It installs the same package as security/py-pycryptodome but in a different
name space, Cryptodome instead of Crypto, and therefore can be installed
together with security/py-pycrypto if desired.
PR: 225217
Submitted by: John W. O'Brien <john@saltant.com>
Provides library functionality for communicating with a FIDO device over USB
as well as verifying attestation and assertion signatures.
WWW: https://github.com/Yubico/python-fido2
Certstream-python is a library for interacting with the certstream network to
monitor an aggregated feed from a collection of Certificate Transparency Lists.
WWW: https://github.com/CaliDog/certstream-python
ed25519.rb is a Ruby binding to the Ed25519 elliptic curve public-key signature
system described in RFC 8032.
Two implementations are provided: a MRI C extension which uses the "ref10"
implementation from the SUPERCOP benchmark suite, and a pure Java version based
on str4d/ed25519-java.
Ed25519 is one of two notable algorithms implemented atop the Curve25519
elliptic curve. The x25519 gem is a related project of this one, and implements
the X25519 Diffie-Hellman key exchange algorithm on the Montgomery form of
Curve25519.
WWW: https://github.com/crypto-rb/ed25519
* Update lang/ghc to 8.4.2
* Update the boostrap compiler to 8.4.1
* Update the many hs-* ports
* Bump the rest
Thanks a lot to arrowd for doing all the heavy lifting :)
PR: 227968
Exp-run by: antoine
Submitted by: arrowd
Differential Revision: https://reviews.freebsd.org/D15005
that implements Security Association Markup Language (SAML) authentication.
WWW: https://bitbucket.org/asecurityteam/flask_saml
PR: 225202
Submitted by: John W. O'Brien <john@saltant.com>
Sponsored by: iXsystems Inc.
This port has been broken for years and no longer maintained by upstream.
Also, remove security/rubygem-jugyo_twtter_oauth. It is a fork of
twitter_oauth[1] and required only by net-im/rubygem-earthquake.
[1] https://rubygems.org/gems/twitter_oauth
Approved by: hrs (mentor)
Differential Revision: https://reviews.freebsd.org/D15441
A tiny Perl extension to generate cryptographically-secure random bytes.
It provides random bytes from a cryptographically secure random
number generator (ISAAC), seeded from strong entropy sources on a
wide variety of platforms. It does so without external dependencies
(except on Windows), and has a minimal but useful user interface
patterned after the module Bytes::Random::Secure.
WWW: http://search.cpan.org/dist/Bytes-Random-Secure-Tiny/
Crypt::X509::CRL is an object oriented X.509 certificate
revocation list parser with numerous methods for directly
extracting information from certificate revocation lists
WWW: http://search.cpan.org/dist/Crypt-X509-CRL/
PR: 228074
Submitted by: Sergei Vyshenski <svysh.fbsd@gmail.com>
2018-04-30 databases/rubygem-seed-fu236: Obsoleted by update of www/gitlab. Please use databases/rubygem-seed-fu
2018-04-30 security/polarssl13: has reached end of life
This is an import of the Plasma5 ports that we have had in the development
repository for quite some time now.
Please note:
* Plasma5 cannot be installed at the same time as KDE SC4.
* Qt5 assumes /etc/localtime to be a symlink to a tz file, not a regular file.
* To start plasma5, it is recommended to use something like
exec ck-launch-session startkde
* Powermanagement and such is not working :-)
I would like to thank all the people that have helped test it in the past years.
Reviewed by: adridg
Differential Revision: https://reviews.freebsd.org/D15096
Gravitational Teleport ("Teleport") is a modern SSH server for remotely
accessing clusters of FreeBSD or Linux servers via SSH or HTTPS. It is
intended to be used instead of sshd. Teleport enables teams to easily
adopt the best SSH practices like:
- Integrated SSH credentials with your organization Google Apps identities or
other OAuth identitiy providers.
- Teleport uses certificate-based access with automatic expiration time
- Enforcement of 2nd factor authentication
- Cluster introspection: every Teleport node becomes a part of a cluster
and is visible on the Web UI
- Record and replay SSH sessions for knowledge sharing and auditing purposes
- Collaboratively troubleshoot issues through session sharing
- Connect to clusters located behind firewalls without direct Internet
access via SSH bastions
Teleport is built on top of the high-quality Golang SSH implementation
and it is compatible with OpenSSH.
Initially submitted by: staticwizard@hotmail.com in ports/219332
PR: ports/219332
Approved by: swills (mentor)
Reviewed by: yuri, swills, pi
Differential Revision: https://reviews.freebsd.org/D14576
Crypt::OpenSSL::Guess provides helpers to guess OpenSSL include path on any
platforms.
Often MacOS's homebrew OpenSSL cause a problem on installation due to include
path is not added. Some CPAN module provides to modify include path with
configure-args, but Carton or Module::CPANfile is not supported to pass
configure-args to each modules. Crypt::OpenSSL::* modules should use it on your
Makefile.PL.
This module resolves the include path by Net::SSLeay's workaround. Original code
is taken from inc/Module/Install/PRIVATE/Net/SSLeay.pm by Net::SSLeay.
WWW: http://search.cpan.org/dist/Crypt-OpenSSL-Guess/
* deskutils/grantleetheme
* deskutils/kdepim
* deskutils/kdepim-apps-libs
* deskutils/libkdepim
* net/akonadi-calendar
* net/akonadi-contacts
* net/akonadi-mime
* net/akonadi-notes
* net/akonadi-search
* net/calendarsupport
* net/eventviews
* net/incidenceeditor
* net/kalarmcal
* net/kblog
* net/kcalcore
* net/kcalutils
* net/kcontacts
* net/kdav
* net/kdenetwork-filesharing
* net/kget
* net/kidentitymanagement
* net/kimap
* net/kldap
* net/kmailtransport
* net/kmbox
* net/kmime
* net/kontactinterface
* net/kpimtextedit
* net/krdc
* net/krfb
* net/ksmtp
* net/ktnef
* net/libgravatar
* net/libkgapi
* net/libksieve
* net/mailcommon
* net/mailimporter
* net/messagelib
* net/pimcommon
* net/zeroconf-ioslave
* security/libkleo
This is the current version of KDE Applications <foo>.
Note that users of KDE SC4 should stick with <foo>-kde4.
This adds a slew of KDE Pim related ports and some of their dependencies.
Note, that KDE Pim has a history of working poorly on FreeBSD.
JSON Web Token (JWT) is a simple way to send verified information between two
parties online. This can be useful as a mechanism for providing Single Sign-On
(SSO) to an application by allowing an authentication server to send a validated
claim and log the user in. This is how Zendesk does SSO, for example.
OmniAuth::JWT provides a clean, simple wrapper on top of JWT so that you can
easily implement this kind of SSO either between your own applications or allow
third parties to delegate authentication.
WWW: https://github.com/mbleigh/omniauth-jwt
While here, add a putty-gtk2 slave port and update _CONFLICTS.
Since the default package does not change, and pkg would handle conflicts
around attempted installation of the new -gtk2 package, omit the
PORTREVISION bump from Miroslav's original patch.
PR: 227200
Submitted by: Miroslav Lachman
Android) mobile app. kr runs as an SSH agent, called krd. When a Krypton
private key operation is needed for authentication, krd routes this
request to the paired mobile phone, where the user decides whether to
allow the operation or not. The private key never leaves the phone.
WWW: https://krypt.co
With setaudit it is possible to specify audit configurations on a process
directly at the runtime.
All audit events are redirected to the auditd(8), an audit log management
daemon.
Example of enabling all exe related audit events performed by a command and its
child processes:
# setaudit -m ex command
WWW: https://github.com/csjayp/setaudit
PR: 226627
Submitted by: Mateusz Piotrowski <0mp@FreeBSD.org>
python-nss is a Python binding for NSS (Network Security Services)
and NSPR (Netscape Portable Runtime). NSS provides cryptography
services supporting SSL, TLS, PKI, PKIX, X509, PKCS*, etc. NSS is
an alternative to OpenSSL and used extensively by major software
projects. NSS is FIPS-140 certified.
NSS is built upon NSPR because NSPR provides an abstraction of
common operating system services, particularly in the areas of
networking and process management. Python also provides an abstraction
of common operating system services but because NSS and NSPR are
tightly bound, python-nss exposes elements of NSPR.
WWW: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Python_binding_for_NSS
Port changes:
* Unbreak: removed unnecessary lines in setup.py that were failing
* Changed MASTER_SITES to CHEESESHOP
* Added PKGNAMEPREFIX as every python port should have
* Added PKGNAMESUFFIX=-tor to easily identify as being for Tor
* Added LICENSE_FILE
* Deleted pkg-plist
* Added USE_PYTHON=autoplist instead of pkg-plist
* Added USE_PYTHON=noflavors (an app)
* Added NO_ARCH
* Updated WWW
Approved by: tcberner (mentor, implicit)
Approved by: portmgr (port compliance, infrastructure)
AsyncSSH is a Python package which provides an asynchronous client
and server implementation of the SSHv2 protocol on top of
the Python asyncio framework. It requires Python 3.4 or later
and the Python cryptography library for some cryptographic functions.
WWW: https://github.com/ronf/asyncssh
Submitted by: Bartosz Prokop
In order to make room for the up-to-date version of the KDE Desktop and its
applications move the KDE Application ports based on Qt4.
PR: 225992
Exp-run by: antoine
Reviewed by: rakuco, adridg
Differential Revision: https://reviews.freebsd.org/D14413
