Submitted by:
Reviewed by:
Approved by:
Obtained from:
MFC after:
Chase makesum; the author retar the current tarball by updating these
modules since its release (05.27.2003 - 08.18.2003):
nikto_outdated.plugin 1.08
- Fixed nasty regex bug in the version eval, and made more efficient. Pointed out by fr0stman, thx Zeno for assistance
nikto_core.plugin 1.15
- Bugfix: only scanning port 80 when multiple ports are specified by CLI argument. Thanks to Martin Macok for submitting a bug report.
nikto_headers.plugin 1.07
- Added Host header back after delete in IIS Content-Location check. Thanks to Abdi Ponce for the bug report & debug.
nikto_httpoptions.plugin 1.04
- Changed PROPPATCH, TRACK, TRACE messages. Changed PROPFIND message, thanks to Jericho for tracking down some good info on it. Added SEARCH message.
nikto_user_enum_apache.plugin 1.02
- Bugfix: some user names not tested (zz, zzz, etc.)
- Major rewrite for speed improvements
Obtained from: bento
mail admins
Scan Apache log files for CodeRed, Nimda, FormMail, proxy
scanners and other malicious probes. For each one found,
track down the contact email from WHOIS data and send a
notice. Built-in rate controls prevent flooding an admin
even when his machines are scanning at high rates. Runs as
a non-privileged cron job to not interfere with the HTTP
daemon's operation.
Notes to committer:
1. This port installs a user and a group "hunch". It doesn't
meet the conditions listed in the handbook for a "reserved"
uid/gid.
2. portlint will complain about the port. A lot. To the
best of my judgment all of the warnings can be ignored
with the exception of the one about BATCH which I could
find no documentation for. Therefore it is setting
IS_INTERACTIVE.
PR: ports/44836
Submitted by: Dan Pelleg <daniel+hunch@pelleg.org>
Module::Signature adds cryptographic authentications to CPAN
distributions, via the special SIGNATURE file.
If you are a module user, all you have to do is to remember
running "cpansign -v" (or just "cpansign") before issuing
"perl Makefile.PL" or "perl Build.PL"; that will ensure the
distribution has not been tampered with.
For module authors, you'd want to add the SIGNATURE file to
your MANIFEST, then type "cpansign -s" before making a distribution.
Submitted by: autrijus@autrijus.org
- fix dependency on devel/p5-IO, which should only be used when
perl older than 5.6.1 is installed.
- enable cpio for extraction of tar archives, which uses much less
memory than Archive::Tar (suggested by amavisd-new author)
PR: 56013
Submitted by: Blaz Zupan <blaz.zupan@amis.net>
(thanks Paulius Bulotas for reporting)
- Avoid ever touching existing configs by installing example files
with .sample suffix into ${PREFIX}/etc; do not install duplicates
in ${EXAMPLESDIR}
- Removed unneeded @cwd in pkg-plist
- Bump PORTREVISION due to changed package
PR: 55971
Submitted by: Sergei Kolobov <sergei@kolobov.com>
The isakmpd port comes with a pcap.h that is not compatible
with the FreeBSD pcap.h. As a result, the pcap file written
by isakmpd has an incorrect 'linktype' in the header. Thus,
if one tries to use the pcap file with a FreeBSD tool like
tcpdump, the packets are incorrectly (read: not at all)
decoded.
PR: ports/55940
Submitted by: James E. Flemer <jflemer@alum.rpi.edu>
ADM smb is a security scanner for Samba
/* based on the src of the smbclient from the samba team */
ADMsmb will perform a complete audit of samba for you on a host you
provide.
PR: ports/53696
Submitted by: Jacek Serwatynski <tutus@trynet.eu.org>
Call bspatch with a full path; this fixes problems where
people are running freebsd-update with a PATH which doesn't
include /usr/local/bin
PR: ports/55869
Submitted by: Colin Percival <cperciva@daemonology.net>
Call bspatch with a full path; this fixes problems where
people are running freebsd-update with a PATH which doesn't
include /usr/local/bin
PR: ports/55869
Submitted by: Colin Percival <cperciva@daemonology.net>
This module lets you generate secure random passwords
with a reasonable amount of pronounceability. It avoids
the problems associated with the FIPS-181 NIST standard
as used by Crypt::RandPasswd. See perldoc for more
details.
PR: 55575
Submitted by: andrew@scoop.co.nz
