Noteable changes:
- Security fix: "|" not allowed into DirLang parameter.
- Security fix: More restrictive rule for using AWSTATS_ENABLE_CONFIG_DIR.
OK @aja
<http://www.squid-cache.org/Advisories/SQUID-2016_10.txt>
Incorrect HTTP Request header comparison results in Collapsed
Forwarding feature mistakenly identifying some private responses as
being suitable for delivery to multiple clients.
<http://www.squid-cache.org/Advisories/SQUID-2016_11.txt>
Incorrect processing of responses to If-None-Modified HTTP conditional
requests leads to client-specific Cookie data being leaked to other
clients. Attack requests can easily be crafted by a client to probe a
cache for this information.
Previous diff looked good to sthen@. This updated diff stops putting
lock files in /var/spool/locks. This means that one should avoir
running uucp and pppd/whatever uses uu_lock(3) on the same tty.
Hopefully nobody actually does that...
In some cases there still happen -bindir-related failure, but I failed
to reproduce, and noone else sees them for now. Even more, those two
patches do not cover all -bindir cases in sources, so if/when libtool
will fail, you'd need two more patches anyway.
okay aja@
This moves pg_upgrade to a subpackage, and has that
subpackage depend on postgresql-previous.
pthread is removed from WANTLIB, as it is no longer
needed for suppoting threaded extensions.
This adds support for PostgreSQL 9.6's new BSD
authentication.
OK pea@ landry@
This imports the previous version of PostgreSQL supported
by the ports tree into a versioned directory. It's
designed for use by pg_upgrade, which allows upgrading of
PostgreSQL databases without a dump and restore.
OK pea@ landry@
