cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
82,879 Commits 1 Branch 0 Tags 554 MiB
8995b38bd4
Commit Graph

190 Commits

Author SHA1 Message Date
sthen
6ac85d151f m4 eval.c r1.67 fixed the HAVE_VOID__ problem which was causing 
trouble for autoconf 2.62+; remove this workaround which now causes
the build to fail. No bump as the package doesn't change from the
version which last built successfully.

Build failure noticed by naddy@. 'make it so' jasper@, Brad ok.
 2010-04-02 00:38:03 +00:00
jasper
82012ecbfd SECURITY FIX for CVE-2010-0308, "Squid DNS Packet Processing 
Denial of Service Vulnerability"

brad (MAINTAINER) came up with the same diff
ok ajacoutot@ sthen@
 2010-02-03 06:41:17 +00:00
sthen
b63c6b4c36 update to the latest bug fix release in the 2.7 branch. From Brad (maintainer). 2009-10-30 00:56:57 +00:00
jasper
34c1f307c2 Security fix for CVE-2009-2855 
ok brad (MAINTAINER)
 2009-08-30 21:52:44 +00:00
sthen
ae88779346 bug fix update to Squid 2.7-STABLE6, from Brad. 2009-02-08 15:04:33 +00:00
sthen
8d7d2b4d1b update to 2.7.STABLE5, various bugfixes. From Brad (and running here ~3wks). 2009-01-08 03:37:24 +00:00
brad
464f38be0c Upgrade Squid to 2.7-STABLE4 
ok ajacoutot@
 2008-08-20 16:35:15 +00:00
brad
ff9d8cf194 Upgrade Squid to 2.7-STABLE3. 
ok okan@
 2008-07-16 21:18:27 +00:00
jasper
1f76a0180b - update squid to 2.6STABLE20 
- update license marker
- remove transparent flavor
- add ldap flavor

from brad@ (MAINTAINER), testing by several users
 2008-05-31 10:07:45 +00:00
landry
9f72972268 Add missing @sample markers in PLIST, bump PKGNAME. 
from brad@
 2008-02-20 09:18:01 +00:00
rui
4da814357f - update squid to 2.6.STABLE18 
from brad@
 2008-01-28 22:04:00 +00:00
todd
ca63a400d5 update to 2.6.STABLE17 
from maint; works and builds ok for me
 2007-12-04 01:27:13 +00:00
aanriot
15758c2410 enable the "X-Forwarded-For" headers support which has been added in 
Squid 2.6. It's not the default in squid.conf but can be enabled, and
it's useful e.g. when you are using squid through dansguardian, in order
to keep/show the source address of the client in the logs (otherwise,
squid thinks that everything comes from dansguardian).

ok brad@
 2007-10-08 07:04:50 +00:00
merdely
c324015314 Update to Squid 2.6.STABLE16. 
From brad (MAINTAINER)
ok sthen@
 2007-09-10 17:49:23 +00:00
kili
eb4770dc84 Change Brads email address for now, so people can reach him instead of 
getting bounces or 550s. Bump pkgnames. While here, remove quotes from
comments.

prompted by espie@
 2007-09-01 20:11:21 +00:00
todd
82be18b245 update to 2.6 stable13, from brad@ (maint) 
ok kili@ tested by me
 2007-05-20 00:52:32 +00:00
robert
1e7cd4578c update to version 2.6.STABLE12 (regen patches while here); 
from MAINTAINER; Brad <brad@comstyle.com>
 2007-04-12 15:10:02 +00:00
espie
d4ebcd974d more base64 checksums 2007-04-05 17:26:05 +00:00
todd
c49ef31abf bugfix maintenance release update for Squid. 
from maint brad@
 2007-02-01 07:46:24 +00:00
todd
5b9b91a5d5 bugfix update; from maintainer (brad@) 2007-01-13 16:13:28 +00:00
brad
501f04fa44 upgrade to 2.6.STABLE5 2006-11-13 02:11:39 +00:00
brad
dcee93fbfd fix the MESSAGE file, s/2.5/2.6/ 2006-10-03 18:32:44 +00:00
brad
78924f0824 upgrade to 2.6.STABLE4 
Squid 2.6 supports kqueue and hw accelerated SSL via OpenSSL,
as well as many other improvements.
 2006-10-03 05:00:49 +00:00
bernd
b8bedd34ec Back out change with no review. 
ok espie@, pvalchev@
 2006-06-19 11:49:07 +00:00
brad
27ff4e08fa upgrade to 2.5.STABLE14 2006-06-17 03:15:55 +00:00
brad
a20588de08 upgrade to 2.5.STABLE13 2006-04-13 23:46:56 +00:00
brad
7e96195d7d Have Squid open /dev/pf in read-only mode. 
From: Andrey Matveev <evol at online dot ptt dot ru>
 2006-01-06 01:40:27 +00:00
naddy
bfd5225608 Always explicitly set the AUTOCONF_VERSION to use. In some cases 
the default was not appropriate.
 2005-11-03 18:28:55 +00:00
brad
c813d99c13 upgrade to 2.5.STABLE12 
- [Major] Error introduced in 2.5.STABLE11 causing truncated responses
  when using delay pools (Bug #1405)
 2005-10-29 23:26:38 +00:00
brad
f01c664640 upgrade to 2.5.STABLE11 
Alex Masterov has reported a vulnerability in Squid,
which potentially can be exploited by malicious people
to cause a DoS.

The vulnerability is caused due to an unspecified error
in the "sslConnectTimeout()" function after handling
malformed requests. This may be exploited to crash Squid.

CAN-2005-2796
 2005-09-25 17:03:32 +00:00
brad
5359105907 upgrade to 2.5.STABLE10 
- Malicious users may spoof DNS lookups if the DNS client UDP port (random,
  assigned by OS at startup) is unfiltered and your network is not protected
  from IP spoofing.
- CVE-1999-0710, adds access controls to the cachemgr.cgi script, preventing
  it from being abused to reach other servers than allowed in a local
  configuration file.
 2005-05-25 02:27:13 +00:00
brad
abdb1f835e upgrade to Squid 2.5.STABLE9 2005-02-25 16:37:25 +00:00
brad
8e2e7b5074 upgrade to Squid 2.5.STABLE8 + patches 
Fixes 2 major issues over STABLE7 + the previous round of patches..

- Data corruption when HTTP reply headers is split in several packets
- Assertion failure on certain odd DNS responses
 2005-02-17 03:32:24 +00:00
brad
c5a2906562 add missing ERR_INVALID_RESP to PLIST 2005-02-11 02:47:55 +00:00
brad
a754b815eb fix for ldap_search 2005-02-05 21:36:30 +00:00
brad
29a54c815a SECURITY: 
add most of the latest distribution patches which include 4 security
fixes.

-Correct handling of oversized reply headers
-Buffer overflow in WCCP recvfrom() call
-Strengthen Squid from HTTP response splitting cache pollution attack
-Reject malformed HTTP requests and responses that conflict with the HTTP specifications
 2005-02-04 04:27:38 +00:00
brad
6c1b677ada Fix 2 security issues... 
A bug exists in the code that parses responses from Gopher servers.
The bug results in a buffer overflow if a Gopher server returns a
line longer than 4096 bytes.  The overflow results in memory
corruption and usually crashes Squid.

CAN-2005-0094

A bug exists in the code that parses WCCP messages.  An attacker
that sends a malformed WCCP messages, with a spoofed source address
matching Squid's "home router" can crash Squid.

CAN-2005-0095
 2005-01-26 05:08:11 +00:00
naddy
ae76d3ea1f SIZE 2005-01-05 17:21:50 +00:00
alek
61a5f078cf - Kill DEINSTALL 
- Replace INSTALL with @samples, @execs, etc.
- Add WANTLIB marker
- Bump PKGNAME
 2004-12-07 19:33:33 +00:00
brad
91bd55630f use @newgroup / @newuser 2004-10-31 07:20:29 +00:00
brad
7d4db47663 better 2004-10-31 06:54:37 +00:00
brad
3935b2a8bb upgrade to Squid 2.5.STABLE7 
A parsing error exists in the SNMP module of Squid where a
specially-crafted UDP packet can potentially cause the server to
restart, closing all current connections.
 2004-10-20 21:44:20 +00:00
espie
e44839e34b new plists. 
comment out netscape-dynmotif, since we don't have the required motif lib.
 2004-09-15 18:49:48 +00:00
naddy
6b9c0f500b fix up MODGNU_CONFIG_GUESS_DIRS 2004-08-04 16:12:14 +00:00
brad
4532560e76 sync 2004-07-11 17:05:03 +00:00
brad
333f7e2260 upgrade to Squid 2.5.STABLE6 2004-07-11 17:00:47 +00:00
brad
d84edf1a11 remove messages about user/group change. 2004-06-24 03:16:55 +00:00
brad
86d502ddb4 - add 2 more distribution patches 
- add snmp FLAVOR from Joel CARNAT <joel at carnat dot net>
- add some auth types and auth/acl helpers
- add NTLM auth SMB patch even though the default port does NOT compile this support in
 2004-06-11 08:00:35 +00:00
brad
8134d5f3d6 one of the distrib patches was updated 2004-06-07 04:15:22 +00:00
brad
be1ae753c5 more distribution patches 2004-06-02 21:39:59 +00:00
brad
5c7d163fec Add 2 more distribution patches. One of them fixes an issue if using 
Digest authentication. Users can crash Squid with a segmentation fault
simply by entering a blank user name.
 2004-04-21 11:11:19 +00:00
brad
773296fdb7 sync 2004-04-16 00:39:03 +00:00
xsa
defa276606 catch @extra escapers ... 2004-04-15 08:58:32 +00:00
xsa
575015faec @extraaaaaaaaaaaaaaaaa ... 
ok dhartmei@ jolan@ brad@ for their respective port;
 2004-04-15 07:34:11 +00:00
brad
145a5e937b - add some distribution patches. From: Robert Nagy <thuglife at bsd dot hu> 
- only apply optimization workaround for gcc if using 2.95
 2004-04-13 00:40:47 +00:00
miod
f845f0f369 Tell squid that m88k does not imply SysV; maintainer ok 2004-04-06 05:35:59 +00:00
brad
b765b0c3ec upgrade to Squid 2.5.STABLE5 2004-03-03 01:20:42 +00:00
naddy
f16b99d84d The sparc64 compiler is gcc3 now; don't require the gcc3 module. 2004-02-25 02:35:15 +00:00
brad
b1f0d46719 add 29 of the latest distribution patches. 2004-02-16 10:21:20 +00:00
naddy
112339c1d4 remove WWW lines 2003-12-15 21:54:59 +00:00
brad
4e2e7789ec upgrade to Squid 2.5.STABLE4 2003-10-17 18:03:54 +00:00
brad
bdba8d4dc9 apply another distribution patch, the squid-2.5.STABLE3-mem_cfd.patch patch 
broke the forwarded_for directive.
 2003-08-22 21:12:18 +00:00
brad
d8d89da2a5 add some more distribution patches. 
--
Thanks to mpech@ for some testing
 2003-08-18 17:13:40 +00:00
brad
649f804830 optimization issues with gcc 2.95, use gcc 3 on sparc64. 
--
From: Matthieu Herrb <matthieu dot herrb at laas dot fr>
 2003-07-26 06:05:52 +00:00
brad
459cc69576 apply a number of distribution patches. 2003-07-23 01:47:20 +00:00
brad
f77c38db29 switch to new schema for user/group. 
--
From: sturm@
Thanks to mpech@ for testing and pointing out the user/group
I almost missed in MESSAGE.
 2003-07-08 20:43:20 +00:00
brad
b2f602749a upgrade to Squid 2.5.STABLE3 
throw in the SSL gatewaying support, this is not enabled by default.
 2003-07-07 17:44:43 +00:00
brad
5cd00e6c5d upgrade to Squid 2.5.STABLE2 2003-05-13 20:12:02 +00:00
brad
b0766fdf67 upgrade to Squid 2.5.STABLE1 2002-10-04 13:52:48 +00:00
brad
0ab206aa68 upgrade to Squid 2.5.PRE13 2002-09-20 01:27:10 +00:00
brad
d4b58e4aa8 upgrade to Squid 2.5.PRE11 2002-08-23 14:10:20 +00:00
brad
1b1ddd6bfa upgrade to Squid 2.5.PRE10 
- The squid binary has been moved from bin/ to sbin/
- The cachemgr CGI is statically linked now
 2002-07-24 18:14:08 +00:00
brad
01aba3a6ba upgrade to Squid 2.5.PRE8 2002-06-30 18:29:22 +00:00
brad
ef9a92736d fix sample configuration files path 
--
From: Andrey Smagin <andrey@smagin.com>
 2002-05-10 04:18:23 +00:00
brad
9657c1e001 upgrade to Squid 2.5.PRE7 2002-05-02 02:37:04 +00:00
brad
130f964688 upgrade to Squid 2.5.PRE6 
- PF patches integrated
 2002-04-17 18:03:21 +00:00
brad
39748ff848 upgrade to Squid 2.5.PRE5 2002-03-21 21:17:54 +00:00
brad
670c14f805 remove section which disables optimization, our compiler does not seem to have this bug. also fixes build on powerpc. 2002-03-19 15:20:07 +00:00
brad
f774579827 It's a bit unusual when I see in the Squid log that I'm supposedly running 
i386-unknown-freebsd3.5 when I'm actually on a powerpc-unknown-openbsd3.0
system, turns out there is a stale auto-generated autoconf.h in the
distfile.
 2002-03-16 19:05:26 +00:00
brad
10c5d0f6cd enable SEPARATE_BUILD 2002-03-16 18:18:30 +00:00
brad
dc1d731a87 drop the ampersand in the example 2002-03-09 18:11:16 +00:00
brad
db7d8cd8ce - fix CONFIGURE_ARGS option to enable removal policies (heap) 
- enable diskd
 2002-03-01 04:36:29 +00:00
brad
2a4d9f706b - rearrange 
- pass in PKGNAME so the errors and icons notice/install messages do not
have some unexpected spaces
 2002-02-21 21:03:52 +00:00
brad
ad5edec476 checksums changed for 2.5.PRE4, minor fix. 2002-02-21 16:53:07 +00:00
brad
108bbec985 use uid/gid of squid:squid instead of nobody:nogroup 2002-02-20 20:31:26 +00:00
brad
53133d4b10 upgrade to Squid 2.5.PRE4 
- The port now runs as uid/gid of nobody:nobody instead of www:www
- This needs some testing, especially the transparent proxy support for PF
 2002-02-20 01:17:03 +00:00
pvalchev
be54d47d8c CONFIGURE_STYLE=gnu w/ proper MODGNU_CONFIG_GUESS_DIRS 
needed for the powerpc -> macppc name change
 2001-09-28 06:02:12 +00:00
brad
f2aa83a34f more ports which use or can use pthreads 2001-08-30 02:24:52 +00:00
brad
d9ec50a97c better 2001-07-20 15:31:58 +00:00
brad
9317e492c3 upgrade to Squid 2.3.STABLE5 2001-07-20 14:37:38 +00:00
naddy
49afc89ea6 MASTER_SITES fix by Heikki Korpela <heko@saitti.net>: 
- Add ftp.funet.fi and ftp.sunet.se mirrors where available.
- Remove broken ftp.funet.fi references.
 2001-07-13 11:23:37 +00:00
brad
4277f59f35 remove the 2 FLAVORs currently available, enable the alternate heap 
replacement algorithms by default.
 2001-06-08 19:03:35 +00:00
lebel
2635bc0375 www: integrate COMMENT, bump NEED_VERSION. 2001-05-06 04:22:45 +00:00
brad
3580a84048 add a distribution patch: 
squid-2.3.stable4-snmp-community-null-pointer.patch
Sending an unparsable SNMP query to Squid can cause a segment violation
 2001-03-14 14:39:54 +00:00
brad
2d19447f4b new DESCR, actually describes what Squid is, taken from the FAQ. 2001-01-17 02:41:04 +00:00
brad
0247146330 add heap FLAVOR, enables alternate cache object replacement algorithms. 
--
Requested by: J Shoemaker <shoemaker@softhome.net>
 2001-01-17 02:38:20 +00:00
brad
9c33622cab remove this patch, it's not needed anymore now that we're using GCC 
2.95.3, unfortunately this bug still affects GCC 2.95.3 and thus the other
workaround patch has been left in place until the issue has been fixed.
 2001-01-15 17:22:01 +00:00
brad
7a77dc9bc4 tighten permissions. 2001-01-12 21:21:02 +00:00
brad
03f57d4e2a better 2001-01-08 20:03:11 +00:00
brad
5ee32b1bd3 add a distribution patch: (and update checksum for HTML quoting patch) 
squid-2.3.stable4-carp-assertion.patch
Comparing floating point numbers for equality is tricky. The old way can cause an assertion even though two numbers actually do add up to 1
 2000-12-08 17:09:52 +00:00