CSP is a Perl class and script for running multiple CAs. OpenSSL is used
for all operations. CSP can also generate a small CA website used to
distribute certificates and CRLs.
WWW: http://devel.it.su.se/projects/CSP/
PR: ports/79885
Submitted by: David Thiel <lx@redundancy.redundancy.org>
Internet Drafts: SECSH-TRANS(22), SECSH-USERAUTH(25), SECSH-CONNECTION(23),
SECSH-ARCH(20), SECSH-FILEXFER(06)*, SECSH-DHGEX(04), and SECSH-NUMBERS(10).
for SSL/TLS servers though perhaps useful for other (non-SSL/TLS)
circumstances.
Also includes a self-contained network abstraction library (libnal), and the
sslswamp SSL/TLS benchmark/test utility.
PR: ports/79879
Submitted by: Marcel Prisi <marcel.prisi@virtua.ch>
though perhaps useful for other (non-SSL/TLS) circumstances.
Also includes a self-contained network abstraction library (libnal), and the
sslswamp SSL/TLS benchmark/test utility.
PR: ports/79878
Submitted by: Marcel Prisi <marcel.prisi@virtua.ch>
Preference Manager is a class to handle user preferences in a web application,
looking them up in a table using a combination of their userid, and the
preference name to get a value, and (optionally) returning a default value for
the preference if no value could be found for that user.
It is designed to be used alongside the PEAR Auth class, but can be used with
anything that allows you to obtain the user's id - including your own code.
PR: ports/79556
Submitted by: Antonio Carlos Venancio Junior <antonio@php.net>
program coded purely in C with the ability to gather as much information as
possible about a host.
PR: ports/77142
Submitted by: Vaida Bogdan <vaidab@phenix.rootshell.be>,
James Greig <james@mor-pah.net>
With PEAR::File_SMBPasswd you can maintain smbpasswd-files, usualy used by
SAMBA.
PR: ports/78642
Submitted by: Antonio Carlos Venancio Junior <antonio@php.net>
Currently these types of CHAP are supported:
* CHAP-MD5
* MS-CHAPv1
* MS-CHAPv2
PR: ports/78641
Submitted by: Antonio Carlos Venancio Junior <antonio@php.net>
BASE is the Basic Analysis and Security Engine. It is based on the code
from the ACID project. This application provides a PHP-based web front-end
to query and analyze the alerts coming from a Snort IDS system.
BASE is a web interface to perform analysis of intrusions that Snort has
detected on your network. It uses a user authentication and role-base
system, so that you as the security admin can decide what and how much
information each user can see. It also has a simple to use, web-based
setup program for people not comfortable with editing files directly.
WWW: http://secureideas.sourceforge.net/
PR: ports/74492 [1], ports/77103 [2]
Submitted by: Linh Pham <question+fbsdports@closedsrc.org> [1],
Paul Schmhel <pauls@utdallas.edu> [2]
Certificate Enrollment Protocol). SSCEP is designed for OpenBSD's isakmpd,
but it will propably work with any Unix system with a recent compiler and
OpenSSL toolkit libraries installed.
PR: ports/77595
Submitted by: Vsevolod Stakhov <vsevolod(at)highsecure.ru>
produces graphs of clean emails, spam emails and infected emails broken down by
virus, from amavis log entries. RRD files are created and updated by a perl
script run from cron. Graphs are generated by a php script and viewed with a
web browser.
PR: ports/68934
Submitted by: Mantas Kaulakys <stone@tainet.lt>
from the Snort network intrusion detection system and allows Snort to
run at full speed. It accepts binary inputs from snort and outputs
human readable files to disc or to a database. At present, barnyard
is designed to accept binary inputs from snort and produce either human
readable files for parsing by log parsers or feed data directly to a
database (either mysql or postgresql at present.).
PR: ports/77044, ports/77322
Submitted by: Paul Schmehl <pauls@utdallas.edu>
In an effort to be proactive in doing my part to stop the massive
quantities of internet traffic probing for open ports or more
specifically the probing for known ports that MS Windows spyware,
Trojans, and whatever other MS Windows ports are commonly probed
which result in increasing my bandwidth usage charges, I wrote this
perl application for reporting that abuse to the sender's ISP, with
the hopes they will monitor the abuser and terminate the abuser's
internet account and or take legal action.
WWW: http://www.dshield.org/linux_clients.php#freebsd
Author: Joe Barbish <fbsd_user@a1poweruser.com>
PR: ports/68662
Submitted by: Joe Barbish <fbsd_user@a1poweruser.com>
This perl script is an official DShield client whose purpose is to
read your FreeBSD ipfilter firewall ipmon log file and convert the
log records to the standard DShield reporting record format, and
embed the converted log records into the body of an email that gets
sent to DShield for automatic addition to their database and abuse
reporting to the offenders ISP if you are an subscribed DShield member.
PR: ports/68661
Submitted by: Joe Barbish <fbsd_user@a1poweruser.com>
for the IPsec.
Currently the system supports the following specification:
Internet Key Exchange (IKEv2) Protocol
draft-ietf-ipsec-ikev2-17.txt
(The IKE daemon is not included in the current release due to IPR issue)
Kerberized Internet Negotiation of Keys (KINK)
draft-ietf-kink-kink-06.txt
PF_KEY Key Management API, Version 2
RFC2367
The following protocols will be supported soon.
The Internet Key Exchange (IKE)
RFC2409
WWW: http://www.kame.net/
This port was repocopied from secutiry/racoon.
PR: ports/76814
LiveUser_Admin is meant to be used with the LiveUser package.
It is composed of all the classes necessary to administrate
data used by LiveUser.
PR: ports/76677
Submitted by: Antonio Carlos Venancio Junior <antonio@php.net>
applications. It supports consolehelper, PAM and su.
libgnomesu will use one the following services (in order of priority),
depending on which one is available:
- consolehelper
- PAM
- su
libgnomesu will use the su-based backend as final fallback, if no other
services are available. This service uses a backend which is a modified
version of GNU su.
libgnomesu comes with the GUI frontend 'gnomesu' and a Nautilus component
for Nautilus integration.
WWW: http://members1.chello.nl/~h.lai/libgnomesu/
for information gathering using fingerprinting (p0f based) and
banner grabbing techniques.
PR: ports/72752
Submitted by: Jon Passki <cykyc(at)yahoo.com>
Approved by: nectar (mentor)
Dr. Richard De Moliner.
Permission by the Author Dr. Richard De Moliner has been granted.
PR: ports/72337
Submitted by: Emanuel Haupt <ehaupt@critical.ch>
permission management framework
LiveUser is a set of classes for dealing with user
authentication and permission management. Basically, there
are three main elements that make up this package:
* The LiveUser class
* The Auth containers
* The Perm containers
Currently available are containers using:
PEAR::DB, PEAR::MDB, PEAR::MDB2, PEAR::XML_Tree and PEAR::Auth.
PR: ports/74528
Submitted by: Ant?nio Carlos Ven?ncio J?nior <antonio@php.net>
repo-copy from security/openssh-portable.
HPN-SSH is a set of patches to improve the perfomance of bulk transfers
such as scp over long-fat pipes.
Repocopy by: marcus
