7.1.
2000-01-13 20:13:52 +00:00
Sheldon Hearn
b4035e7bc8
Mark FORBIDDEN when /usr/include/tcpd.h exists.
...
This commit was done without consultation with the maintainer.
2000-01-12 07:20:54 +00:00
Foxfair Hu
28183a94c3
Clean up Makefile, remove the unwanted action while compiling.
...
Pointed out by : Martti Kuparinen <martti.kuparinen@ericsson.com>
(maintainer)
2000-01-11 01:16:04 +00:00
Daniel Baker
576ca01d38
add zebedee
2000-01-10 04:57:15 +00:00
David E. O'Brien
b27ac2c9dd
Make the inline ASM gcc 2.95 clean.
2000-01-09 20:37:05 +00:00
Daniel Baker
afa17e6669
initial import of zebedee port
...
Submitted by: Greg Hewgill <greg@hewgill.com>
2000-01-09 08:15:42 +00:00
Kris Kennaway
549ab1724d
Update to dsniff 1.2 which now builds out of the box of FreeBSD. How's
...
that for vendor turnaround time!
2000-01-09 05:14:19 +00:00
Kris Kennaway
33f3aab20c
New port: dsniff 1.1
...
dsniff is a set of network penetration testing tools
Obtained from: OpenBSD
2000-01-09 03:13:59 +00:00
Nick Sayer
07e10dcc32
1. Remove RESTRICTED -- aparently hashing is exportable.
...
2. Removed threading restriction.
3. Changed the WWW:
4. Improved the pkg/COMMENT
PR: 15893
Submitted by: Cy.Schubert@uumail.gov.bc.ca
2000-01-09 02:40:22 +00:00
Kris Kennaway
d668f660f3
Add some MASTER_SITES and take over maintainership.
...
PR: ports/15516
2000-01-09 00:17:38 +00:00
Mark Murray
fdeab08731
Update to 0.2l - bug fixes and a bunch of new man pages.
2000-01-08 16:35:17 +00:00
Kris Kennaway
0f6a074fbd
Whisker v1.3 is a sophisticated CGI security scanner by
...
.rain.forest.puppy
Obtained From: OpenBSD
2000-01-08 09:55:18 +00:00
Kris Kennaway
9393541ce9
Add Fragrouter 1.6.
...
Fragrouter is a program for routing network traffic in such a way as
to elude most network intrusion detection systems.
Obtained From: OpenBSD
2000-01-08 09:24:25 +00:00
Satoshi Asami
2ca1fe047a
Don't include bsd.port.pre.mk twice. This usually is caused by first
...
including bsd.port.pre.mk and then later including bsd.port.mk (the
latter of which of course should be bsd.port.post.mk).
2000-01-07 16:40:17 +00:00
Nick Sayer
45f70d0346
Upgrade libmcrypt port to 2.2.4
...
Submitted by: robertb@probe.net
2000-01-07 15:59:17 +00:00
David E. O'Brien
fb6cec5d1a
Upgrade to version 2.3BETA12.
...
Submitted by: taguchi@tohoku.iij.ad.jp
2000-01-04 08:00:20 +00:00
Dirk Froemberg
0a0ab0a8a4
Remove dependencies to header files in ${PREFIX} to avoid problems
...
if openssl is in the base system already.
2000-01-02 23:17:48 +00:00
Dirk Froemberg
2e3aadb778
Use LIB_DEPENDS instead of RUN_DEPENDS. It's more appropriate here.
2000-01-02 22:58:02 +00:00
Vanilla I. Shu
86b3146232
Upgrade to 2.1.8.8pre5
2000-01-02 06:14:23 +00:00
Mark Murray
fd1da02c8d
CVS is starting to really piss me off. This was supposed to be part
...
of the same commit that:
Upgrade Heimdal to 0.2j
No response from: MAINTAINER
1999-12-31 15:40:27 +00:00
Mark Murray
f7ccbfacac
Update to Heimdal 0.2i.
...
No response from: MAINTAINER
1999-12-31 14:55:55 +00:00
Dirk Froemberg
7a034920be
Check wheather OpenSSL is installed in the base system already and
...
skip openssl port if so.
(I. e. check the existence of /usr/bin/openssl, /usr/lib/libcrypto.so
and /usr/lib/libssl.so. If they exist set FORBIDDEN.)
1999-12-30 11:13:37 +00:00
Steve Price
ead323453d
Use OpenSSL instaed of librc4 so this port's package can be exported.
...
Also incorporate Garrett Wollman's kerberos fixes.
PR: 15732
Submitted by: maintainer
1999-12-29 07:06:27 +00:00
Peter Wemm
039a8cc408
Update the BROKEN message (for -current) to also list _KERNEL as a reason.
1999-12-29 05:32:39 +00:00
Tim Vanderhoek
8cd82c0318
General comment cleanups.
1999-12-28 16:30:10 +00:00
Brian Feldman
f2bfcd0cca
Upgrade to the pam_ssh module, version 1.1..
...
(From the author:)
Primarily, I have added built-in functions for manipulating the
environment, so putenv() is no longer used. XDM and its variants
should now work without modification. Note that the new code uses
the macros in <sys/queue.h>.
Submitted by: Andrew J. Korty <ajk@iu.edu>
1999-12-28 05:32:54 +00:00
Steve Price
822f6f827a
Update to version 0.99.2. NOTE: I added a BUILD and RUN_DEPENDS on
...
the nmap port otherwise the build fell over despite the configure script
saying that it would continue without it.
PR: 15714 (4 of 4)
Submitted by: maintainer
1999-12-27 21:54:05 +00:00
Steve Price
96d98d1082
Update to version 0.99.2.
...
PR: 15714 (3 of 4)
Submitted by: maintainer
1999-12-27 21:51:53 +00:00
Steve Price
dd4425ed02
Update to version 0.99.2.
...
PR: 15714 (2 of 4)
Submitted by: maintainer
1999-12-27 21:50:16 +00:00
Steve Price
c6e1440585
Update to version 0.99.2
...
PR: 15714 (1 of 4)
Submitted by: maintainer
1999-12-27 21:49:06 +00:00
Steve Price
e4d4e5d882
Adding pgpgpg version 0.13.
...
A wrapper for GnuPG to simulate PGP 2.6.x.
PR: 15526
Submitted by: Matt Behrens <matt@zigg.com>
1999-12-27 01:58:13 +00:00
Steve Price
2b52928c68
Adding sslwrap version 2.0.5.
...
Another SSL wrapper application, which uses SSLEay/OpenSSL.
PR: 14771
Submitted by: Zahemszky Gabor <zgabor@CoDe.HU>
1999-12-27 01:56:10 +00:00
Steve Price
54ea5fa715
Adding cyrus-sasl version 1.5.13.
...
An RFC 2222 SASL (Simple Authentication and Security Layer).
PR: 14619
Submitted by: Scot W. Hetzel <hetzels@westbend.net>
1999-12-27 01:52:25 +00:00
Steve Price
c4714f3342
Fix build for USA_RESIDENT=yes. Also get this to compile again on
...
-current.
PR: 14888
Inspired by: maintainer and the stunnel port
1999-12-27 00:40:15 +00:00
Steve Price
a6b26cdacc
librc4 version 1.1
...
RC4 library for use with the Cyrus SASL library (export controlled).
PR: 14618
Submitted by: Scot W. Hetzel <hetzels@westbend.net>
1999-12-25 19:10:34 +00:00
Steve Price
dd02eac948
Add a MASTER_SITE.
...
PR: 15677
1999-12-25 18:54:44 +00:00
Steve Price
bee3a271ee
Add a continuation character at the end of the first MASTER_SITES line.
...
PR: 15687
Submitted by: Dann Lunsford <dann@greycat.com>
1999-12-25 18:46:42 +00:00
Steve Price
04c6d34137
logcheck version 1.1.1
...
An auditing tools for system logs on Un*x boxes.
PR: 15360
Submitted by: Dan Langille <dan@freebsddiary.org>
1999-12-25 16:11:00 +00:00
Nick Sayer
06aaa30b1a
Add the international crypto repository as a master site
...
PR: 15072
1999-12-25 16:01:53 +00:00
Michael Haro
d1fd392f52
GNU_CONFIGURE makes it so we dont' need --prefix=${PREFIX}
1999-12-24 19:21:43 +00:00
Michael Haro
332b0f4a83
remove --prefix=${PREFIX} when GNU_CONFIGURE=yes and other minor cleanups
...
PR: 14759
Submitted by: Jeremy Lea <reg@shale.csir.co.za>
1999-12-24 18:39:48 +00:00
Michael Haro
3f6b106686
fix corrupted patch
...
Submitted by: FUJISHIMA Satsuki <k5@cheerful.com>
1999-12-24 04:38:36 +00:00
Steve Price
fcbcdf68f0
Make this compile again after the libnet updates.
...
PR: 15645
1999-12-24 04:25:45 +00:00
Brian Feldman
ccf991de8f
Update to today's OpenSSH.
...
The version is now 1.2.1, from 1.2. You can mv your old distfiles/OpenSSH-1.2
dir to distfiles/OpenSSH-1.2.1, if you want to not waste time/space.
Some minor nits have been fixed, and a couple bugs. One sizeof(len)
should have just been len, and, in markus's words,
"fix get_remote_port() and friends for sshd -i".
1999-12-23 06:37:30 +00:00
Andrey A. Chernov
1799118ba6
Remove myself from MAINTAINER
1999-12-23 02:30:06 +00:00
Jun Kuriyama
7a0b30e57f
Update to v1.0.1. (with correct gpg.1)
1999-12-23 00:01:12 +00:00
Michael Haro
174b80c32e
update to 1.6.1
1999-12-22 17:56:15 +00:00
Michael Haro
9e2a601197
Update to 1.6.1
1999-12-22 17:53:40 +00:00
Chris D. Faulhaber
b97a47d2df
* Update portsentry to 1.0
...
* Remove current MAINTAINER as email has been unreachable for weeks
* Add dan@freebsddiary.com as MAINTAINER at his request
PR: 15490
Submitted by: Dan Langille <dan@freebsddiary.com>
1999-12-22 14:26:41 +00:00
Dirk Froemberg
9934bc0975
Upgrade to 1.5.
1999-12-22 10:56:28 +00:00
Satoshi Asami
ee7f9aa44a
Install sudoers in correct place.
...
Submitted by: jhb via cpiazza
1999-12-17 08:18:03 +00:00
Satoshi Asami
ce59e9a532
Fix whitespace problem.
...
Submitted by: jedgar@fxp.org
1999-12-14 22:53:27 +00:00
Satoshi Asami
da18acd49b
Fix buffer overflow problem properly.
...
Submitted by: kris
Obtained from: bugtraq list (I believe)
1999-12-13 07:02:03 +00:00
David E. O'Brien
472081e636
For some reason etc/sudoers.sample isn't installed by the distfiles's
...
Makefile any more. So install it manually.
1999-12-10 19:51:09 +00:00
Chris Piazza
580675f5ed
Unbreak for 3.4-R by changing the MASTER_SITE path in case mharo
...
doesn't get to PR 15403 in time.
1999-12-10 19:02:28 +00:00
Michael Haro
61d648591a
update to 1.6.
...
had to remove manpage path corrections patch (patch-ac) because
I don't have time till after Friday to work on this port more.
1999-12-10 02:27:59 +00:00
Foxfair Hu
a205b4eda9
Back out my change from Oct.26, this was a misconfigured hack and should
...
never be taken.
Pointed out by : maintainer.
1999-12-09 14:17:09 +00:00
Don Lewis
4c18c17742
Activate chrootuid.
1999-12-09 10:40:46 +00:00
Don Lewis
1ef37aadb3
The chrootuid command combines chroot(8) and su(1) into one program,
...
so that there is no need to have commands such as /usr/bin/su in the
restricted environment. Access to the file system is restricted to
the newroot subtree and privileges are restricted to those of the
newuser account (which must be a known account in the unrestricted
environment).
1999-12-09 10:37:38 +00:00
Andrey A. Chernov
69872a6f4b
Change broken link to homepage to official one
1999-12-08 21:27:01 +00:00
Brian Feldman
d64b6e2fd2
I've cleaned up ${CVS_DATE} usage a bit (keep spaces correctly), and
...
updated to today's snapshot of OpenSSH.
Various updates from the latest ${CVS_DATE}, and requisite patch
changes, are the "big new thing". Nothing major has changed; the
biggest ones would be using atomicio() in a lot of places and a
fix for a SIGHUP not updating sshd(8)'s configuration until the
next connection.
1999-12-08 04:06:38 +00:00
David E. O'Brien
7c36a52e4c
Update to 2.3 beta #9 .
...
This speeds up OS scans.
1999-12-07 22:06:56 +00:00
SADA Kenji
745f62c9ad
The software's www page has been moved.
1999-12-07 21:13:02 +00:00
Brian Feldman
7db4f457f6
In the meantime (while things are being worked and decided on on the
...
OpenBSD OpenSSH front), add ConnectionsPerPeriod to prevent DoS via
running the system out of resources. In reality, this wouldn't
be a full DoS, but would make a system slower, but this is a better
thing to do than let the system get loaded down.
So here we are, rate-limiting. The default settings are now:
Five connections are allowed to authenticate (and not be rejected) in
a period of ten seconds.
One minute is given for login grace time.
More work in this area is being done by alfred@FreeBSD.org and
markus@OpenBSD.org , at the very least. This is, essentially, a
stopgap solution; however, it is a properly implemented and documented
one, and has an easily modifiable framework.
1999-12-06 06:32:22 +00:00
Brian Feldman
c249079362
Under advisories, put RESTRICTED back. It more accurately reflects
...
reality, though. One file, cipher.c, calls cryptographic routines
from external libraries. This really cannot encumber OpenSSH in
any case, but I put RESTRICTED back since it would give people a
false hope of being able to install the OpenSSH package but
not the requisite, RESTRICTED (so nonexistant) openssl package.
1999-12-06 06:26:17 +00:00
Kris Kennaway
26fd302372
Upgrade to l0pht-watch 1.1
...
Reviewed by: Maintainer
1999-12-06 05:15:58 +00:00
Brian Feldman
1394b1ef56
Good-bye, RESTRICTED.
...
Reasons:
1. It's not crypto.
2. It links with crypto.
a. That crypto is in the public domain.
b. Linking with crypto does not constitute cryptography.
3. Even if it were crypto, the description of the entire protocol, etc.,
is in the public domain. The RFC is PD in the USA, and the white paper
in Europe.
4. Precedence? Even if it were crypto, the Bernstein case has set
precedence for allowing export of that. But it's not even crypto.
1999-12-06 04:49:22 +00:00
Brian Feldman
99f8fb2572
Reduce LoginGraceTime from 10 minutes (!!!) to 30 seconds. More to
...
come, soon.
1999-12-04 12:40:39 +00:00
Chris Piazza
85ed02f6b6
fix buffer overflow in RSA{Public,Private}Decrypt. from CORE SDI.
1999-12-02 07:49:03 +00:00
Foxfair Hu
8020a1e16b
PORTLINT rules.
1999-12-01 20:01:59 +00:00
Foxfair Hu
29b60edf91
More portlint cleanup.
1999-12-01 19:53:56 +00:00
Foxfair Hu
3ea9778c6e
PORTLINT rules.
1999-12-01 19:48:40 +00:00
Foxfair Hu
325fc4a8d1
Upgrade nessus-plugins to 0.99.1 .
1999-12-01 19:46:27 +00:00
Foxfair Hu
d94887d9ad
Upgrade to 0.99.1, and make portlint happy.
1999-12-01 19:35:08 +00:00
Foxfair Hu
5cc9cadf7f
Active nessus-* ports.
1999-12-01 05:42:11 +00:00
Foxfair Hu
7690d17b90
PR: 14776
...
Submitted by: Anders Nordby <anders@fix.no>
Import the plugins for nessus, network security scanner program.
WWW: http://www.nessus.org/
1999-12-01 05:40:10 +00:00
Foxfair Hu
ef5033c94b
PR: 14775
...
Submitted by: Anders Nordby <anders@fix.no>
NASL is a scripting language designed for the Nessus security scanner. Its
aim is to allow anyone to write a test for a given security hole in a few
minutes, to allow people to share their tests without having to worry
about their operating system, and to garantee everyone that a NASL script
can not do anything nasty except performing a given security test against
a given target.
NASL is not a powerful scripting language. Its purpose is to make scripts
that are security tests. So, do not expect to write a third generation web
server in this language, nor a file conversion utility. Use perl, python
or whatever scripting language to do this.
WWW: http://www.nessus.org/doc/nasl.html
1999-12-01 05:35:29 +00:00
Foxfair Hu
b08bfa9ba0
PR: 14774
...
Submitted by: Anders Nordby <anders@fix.no>
Split nessus-libraries from nessus port.
1999-12-01 05:32:20 +00:00
Foxfair Hu
788058aac1
PR: ports/14773
...
Submitted by: maintainer
Update to 0.99.1, and disable nessus for compiling in -current.
Original patch submitted by the maintainer, and some fixes from me.
1999-12-01 05:27:13 +00:00
Archie Cobbs
99d5b650ca
Update one of the master sites.
...
Submitted by: Brent <brent@kearneys.ca>
1999-11-30 06:39:34 +00:00
Brian Feldman
c52ee5193f
Add the PAM SSH RSA key authentication module. For example, you can add,
...
"login auth sufficient pam_ssh.so" to your /etc/pam.conf, and
users with a ~/.ssh/identity can login(1) with their SSH key :)
PR: 15158
Submitted by: Andrew J. Korty <ajk@waterspout.com>
Reviewed by: obrien
1999-11-29 07:09:45 +00:00
Brian Feldman
8e53bbefee
Update to a current CVS_DATE. The only real change I see is the (big)
...
change of KNFization being finalized :)
Patches had to be modified, but should look "better" according to
style(9), now.
1999-11-28 22:40:28 +00:00
Brian Feldman
cc029c1647
Change CFLAGS to get modified in Makefile.inc, fixing the
...
problem several people have reported with make.conf setting ${CFLAGS}.
Partially submitted by: Jos Backus <Jos.Backus@nl.origin-it.com>
1999-11-28 21:40:58 +00:00
Nick Sayer
f900a41e79
Update to 0.6.1
...
Submitted by: sascha@schumann.cx
1999-11-28 16:26:42 +00:00
Steve Price
af5234ea2c
Re-importing in net.
...
Suggested by: kris
1999-11-26 23:18:39 +00:00
Steve Price
1aa203a2e7
Activate the dante and p5-Authen-PAM ports.
1999-11-26 20:35:28 +00:00
Steve Price
8d71c26261
Initial import of p5-Authen-PAM version 0.08.
...
A Perl interface to the PAM library.
PR: 14137
Submitted by: Matt Behrens <matt@zigg.com>
1999-11-26 20:32:25 +00:00
Chris Piazza
e8bddd06d0
Forgot a line
1999-11-25 21:26:38 +00:00
Chris Piazza
37014e3b5d
Patches are now available from www.ssh.org/patches
...
Submitted by: Issei Suzuki <issei@jp.freebsd.org>
1999-11-25 21:26:03 +00:00
SADA Kenji
03825be304
Removed an obsoleted patch.
...
PR: 15059
Submitted by: Maintainer
1999-11-24 21:45:32 +00:00
Brian Feldman
56a0d0c739
Also, set SSH_PROGRAM correctly.
1999-11-24 03:39:54 +00:00
Brian Feldman
f0ca59b2b5
Update the CVS_DATE. This brings in support for TIS authentication,
...
obsoleting a couple patches (it's the same code, though, except for
additions).
This also brings in KNFization of everything (please hold the cheering
down :) and made me reroll all my patches.
My patches have been almost entirely rewritten. The places are the
same, but the code's rewritten. It fits with the style (KNF) now,
and looks better.
I've also added strlcat.c to the build, which, just like strlcpy.c, is
necessary for compatibility with older libcs. After strlcat() snuck
into the OpenSSH code recently, this would prevent OpenSSH from
building on (e.g.) FreeBSD 3.2. Adding it to ssh/lib/ makes it work
yet again :)
1999-11-24 03:36:23 +00:00
Brian Feldman
f9d23e53cc
Correct ssh-keygen usage.
...
Submitted by: Larry Baird <lab@gta.com>
1999-11-23 03:04:05 +00:00
Brian Feldman
64c59a88a8
Clean up some shell scripting and replace it with proper Makefile
...
syntax. Run ssh-keygen for ssh_host_key on port install, not just
package install.
1999-11-22 22:45:47 +00:00
Brian Feldman
64484c75cf
I wish CVS would report new files. This broke the carefully designed
...
mirroring system. The tarball was fine, but the extraction was not
1999-11-22 22:44:47 +00:00
Brian Feldman
41408c5a51
And away we go! Here comes the source mirror, thanks Mark!
...
Submitted by: markm
1999-11-21 23:10:48 +00:00
David E. O'Brien
f3c0ba55b9
Update to 2.3 Beta8.
...
* Added "firewall mode" timing optimizations which can decrease the
amount of time neccessary to SYN or connect scan some heavily filtered
hosts.
* Changed "TCP Ping" to use a random ACK value rather than 0 (an IDS
called Snort was using this to detect Nmap TCP pings).
* better FDDI support
* changes which should lead to tremendous speedups against some firewalled
hosts.
1999-11-21 23:09:22 +00:00
SADA Kenji
8dbe81438d
Mastersite has moved.
1999-11-21 20:45:26 +00:00
Brian Feldman
7b3d367711
Update to the latest CVS_DATE, obsoleting patches patch-a[yz].
...
Add "ignorelogin" login.conf functionality to sshd.
The biggest change: new port functionality. Making "fetchsrctarball"
will soon work for those of you who cannot use CVS to get OpenSSH.
Mark Murray, the savior he is :), will use "make makesrctarball" and
put the snapshots of OpenSSH source in the proper place.
The current ${MASTER_SITES} is just a guess at where the snapshot
files could be hosted; something definite should be worked out very
soon.
1999-11-21 16:42:44 +00:00
Brian Feldman
f12ea805b6
Set all the default PATHs correctly, removing a "hack"-ish ${PERL}
...
transform.
Prompted by: deraadt
1999-11-20 22:54:06 +00:00
Warner Losh
ab96a24696
Default to not allowing root logins. This makes it consistant with
...
OpenSSH. Users desiring the old functionality can edit their
sshd-config files by hand for new installs.
1999-11-20 19:54:31 +00:00
Brian Feldman
5ef3dcc5cb
Give OpenSSH TIS client-side authentication.
...
Submitted by: peter
1999-11-20 06:59:57 +00:00
Brian Feldman
db8a62a578
ARGH! Remember the echo -n ' sshd'.
1999-11-20 03:55:29 +00:00
Brian Feldman
7382aa363a
Change around sshd.sh for the last time.
1999-11-20 03:42:05 +00:00
Brian Feldman
c2edf69286
Turn on HAVE_OPENPTY so more than 16 terminals work with sshd.
...
Put sshd.sh installation in the pre-install, ssh_host_key generation
back in the PLIST, and check for ssh_config, too. This port now
works much better as a package. The configuration files and sshd.sh
are also part of the package, and as such removed on deinstall.
The proper upgrade procedure from one OpenSSH version to a newer one is:
chflags schg /usr/local/etc/ssh* # preserve them from deletion
cd /usr/ports/security/openssh
make all deinstall reinstall clean
Partially submitted by: peter
1999-11-20 03:05:31 +00:00
Brian Feldman
8e684ae74d
Add that pesky slogin link to the packing list.
1999-11-20 01:55:53 +00:00
Brian Feldman
8a53efc29c
Update to the latest CVS_DATE (now =) The biggest change to the OpenBSD
...
code tree is the addition of the SSH_CMSG_MAX_PACKET_SIZE command.
Really big tiny change: PermitRootLogin is now DISABLED by default. This
change has been specifically okayed.
Reviewed by: imp
1999-11-20 01:52:21 +00:00
Jim Mock
bdf54063b2
Fix spelling errors.. privledges -> privileges
...
Submitted by: Jeroen Ruigrok van der Werven <asmodai@bart.nl>
1999-11-18 19:09:16 +00:00
Brian Feldman
6ddc61a499
Make the second CVS site work for real.
...
Move sshd.sh to files and ${INSTALL_SCRIPT}/${PERL} -pi it.
Clean up the Makefile's style a bit (MNF anyone? :)
Add WWW: to pkg/DESCR.
Change MASTER_SITES back to CVS_SITES to avoid problems with
MASTER_SITE_OVERRIDE.
Parts submitted by: Christian Weisgerber <naddy@mips.rhein-neckar.de>, Robert Muir <rmuir@gibralter.net>
1999-11-18 01:46:43 +00:00
Chris Piazza
603bf4c4de
Use a different PATCH_SITE so we don't keep getting people telling us
...
that the port is broken.
Thanks to Charles "spork" <spork@super-g.com>
1999-11-18 01:34:59 +00:00
Brian Feldman
db156967fa
Update OpenSSH to the latest CVS_DATE.
...
CVS_SITE is now MASTER_SITES, and each is tried if the previous fails
Include a :pserver: as one of the CVS repositories, so those inside firewalls
should be able to fetch SSH. If this doesn't work for everyone, I've still
got a trick up my sleeve.
Fix rlimit-related warnings people are seeing by moving the setclasscontext()
to before the switching of uids. Let me know if this does not work, as I
never got the warnings in the first place.
Don't clobber sshd_config, etc. Instead, if they're there, just warn of
their existance.
Take the config files and sshd.sh out of the pkg/PLIST, mainly so you don't
lose your configuration files by doing a "make deinstall reinstall clean"
update.
Parts submitted by: Robert Muir <rmuir@gibralter.net>, Travis Mikalson <bofh@terranova.net>
1999-11-17 20:12:35 +00:00
Brian Feldman
fd06b5f819
Thanks to those who replied! The include (ssl versus openssl) transform
...
is now done in post-patch.
Submitted by: Anton Berezin <tobez@plab.ku.dk>, Christian Weisgerber <naddy@unix-ag.uni-kl.de>
1999-11-17 17:19:28 +00:00
Brian Feldman
0a2eb1046a
And update those checksums too.
1999-11-17 02:53:30 +00:00
Brian Feldman
cd2a8b0406
Prompted by Kris Kennaway <kris@FreeBSD.org>
...
Update to to the current time for OpenSSH. The notable commit given to me
for this new date is:
(provos@cvs.openbsd.org )
usr.bin/ssh : hostfile.c
in known_hosts key lookup the entry for the bits does not need to match, all
the information is contained in n and e. This solves the problem with buggy
servers announcing the wrong modulus length. markus and me.
1999-11-17 00:56:07 +00:00
Andrey A. Chernov
665dfdd3b7
upgrade to 2.09
...
PR: 14792
1999-11-16 19:39:28 +00:00
Warner Losh
272f7058db
Don't overflow rsa bits. As seen on bugtraq and elsewhere.
...
Submitted by: drow@false.org
Reviewed by: ache
PR: 14749
1999-11-16 07:21:36 +00:00
Brian Feldman
d4dc9aea78
Bump CVS_DATE to a few minutes ago, and update MD5 checksums for updated
...
files. Also, CVS_RSH can now be specified (to override the ignored
environmental CVS_RSH) as PORTS_CVS_RSH. For instance, you can use ssh
to check out ssh ( :] ) with "PORTS_CVS_RSH=ssh make fetch".
1999-11-15 06:48:02 +00:00
Brian Feldman
db6ff5ab61
Enable TCP wrapper support (conditionalized to turn off if tcpd.h is
...
nonexistant). Also, add the Makefile hooks for AFS, Kerberos, and S/Key.
1999-11-15 06:18:46 +00:00
Brian Feldman
828e1fc6be
Add support for setting login.conf class things including rlimits, priority,
...
and umask. Also support /var/run/nologin, copyright, and support motd
correctly. The PR was used as a base, thanks!
PR: 14859
Submitted by: Dan Harnett <danh@wzrd.com>
1999-11-13 23:37:58 +00:00
Vanilla I. Shu
b025bdddad
Upgrade to latest version, and set myself as MAINTAINER.
...
PR: ports/14605
Submitted by: Will Andrews <andrews@technologist.com>
1999-11-13 07:42:54 +00:00
Brian Feldman
97a018a48f
Lots of OpenSSH changes, let's see if I remember them all.
...
1. Makefile cleanups, pkg/DESCR original comment (obrien)
2. sshd.sh and automatic host key generation when installed
(Christian Weisgerber <naddy@unix-ag.uni-kl.de>)
3. Completely redone downloading procedure:
* CVS is used to download the source (${CVS_CMD} defaults to
cvs -z3)
* MD5 checksums and a specific ${CVS_DATE} are used to get
a specific source tree and verify it; ${CVS_DATE} and
checksums can easily be rolled forward once tested.
* Source is checked out to distfiles like other ports,
and is only updated when ${CVS_DATE} changes.
Rebuilding the port doesn't require another cvs co.
Enjoy!
Reviewed mostly by: obrien
1999-11-13 05:55:42 +00:00
Brian Feldman
2bd1eb4e18
Correct the do-fetch target and improve error detection in fetchit.
1999-11-11 20:49:44 +00:00
Brian Feldman
0adf5c3f15
Whoops, extra parenthesis broke do-fetch.
1999-11-11 16:50:43 +00:00
Brian Feldman
ac3b838e7f
Quite a bit of change to OpenSSH made:
...
Add "/usr/local/bin" to _PATH_STDPATH (makes scp work inbound, for instance.)
Fetch OpenSSH from OpenBSD's src tree. This uses a script and ftp(1).
Add strlcpy.c to ssh/lib, so this port should build on 3.X now.
Make TCP_WRAPPERS conditional on /usr/include/tcpd.h like the PR, so it
should build on older RELEASEs without TCP Wrappers.
The PR is still open because I am taking more from it.
PR: ports/14653
1999-11-11 14:33:23 +00:00
Brian Feldman
2122dd8811
Make some various cleanups. Note that I did not add RESTRICTED since this is
...
in no way cryptographically encumbered code. The fact that it's
redistributed by me from freefall is completely coincidental.
Submitted by: obrien, Christian Weisgerber <naddy@unix-ag.uni-kl.de>
1999-11-09 12:43:45 +00:00
Dirk Froemberg
02adc6ab70
Add library dependency to crypto.1.
1999-11-09 11:43:11 +00:00
Brian Feldman
d8ca772bbe
Bombs away! Active openssh.
1999-11-08 06:22:45 +00:00
Brian Feldman
406efcfe3b
Say hello to OpenSSH! It's more secure, has a better license, and
...
is actively maintained by members of the OpenBSD project.
1999-11-08 06:20:54 +00:00
Brian Feldman
fb16378220
Spelling error correction.
1999-11-08 05:52:40 +00:00
Dirk Froemberg
acf3546644
Change dependencies from static to shared openssl libraries,
...
because openssl also builds shared libraries, now.
1999-11-07 22:25:40 +00:00
Dirk Froemberg
bd8d8600c4
Build and install shared libraries libcrypto.so.1 and libssl.so.1, too.
...
Submitted by: Issei Suzuki <issei@jp.freebsd.org>
1999-11-07 22:19:49 +00:00
Mark Murray
2d0ae0697e
Clean up a bunch of portlint(1) FATAL errors, and tidy up the
...
PREFIX handling.
OK'ed by: MAINTAINER (a few days ago)
1999-11-07 09:58:40 +00:00
Eivind Eklund
0447a53637
Correct PLIST for the non-X11 case. (This was OK'ed by the maintainer quite
...
some time ago).
1999-11-06 19:43:18 +00:00
Jacques Vidrine
b5d3958ec8
. Update 0.2c -> 0.2d
...
. remove an army of patches that are no longer needed with this version
. enable shared library support
. compress man pages
. add missing newline to COMMENT
1999-11-06 18:03:56 +00:00
Nick Sayer
f7e02e4433
Deactivate raproxy... it's moving to audio
1999-11-03 22:23:25 +00:00
Jacques Vidrine
47ee11a843
Update 0.2a -> 0.2c and add some additional MASTER_SITES
1999-11-02 22:47:03 +00:00
Steve Price
d805c70056
Teach this port's configure script that phtread_create can be found in
...
-lc_r.
PR: 13700
Submitted by: Mario Sergio Fujikawa Ferreira <lioux@gns.com.br>
1999-11-01 01:33:43 +00:00
Steve Price
a0749ab965
Update to version 1.3.0.
...
PR: 13826
Submitted by: maintainer
1999-11-01 01:27:47 +00:00
Bill Fumerola
5c9a2331d3
fakebo.conf doesn't exist, but fakebo.conf.dist does.
1999-11-01 00:27:40 +00:00
Jacques Vidrine
a433a6e9a4
Hack to avoid rerunning automake.
1999-10-30 23:56:19 +00:00
Jacques Vidrine
a8ca600b26
Activate heimdal
1999-10-30 23:41:55 +00:00
Jacques Vidrine
5492d6d9a9
Heimdal is a re-implementation of Kerberos V.
1999-10-30 23:38:05 +00:00
Michael Haro
c8e9f3d3c5
prefix -> localbase
...
PR: 14604
Submitted by: "Oleg V. Volkov" <rover@lglobus.ru>
1999-10-30 17:58:42 +00:00
Foxfair Hu
936a65cefc
Make this port to build in -stable.
1999-10-26 19:12:46 +00:00
Kris Kennaway
8393699918
Refresh MASTER_SITES
1999-10-21 19:44:32 +00:00
Kris Kennaway
a0d001aa06
Upgrade to 0.4.1.
1999-10-21 19:41:57 +00:00
Jacques Vidrine
f91c2d7892
Fix for abort in login.krb5 (segment violation when trying to get a
...
TGT).
Obtained from: MIT Kerberos GNATS PR krb5-appl/762, 763
1999-10-13 18:43:59 +00:00
Dan Moschuk
d88ff386ba
Moving iplog from security down the street to net
1999-10-09 16:38:05 +00:00
Dan Moschuk
4f66f77c62
Activate iplog
1999-10-08 22:37:39 +00:00
Jacques Vidrine
253b69d750
Remove krb5-beta
1999-10-04 14:34:23 +00:00
Jacques Vidrine
5f0c4b6514
Update 1.0.6 -> 1.1
1999-10-04 14:32:28 +00:00
Dirk Froemberg
72db53e63f
Upgrade to 1.3.
1999-09-28 19:32:04 +00:00
Jacques Vidrine
b4899d35e6
Activate krb5-beta after repository copy.
1999-09-27 22:39:59 +00:00
Mark Murray
712fafd2e0
Grrr....
...
Don't people do even the most rudimentary checking before committing??!
1999-09-24 08:28:12 +00:00
Bill Fumerola
608fc46dd3
Version Required = reality.
1999-09-23 04:27:10 +00:00
Chris Piazza
a06df1ef1f
Host this distfile locally, both the old and the new MASTER_SITES
...
for this port are gone.
1999-09-21 17:21:35 +00:00
David E. O'Brien
160bcee3fd
Upgrade to 2.3BETA6.
...
* Added sophisticated timing controls to give the user much more control
over Nmap's speed. This allows you to make Nmap much more aggressive to
scan hosts faster, or you can make Nmap more "polite" -- slower but less
likely to wreak havoc on your Network. You can even enforce large delays
between sending packets to sneak under IDS thresholds and prevent
detection. See the new "Timing Options" section of the Nmap man page for
more information on using this.
* New "Window scan" that does fun things with ACK packets. -sW activates
this scan type. It is mostly effective against BSD, AIX, Digital UNIX, and
various older HP/UX, SunOS, and VAX.
1999-09-20 04:51:19 +00:00
Steve Price
8975664af8
Let this port know of the types that are 64-bit on FreeBSD/Alpha.
1999-09-20 01:35:29 +00:00
Steve Price
ef854f6de7
Steal a few lines from the Linux/Alpha book so we can have this port on
...
FreeBSD/Alpha too.
1999-09-20 01:25:36 +00:00
Vanilla I. Shu
365826ef02
Upgrade to 2.1.8.6b7, and add the patch from Josh Tiefenbach.
...
PR: ports/12874
Submitted by: Josh Tiefenbach josh@zipperup.org
1999-09-19 11:49:44 +00:00
Satoshi Asami
ff755572e9
Add keynote and kmap.
1999-09-19 08:34:26 +00:00
Stefan Eßer
70742357c3
New port of the keynote trust-management system (currently an IETF draft).
1999-09-18 09:05:28 +00:00
Stefan Eßer
833e387518
Update to KDE-1.1.2
1999-09-18 09:02:12 +00:00
David E. O'Brien
55e2ef1919
Remove the X dependent componate. It has become its own port.
1999-09-18 04:50:31 +00:00
David E. O'Brien
c1ced583f0
Finish upgrading this to 0.9.5.
1999-09-18 04:49:23 +00:00
David E. O'Brien
e1915eacdb
Reimport Kmap (the round about way -- easy-import won't deal with it in
...
the repository's current state).
1999-09-18 04:45:50 +00:00
Steve Price
2169e434e8
The version number of libgif.so has changed to 5.
1999-09-18 03:12:11 +00:00
Dirk Froemberg
52dfef8707
Don't use ${PREFIX} in pkg/MESSAGE but /usr/local and substitute
...
/usr/local accordingly via Makefile.
Submitted by: Bill Fumerola <billf@FreeBSD.org>
1999-09-17 19:16:59 +00:00
Chris Piazza
18e85d1a29
Update to version 1.2
1999-09-17 17:35:06 +00:00
Satoshi Asami
920ac3d3eb
Remove kmap, we're under ports freeze.
1999-09-11 03:44:25 +00:00
David E. O'Brien
86cc54597c
KDE-compliant GUI front end for the nmap port scanning tool.
1999-09-11 03:38:47 +00:00
Torsten Blum
4bc02dcc5e
Turn Root Login on again.
...
It has been changed in rev. 1.4 of this file, but the committer forgot to
mention it on the log.
1999-09-10 21:01:55 +00:00
David E. O'Brien
dd9bcb203f
Upgrade to 0.9.5.
1999-09-10 18:49:15 +00:00
David E. O'Brien
2075fe9d76
A more optimized way of building the GUI only w/in the nmap distfile
...
extraction.
1999-09-10 06:52:19 +00:00
David E. O'Brien
64a5ff5614
Gentleman start your port scanners with style.
1999-09-10 06:28:20 +00:00
David E. O'Brien
6eaa1e5b75
Due to popular demand, break the `nmapfe' GUI frontend for nmap off from
...
the main nmap port. The nmap port now does not depend on GUI libs and is
thus installable on console-based machines.
1999-09-10 06:26:35 +00:00
Jun Kuriyama
a5cc2c1107
Upgrade to v1.0.0.
1999-09-09 22:56:21 +00:00
Jacques Vidrine
16ed3cda30
Distfile moved (ftp.bitchx.org reorganized).
1999-09-09 19:52:17 +00:00
David E. O'Brien
d7af4f1da5
Upgrade to 2.3BETA5.
...
This includes new RPC scanning ability & 100's of new OS fingerprints.
The machine parseable output has been cleaned up and made more regular.
1999-09-07 10:48:48 +00:00
Steve Price
f429a767f4
This port's configure script now takes care of this so we longer
...
need this hack.
1999-09-06 23:12:55 +00:00
Chris Piazza
a1d6fedced
Update to version 3.4a
...
PR: 13594
Submitted by: maintainer
1999-09-06 19:29:23 +00:00
David E. O'Brien
9128fdabc2
portlint
1999-09-04 19:24:52 +00:00
Chris Piazza
a8438b23fe
Path for problem with tty ownership with chflags and chown in BSD 4.4
...
variants. Fixes a security bug in tty allocation.
PR: 13515
PR: 13536
Submitted by: Issei Suzuki <issei@jp.FreeBSD.org> (ssh2 maintainer)
1999-09-02 17:08:38 +00:00
Michael Haro
65ab34a667
FreeBSD.ORG -> FreeBSD.org
...
Prompted by PR: 13476, 13477
Submitted by: KATO Tsuguru
1999-08-31 06:53:31 +00:00
Peter Wemm
a53421230c
$Id$ -> $FreeBSD$
1999-08-31 01:53:22 +00:00
Brian Feldman
f4e85036fb
Update to allow 3.2 (320002) to use the new interface to the kernel.
1999-08-29 13:14:16 +00:00
Michael Haro
9f403fb7d6
upgdate to sudo.v1.5.9p4
1999-08-28 04:12:08 +00:00
Michael Haro
3262cce303
expr -> ${EXPR}
...
mv -> ${MV}
rm -> ${RM}
tr -> ${TR}
1999-08-28 02:42:41 +00:00
Michael Haro
8d6f14a9b2
sed -> ${SED}
1999-08-28 02:17:34 +00:00
Michael Haro
af5f314286
ln -> ${LN}
1999-08-28 01:58:05 +00:00
Michael Haro
b8f8618362
echo -> ${ECHO} or ${ECHO_MSG} and in some cases, move echo stuff
...
to pkg/MESSAGE and use ${CAT} ${PKGMESSAGE}
1999-08-27 22:30:39 +00:00
David E. O'Brien
d99d6e104d
Change Id->FreeBSD.
1999-08-25 07:23:21 +00:00
Michael Haro
535add65ac
grep -> ${GREP}
...
true -> ${TRUE}
false -> ${FALSE}
1999-08-23 04:23:59 +00:00
Michael Haro
235481b52a
awk -> ${AWK}
...
basename -> ${BASENAME}
cat -> ${CAT}
cp -> ${CP}
ldconfig -> ${LDCONFIG}
mkdir -> ${MKDIR}
1999-08-22 23:33:47 +00:00
Michael Haro
5281212be3
chmod -> ${CHMOD}
...
chown -> ${CHOWN}
1999-08-22 19:01:07 +00:00
Tim Vanderhoek
cae3003efc
Make it clear(er) that RSAREF is a port that must be installed, not, perhaps,
...
some piece of the base system (a-la crypto). I wrote "rsaref port" instead
of "security/rsaref" since on the remote chance that rsaref switches
categories, I don't want the message to become wrong.
1999-08-18 00:02:55 +00:00
Vanilla I. Shu
5b9ed4b2e6
Upgrade to 2.1.8.6b6.
1999-08-14 08:41:16 +00:00
Jun Kuriyama
16968e5696
Upgrade to v0.9.10.
1999-08-12 15:10:09 +00:00
Dirk Froemberg
1c26d9497a
Upgrade to 0.9.4.
1999-08-09 18:48:15 +00:00
Mark Murray
cdb4ca853a
SUID ssh breaks kerberos; disable in the kerberized case. I even
...
like the idea of breaking SUID bit permanently, but I'll leave this
up to the maintainer.
1999-08-09 17:12:44 +00:00
Michael Haro
c7317ba88f
Update to version 1.5.9p3
1999-08-07 21:10:51 +00:00
Dirk Froemberg
4c1511ab10
Upgrade to 1.2.1.
1999-08-07 07:27:13 +00:00
Dirk Froemberg
380154cde3
Typo in URL.
1999-08-03 09:31:59 +00:00
Dirk Froemberg
2139efca75
Add snort.
1999-08-02 10:16:33 +00:00
Dirk Froemberg
35896a4e7a
Initial import of snort-1.2, a
...
lightweight network intrusion detection system.
1999-08-02 10:14:11 +00:00
Andrey A. Chernov
278ab87eea
upgrade to 2.08
1999-08-02 00:12:46 +00:00
Steve Price
b98520e879
Find the ssl header files correctly and fix this so it will work if
...
USA_RESIDENT=YES.
PR: 12795
Submitted by: Palle Girgensohn <girgen@partitur.se>
1999-08-01 03:08:33 +00:00
Archie Cobbs
ba9bf34b8b
Only declare this port BROKEN if ${OSVERSION} >= 400006 so that it still
...
works under -stable.
How to do this suggested by: David O'Brien <obrien@NUXI.com>
1999-07-31 21:48:34 +00:00
Jun Kuriyama
526c4df91f
Upgrade to v0.9.9.
1999-07-26 15:59:33 +00:00
David E. O'Brien
1cb3956451
Hard code the path to nmap w/in nmapfe. Thus it will work in the face of a
...
limited path.
Bug reported by: Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
1999-07-23 18:21:54 +00:00
Archie Cobbs
892a9dd098
Add new file README.FreeBSD+NAT to the documentation subdirectory, describing
...
how to run SKIP and natd together.
Submitted by: Jim Flowers <jflowers@ezo.net>
Mark this port as BROKEN until the device registration bit is fixed.
1999-07-22 18:37:09 +00:00
David E. O'Brien
7efe79f49b
Upgrade to nmap-2.2-BETA4. The beta includes a very nice GUI (xnmap) that
...
simplifies the running of nmap for the point and shoot crowd.
1999-07-22 18:33:45 +00:00
Justin M. Seger
8c66ad2ab9
Upgrade to strobe-1.06
1999-07-21 21:28:05 +00:00
Michael Haro
fc3bcccc53
Remove manpages from PLIST and use MLINKS instead of a bunch of ${LN} calls.
1999-07-16 06:09:43 +00:00
Brian Feldman
d9b2b611dd
Switch pidentd to using sysctl()s instead of libkvm. It now doesn't need
...
to be linked with libkvm... this should fix a lot of strange problems
people report with pidentd.
This is for -CURRENT only, at the moment.
1999-07-14 19:37:23 +00:00