eZ Publish is a professional PHP application framework with advanced CMS
(content management system) functionality. As a CMS it's most notable
feature is its revolutionary, fully customizable and extendable content
model. This is also what makes it suitable as a platform for general PHP
development, allowing you to develop professional Internet applications fast.
Standard CMS functionality, like news publishing, e-commerce and forums is
already implemented and ready for you to use. Its stand-alone libraries can
be used for cross-platform, database independent PHP projects.
eZ Publish is database, platform and browser independent.
from (and tested by) Pierre-Emmanuel Andre via Denis Chatelain
(MAINTAINER) on ports@
discussed with mbalmer@ at c2k8 who was fine with the update as long as
someone tested it
Main features: customizable keybindings, basic HTML rendering, HTTP proxy
support, OPML import/export, themes, support for various versions of RSS,
Screen support. browser auto-detection, and more.
positive user feedback on ports@, ok ajacoutot@
HAVP (HTTP AntiVirus proxy) is an easily-configured non-caching
HTTP proxy which interfaces to an anti-virus scanner (ClamAV and
others) to prevent transfer of infected content (including HTML
and image files).
From maintainer Giovanni Bechis
it makes more sense to add devhelp as run_depends for gnome-session and
leave it to the user to install it manually for other packages
"if you're as happy as a pig in poop, commit it" jasper@
and bump; clamav used to pull in curl but it was removed some time ago,
resulting in broken dansguardian,-clamav packages. thanks to qgiovanni
at gmail dot com for pointing these out. update license marker while
there.
without the need to install LaTeX in httpds chroot.
From Mischa Diehm <md@msys.ch>, maintainer (a new porter, so give him the
drill he needs...)
Thanks to merdely to host the distfile and rerolling it as a gzipped tarball.
*) Bugfix: nginx did not process FastCGI response if header was at
the end of FastCGI record; bug appeared in 0.6.2. Thanks to
Sergey Serov.
*) bugfix: a segmentation fault might occur in worker process if a
file was deleted and the "open_file_cache_errors" directive was
off.
From Darrin Chandler (MAINTAINER)
ok bernd@
some good arguments against changing this.
"i trust you, so go ahead" jasper@
Note: this doesn't fix the questionable API_VERSION approach, it just
fixes the build.
is built by first unpacking the distfile so it can be patched.
Sprinkle a few SQL typecasts where needed to make Kronolith happy
again with PostgreSQL 8.3.x. Discussed with simon.
httpd(8) by adding chroot(2) support, disabled by default as expected
with this module.
Otherwise no user would be able to run his tests without the effort of
setting up a chroot(2) environment with Perl and everything else, and
obviously also running them as root.
To enable chroot set the APACHE_TEST_CHROOT environment variable or
start the tests with `./t/TEST -chroot 1'.
I'm also taking over maintainership.
Tested by and looks good to landry@
a local database, so no extra network traffic). Enabled by default,
disable with "GeoIP no" in .conf if you don't want it.
discussed with/ok mbalmer (maintainer)
in-tree include: various XSS, SQL injection, saves sensitive data
in PHP session, crafted POST allows users to read files accessible
by the web server.
thanks bsd at openbsd.rutgers.edu for feedback, ok ckuethe
It is designed to allow the programmer to express as much of the view
logic as desired in Python, and includes a pure Python XML expression
syntax named stan to facilitate this. However it also provides rich
support for designer-edited templates, using a very small XML
attribute language to provide bi-directional template manipulation
capability.
Nevow also includes Divmod Athena, a "two way web" implementation,
providing a two-way bridge between Python code on the server and
JavaScript code on the client. Modular portions of a page, known as
"athena fragments" in the server python and "athena widgets" in the
client javascript, can be individually developed and placed on any
Nevow-rendered page with a small template renderer. Athena abstracts
the intricacies of HTTP communication, session security, and
browser-specific bugs behind a simple remote-method-call interface,
where individual widgets or fragments can call remote methods on their
client or server peer with one method: "callRemote".
ok pyr@
users downloading this from official distribution sources.
(We are in compliance, but without an explanation, someone
might not notice this if they update it later).
Like Ruby on Rails, Merb is an MVC framework. Unlike Rails, Merb is
ORM-agnostic, JavaScript library agnostic, and template language
agnostic, preferring plugins that add in support for a particular
feature rather than trying to produce a monolithic library with
everything in the core. In fact, this is a guiding principle of the
project, which has led to third-party support for the ActiveRecord,
DataMapper, and Sequel ORMs.
Rack provides a minimal, modular and adaptable interface for developing
web applications in Ruby. By wrapping HTTP requests and responses in
the simplest way possible, it unifies and distills the API for web
servers, web frameworks, and software in between (the so-called
middleware) into a single method call.
NTLM Authorization Proxy Server is an http proxy server that allows
you to authenticate via the proprietary NTLM protocol, so you can
use web sites and web proxies that require NTLM authorization.
ok and help from sthen, merdely; 'schaweet' marco
HTML::SiteTear make a separated copy of a part of web site in local file
system. All linked files (HTML file, image file, javascript, cascading
style shieet) from a source HTML file will be copied under a new file.
from Girish Venkatachalam
feedback merdely@
ok merdely@, okan@
pQuery is a pragmatic attempt to port the jQuery JavaScript framework to
Perl. It is pragmatic in the sense that it switches certain JavaScript
idioms for Perl ones, in order to make the use of it concise. A primary
goal of jQuery is to "Find things and do things, concisely". pQuery has
the same goal.
from Girish Venkatachalam
ok merdely@, okan@
HTML::Copy copy a HTML file without breaking links in the file.
HTML::Copy will be useful to maintain web sites and to handle HTML
templates.
from Girish Venkatachalam
feedback & ok okan@, mederly@
This module removes unnecessary whitespace from JavaScript code. The
primary requirement developing this module is to not break working code:
if working JavaScript is in input then working JavaScript is output. It
is ok if the input has missing semi-colons, snips like '++ +' or '12
.toString()', for example.
from Girish Venkatachalam
ok merdely@, okan@
This module removes unnecessary whitespace from CSS. The primary
requirement developing this module is to not break working stylesheets:
if working CSS is in input then working CSS is output.
from Girish Venkatachalam
ok merdely@, okan@
- Maintenance update of XCache, also tested by myself.
from me:
- adjust for /var/www/conf/php5 symlinks
- add re2c as BUILD_DEPENDS, configure picks it up if installed
ok brad@ (maintainer)
where users are supposed to create symlinks to config file fragments
in ../php5.sample, otherwise the symlinks are destroyed when someone
updates php5/core.
ok brad, seems ok to landry.
This module improves non-ascii filename interoperability of Apache
(and mod_dav).
It seems many WebDAV clients send filename in its platform-local
encoding. But since mod_dav expects everything, even HTTP request line,
to be in UTF-8, this causes an interoperability problem.
This module adds following directives:
EncodingEngine, SetServerEncoding, AddClientEncoding,
DefaultClientEncoding, and NormalizeUsername.
- allow autogen passwords for new users
- put the names of roles more often on the rights page.
- extra hook for jquery_update, to avoid having to overwrite jquery
PEOPLE WHO TESTED drupal BEFORE:
You *must* disable extra modules and themes from a working drupal install
before the update, and reenable them afterwards.
If you forgot to,
- ln all the stuff in sites/all/modules and sites/all/themes to modules and themes
- check your site runs again, disable extra stuff
- remove the links and re-enable stuff.
okay naddy@
Typo is a lean weblogging engine powered by rails. It supports XMLRPC
posting, ping/trackback, comments, textile, markdown, categories, all
common exports, fulltext search and so on.
From maintainer Paul Irofti.
checkValidHTTPHeader assumes the whole header is ascii, while only
token should be
adapted from snownews, liferea reuses network support code
ok maintainer Wiktor Izdebski
HTML::Tidy is an HTML checker in a handy dandy object. It's meant as a
replacement for HTML::Lint. If you're currently an HTML::Lint user
looking to migrate, see the manual section "Converting from HTML::Lint".
ok jasper@
Fixes multiple vulnerabilities:
CVE-2008-0412
CVE-2008-0413
CVE-2008-0414
CVE-2008-0415
CVE-2008-0419
CVE-2008-0591
CVE-2008-0593
More infos:
http://secunia.com/advisories/28758/
Tested by some people on ports@. Thanks!
ok martynas@, laurent@, steven@
LDAP support with group management has been added as a Trac extension.
This extension enables to use existing LDAP groups to grant permissions
rather than defining permissions for every single user on the system.
The latest release also permits to store permissions (both users and
groups permissions) in the LDAP directory itself rather than in the
SQL backend.
ok okan@
- fix HOMEPAGE/MASTER_SITES
- fix WANTLIB in mysql
- regen patches
- make escaping more pgsql friendly
- fixes to pgsql upsteam - no longer alpha
- run pkg/DESCR through fmt(1)
- use httpd(8) modules.sample for @sample
feedback and ok merdely@
detailed http 404 error reports. Webalizer author hinted me at this,
he does not intend to update. danh@ is ok with the maintainer change.
ok stehn, okan.
in a couple of months and people should use php5 in any conditions.
it's going to stay in the tree for a little more time with a comment about
the reasons, just to help people upgrading to php5
twill is a simple language that allows users to browse the web from a
command-line interface. With twill, you can navigate through web sites
that use forms, cookies, and most standard web features. twill supports
automated web testing and has a simple Python interface.
from Will Maier
ok merdely
Quixote is a framework for developing Web applications in Python.
Quixote is based on a simple, flexible design, making it possible to
write applications quickly and to benefit from the wide range of
available third-party Python modules. Deployed appropriately, Quixote
has excellent performance that allows you to put Quixote-based
applications into large-scale production use.
from Will Maier
ok merdely
It features tabbed browsing, session saving, dynamic bookmarks and
customizable mouse gestures. Uses xulrunner for gecko support and GnuTLS 2
for https:// links.
with feedback and testing from many on ports@, thanks !
"import it, it can't be worse than galeon and epiphany anyway.." ajacoutot@
Manager version H3 (2.1.4). And I am pleased to announce my 1000st committ ;)
This is a security release that fixes privilege escalation in the Horde API
and missing ownership validation in the share management. All users are
encouraged to upgrade to this version.
The major changes compared to the Nag H3 (2.1.3) version are:
* Fixed privilege escalation in the Horde API.
* Fixed missing ownership validation on share changes.
* Updated Japanese, Polish, and Spanish translations.
The full list of changes (from version H3 (2.1.3)) can be viewed here:
http://cvs.horde.org/diff.php/nag/docs/CHANGES?r1=1.115.2.54&r2=1.115.2.56.2.3&ty=h
Calendar Application version H3 (2.1.7).
This is a bugfix release that also fixes privilege escalation in the Horde API
and missing ownership validation in the share management. All users are
encouraged to upgrade to this version.
Major changes compared to the Kronolith H3 (2.1.6) version are:
* Fixed privilege escalation in the Horde API.
* Fixed missing ownership validation on share changes.
* Updated Japanese translation.
* Small bugfixes and improvements.
The full list of changes (from version H3 (2.1.6)) can be viewed here:
http://cvs.horde.org/diff.php/kronolith/docs/CHANGES?r1=1.165.2.158&r2=1.165.2.161.2.3&ty=h
This is a security release that fixes a privilege escalation in the Horde
API. All users are encouraged to upgrade to this version.
Major changes compared to the Turba H3 (2.1.5) version are:
* Fixed privilege escalation in the Horde API.
* Updated Japanese translation.
The full list of changes (from version H3 (2.1.5)) can be viewed here:
http://cvs.horde.org/diff.php/turba/docs/CHANGES?r1=1.181.2.113&r2=1.181.2.114.2.2&ty=h
Active Resource (ARes) connects business objects and Representational State
Transfer (REST) web services. It implements object-relational mapping for
REST webservices to provide transparent proxying capabilities between a
client (ActiveResource) and a RESTful service (which is provided by Simply
RESTful routing in ActionController::Resources).
Needed for rails 2.0.
ClientForm is a Python module for handling HTML forms on the client
side, useful for parsing HTML forms, filling them in and returning the
completed forms to the server. It developed from a port of Gisle Aas'
Perl module HTML::Form, from the libwww-perl library, but the interface
is not the same.
From Will Maier
ok eric@
Storm is a fast object-relational mapper (ORM) for Python and used in
Canonical's Launchpad project. Storm is developed in a test-driven
manner, provides small and clean public APIs and works with everything
from SQLite to PostgreSQL and MySQL.
From Will Maier
ok kili@
KnowledgeTree is the leading commercial open source electronic document
management software designed for teams and small to medium-sized
organizations.
KnowlodgeTree is document management made simple: easily secure, share,
track and manage the documents and records your organization depends on.
httplib2 is a comprehensive HTTP client library that supports many
features left out of other HTTP libraries.
from maintainer Benoit Chesneau with tweaks by me and CATEGORIES
reordering by ajacoutot@. ok ajacoutot@
wbox aims to help you having fun while testing HTTP related stuff. You
can use it to perform many tasks, including the following.
* Benchmarking how much time it takes to generate content for your
web application.
* Web server and web application stressing.
* Testing virtual domains configuration without the need to alter
your local resolver.
* Check if your redirects are working correctly emitting the right
HTTP code.
* Test if the HTTP compression is working and if it is actually
serving pages faster.
* Use it as a configuration-less HTTP server to share files!
from Laurent Fanis <laurent at humppa.nl> (MAINTAINER)
- include the suhosin extension and suhosin patch by default unless
the no_suhosin flavor is defined
- add all the suhosin configuration options to the sample config
files
PmWiki is a wiki-based system for collaborative creation and maintenance of websites.
PmWiki pages look and act like normal web pages, except they have an "Edit" link that
makes it easy to modify existing pages and add new pages into the website, using basic
editing rules. You do not need to know or use any HTML or CSS.
Page editing can be left open to the public or restricted to small groups of authors.
the php core module and extenions.
Install a sample configuration file to /var/www/conf/modules.sample
which can be symlinked or copied over to /var/www/conf/modules
so apache is going to pick it up.
Allow php to scan /var/www/conf/php5 for php configuration
files so if the user installs or creates a symlink from the
sample configuration files from the php5.sample directory,
it is going to be picked up by php5.
Create a dummy pwd.db file in the php5-imap package in the apache
chroot because it is needed by c-client.
feedback and tests by sthen@
MyReview is an open-source web application for managing the paper
submission and paper review phases. It aims at providing the most
complete, powerful and flexible software of its kind.
It provides the following functionalities:
* paper submission
* assignment of papers to reviewers
* review submission
* discussion on conflicting reviews
* paper selection
* preparation of the conference
publishing platform with a focus on aesthetics, Web standards,
and usability." It is a web-based blogging package based
on PHP and MySQL.
WordPress MU is a multi user version of WordPress.
ok mbalmer@
"This release closes a JSON XSS vulnerability, fixes a couple of
minor regressions introduced in 1.2.4, and backports a handful of
features and fixes from the 2.0 preview release.
All users of Rails 1.2.4 or earlier are advised to upgrade to 1.2.5,
though it isn't strictly necessary if you aren't working with JSON.
For more information the JSON vulnerability, see CVE-2007-3227."
* Use the right config dir, allowing something else than /etc as side effect
* Reorder entries
* Bump package
jasper@ ok; maintainer is on holidays but jasper believes he'll be ok
with this, so commiting with his bless.
mplayerplug-in is a browser plugin that uses mplayer to play digital
media from websites.
This plug-in gives Mozilla the ability to play media from a website the
net without reading the source html and getting the url manually. Media
is played embedded in the page or in a separate window depending on how
the author of the webpage intended the media to be seen.
from Gleydson Soares <gsoares at trusted.com.br> (MAINTAINER)
feedback and ok steven@
Plagger is a pluggable RSS/Atom feed aggregator and remixer platform.
Everything is implemented as a small plugin and all you have to do is to
write a flow of aggregation, filters, syndication, publishing and
notification plugins into a config file (YAML).
ok jasper@
Squid 2.6. It's not the default in squid.conf but can be enabled, and
it's useful e.g. when you are using squid through dansguardian, in order
to keep/show the source address of the client in the logs (otherwise,
squid thinks that everything comes from dansguardian).
ok brad@
LWP::Authen::Wsse allows LWP to authenticate against servers that are
using the X-WSSE authentication scheme, as required by the Atom
Authentication API.
ok jasper@
"This release contains additional deprecation notices, security
fixes and some minor performance improvements. All users of 1.2.3
are advised to upgrade."
