The change makes "slip 1;" send only truncated (TC=1) responses.
Without the change, "slip 1;" is the same as the default of "slip 2;".
That default, which alternates truncated with dropped responses
when the rate limit is exceeded, is better for authoritative DNS
servers, because it further reduces the amplification of an attack
from about 1X to about 0.5X.
DNS RRL is not recommended for recursive servers.
Feature safe: yes
QtKeychain is a Qt API to store passwords and other secret data securely.How
the data is stored depends on the platform.
For Linux/Unix, KWallet (via D-Bus) is used. Support for the GNOME Keyring
via freedesktop.org's Secret Storage D-Bus specification is planned
but not yet implemented.
WWW: https://github.com/frankosterfeld/qtkeychain
PR: 177634
Submitted by: 6yearold@gmail.com
Feature safe: yes
This new version brings automatic DNS re-resolution (useful when connecting
from wifi networks which give fake DNS until you log in), fixes a bug in the
handling of reset TCP connections, and replaces README files with man pages.
As the spiped build sets _POSIX_C_SOURCE for maximal portability, yet looks
for and uses MSG_NOSIGNAL if it is available (as a performance optimization
relative to the POSIX-compliant approach of blocking SIGPIPE), we force the
__BSD_VISIBLE macro to be defined.
Feature safe: yes
Major changes in 1.11.2 (2013-04-12)
====================================
This is a bugfix release.
* Incremental propagation could erroneously act as if a slave's
database were current after the slave received a full dump that
failed to load.
* gss_import_sec_context incorrectly set internal state that
identifies whether an imported context is from an interposer
mechanism or from the underlying mechanism.
Feature safe: yes
* /var/empty has been in hier(7) since 4.x
* User sshd has been in base since 4.x
* Simplify a patch for realhostname_sa(3) usage
- Remove SUID_SSH - It was removed from ssh in 2002
- Fix 'make test'
- Add some hints into the patches on where they came from
- Mirror all patches
- Move LPK patch out of files/
- Remove the need for 2 patches
* Removal of 'host-key check-config' in install phase
* Adding -lutil
- Add SCTP support [1]
- Remove FILECONTROL as it has not been supported since the 5.8
update
- Replace tab with space pkg-descr
- Remove default WRKSRC
- Add 'configtest' command to rc script
- Mark X509 broken with other patches due to PATCH_DIST_STRIP=-p1
PR: ports/174570 [1]
Submitted by: oleg <proler@gmail.com> [1]
Obtained from: https://bugzilla.mindrot.org/show_bug.cgi?id=2016 (upstream) [1]
Feature safe: yes
Voro++ is a software library for carrying out three-dimensional computations
of the Voronoi tessellation. A distinguishing feature of the Voro++ library
is that it carries out cell-based calculations, computing the Voronoi cell
for each particle individually. It is particularly well-suited for
applications that rely on cell-based statistics, where features of Voronoi
cells (eg. volume, centroid, number of faces) can be used to analyze a
system of particles.
WWW: http://math.lbl.gov/voro++/
PR: 177678
Submitted by: jwbacon@tds.net
Feature safe: yes
Changes:
- Install depends just-in-time in the proper sequence ordering, instead of all upfront.
This also fixes differences between testport and bulk with regards to run-depends.
- Give a port all the special depends distfiles it needs during build as well. This fixes
issues with fetching and distfiles.
- Add basic hook support in /usr/local/etc/poudriere.d/hooks
- bulk: New C index builder for pkg_* bulks
- bulk: Automatically detect direct dependency changes. This should detect
postgresql/mysql/perl updates (change of default versions) without
needing user interraction.
- Delete empty directories when cleaning up repositories
- Add ftp-archive method for old releases
- jail: consistently accept svn revision number
- bulk -T: Implement try-broken
- bulk -F: fetch-orginal - This flag tries to download from the original mirror
and ignores all FreeBSD mirrors
- jail -c -P ./path.to.patch: Patch the src tree with the given patch before building it
- Add a small C code to determine if a directory is empty (faster than find for this)
- jail -u: Fix 'Error: 1 argument expected: jname'
- ports -F: Fix not populating method file
- ports -u: Fix backwards compatibility with snap dir
- Fix NO_ZFS still causing zfs.ko kernel module to be loaded
- Raise default nohang time to 7200 and add MAX_EXECUTION_TIME/NOHANG_TIME
- ports -d: Fix deleting the ports tree
- jail -d: Fix deleting jails
- testport: Add .keep support for wrkdir saving
- Speedup packaging by reducing I/O
- Fix crash in siginfo_handler() via cache_get_pkgname() if origin is empty
- ZSH completion fixes
- Documentaiton fixes
- Various leftover fixes
- Various other fixes
Feature safe: yes
Coming from 1.5.1, this brings many new features, improvements and bugfixes.
Some more interesting are
- adding support for GeoTIFF
- add a PostGIS writer
- new csv driver with an automatic mode
A suitable PostGIS driver has to be manually installed from the OpenJUMP plugins pages,
because there are many different PostGIS versions around.
PR: 177850
Submitted by: maintainer, rhurlin@gwdg.de
Feature safe: yes
- adjust mirror priorities based on availability
svnup-0.62 - 11 April 2013
* Implemented binary search tree for faster lookups of "known files".
* Added support for handling symbolic links in the repository.
* Fixed a bug where file names with hex encoded characters sent
during http transfers weren't properly decoded.
* Fixed bug when allocating space for the /tmp/svnup directory -
special thanks to (Ilya A. Arkhipov <m1cro@rambler-co.ru>).
* Fixed bug where incorrect number of bytes were sent in send_command -
special thanks to <boco@ufanet.ru>.
svnup-0.61 - 6 April 2013
* Fixed a bug with file deletion.
* Minor speed improvement with "known file" lookup.
* Fixed several valgrind-detected small memory leaks.
* Fixed a segfault when https:// was added to a -h parameter.
svnup-0.60 - 3 April 2013
* http/https support added.
* added support for a configuration/preferences/aliases file.
* added IPv6 support.
PR: 177614 [1]
PR: 177777
Submitted by: maintainer, jgh@, zi@ [1]
Approved by: maintainer, jcm@visi.com
Feature safe: yes
- Add support for parsing the output of 'svn update' as one
of the input formats for cache-update.
- Drop support for parsing cvsup output or the cvsup checkouts
file, as the ports no longer uses cvsup.
- Accordingly remove the PropagationDelay configuration item,
that only applied to cvsup-mirroring.
- Cope with systems where realpath($PORTSDIR) != $PORTSDIR
Thanks to Doug Barton for bug reports and testing.
Feature safe: yes
on Linux but /bin on FreeBSD. This guarantees that Linux shell scripts run
the Linux executables and not the FreeBSD ones.
No objection from: -emulation
PR: ports/176819
Feature safe: yes
