protect the oinkcode from being exposed. Also update the Snort version
in the URLs to 2.9.4.0 to match the current version of our Snort port.
Tweak the regexp that oinkmaster uses to validate HTTPS URLs so that it
won't treat a bad URL that starts with httpsssss:// as valid (this
regexp tweak was jointly worked on by me and maintainer).
regexp feedback zhuk@
OK Markus Lude (maintainer), earlier version OK sthen@
HTTPS to protect the oinkcode from being exposed (suggested by David
Hill).
Also add a note that registered users without a paid subscription are
only allowed to download the official Snort ruleset once every 15
minutes (suggested by Adam Jeanguenat). This restriction is not obvious
on the snort.org site, so I think this note would be helpful to users.
OK Markus Lude (maintainer), sthen@
a fixed stack buffer when constructing HTTP requests. Prevents an overflow
if a malicious VPN gateway sends a very long hostname/path (for redirects)
or cookie list. (There is a newer release of OpenConnect which includes
this fix, but also some bigger code changes, so that will wait until we
are done with 5.3 release). ok aja@ jasper@
gconf_ping() will try to shutdown gconfd, but since installing pkg is
done as root, there is not gconfd nor dbus that can be started when
DISPLAY isn't set and an annoying warning is issued.
discussed with espie@
Apache ActiveMQ is the most popular and powerful open source
messaging and Integration Patterns server. Apache ActiveMQ is fast,
supports many Cross Language Clients and Protocols, comes with easy to
use Enterprise Integration Patterns and many advanced features while
fully supporting JMS 1.1 and J2EE 1.4.
rc.d help and ok aja@
Fix wrong use of mutexes and some wrong error checking
related to pthreads. (The patch for this had been sent
upstream)
Hack around the abuse of NS_IN6ADDRSZ and NS_INT16S probably
found on certain systems (see Makefile for an explanation).
ok sthen@
- at least three remotely exploitable buffer overflows in the
unique_service_name() function, which is called to process incoming
SSDP requests on UDP port 1900.
- devices that use libupnp may also accept UPnP queries over the
WAN interface, therefore exposing the vulnerabilitites to the
internet.
(and roll shared libs from PFRAG.shared into PLIST while there).
libircclient is a small but extremely powerful library which implements
the IRC protocol. It is designed to be small, fast, portable and
compatible with the RFC standards as well as non-standard but popular
features. It is perfect for building the IRC clients and bots.
tweaks and ok sthen@
