2018-07-31 databases/rubygem-redis-namespace15: Obsoleted by update of www/gitlab-ce. Please use databases/rubygem-redis-namespace instead.
2018-08-01 security/py-python-social-auth: Upstream Deprecated
2018-08-01 www/py-django-social-auth: no support for new django
2018-07-31 net/rubygem-gitaly-proto096: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-gitaly-proto instead.
2018-07-31 security/tripwire12: unfetchable
2018-07-31 security/rubygem-rbnacl4: Obsoleted by update of www/gitlab-ce. Please use security/rubygem-rbnacl instead.
2018-07-31 www/rubygem-gon61: Obsoleted by update of www/gitlab-ce. Please use www/rubygem-gon instead.
2018-07-31 databases/pgpool-II-33: Will be deprecated by upstream, please switch to newer pgpool versions
2018-07-31 devel/rubygem-grape-entity060: Obsoleted by update of www/gitlab-ce. Please use devel/rubygem-grape-entity instead.
2018-07-31 net/rubygem-gitaly-proto099: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-gitaly-proto instead.
2018-07-31 net/rubygem-gitaly-proto095: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-gitaly-proto instead.
2018-07-31 net/rubygem-omniauth-github11: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-omniauth-github instead.
2018-07-31 net/rubygem-asset_sync220: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-asset_sync instead.
2018-07-31 www/rubygem-gollum-lib-gitlab: Obsoleted by update of www/gitlab-ce. Please use www/rubygem-gitlab-gollum-lib instead.
2018-08-01 www/py-django-threaded-multihost: Project development unmaintained
2018-08-01 www/py-django-keyedcache: Project development abandoned
2018-08-01 www/py-django-signals-ahoy: Project development unmaintained
Console based password storing application using an encrypted XML
document as its database.
WWW: https://github.com/levaidaniel/kc
Please read the UPDATING note!
PR: 222376
Submitted by: Vidar Karlsen <vidar@karlsen.tech>, Daniel <leva@ecentrum.hu> (maintainer and upstream-author)
Relnotes: 35656e47a3/Changelog
The JavaScript Object Signing and Encryption (JOSE) technologies - JSON Web
Signature (JWS), JSON Web Encryption (JWE), JSON Web Key (JWK), and JSON Web
Algorithms (JWA) - collectively can be used to encrypt and/or sign content
using a variety of algorithms. While the full set of permutations is extremely
large, and might be daunting to some, it is expected that most applications
will only use a small set of algorithms to meet their needs.
fteproxy provides transport-layer protection to resist keyword filtering,
censorship and discriminatory routing policies.
Its job is to relay datastreams, such as web browsing traffic,
by encoding streams as messages that match a user-specified regular expression.
WWW: https://fteproxy.org/
Submitted by: Vinícius Zavam <egypcio@googlemail.com>
Differential Revision: https://reviews.freebsd.org/D16244
2018-06-30 net/rubygem-omniauth-twitter12: Obsoleted by update of www/gitlab. Please use net/rubygem-omniauth-twitter instead.
2018-06-30 net/rubygem-gitaly-proto088: Obsoleted by update of www/gitlab. Please use net/rubygem-gitaly-proto instead.
2018-06-30 net/rubygem-octokit46: Obsoleted by update of www/gitlab. Please use net/rubygem-octokit instead.
2018-06-30 net/rubygem-fog-google0: Obsoleted by update of www/gitlab. Please use net/rubygem-fog-google instead.
2018-06-30 net/rubygem-fog-aws1: Obsoleted by update of www/gitlab. Please use net/rubygem-fog-aws instead.
2018-06-30 textproc/rubygem-asciidoctor-plantuml007: Obsoleted by update of www/gitlab. Please use textproc/rubygem-asciidoctor-plantuml instead.
2018-03-19 graphics/mitsuba: Broken for more than 6 months
2018-05-31 mail/p5-Net-SMTP-SSL: Deprecated by upstream, use Net::SMTP instead
2018-06-30 www/rubygem-kubeclient22: Obsoleted by update of www/gitlab. Please use www/rubygem-kubeclient instead.
2018-06-30 security/rubygem-doorkeeper42: Obsoleted by update of www/gitlab. Please use security/rubygem-doorkeeper instead.
2018-06-30 security/rubygem-net-ssh41: Obsoleted by update of www/gitlab. Please use security/rubygem-net-ssh instead.
2018-06-30 security/rubygem-omniauth-saml17: Obsoleted by update of www/gitlab. Please use security/rubygem-omniauth-saml instead.
2018-06-30 security/rubygem-doorkeeper-openid_connect12: Obsoleted by update of www/gitlab. Please use security/rubygem-doorkeeper-openid_connect instead.
2018-06-30 security/rubygem-attr_encrypted30: Obsoleted by update of www/gitlab. Please use security/rubygem-attr_encrypted instead.
2018-06-30 security/rubygem-omniauth14: Obsoleted by update of www/gitlab. Please use security/rubygem-omniauth instead.
2018-06-30 devel/rubygem-flipper011: Obsoleted by update of www/gitlab. Please use devel/rubygem-flipper instead.
2018-06-30 devel/rubygem-ruby-prof016: Obsoleted by update of www/gitlab. Please use devel/rubygem-ruby-prof instead.
2018-06-30 devel/rubygem-recursive-open-struct10: Obsoleted by update of www/rubygem-kubeclient. Please use devel/rubygem-recursive-open-struct instead
2018-06-30 devel/rubygem-flipper-active_support_cache_store011: Obsoleted by update of www/gitlab. Please use devel/rubygem-flipper-active_support_cache_store instead.
2018-06-30 devel/rubygem-gettext_i18n_rails_js12: Obsoleted by update of www/gitlab. Please use devel/rubygem-gettext_i18n_rails_js instead.
2018-02-02 devel/phpunit: No longer maintained upstream
2018-06-30 devel/rubygem-recursive-open-struct100: Obsoleted by update of www/gitlab. Please use devel/rubygem-recursive-open-struct instead.
2018-06-30 databases/rubygem-flipper-active_record011: Obsoleted by update of www/gitlab. Please use databases/rubygem-flipper-active_record instead.
2018-06-06 databases/mongodb34-rocks: Broken for more than 6 months
2018-07-01 math/freemat: Complex, unmaintained software with obsolete dependencies
It installs the same package as security/py-pycryptodome but in a different
name space, Cryptodome instead of Crypto, and therefore can be installed
together with security/py-pycrypto if desired.
PR: 225217
Submitted by: John W. O'Brien <john@saltant.com>
Provides library functionality for communicating with a FIDO device over USB
as well as verifying attestation and assertion signatures.
WWW: https://github.com/Yubico/python-fido2
Certstream-python is a library for interacting with the certstream network to
monitor an aggregated feed from a collection of Certificate Transparency Lists.
WWW: https://github.com/CaliDog/certstream-python
ed25519.rb is a Ruby binding to the Ed25519 elliptic curve public-key signature
system described in RFC 8032.
Two implementations are provided: a MRI C extension which uses the "ref10"
implementation from the SUPERCOP benchmark suite, and a pure Java version based
on str4d/ed25519-java.
Ed25519 is one of two notable algorithms implemented atop the Curve25519
elliptic curve. The x25519 gem is a related project of this one, and implements
the X25519 Diffie-Hellman key exchange algorithm on the Montgomery form of
Curve25519.
WWW: https://github.com/crypto-rb/ed25519
* Update lang/ghc to 8.4.2
* Update the boostrap compiler to 8.4.1
* Update the many hs-* ports
* Bump the rest
Thanks a lot to arrowd for doing all the heavy lifting :)
PR: 227968
Exp-run by: antoine
Submitted by: arrowd
Differential Revision: https://reviews.freebsd.org/D15005
that implements Security Association Markup Language (SAML) authentication.
WWW: https://bitbucket.org/asecurityteam/flask_saml
PR: 225202
Submitted by: John W. O'Brien <john@saltant.com>
Sponsored by: iXsystems Inc.
This port has been broken for years and no longer maintained by upstream.
Also, remove security/rubygem-jugyo_twtter_oauth. It is a fork of
twitter_oauth[1] and required only by net-im/rubygem-earthquake.
[1] https://rubygems.org/gems/twitter_oauth
Approved by: hrs (mentor)
Differential Revision: https://reviews.freebsd.org/D15441
A tiny Perl extension to generate cryptographically-secure random bytes.
It provides random bytes from a cryptographically secure random
number generator (ISAAC), seeded from strong entropy sources on a
wide variety of platforms. It does so without external dependencies
(except on Windows), and has a minimal but useful user interface
patterned after the module Bytes::Random::Secure.
WWW: http://search.cpan.org/dist/Bytes-Random-Secure-Tiny/
Crypt::X509::CRL is an object oriented X.509 certificate
revocation list parser with numerous methods for directly
extracting information from certificate revocation lists
WWW: http://search.cpan.org/dist/Crypt-X509-CRL/
PR: 228074
Submitted by: Sergei Vyshenski <svysh.fbsd@gmail.com>
2018-04-30 databases/rubygem-seed-fu236: Obsoleted by update of www/gitlab. Please use databases/rubygem-seed-fu
2018-04-30 security/polarssl13: has reached end of life
This is an import of the Plasma5 ports that we have had in the development
repository for quite some time now.
Please note:
* Plasma5 cannot be installed at the same time as KDE SC4.
* Qt5 assumes /etc/localtime to be a symlink to a tz file, not a regular file.
* To start plasma5, it is recommended to use something like
exec ck-launch-session startkde
* Powermanagement and such is not working :-)
I would like to thank all the people that have helped test it in the past years.
Reviewed by: adridg
Differential Revision: https://reviews.freebsd.org/D15096
Gravitational Teleport ("Teleport") is a modern SSH server for remotely
accessing clusters of FreeBSD or Linux servers via SSH or HTTPS. It is
intended to be used instead of sshd. Teleport enables teams to easily
adopt the best SSH practices like:
- Integrated SSH credentials with your organization Google Apps identities or
other OAuth identitiy providers.
- Teleport uses certificate-based access with automatic expiration time
- Enforcement of 2nd factor authentication
- Cluster introspection: every Teleport node becomes a part of a cluster
and is visible on the Web UI
- Record and replay SSH sessions for knowledge sharing and auditing purposes
- Collaboratively troubleshoot issues through session sharing
- Connect to clusters located behind firewalls without direct Internet
access via SSH bastions
Teleport is built on top of the high-quality Golang SSH implementation
and it is compatible with OpenSSH.
Initially submitted by: staticwizard@hotmail.com in ports/219332
PR: ports/219332
Approved by: swills (mentor)
Reviewed by: yuri, swills, pi
Differential Revision: https://reviews.freebsd.org/D14576
Crypt::OpenSSL::Guess provides helpers to guess OpenSSL include path on any
platforms.
Often MacOS's homebrew OpenSSL cause a problem on installation due to include
path is not added. Some CPAN module provides to modify include path with
configure-args, but Carton or Module::CPANfile is not supported to pass
configure-args to each modules. Crypt::OpenSSL::* modules should use it on your
Makefile.PL.
This module resolves the include path by Net::SSLeay's workaround. Original code
is taken from inc/Module/Install/PRIVATE/Net/SSLeay.pm by Net::SSLeay.
WWW: http://search.cpan.org/dist/Crypt-OpenSSL-Guess/
* deskutils/grantleetheme
* deskutils/kdepim
* deskutils/kdepim-apps-libs
* deskutils/libkdepim
* net/akonadi-calendar
* net/akonadi-contacts
* net/akonadi-mime
* net/akonadi-notes
* net/akonadi-search
* net/calendarsupport
* net/eventviews
* net/incidenceeditor
* net/kalarmcal
* net/kblog
* net/kcalcore
* net/kcalutils
* net/kcontacts
* net/kdav
* net/kdenetwork-filesharing
* net/kget
* net/kidentitymanagement
* net/kimap
* net/kldap
* net/kmailtransport
* net/kmbox
* net/kmime
* net/kontactinterface
* net/kpimtextedit
* net/krdc
* net/krfb
* net/ksmtp
* net/ktnef
* net/libgravatar
* net/libkgapi
* net/libksieve
* net/mailcommon
* net/mailimporter
* net/messagelib
* net/pimcommon
* net/zeroconf-ioslave
* security/libkleo
This is the current version of KDE Applications <foo>.
Note that users of KDE SC4 should stick with <foo>-kde4.
This adds a slew of KDE Pim related ports and some of their dependencies.
Note, that KDE Pim has a history of working poorly on FreeBSD.
JSON Web Token (JWT) is a simple way to send verified information between two
parties online. This can be useful as a mechanism for providing Single Sign-On
(SSO) to an application by allowing an authentication server to send a validated
claim and log the user in. This is how Zendesk does SSO, for example.
OmniAuth::JWT provides a clean, simple wrapper on top of JWT so that you can
easily implement this kind of SSO either between your own applications or allow
third parties to delegate authentication.
WWW: https://github.com/mbleigh/omniauth-jwt
While here, add a putty-gtk2 slave port and update _CONFLICTS.
Since the default package does not change, and pkg would handle conflicts
around attempted installation of the new -gtk2 package, omit the
PORTREVISION bump from Miroslav's original patch.
PR: 227200
Submitted by: Miroslav Lachman
Android) mobile app. kr runs as an SSH agent, called krd. When a Krypton
private key operation is needed for authentication, krd routes this
request to the paired mobile phone, where the user decides whether to
allow the operation or not. The private key never leaves the phone.
WWW: https://krypt.co
With setaudit it is possible to specify audit configurations on a process
directly at the runtime.
All audit events are redirected to the auditd(8), an audit log management
daemon.
Example of enabling all exe related audit events performed by a command and its
child processes:
# setaudit -m ex command
WWW: https://github.com/csjayp/setaudit
PR: 226627
Submitted by: Mateusz Piotrowski <0mp@FreeBSD.org>
python-nss is a Python binding for NSS (Network Security Services)
and NSPR (Netscape Portable Runtime). NSS provides cryptography
services supporting SSL, TLS, PKI, PKIX, X509, PKCS*, etc. NSS is
an alternative to OpenSSL and used extensively by major software
projects. NSS is FIPS-140 certified.
NSS is built upon NSPR because NSPR provides an abstraction of
common operating system services, particularly in the areas of
networking and process management. Python also provides an abstraction
of common operating system services but because NSS and NSPR are
tightly bound, python-nss exposes elements of NSPR.
WWW: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Python_binding_for_NSS
Port changes:
* Unbreak: removed unnecessary lines in setup.py that were failing
* Changed MASTER_SITES to CHEESESHOP
* Added PKGNAMEPREFIX as every python port should have
* Added PKGNAMESUFFIX=-tor to easily identify as being for Tor
* Added LICENSE_FILE
* Deleted pkg-plist
* Added USE_PYTHON=autoplist instead of pkg-plist
* Added USE_PYTHON=noflavors (an app)
* Added NO_ARCH
* Updated WWW
Approved by: tcberner (mentor, implicit)
Approved by: portmgr (port compliance, infrastructure)
AsyncSSH is a Python package which provides an asynchronous client
and server implementation of the SSHv2 protocol on top of
the Python asyncio framework. It requires Python 3.4 or later
and the Python cryptography library for some cryptographic functions.
WWW: https://github.com/ronf/asyncssh
Submitted by: Bartosz Prokop
In order to make room for the up-to-date version of the KDE Desktop and its
applications move the KDE Application ports based on Qt4.
PR: 225992
Exp-run by: antoine
Reviewed by: rakuco, adridg
Differential Revision: https://reviews.freebsd.org/D14413
This prepares the update of www/gitlab to 10.4 update
which requires this specific version
Submitted by: Matthias Fechner <idefix@fechner.net>
Reviewed by: swills, tz
This is a set of Python packages to support use of the OpenID decentralized
identity system in your application, update to Python 3. Want to enable single
sign-on for your web site? Use the openid.consumer package. Want to run your own
OpenID server? Check out openid.server. Includes example code and support for a
variety of storage back-ends.
WWW: https://pypi.python.org/pypi/python3-openid
WWW: https://github.com/necaris/python3-openid
output into a tablular form.
I have been using this tool in various forms on my IP Filter firewalls
for almost twenty years. Maybe someone else might find it useful too.
Description from http://www.antibozo.net/ogata/webtools/:
plog is a parser for the logged output of the ipmon utility that is part
of the excellent IP-Filter packet-filtering and NAT package written and
maintained by Darren Reed. plog translates the somewhat garbled output
from ipmon into a report that aids analysis of your firewall traffic.
The current version number is 0.10.
2018-01-27 emulators/raine: Broken for more than 6 months
2018-01-27 mail/libmapi: Broken for more than 6 months
2018-01-27 www/lessc: Broken for more than 6 months
2018-01-27 www/uglifyjs: Broken for more than 6 months
2018-01-27 www/py-octoprint: Broken for more than 6 months
2018-01-27 www/xpi-noscript: Broken for more than 6 months
2018-01-27 www/npm-less-plugin-clean-css: Broken for more than 6 months
2018-01-27 www/caudium14: Depends on expiring lang/pike78
2018-01-27 www/hinventory-client: Broken for more than 6 months
2018-01-27 security/tclgpg: Broken for more than 6 months
2018-01-27 security/pond: Broken for more than 6 months
2018-01-27 security/mdcrack: Broken for more than 6 months
2018-01-27 devel/npm-commander: Broken for more than 6 months
2018-01-27 devel/py-protocols-devel: Broken for more than 6 months
2018-01-27 devel/py-InlineEgg: Broken for more than 6 months
2018-01-27 devel/npm-amdefine: Broken for more than 6 months
2018-01-27 devel/npm-source-map: Broken for more than 6 months
2018-01-27 devel/libical-glib: Broken for more than 6 months
2018-01-27 devel/npm-graceful-readlink: Broken for more than 6 months
2018-01-27 devel/npm-clean-css: Broken for more than 6 months
2018-01-27 devel/py-ruledispatch: Depends on expiring devel/py-protocols-devel
2018-01-27 games/balazarbrothers: Broken for more than 6 months
2018-01-27 games/libretro-cores: Broken for more than 6 months
2018-01-27 games/gish-demo: Broken for more than 6 months
2018-01-27 games/cheech: Broken for more than 6 months
2018-01-27 audio/mbrolavox: Broken for more than 6 months
2018-01-27 audio/linux-mbrola: Depends on expiring audio/mbrolavox
2018-01-27 audio/gigedit: Broken for more than 6 months
2018-01-27 audio/gnomoradio: Broken for more than 6 months
2018-01-27 math/asir2000: Broken for more than 6 months
2018-01-27 multimedia/librespot: Broken for more than 6 months
2018-01-27 multimedia/bombono: Broken for more than 6 months
2018-01-27 lang/gcl: Broken for more than 6 months
2018-01-27 lang/pike78: Broken for more than 6 months
2018-01-27 shells/ambit: Broken for more than 6 months
KeePassRPC is a KeePass plugin that allows applications to transfer passwords to
and from KeePass.
One such application is the Kee plugin for Firefox, which adds free, secure and
easy to use password management features to your web browser which save you time
and keep your private data more secure.
WWW: https://www.kee.pm/
JOSE (Javascript Object Signing and Encryption) is a Python implementation
of the standards developed by IETF Javascript Object Signing and Encryption
(Active WG), in particular the following RFCs:
- JSON Web Algorithms (JWA)
- JSON Web Key (JWK)
- JSON Web Signature (JWS)
Originally developed as part of the ACME protocol implementation.
WWW: https://josepy.readthedocs.io/en/latest/
Differential Revision: https://reviews.freebsd.org/D14013
Implementation of elliptic curve cryptography using the Montgomery
and Edwards curves Curve25519, Ed25519, Ed448-Goldilocks and
Curve448, using the Decaf / Ristretto encoding.
Approved by: mat (mentor)
2017-12-31 security/gnupg20: Will reach EOL upstream on 2017-12-31
2018-01-01 dns/dualserver: Please migrate to dns/dnsmasq. Over the years dualserver becomes unmaintenaible.
2018-01-01 devel/p5-Parse-Pidl44: yes
2018-01-01 sysutils/DTraceToolkit: Now maintained as part of the base system
Snuffleupagus is a PHP7+ module designed to drastically raise the cost
of attacks against websites. This is achieved by killing entire bug
classes and providing a powerful virtual-patching system, allowing the
administrator to fix specific vulnerabilities without having to touch
the PHP code.
WWW: https://snuffleupagus.readthedocs.io/
PR: 224545
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by: rene (mentor)
Differential Revision: https://reviews.freebsd.org/D13606
