- allow WITH_BUFFEREVENTS again, after upstream changes
- use gcc hardening on versions of the OS that support PIE
- fix linking in the WITH_TCMALLOC case without
changing the default search path for all libraries,
to try to prevent any additional problems
libgssrpc was ignorant of the remote address of the kadmin socket,
even when it's IPv4. This made old-style GSSAPI authentication fail
because it uses the wrong channel bindings. Fix this problem by making
clnttcp_create() get the remote address from the socket using getpeername()
if the caller doesn't provide it and it's an IPv4 address.
PR: 160500
Submitted by: Ben Kaduk <kaduk@mit.edu>
- Also work with HEAD (1.79) version of Mozilla's certdata.txt,
reported by Daniel Stenberg.
- Add BSD 2-clause license.
- Die when certificates without trust block appear.
limit ca_root_nss vuln to < 3.12.11 from <= 3.12.11.
Add a new entry for the ca_root_nss bug that caused extraction of untrusted
certificates to the trust bundle.
PR: ports/160455
to revoke DigiNotar.nl trust.
Security fix: the modssl ca-bundle.pl script did not process
"untrusted" marks on certificates. Drop it and write a new
script in its place that does that.
Synch up with security/nss port to 3.12.11.
Not asking for maintainer approval because of multiple
timeouts in response to related PRs vs. security/[ca_root_]nss.
This package provides an interface to the OAuth 1.0 specification,
allowing users to authenticate via OAuth to the server of their
choice.
WWW: http://cran.r-project.org/web/packages/ROAuth/
The digest package provides a function 'digest' for the creation
of hash digests of arbitrary R objects (using the md5, sha-1, sha-256
and crc32 algorithms) permitting easy comparison of R language
objects, as well as a function hmac() to create hash-based message
authentication code. The md5 algorithm by Ron Rivest is specified
in RFC 1321, the SHA-1 and SHA-256 algorithms are specified in
FIPS-180-1 and FIPS-180-2, and the crc32 algorithm is described in
ftp://ftp.rocksoft.com/cliens/rocksoft/papers/crc_v3.txt. For md5,
sha-1 and sha-256, this packages uses small standalone implementations
that were provided by Christophe Devine. For crc32, code from the
zlib library is used. Please note that this package is not meant
to be deployed for cryptographic purposes for which more comprehensive
(and widely tested) libraries such as OpenSSL should be used.
WWW: http://cran.r-project.org/web/packages/digest/
Crypt-OpenSSL-CA - Model of an X509v3 Certification Authority
This package performs the cryptographic operations necessary to issue
X509 certificates and certificate revocation lists (CRLs). It is
implemented as a Perl wrapper around the popular OpenSSL library. All
certificate and CRL extensions supported by OpenSSL are available, and
then some.
WWW: http://search.cpan.org/dist/Crypt-OpenSSL-CA/
PR: ports/160167
Submitted by: Rodrigo Mosconi <freebsd@mosconi.mat.br>
