backslashes anymore. A single backslash is enough. Changed the
definition in all affected packages. For those that are not caught, an
additional check is placed into bsd.pkginstall.mk.
Changed MASTER_SITES and HOMEPAGE; updated patches.
cvsd 1.0.8 Change Log: (condensed)
2005-07-24 16:24 arthur
Release 1.0.8:
* NEWS, configure.ac, debian/changelog, ChangeLog: release 1.0.8
* depcomp, install-sh, missing, mkinstalldirs, INSTALL: upgrade
scripts from current version of automake (1.9.6)
* TODO, debian/postinst: remove code for replacing old debconf-only
cvsd.conf file (this makes a little uglier upgrade from versions
of cvsd before 0.9.20
* debian/cvsd.init: do not use --exec start-stop-daemon option in
Debian init script to work around systems that modify binaries
between start and stop
* debian/control: add dependency on adduser
* debian/control: upgrade to standards-version 3.6.2 (no changes
needed)
* COPYING: fix spaces
* COPYING, Makefile.am, README, capabilities.txt, cfg.c, cfg.h,
cfgfile.c, cfgfile.h, configure.ac, cvsd-buginfo.8.in,
cvsd-buginfo.in, cvsd-buildroot.8.in, cvsd-buildroot.in,
cvsd-passwd.8.in, cvsd-passwd.in, cvsd.8.in, cvsd.c,
cvsd.conf.5.in, cvsd.init.in, cvsd.init.redhat71.in, daemon.c,
daemon.h, getinfos.c, getinfos.h, getopt_long.c, getopt_long.h,
log.c, log.h, reslimit.c, reslimit.h, xmalloc.c, xmalloc.h,
debian/cvsd.bug.script, debian/cvsd.init: update GPL to recent
version (FSF address change) and update all copyright headers
with new GPL text
* debian/po/de.po: small typo fix in German translation, spottet by
Jens Seidel <jensseidel@users.sf.net>
* .cvsignore: ignore file that is created during build
* Makefile.am, debian/po/vi.po: add Vietnamese (vi) translation of
debconf templates by Clytie Siddall <clytie@riverland.net.au>
* debian/: po/cs.po, po/da.po, po/de.po, po/fr.po, po/ja.po,
po/nl.po, po/pt_BR.po, po/templates.pot, templates: fix typo in
templates, thanks to Clytie Siddall <clytie@riverland.net.au>
* debian/po/cs.po: fix wrapping of messages
2005-04-26 23:20 arthur
Release 1.0.7
* NEWS, configure.ac, debian/changelog, ChangeLog: release 1.0.7
* config.guess, config.sub: include updated files
* FAQ: update FAQ from webpage
* Makefile.am: fix for running configure from another directory,
thanks MURANAKA Masaki <monaka@monami-software.com>
* cvsd-buildroot.in: check for lib64 before creating symlink (not
libexec) (thanks Ysolt <ysolt@umszki.hu> for spotting this)
* config.guess, config.sub: include updated files
* README: some small improvements based on comments by Marcello
Magaldi <magowiz@fastwebnet.it>
Release 1.0.6
* NEWS, configure.ac, debian/changelog, ChangeLog: release 1.0.6
* README: add quick documentation for PamAuth cvs option
* ChangeLog, ChangeLog-2004: moved changes of 2004 to
ChangeLog-2004
* configure.ac: remove extra compiler warnings again (not available
on some compilers)
* cvsd-buildroot.in: add some support for 64 bit Linux systems
Release 1.0.5
* NEWS, configure.ac, debian/changelog, ChangeLog: release 1.0.5
* FAQ: update from current web version
* cvsd.c: get rid of program_name global var and use argv instead
* cvsd-buginfo.in: add check for lockdir directive in
CVSROOT/config to see if directory exists
* configure.ac: add extra compiler warnings
* INSTALL, depcomp, install-sh, missing, mkinstalldirs: update from
newer version of automake (1.9.5)
* cvsd-buginfo.in: also list tmp directory contents
* cvsd-buildroot.in: add /lib/ld-linux.so.2 to EXTRALIBS since
newer ldd has strange output, also ensure that libraries are
installed once
* debian/cvsd.init: explicitly set path
* debian/copyright, cvsd.c: fix copyright years
* debian/po/cs.po: add Czech (cs) translation of debconf templates
by Jan Outrata <outrataj@upcase.inf.upol.cz>
* debian/control: start short description with lower case letter
(thanks lintian)
And always is defined as share/examples/rc.d
which was the default before.
This rc.d scripts are not automatically added to PLISTs now also.
So add to each corresponding PLIST as required.
This was discussed on tech-pkg in late January and late April.
Not all of these packages have been tested.
Todo: remove the RCD_SCRIPTS_EXAMPLEDIR uses in MESSAGES and elsewhere
and remove the RCD_SCRIPTS_EXAMPLEDIR itself.
* documentation improvements and fixes
* made scripts more portable
* added cvsd-buginfo script for gathering information for bugreports and
added reportbug hooks in the debian package
* added experimental capabilities support (disabled by default) based on
a patch by Shugo Maeda
'cvs pserver' under a special uid/gid in a chroot jail.
cvsd is run as a daemon and is controlled through a configuration
file. It is relatively easy to configure and tools are provided
for easily setting up a rootjail.
This server can be useful if you want to run a public cvs
pserver. You should however be aware of the security limitations
of running a cvs pserver. If you want any kind of authentication
you should really consider using secure shell as a secure
authentication mechanism and transport. Passwords used in cvs
pserver are transmitted in plaintext and this wrapper won't
change that.
This server adds a layer of security to cvs. cvs is a very
powerful tool and is capable of running scripts and other
things. By running cvs in a rootjail it is possible to limit
the amount of "damage" cvs can do if it is exploited. It is
generally a good idea to run cvsd without any write permissions
to any directory on the system.
WWW: http://tiefighter.et.tudelft.nl/~arthur/cvsd/
NOTE: this is effectively an update of the existing cvsd package.
cvsd is a wrapper program for cvs in pserver mode. It will run 'cvs pserver'
under a special uid/gid in a chroot jail.
cvsd is run as a daemon and is controlled through a configuration file. It
is relatively easy to configure and tools are provided for easily setting up
a rootjail.
This server can be useful if you want to run a public cvs pserver. You should
however be aware of the security limitations of running a cvs pserver. If you
want any kind of authentication you should really consider using secure shell
as a secure authentication mechanism and transport. Passwords used in cvs
pserver are transmitted in plaintext and this wrapper won't change that.
This server adds a layer of security to cvs. cvs is a very powerful tool and
is capable of running scripts and other things. By running cvs in a rootjail
it is possible to limit the amount of "damage" cvs can do if it is exploited.
It is generally a good idea to run cvsd without any write permissions to any
directory on the system.
There's one problem: the startup script. It gets installed to
/usr/pkg/etc/init.d instead of in /usr/pkg/etc/rc.d. You could do
USE_REINPLACE=yes but I didn't know if this is possible in NetBSD.
I Tried to implement it in the Makefile like this:
post-patch:
@${REINPLACE_CMD} -e 's|init.d/cvsd|rc.d/cvsd.sh.sample|g ; \
s|init.d|rc.d|g' ${WRKSRC}/Makefile.in
But I get an error.
