cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
99,605 Commits 1 Branch 0 Tags
Commit Graph

86 Commits

Author SHA1 Message Date
gonzalo
8c44bfa2a4 Update for Stunnel to 5.06: 
Security bugfixes

    OpenSSL DLLs updated to version 1.0.1j.
https://www.openssl.org/news/secadv_20141015.txt
    The insecure SSLv2 protocol is now disabled by default. It can be
enabled with "options = -NO_SSLv2".
    The insecure SSLv3 protocol is now disabled by default. It can be
enabled with "options = -NO_SSLv3".
    Default sslVersion changed to "all" (also in FIPS mode) to
autonegotiate the highest supported TLS version.

New features

    Added missing SSL options to match OpenSSL 1.0.1j.
    New "-options" commandline option to display the list of supported
SSL options.

Bugfixes

    Fixed FORK threading build regression bug.


OK gsoares@ (maintainer) OK schwarze@
 2014-10-27 13:16:48 +00:00
ajacoutot
8d28dad502 Cope with openssl(1) move from /usr/sbin to /usr/bin 
ok landry@
 2014-08-27 06:58:00 +00:00
gsoares
05bfcfc5de update to 5.03 
OK kili@
 2014-08-22 02:22:25 +00:00
sthen
883319840e we don't have RAND_egd 2014-04-19 12:29:02 +00:00
dcoppa
03e0bb9161 Disable libwrap support. 
Ok gsoares@ (maintainer)
 2014-03-24 21:44:09 +00:00
sthen
4291ce340c SECURITY update to stunnel 5.00, fixes an issue similar to libssh and 
postgresql where a forked child process doesn't correctly reset RNG state.
See CVE-2014-0016, http://www.openwall.com/lists/oss-security/2014/03/05/1

ok gsoares@

Note from upstream release notes:

"stunnel 5.00 disables some features previously enabled by default.
Users should review whether the new defaults are appropriate for their
particular deployments."

These changes include: FIPS mode, pid file generation and
libwrap disabled by default, and the default cipher list has
been updated to "HIGH:MEDIUM:+3DES:+DH:!aNULL:!SSLv2".
 2014-03-17 13:03:11 +00:00
gsoares
3bb2993c2f missing RCS id. 2014-01-03 20:20:58 +00:00
gsoares
d4674b9ecc update to 4.56; OK benoit@ 2013-04-02 12:34:31 +00:00
ajacoutot
58f1a6f9f6 USE_LIBTOOL=Yes is the default now. 2013-03-21 08:45:11 +00:00
espie
eae66e4a7b PERMIT_* / REGRESS->TEST sweep 2013-03-11 11:35:43 +00:00
gsoares
665d95b509 Security UPDATE to 4.55; Fix CVE-2013-1762 
full changelog at:
https://www.stunnel.org/sdf_ChangeLog.html

OK sthen@
 2013-03-05 14:10:40 +00:00
gsoares
9520aca711 - update to 2.54 
- take maintainership

OK sthen@ (former maintainer)
 2012-10-20 15:37:40 +00:00
gsoares
6457aa1c8d - update to 4.53 
- drop maintainer per his request

ok sthen@
 2012-08-09 14:13:59 +00:00
ajacoutot
689f54b24a --localstatedir=/var is the default now. 2012-04-28 10:52:08 +00:00
sthen
88ea72915d Change SEPARATE_BUILD=(concurrent|simple) to Yes; bsd.port.mk doesn't 
make a distinction between these.  ok aja@ dcoppa@
 2012-03-29 13:38:12 +00:00
ajacoutot
a89a75cd04 Garbage collect the /dev/arandom patches. 
from Brad
ok landry@ sthen@
 2012-03-08 12:13:00 +00:00
sthen
38fa0cfdea update to stunnel 4.50; use better MASTER_SITES while there. 2011-12-08 13:42:05 +00:00
sthen
1532a55649 update to stunnel 4.49 2011-11-30 19:37:21 +00:00
sthen
9aee28cec4 update to stunnel 4.44 2011-09-19 14:21:02 +00:00
sthen
911192190c update to stunnel 4.43, ok jakob@, reads good to william@ 
- take maintainer, suggested by jakob
- pid is now created inside the chroot jail, note you may want to set
"pid = /stunnel.pid" in config.
 2011-09-15 00:42:21 +00:00
william
7832d1549c add rcscript 
ok ajacoutot jakob (MAINTAINER)
 2011-09-14 01:45:31 +00:00
ajacoutot
2d702b0153 Sanitize some @unexec/@extraunexec calls to rm: move them up in the 
PLIST and delete everything under the @sample'd directory instead of the
directory itself to prevent a warning from pkg_delete(1) trying to
remove a non existing directory and to help preventing left-over files
and directories.
 2011-05-11 08:24:40 +00:00
espie
6c283d7e98 new depends 2010-11-20 17:22:40 +00:00
espie
2ef1026971 USE_GROFF=Yes 2010-10-18 21:41:44 +00:00
ajacoutot
f7296e021c Remove PKGNAME=${DISTNAME} constructs where possible, as this is the 
default anyway.

ok jasper@
 2010-08-31 08:15:44 +00:00
jakob
f7188a8991 upgrade to stunnel v4.28 2009-11-14 06:32:25 +00:00
jakob
01b252f4ad update to stunnel v4.27 2009-05-28 18:08:49 +00:00
jakob
1ebf2bd47d upgrade to stunnel v4.26. 
also; update patch to write pidfile before dropping privs.
 2008-09-22 19:20:01 +00:00
jakob
3f1a16ec6a upgrade stunnel to v4.25 2008-07-15 08:33:49 +00:00
jakob
bc009b7d3c Update to stunnel v4.24, which fixes a security issue in the OCSP 
functionality.  The bug allows a revoked certificate to successfully
authenticate.  Any installations with OCSP enabled should be upgraded ASAP.
Other users are not affected.
 2008-05-20 20:25:36 +00:00
jakob
f867a81633 upgrade to stunnel v4.23 2008-05-14 21:06:15 +00:00
merdely
1997c75349 Remove surrounding quotes in NO_REGRESS/COMMENT*/PERMIT_* 
From Darrin Chandler
 2007-09-15 23:29:57 +00:00
espie
d4ebcd974d more base64 checksums 2007-04-05 17:26:05 +00:00
jakob
c4cba4f557 stunnel v4.20 2006-12-05 08:40:44 +00:00
jakob
36da4179bd stunnel v4.18 2006-09-27 15:30:10 +00:00
sturm
65e2fcd425 don't use broken homegrown socketpair() implementation 
reported by mayonez at ssnet.xim.pl
 2006-08-09 18:44:08 +00:00
aanriot
2ccf94b408 - use the same directory for the key as mentionned in MESSAGE. 
- bump PKGNAME.

ok jakob@
 2006-04-20 16:01:52 +00:00
jakob
57417add32 stunnel 4.15 2006-03-23 15:49:53 +00:00
naddy
45d3a1767f - fix WANTLIB 
- USE_LIBTOOL while we're here
 2005-11-17 02:50:55 +00:00
jakob
8b19949d5d upgrade to stunnel v4.14. upgrade highly recommended by author due to 
bugs introduced in 4.12.
 2005-11-07 07:26:06 +00:00
jakob
102f09da40 stunnel v4.13 2005-10-22 18:00:32 +00:00
jakob
2a46049d1a stunnel v4.11 2005-07-18 15:09:11 +00:00
jakob
e472f35083 stunnel v4.09; bugfix release 2005-03-27 09:23:29 +00:00
jakob
2de02b51cb stunnel v4.08, mostly bugfixes. also enable IPv6 2005-02-28 07:03:09 +00:00
naddy
ae76d3ea1f SIZE 2005-01-05 17:21:50 +00:00
jakob
09b6f25453 stunnel 4.07, misc minor fixes 2005-01-03 08:06:42 +00:00
jakob
bba7bba4d4 poll patch from author 2004-12-28 09:31:05 +00:00
jakob
dd125683b2 stunnel 4.06 2004-12-27 08:24:44 +00:00
alek
b5bb570067 - Kill DEINSTALL 
- Replace INSTALL with @newgroup, @newuser and @sample
- Add WANTLIB marker
- Bump PKGNAME

ok jakob@
 2004-11-28 16:32:28 +00:00
espie
caf501cd02 new plists. 
gnutls depends on lzo.
 2004-09-15 18:35:58 +00:00