the SNMP module
- Remove a patch that is now part of the distribution
- Miscellaneuous small fixes:
+ in squid.sh, make stop_command poll for the squid processes' exit in
the rcNG case too; this eliminates the need to do this in restart_command
+ make the information regarding rcNG'ness in pkg-install easier to read
+ install unstripped binaries if WITH_SQUID_STACKTRACES is defined
PR: ports/72581
Submitted by: Thomas-Martin Seck (maintainer)
- try to prevent crashes of the digest helper (squid bug #1031)
- correct parsing of the acl_time directive when multiple time specifications
are given (squid bug #1060)
- correct "cachemgr config" output for http_header_* directives
(squid bug #1056)
- recognize the Content-Disposition header to be able to specify
http_header_access directives using it (squid bug #961)
See <http://www.squid-cache.org/Versions/v2/2.5/bugs/> for further
information.
Reimplement the rcNG support. See UPDATING for details.
PR: ports/71260
Submitted by: maintainer
ports/67724, submitted by Michal F. Hanula)
- Change ": foo=${foo:=bar}" into "foo=${foo:-bar}" to make the
shell scripts easier to read and understand
- Correct credits for the recently published NTLM auth
vulnerability and fix a nearby braino, too
- Bump PORTREVISION
PR: ports/67797
Submitted by: maintainer
submitting a blank username in digest authentication (squid bug #954)
and bump PORTREVISION
- follow Duane Wessel's squid book and use "storage scheme"
instead of "store type"
- remove trailing whitespace
- no longer hardcode the path of the nologin binary in
pkg-install and re-wrap pw(8)'s arguments for better readability
PR: ports/65723
Submitted by: maintainer
<http://www.squid-cache.org/Versions/v2/2.5/bugs/> for details
- Correct OpenSSL support and, while at it, clean up CFLAGS and
LDFLAGS handling (thanks to dinoex for lots of helpful advice!).
- better be safe than sorry and pass PTHREAD_CFLAGS through in
case we are compiling with threads
- try to remove the errorpages directory silently since user
defined directories might legitimately be present
- clean up shell scripting:
+ do not use too many variables
+ use /bin/sh's features instead of external commands
PR: ports/65356
Submitted by: maintainer
http://www.squid-cache.org/Versions/v2/2.5/bugs/ for details
- Fix OPTIONS parser to handle a default-to-on option correctly
when either the portoptions file does not exist and/or is not read
(i.e. the PACKAGE_BUILDING and BATCH cases)
- use IGNORE instead of .error to abort
- use ${ID} consistently
- inform the user of squid.sh's rcNG-ness when /etc/rc.subr is present
at installation time
- bump PORTREVISION
PR: ports/64946
Submitted by: Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
- provide more OPTIONS, including (untested) support for pf(4)
- integrate the follow-XFF-patch from devel.squid-cache.org (submitted by
Michael Ranner), this should improve interaction with dansguardian
- use id 100 for the squid pseudo user instead of choosing the first free
id greater than 3127, a behaviour introduced with PORTVERSION 2.5.4_6.
Provide a 'changeuser' target to make migration from a high id to id 100
possible (requested by Kris Kennaway)
- don't let the port CONFLICT with itself (criticized by Oliver Eikemeier)
- provide rcNG support in squid.sh only on systems with /etc/rc.subr
PR: ports/64061
Submitted by: Thomas-Martin Seck (maintainer)
http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE4-ftp_telnet
for details
- integrate a patch by Glen Gibb to enable ARP based ACLs and make this an
OPTION; see also http://www.squid-cache.org/bugs/show_bug.cgi?id=909
for his original bug report
- integrate additional vendor patches
- make --enable-underscores an OPTION
- set a tighter ACL on libexec/pinger
- use $SQUID_USER and $SQUID_GROUP in pkg-install
- wordsmith comments
- bump PORTREVISION
PR: ports/62442
Submitted by: maintainer
- Fix checksum for updated errorpages patch
PR: ports/62923
Submitted by: Michal Pasternak <dotz@irc.pl>
Approved by: maintainer
of SQUID_{UID,GID} which other squid-related ports already implemented.
The user/group will be created on the fly if they do not already exist.
- introduce WITH_SQUID_LDAP_AUTH to pull in the necessary bits to compile and
use the ldap_auth helper
- install some more authentication helper applications by default
- install helper applications to ${PREFIX}/libexec/squid instead of
${PREFIX}/libexec, add notes about it in pkg-install and pkg-descr
- cleanup the pre-installation tasks and move them from Makefile and pkg-plist
into the pkg-install script; make 'make install' and 'pkg_add' actually do
the same thing
- introduce a pkg-deinstall script
- make squid.sh rcNG compatible (when either /etc/rc_subr or
${PREFIX}/etc/rc_subr is present, the first one will be used, otherwise the
script will work as a "rc classic" script so no additional dependency on
the rc_subr port should be needed)
- some Makefile cleanups:
+ the squid installation procedure now correctly strips binaries, so there
is no need to do this manually anymore
+ generate those parts of pkg-plist dynamically that may be affected by user
set tunables (currently the localized error pages and helper applications)
+ document the available configuration options in a slightly different style
+ remove some obsolete variable declarations and comments
+ honor NOPORTDOCS
- add CONFLICTS
- add another vendor patch, see
http://www.squid-cache.org/bugs/show_bug.cgi?id=890 for a thorough
explanation of what has been fixed.
- since we can no longer take the presence of Lithuanian error pages for
granted, wrap the workaround for the errorpages.patch with '.if exists()'
- bump PORTREVISION
PR: 61315
Submitted by: maintainer
Update the squid-2.4 port to actually _be_ squid-2.4 . Phew.
This port builds, installs, packages, pkg_delete's cleanly.
I'm going to run it through some more linting and tidying up before
I'm completely done with it.
Differences from squid22/squid23 :
* install-pinger isn't built. I'll tackle this later, possibly by creating
a squid user/group. I don't like having suid binaries installed,
even more so when 99% of the users of this port won't even enable
ICMP pinging.
* I've enabled the lru and heap replacement policies. LRU is used by
default, the beauty here is that the user can choose one or the other
without needing a recompile.
* I've enabled ufs (sync), diskd (async) and null (no caching, only proxying).
This again lets users choose what they want without needing a recompile.
The default is still a 100mb cache in /usr/local/squid/cache/ running
ufs. I would change it to diskd but if the user hasn't tweaked their
sysV shm/msg parameters sufficiently they'll just be puzzled when squid
gives mysterious sysV errors (and if they load it up enough to have UFS
become an issue, they'd be better off reading the squid FAQ anyhow..)
"We are currently in a beta-test period for Squid-1.2. If you like
seeing Squid coredump frequently, please join us!"
"This is BETA software. Do not run this on your production systems.
Logfile formats are subject (and likely) to change at any time without
warning.
Here is a brief list of the major features of this version:
HTTP/1.1 persisitent connections.
Lower VM usage; in-transit objects are not held fully in memory.
Totally independent swap directories.
Customizable error texts.
FTP supported internally; no more ftpget.
Asynchronous disk operations (optional, requires pthreads library).
Internal icons for FTP and gopher directories.
snprintf() used everywhere instead of sprintf().
...and many more!
"
As well, there is support for using MD5 or SHA hashes of URL's in the
cache index for space (and speed?) savings, SNMP support, poll(2) is
used by default, etc.
Please see http://squid.nlanr.net/Squid/1.2.beta/ before using.
and stability measures.
This port installs in a "FreeBSD-native" tree (like apache) rather than
with a mini hierarchy under /usr/local/squid/{bin,etc,cache,logs,...}
(the default behavior seems to have changed between 1.0.0 and 1.0.20)
Also, build a rc.d/squid.sh script.
