pkgsrc

Author	SHA1	Message	Date
wiz	8dff0af114	Update to 1.3: Version 1.3 (released 2008-02-01) - Handle 'INTEGER { ... } (a..b)' regression. Revert parts of earlier fix. asn1Parser can now again parse src/pkix.asn1. The ASN1.c file was generated using Bison 2.3. - Move examples from src/ to new directory examples/. - Duplicate copy of divergated pkix.asn removed. - Merge unnecessary lib/defines.h into lib/int.h. - Configure no longer tries to use gcc -pipe. - Update gnulib files. - Fix mem leak in self-test. Version 1.2 (released 2007-12-10) - Update gnulib files. Version 1.1 (released 2007-08-31) - Fix bug that made asn1_check_version believe that 1.0 is older than 0.3.10. Version 1.0 (released 2007-08-31) - The self-tests, command line tools and build infrastructure have been re-licensed from GPLv2 to GPLv3. - Doc fixes. - Update gnulib files. Version 0.3.10 (released 2007-05-25) - Update gnulib files.	2008-03-04 15:06:42 +00:00
shannonjr	5d67f27acf	Added entries for pcsc-lite, ccid, p5-pcsc, pcsc-tools and CoolKey.	2008-03-04 11:37:32 +00:00
shannonjr	4168c23b12	Provides driver support for the CoolKey and Common Access Card (CAC) smart card used in a Public Key Infrastructure (PKI). The libpkcs11 module allows use of Smart Cards in applications that use mozilla Network Security Services (NSS).	2008-03-04 11:33:02 +00:00
shannonjr	5a21c9eec3	Provides several tools that are useful when working with smart cards: csc_scan regularly scans every PC/SC reader connected to the host and reports when a card is inserted or removed. ATR_analysis is a Perl script used to parse the smart card ATR. The smartcard_list.txt contains ATR of some cards. It is used by ATR_analysis to find a card model corresponding to the ATR. The perl script scriptortis used to send commands to a smart card using a batch file or stdin.	2008-03-04 11:32:15 +00:00
shannonjr	0305335642	This package contains a Perl wrapper to the PC/SC smartcard library (pcsc-lite) from MUSCLE together with some small examples.	2008-03-04 11:31:04 +00:00
shannonjr	30a5bfae3e	This package provides a generic USB CCID (Chip/Smart Card Interface Devices) driver and ICCD (Integrated Circuit(s) Card Devices). See the USB CCID and ICCD specifications from the USB working group.	2008-03-04 11:30:08 +00:00
shannonjr	d6204794ef	The purpose of PC/SC Lite is to provide a Windows(R) SCard interface in a very small form factor for communicating to smartcards and readers. The PC/SC Lite library is used to connect to the PC/SC daemon from a client application and provide access to the desired reader.	2008-03-04 11:29:08 +00:00
rillig	ebcb0ce01e	Resign from maintaining a lot of packages, so everyone is free to update them at will.	2008-03-04 11:02:23 +00:00
tonio	1fc4d6fc09	Update ocaml-ssl to 0.4.2 Update provided by Jaap Boender in PR 38145 Release notes not available. Added a .include bsd.prefs.mk so that MACHINE_ARCH is correctly defined.	2008-03-03 18:14:19 +00:00
shannonjr	9640842eb0	Update to 0.9.11. Changes: - In case a lot of message were being processed, the heartbeat timer could be delayed for a long period of time. - The old scheduler algorithm could be unfair when certain message priority were not available for processing. We now appropriatly handle repartition to others priority messages. - Message of the same priority could be processed in the wrong order when on-disk buffers were used. - No integrity check were performed on orphan on-disk buffer in case of an operating system crash. By using the prelude-failover API, we can now detect possibly corrupted disk buffer, or resume at the time we stopped recovering them. - New sched-priority and sched-buffer-size configuration options. - Fix a bug where several relaying plugin instance would only forward their message to a single Manager.	2008-03-03 15:15:32 +00:00
shannonjr	39e994d32f	Update to 0.9.16.2. Changes: - Fix bindings for IDMEF 'get_next' functions. - Make sure we use no additional GnuLib compiler flags when building bindings, this fix bindings compilation failure on some architecture (Solaris).	2008-03-03 15:13:02 +00:00
bjs	324979ec68	Add libssh2 to category Makefile.	2008-03-02 16:14:34 +00:00
bjs	8740bfa07f	Import libssh2-0.18, a library implementing the SSH2 protocol (available under the revised BSD license).	2008-03-02 14:11:54 +00:00
jlam	ca5929bc04	The "missing-from-system" headers that Heimdal installs are now placed into ${PREFIX}/include/krb5/roken instead of ${PREFIX}/include/krb5. This is good because it reduces the likelihood of a conflict with any other similarly named headers if you simply add -I${PREFIX}/include/krb5 to the compiler command line. Patch from PR pkg/38119 by charlie.	2008-03-02 06:41:32 +00:00
jlam	9d8755394f	Rename termlib.* to termcap.* to better document exactly what packages are trying to use (the termcap t*() API).	2008-02-29 22:41:13 +00:00
jlam	81dece3fea	Update security/heimdal to version 1.1. Changes from version 0.7.2 include: * Read-only PKCS11 provider built-in to hx509. * Better compatibilty with Windows 2008 Server pre-releases and Vista. * Add RFC3526 modp group14 as default. * Handle [kdc] database = { } entries without realm = stanzas. * Add gss_pseudo_random() for mechglue and krb5. * Make session key for the krbtgt be selected by the best encryption type of the client. * Better interoperability with other PK-INIT implementations. * Alias support for inital ticket requests. * Make ASN.1 library less paranoid to with regard to NUL in string to make it inter-operate with MIT Kerberos again. * PK-INIT support. * HDB extensions support, used by PK-INIT. * New ASN.1 compiler. * GSS-API mechglue from FreeBSD. * Updated SPNEGO to support RFC4178. * Support for Cryptosystem Negotiation Extension (RFC 4537). * A new X.509 library (hx509) and related crypto functions. * A new ntlm library (heimntlm) and related crypto functions. * KDC will return the "response too big" error to force TCP retries for large (default 1400 bytes) UDP replies. This is common for PK-INIT requests. * Libkafs defaults to use 2b tokens. * krb5_kuserok() also checks ~/.k5login.d directory for acl files. * Fix memory leaks. * Bugs fixes	2008-02-28 14:11:55 +00:00
rillig	b32b7657bb	Replaced the deprecated INSTALLATION_DIRS_FROM_PLIST with AUTO_MKDIRS, to shut up the pkglint warnings.	2008-02-28 11:58:47 +00:00
jlam	0c8cfdf12d	Update security/heimdal to version 1.1. Changes from version 0.7.2 include: * Read-only PKCS11 provider built-in to hx509. * Better compatibilty with Windows 2008 Server pre-releases and Vista. * Add RFC3526 modp group14 as default. * Handle [kdc] database = { } entries without realm = stanzas. * Add gss_pseudo_random() for mechglue and krb5. * Make session key for the krbtgt be selected by the best encryption type of the client. * Better interoperability with other PK-INIT implementations. * Alias support for inital ticket requests. * Make ASN.1 library less paranoid to with regard to NUL in string to make it inter-operate with MIT Kerberos again. * PK-INIT support. * HDB extensions support, used by PK-INIT. * New ASN.1 compiler. * GSS-API mechglue from FreeBSD. * Updated SPNEGO to support RFC4178. * Support for Cryptosystem Negotiation Extension (RFC 4537). * A new X.509 library (hx509) and related crypto functions. * A new ntlm library (heimntlm) and related crypto functions. * KDC will return the "response too big" error to force TCP retries for large (default 1400 bytes) UDP replies. This is common for PK-INIT requests. * Libkafs defaults to use 2b tokens. * krb5_kuserok() also checks ~/.k5login.d directory for acl files. * Fix memory leaks. * Bugs fixes	2008-02-28 08:14:41 +00:00
adam	7cf5a9029c	Changes 2.1.17: This is a bug-fix release. It improves stablility of the policy importer on 64-bit platforms, supports import of iptables policies that use TCPMSS target, fixes problems with built-in RCS on windows when user does not have administrator's rights and comes with nearly 100% Brazilian Portugese translation	2008-02-21 17:34:08 +00:00
tnn	20a85821ab	Link shared libraries with -rpath on IRIX to prevent check-shlibs errors.	2008-02-20 01:10:20 +00:00
reed	e9c0ed7055	Update to 2.5.3. This update is from maintainer in PR #38062 . From the amavisd-new-2.5.3 release notes: BUG FIXES - fix parsing a SMTP status response from MTA when releasing from a quarantine, when a MTA response did not include an enhanced status code (RFC 3463) (such as with old versions of Postfix); a parsing failure resulted in attribute "setreply=450 4.5.0 Unexpected:..." in an AM.PDP protocol response, even though a release was successful; reported by Ron Miller, John M. Kupski, investigated by Tony Caduto and Jeremy Fowler; - change parsing of addresses in From, To, and Cc header fields, avoiding complex Perl regular expressions which could crash a process on certain degenerate cases of these header fields; thanks for detailed problem reports to Carsten Lührs and Attila Nagy; - completely rewritten parsing of Received header field to work around a Perl regular expression problem which could crash a process on certain degenerate cases of mail header fields; problem reported by Thomas Gelf; - harden to some extent regular expressions in parse_message_id to cope better with degenerate cases of header fields carrying message-id; - sanitize 8-bit characters in In-Reply-To and References header fields before using them in Pen Pals SQL lookups to avoid UTF-8 errors like: penpals_check FAILED: sql exec: err=7, 22021, DBD::Pg::st execute failed: ERROR: invalid byte sequence for encoding "UTF8": 0xd864 - when turning an infection report into a spam report, avoid adding newly discovered virus names (i.e. fraud names) to a cached list if these names are already listed; previously the list would just grow on each passage through a cache, leading to unsightly long lists of spam tests in a report; based on a patch by Henrik Krohns; - fix diagnostics when an invalid command line argument is given; OTHER - reduce log clutter when certain Perl modules are loaded late, i.e. after chrooting and daemonizing, but still before a fork; now only issue one log entry by a parent process: "extra modules loaded after daemonizing: "; - slightly relax mail address syntax in subroutine split_address; - fetch additional information (tags) from SpamAssassin: TESTS, ASN, ASNCIDR, DKIMDOMAIN and DKIMIDENTITY, making them available through a macro 'supplementary_info' (if a version of SpamAssassin in use provides them); - updated DKIM section in amavisd-new-docs.html, removing the historical DomainKeys milter from examples; - declared a dummy subroutine dkim_key() and new dummy configuration variables @dkim_signature_options_bysender_maps, %signed_header_fields, $reputation_factor, @signer_reputation_maps and $sql_partition_tag, members of policy banks, in preparation for 2.6.0 - declared now for improved downgrade compatibility of 2.6.0 configuration files, if need arises.	2008-02-19 16:20:15 +00:00
reed	f7336fad52	Sort some PLIST entries.	2008-02-19 16:18:18 +00:00
jlam	d3a42c55a4	Make this more cut-and-paste-friendly.	2008-02-18 20:37:22 +00:00
jlam	79d070da7a	Actually add that prestart function as a start_precmd. Ride previous PKGREVISION bump.	2008-02-18 20:35:48 +00:00
jlam	42b88b10b3	+ Add full DESTDIR support. + Create any required directories with the right ownership and permissions as a "prestart" action in the authdaemond rc.d script. Bump the PKGREVISION to 1.	2008-02-18 20:26:33 +00:00
jlam	c788841be5	Add changes from NetBSD src that add casts to fix warnings on platforms where size_t is unsigned long.	2008-02-18 18:22:18 +00:00
jlam	eb65092610	Update security/openpam to openpam-20071221 (Hydrangea). Changes from version 20050616 (Figwort) include: - ENHANCE: API function arguments are now const where appropriate, to match corresponding changes in the Solaris PAM and Linux-PAM APIs. - ENHANCE: corrected a number of C namespace violations. - ENHANCE: the module cache has been removed, allowing long-lived applications to pick up module changes. This also allows multiple threads to use PAM simultaneously (as long as they use separate PAM contexts), since the module cache was the only part of OpenPAM that was not thread-safe.	2008-02-18 16:48:12 +00:00
apb	5396c32a11	Allow SFS_USER and SFS_GROUP to be overridden, instead of hardcoded to sfs:sfs. Bump PKGREVISION.	2008-02-16 22:06:12 +00:00
apb	babe7e230f	Deal with fourth arg to mount(2) in NetBSD. It appeared between 4.99.23 and 4.99.24.	2008-02-16 22:03:49 +00:00
adrianp	a79f7bfe0b	-msf	2008-02-12 23:13:58 +00:00
adrianp	56d3d50bc1	Remove msf v2.x for a number of reasons: * v3.x is now out * Any patches to update files for where interpreters are get overwritten the next time you update the msf files from metasploit.org. This renders the PLIST useless.	2008-02-12 23:13:36 +00:00
heinz	e97bfc3815	The package supports installation to DESTDIR.	2008-02-07 20:52:58 +00:00
heinz	2861a20fb0	Updated to version 2.24. Pkgsrc changes: - The package supports installation to DESTDIR. Changes since version 2.19: =========================== Revision history for Perl extension Crypt::CBC. 2.24 Fri Sep 28 11:21:07 EDT 2007 - Fixed failure to run under taint checks with Crypt::Rijndael or Crypt::OpenSSL::AES (and maybe other Crypt modules). See http://rt.cpan.org/Public/Bug/Display.html?id=29646. 2.23 Fri Apr 13 14:50:21 EDT 2007 - Added checks for other implementations of CBC which add no standard padding at all when cipher text is an even multiple of the block size. 2.22 Sun Oct 29 16:50:32 EST 2006 - Fixed bug in which plaintext encrypted with the -literal_key option could not be decrypted using a new object created with the same -literal_key. - Added documentation confirming that -literal_key must be accompanied by a -header of 'none' and a manually specificied IV. 2.21 Mon Oct 16 19:26:26 EDT 2006 - Fixed bug in which new() failed to work when first option is -literal_key. 2.20 Sat Aug 12 22:30:53 EDT 2006 - Added ability to pass a preinitialized Crypt::* block cipher object instead of the class name. - Fixed a bug when processing -literal_key.	2008-02-07 20:46:04 +00:00
heinz	a609610359	The package supports installation to DESTDIR. A C compiler is necessary.	2008-02-07 20:27:23 +00:00
tnn	bdcd11f1c3	Needs GNU nroff to format catpages with -mandoc.	2008-02-07 13:24:36 +00:00
tnn	e18489a712	Fix build on HPUX: in HP's alternate universe, MAP_ANON is called MAP_ANONYMOUS.	2008-02-06 00:36:06 +00:00
obache	af85d259cd	Update p5-IO-Socket-SSL to 1.13. v1.13 - removed CLONE_SKIP which was added in 1.03 because this breaks windows forking. Handled threads/windows forking better by making sure that CTX from Net::SSLeay gets not freed multiple times from different threads after cloning/forking - removed setting LocalPort to 0 in tests, instead leave it undef if a random port should be allocated. This should fix build problems with 5.6.1. Thanks to <andrew[DOT]benham[AT]thus[DOT]net>	2008-02-05 11:36:04 +00:00
reed	dd348daae9	Increase the BUILDLINK_API_DEPENDS.gnutls to at least gnutls>=1.2.6 which is still very old. This fixes problem where building something depending on gnutls when old gnutls is already installed using liblzo won't buildlink because lzo is not installed. This forces a newer gnutls to be installed that uses lzo instead.	2008-01-31 01:04:26 +00:00
obache	f3bc31c6d2	Need to allow leading underscore of OPENPAM_VERSION for old(?) version.	2008-01-29 00:52:58 +00:00
adam	e3d0110329	Changes 2.1.16: Unfortunate bug introduced in 2.1.15 that broke generated firewall script for iptables in case option "use iptables-restore" was on is fixed in this release. Additional checks were added to the generated script for iptables to improve error detection and make sure the GUI properly detects when it terminates with error. Support for load balancing with PF was also added.	2008-01-28 20:34:54 +00:00
bjs	a7c1b4774c	Remove leading underscore from OPENPAM_VERSION for BUILTIN_VERSION.openpam, as openpam "Hydrangea" now defines OPENPAM_VERSION. This caused the version inquiry to fail.	2008-01-28 01:15:26 +00:00
rillig	654940226e	pkglint says: ERROR: security/dsniff/Makefile.common:4: PKGREVISION must not be set outside the package Makefile.	2008-01-28 00:45:26 +00:00
heinz	d3b842b4ee	Updated to version 1.05. Pkgsrc changes: - Added missing HOMEPAGE. - The package supports installation to DESTDIR. - A C compiler is necessary. Changes since version 0.05: =========================== 1.05 - Fri Nov 9 05:39:09 2007 * This version fixes the signed integer problems that Solaris had. * Now this module require perl 5.6. * You don't need to upgrade if your system isn't Solaris. 1.04 - Mon Oct 15 14:27:00 2007 * Quashed warnings about overflows by casting numbers to unsigned ints. * This compiles warning-free and passes all tests on Solaris 10 with gcc 3.4.6, so it might take care of RT # 27632 1.04_02 - Wed Sep 19 19:24:06 2007 * remove test files that shouldn't be there 1.04_01 - Wed Sep 12 15:34:24 2007 * This developer release explores the Solaris bug noted in RT # 27632. Some Solaris installations may be encrypting or decrpyting incorrectly. 1.04 - Fri Feb 23 11:20:44 2007 * Todd Ross adjusted rijndael.h to use __sun to identify Solaris boxes. GCC uses __sun__ or __sun, but Solaris cc only uses __sun : http://blogs.sun.com/morganh/date/20060928 * If you've already compiled this module, you don't need to upgrade 1.03 - Thu Feb 22 15:42:04 2007 * Updated distro to include missing Pod tests * No code changes 1.02 - Thu Jan 25 14:48:51 2007 * Updated docs to show cipher modes. No need to upgrade if you already have this. 1.01 - Wed Jan 10 19:14:14 2007 * Bump to a release version. This is the same as 0.06_10. * This release should fix the problems with INT types on all platforms, including 64 bit platforms. 0.06_10 - Wed Jan 10 00:35:10 2007 * Let's try the int type for MinGW:wq 0.06_09 - Fri Dec 15 08:12:02 2006 * Updated header file to handle Solaris special case * I think this might be the release candidate for 0.07! :) 0.06_08 - Wed Nov 29 19:51:33 2006 * Adjusting WIN32 targets for typedefs. Some things look like both Unix and Windows, so I don't want compilers to choke if it tries to redefine types. 0.06_07 - Mon Nov 27 10:37:18 2006 * more header file fiddling to get everyone to define the right abstract types. This time check for _SYS_TYPES_H 0.06_06 - Fri Nov 17 14:56:19 2006 * Fooled with header file some more, and tested it myself on Cygwin. Instead of checking for WIN32, just check for __CYGWIN__ 0.06_05 - Fri Nov 17 11:13:25 2006 * The last two revisions seem to not define UINTxx and ends up with a parse error. Let's try this, as I go off to dig out my Windows box. 0.06_04 - Wed Nov 15 14:43:37 2006 * Try UINT patch from David Golden to get this to work on MinGW 0.06_03 - Wed Nov 15 11:07:08 2006 * Re-jiggered logic to define UINT32 and UINT8. First I'll try sys/types.h, then check if they are already defined elsewhere, and lastly hardcode the typedefs based on platform. The previous release (0.06_02) had some problems on Windows from conflicting typedefs (similar to the cygwin problems with libjpeg and X), so I guard my typedefs by checking for previous definitions. Let's hope those previous definitions are right :) 0.06_02 - Sun Nov 12 16:23:07 2006 * Let's try some hardcoded types for UINT(32\|8) for Windows. 0.06_01 - Sun Nov 12 10:38:56 2006 * Adjust version number to match distro number (RT #4227) * Use <sys/types.h> instead of hard-coding (RT #22755, 9514, 18812, 1444, 503). * This module is now maintained by brian d foy (bdfoy@cpan.org)	2008-01-25 02:26:31 +00:00
tnn	e7a9a2bf1a	Update dependency, it builds with openssl-0.9.8	2008-01-24 11:14:26 +00:00
tnn	9d74e63476	Append {,nb*} to a dependency.	2008-01-24 11:10:53 +00:00
obache	9dff4b5d40	Also used by security/cy2-ldapdb/Makefile.	2008-01-23 08:53:06 +00:00
taca	4ed365d3bc	Distribution file was changed after sudo 1.6.9p12 was released. :-( config.h.in configure configure.in ldap.c Add DIST_SUBDIR to handle this situation. Bump PKG_REVISION.	2008-01-22 12:45:24 +00:00
obache	ffcb11f500	Fixed pattern to strip nb*.	2008-01-22 10:56:16 +00:00
taca	cd62454d80	Update sudo package to 1.6.9p12. Changes from 1.6.9p11: 641) Added a configure check for the ber_set_option() function. 642) Fixed a compilation problem with the HP-UX K&R C compiler. 643) Revamped the Kerberos 5 ticket verification code. 644) Added support for the checkpeer ldap.conf variable for netscape-based LDAP SDKs. 645) Fixed a problem where an incomplete password could be echoed to the screen if there was a read timeout.	2008-01-21 16:38:57 +00:00
tnn	ad6ceadd25	Per the process outlined in revbump(1), perform a recursive revbump on packages that are affected by the switch from the openssl 0.9.7 branch to the 0.9.8 branch. ok jlam@	2008-01-18 05:06:18 +00:00
tnn	5b7fef9e0c	Update to openssl-0.9.8g. Provided by Jukka Salmi in pkgsrc-wip. pkgsrc notes: o Tested on NetBSD/i386 (Jukka Salmi), Mac OSX 10.5 (Adrian Portelli), Linux (Jeremy C. Reed), Tru64 5.1b (tnn), HP-UX 11i (tnn). Because the Makefile system has been rewamped, other platforms may require fixes. Please test if you can. o OpenSSL can now be built with installation to DESTDIR. Overview of important changes since 0.9.7i: o Add gcc 4.2 support. o DTLS improvements. o RFC4507bis support. o TLS Extensions support. o RFC3779 support. o New cipher Camellia o Updated ECC cipher suite support. o New functions EVP_CIPHER_CTX_new() and EVP_CIPHER_CTX_free(). o Zlib compression usage fixes. o Major work on the BIGNUM library for higher efficiency and to make operations more streamlined and less contradictory. This is the result of a major audit of the BIGNUM library. o Addition of BIGNUM functions for fields GF(2^m) and NIST curves, to support the Elliptic Crypto functions. o Major work on Elliptic Crypto; ECDH and ECDSA added, including the use through EVP, X509 and ENGINE. o New ASN.1 mini-compiler that's usable through the OpenSSL configuration file. o Added support for ASN.1 indefinite length constructed encoding. o New PKCS#12 'medium level' API to manipulate PKCS#12 files. o Complete rework of shared library construction and linking programs with shared or static libraries, through a separate Makefile.shared. o Rework of the passing of parameters from one Makefile to another. o Changed ENGINE framework to load dynamic engine modules automatically from specifically given directories. o New structure and ASN.1 functions for CertificatePair. o Changed the key-generation and primality testing "progress" mechanism to take a structure that contains the ticker function and an argument. o New engine module: GMP (performs private key exponentiation). o New engine module: VIA PadLOck ACE extension in VIA C3 Nehemiah processors. o Added support for IPv6 addresses in certificate extensions. See RFC 1884, section 2.2. o Added support for certificate policy mappings, policy constraints and name constraints. o Added support for multi-valued AVAs in the OpenSSL configuration file. o Added support for multiple certificates with the same subject in the 'openssl ca' index file. o Make it possible to create self-signed certificates using 'openssl ca -selfsign'. o Make it possible to generate a serial number file with 'openssl ca -create_serial'. o New binary search functions with extended functionality. o New BUF functions. o New STORE structure and library to provide an interface to all sorts of data repositories. Supports storage of public and private keys, certificates, CRLs, numbers and arbitrary blobs. This library is unfortunately unfinished and unused withing OpenSSL. o New control functions for the error stack. o Changed the PKCS#7 library to support one-pass S/MIME processing. o New FIPS 180-2 algorithms (SHA-224, -256, -384 and -512). o New X509_VERIFY_PARAM structure to support parametrisation of X.509 path validation. o Change the default digest in 'openssl' commands from MD5 to SHA-1. o Added support for DTLS. o New BIGNUM blinding. o Added support for the RSA-PSS encryption scheme o Added support for the RSA X.931 padding. o Added support for files larger than 2GB. o Added alternate pkg-config files.	2008-01-17 06:42:47 +00:00
rillig	580cfc0748	Needs libz. From PR 37760.	2008-01-15 13:36:37 +00:00
adrianp	69310b4399	-audit-packages	2008-01-13 20:20:33 +00:00
adrianp	a8d77ab08a	Retire audit-packages in favour of pkg_install>=20070714. All functionality in this package is now in pkg_install>=20070714. As discussed on pkgsrc-users@ and OK'ed by agc@.	2008-01-13 20:20:06 +00:00
wiz	e11174603f	Update to 1.4.8: Noteworthy changes in version 1.4.8 (2007-12-20) ------------------------------------------------ ******************************************* * A decade of GnuPG: g10-0.0.0.tar.gz was * * released exactly 10 years ago. * ******************************************* * Changed the license to GPLv3. * Improved detection of keyrings specified multiple times. * Changes to better cope with broken keyservers. * Minor bug fixes. * The new OpenPGP standard is now complete, and has been published as RFC-4880. The GnuPG --openpgp mode (note this is not the default) has been updated to match the new standard. The --rfc2440 option can be used to return to the older RFC-2440 behavior. The main differences between the two are "--enable-dsa2 --no-rfc2440-text --escape-from-lines --require-cross-certification". * By default (i.e. --gnupg mode), --require-cross-certification is now on. --rfc2440-text and --force-v3-sigs are now off. * Allow encryption using legacy Elgamal sign+encrypt keys if option --rfc2440 is used. * Fixed the auto creation of the key stub for smartcards. * Fixed a rare bug in decryption using the OpenPGP card. * Fix RFC-4880 typo in the SHA-224 hash prefix. Old SHA-224 signatures will continue to work.	2008-01-13 16:23:55 +00:00
drochner	0d926fe456	update to 2.20.3 changes: minor fixes	2008-01-11 14:02:42 +00:00
drochner	f752f295cb	update to 2.20.3 changes: translation updates	2008-01-11 13:56:56 +00:00
heinz	9ab1ed4dab	Updated to version 1.32. Pkgsrc changes: - Requires p5-Test-Exception and p5-Test-Warn for building and p5-MIME-Base64 for running. The modules p5-Array-Compare, p5-Sub-Uplevel and p5-Tree-DAG_Node are only used through p5-Test-Warn. Opened bug id 32172 at rt.cpan.org for this. - Needs a C compiler. - Specified prefix for OpenSSL in order to avoid adding any search paths to inc/Module/Install/PRIVATE/Net/SSLeay.pm. - No more interactive questions (PERL_MM_USE_DEFAULT). Changes since version 1.30: =========================== - Mike McCauley and Florian Ragwitz maintain this module now 1.31_01 02.07.2007 - Only bind X509_STORE_set_trust #if OPENSSL_VERSION_NUMBER >= 0x0090800fL - Removed %Filenum_Objects from Net::SSLeay::Handle so unused handles will be freed. - Use ppport.h. - improved openssl path guessing, forcing openssl path now requires the -path flag (caution: incompatible flag change) Path guessing works on windows too. mikem, with patches from Stas Bekman - Added /usr/sfw/bin/openssl to path guessing for Open Solaris, suggested by Igor Boehme. - Fixed a problem with X509_get_subjectAltNames not working when the subjectAltNAmes are the first extension. Reported by Achim Grolms 1.31_02 14.07.2007 - Fix linking problems on Windows. Tested with VC++ 6.0, Shining Light 0.9.7L on Windows Server 2003 with ActivePerl 5.8.8.820. Also tested with OpenSSL 0.9.8e compiled from source. - Unable to get working systems when compiling with MS Visual Studio Express 2005. Contributions requested. This may be relevant: http://www.itwriting.com/blog/?postid=261&replyto=2542 - Fixed a number of minor compile warnings on Windows - Updated README.Win32 to define building procedures on Windows - Fixed incorrect test failure reports in 08_external. - Add parens to function calls in Makefile.PL to prevent warnings with some perls. - Tested on Sparc Solaris 8, Sparc Solaris 10, OpenSuSE 10.2 x64, OpenSuSE 10.0 x86, FreeBSD 6.0 x86, Ubuntu 6.10, Fedora Core 6 x86 - Changed type of SSL_set_info_callback args to stop compiler warnings on Windows - Removed auto_include from Makefile.PL - Removed build_requires('Test::NoWarnings') from Makefile.PL - Testing with Strawberry Perl on Windows XP SP2, added doc to README.Win32 - Testing with Perl CamelPack 5.8.7 on Windows XP SP2,added doc to README.Win32 1.32 03.08.2007 - Don't let the tests die when something unexpected happens. Just BAIL_OUT. - Some Win32 improvements.	2008-01-09 00:47:00 +00:00
adrianp	ed22d64afa	Fix builds on Darwin	2008-01-08 17:02:11 +00:00
heinz	239a1650c5	Updated to version 5.45. Pkgsrc changes: - Added explicit licence identification. Changes since version 5.44: =========================== 5.45 Tue Jun 26 02:36:00 MST 2007 - extended portability to earlier Perls -- works on Perl 5.003 and later -- thanks to Jim Doble for testing on legacy platforms - updated META.yml to conform to current META spec (1.3) - minor documentation fixes	2008-01-08 15:11:25 +00:00
heinz	c4641b5471	Updated to version 0.25. Pkgsrc changes: - A C compiler is necessary. - Added explicit license identification. - Removed patch-ab (fixed upstream). Changes since version 0.24: =========================== 0.25 Sun May 20 2007 12:56:11 - Add a LICENSE file. - Fix a bug (reported by many) in rsa.t - we were incorrectly counting the number of tests in situations where use_sha512_hash was not available.	2008-01-08 15:01:55 +00:00
heinz	aa79a95655	Updated to version 0.04. Pkgsrc changes: - The package supports installation to DESTDIR. - A C compiler is necessary. - Added explicit license identification. Changes since version 0.03: =========================== 0.04 Sun May 20 13:41:04 2007 - Add a LICENSE file. - Better use of types.	2008-01-08 14:48:35 +00:00
heinz	12b563509f	Updated to version 0.04. Pkgsrc changes: - The package supports installation to DESTDIR. - A C compiler is necessary. - Added explicit license identification. Changes since version 0.03: =========================== 0.04 Sun May 20 2007 13:08:23 - Add a LICENSE file. - Add -DOPENSSL_NO_KRB5 to DEFINE to keep redhat happy.	2008-01-08 14:36:51 +00:00
joerg	6cf0f6c49c	Fix builtin.mk logic for thread feature if no native OpenSSL exists. Fixes PR pkg/37699 from Aleksey Cheusov.	2008-01-07 15:51:08 +00:00
taca	5fe02749ec	Update sudo package to 1.6.9p11. 637) Fixed a compilation problem on SCO related to how they store the high resolution timestamps in struct stat. 638) Avoid checking the passwd file group multiple times in the LDAP query when the user's passwd group is also listed in the supplemental group vector. 639) The URI specifier can now be used in ldap.conf even when the LDAP SDK doesn't support ldap_initialize(). 640) New %p prompt escape that expands to the user whose password is being prompted, as specified by the rootpw, targetpw and runaspw sudoers flags. Based on a diff from Patrick Schoenfeld.	2008-01-06 16:08:24 +00:00
rillig	d5a1ab0577	Fixed a few pkglint warnings.	2008-01-05 20:41:25 +00:00
obache	50a4f19df7	Change MASTER_SITES to locatoin for old archive, noticed by Zafer Aydogan in private mail.	2008-01-05 05:25:21 +00:00
obache	e1b59f625b	Change MASTER_SITES to new location, noticed by Zafer Aydogan in private mail. Also change HOMEPAGE.	2008-01-05 05:23:23 +00:00
obache	1181cc43a1	Old url is not available now, noticed by Zafer Aydogan in private mail. Switch HOMEPAGE and MASTER_SITES to new location.	2008-01-05 05:09:09 +00:00
obache	5dc3470702	.tbz does not exist now, noticed by Zafer Aydogan in private mail. Switch to .tgz, no differ from *.tbz.	2008-01-05 05:06:52 +00:00
obache	6763497ac0	Change HOMEPAGE and MASTER_SITES to new location.	2008-01-05 05:00:37 +00:00
heinz	23c9f186f1	The package needs a C compiler.	2008-01-04 22:20:31 +00:00
rillig	7f791603aa	Removed the special-case handling of PKG_SYSCONFDIR for NetBSD. Now the configuration files are installed in the usual pkgsrc place, not in /etc. PKGREVISION++ Ok'ed by jlam@.	2008-01-04 22:08:09 +00:00
adrianp	4eb48dab26	Update to 2.1.4 27 Nov 2007 - 2.1.4 ------------------- * Updated included Core Ruleset to version 1.5 and noted in the docs that XML support is required to use the rules without modification. * Fixed an evasion FP, mistaking a multipart non-boundary for a boundary. * Fixed multiple warnings on Solaris and/or 64bit builds. * Do not process subrequests in phase 2-4, but do hand off the request data. * Fixed a blocking FP in the multipart parser, which affected Safari. 11 Sep 2007 - 2.1.3 ------------------- * Updated multipart parsing code adding variables to allow checking for various parsing issues (request body abnormalities). * Allow mod_rpaf and mod_extract_forwarded2 to work before ModSecurity. * Quiet some compiler warnings. * Do not block internal ErrorDocument requests after blocking request. * Added ability to compile without an external API (use -DNO_MODSEC_API). 27 Jul 2007 - 2.1.2 ------------------- * Cleaned up and clarified some documentation. * Update included core rules to latest version (1.4.3). * Enhanced ability to alert/audit failed requests. * Do not trigger "pause" action for internal requests. * Fixed issue with requests that use internal requests. These had the potential to be intercepted incorrectly when other Apache httpd modules that used internal requests were used with mod_security. * Added Solaris and Cygwin to the list of platforms not supporting the hidden visibility attribute. * Fixed decoding full-width unicode in t:urlDecodeUni. * Lessen some overhead of debugging messages and calculations. * Do not try to intercept a request after a failed rule. This fixes the issue associated with an "Internal Error: Asked to intercept request but was_intercepted is zero" error message. * Added SecAuditLog2 directive to allow redundent concurrent audit log index files. This will allow sending audit data to two consoles, etc. * Small performance improvement in memory management for rule execution.	2008-01-04 10:05:51 +00:00
rillig	8159318d33	Install the binaries readable for the owner, so that a package can be created in unprivileged pkgsrc mode. PKGREVISION++	2008-01-03 23:17:47 +00:00
adrianp	f1462904ad	Look out for the case where audit-packages is already installed with the base OS on NetBSD.	2008-01-02 09:00:34 +00:00
heinz	b55970381a	Replaced outdated mirrors by working mirrors.	2007-12-30 13:42:29 +00:00
obache	583c31e60c	* Honor PKGMANDIR and PKG_SYSCONFBASE. * Install config files by CONF_FILES instead of install directly. * Correct path of tools and config in sample config files and a manual page. * Add DESTDIR support. Bump PKGREVISION.	2007-12-30 09:15:36 +00:00
tron	5105fb8b30	Recognize the MIT Kerberos bundled with Mac OS X Leopard.	2007-12-28 15:27:24 +00:00
obache	ecdc58e2bd	This package uses BSD Makefile. Honor PKGMANDIR and DESTDIR ready.	2007-12-28 12:27:20 +00:00
obache	fbffa9a69b	Require pre-created sbin directory.	2007-12-28 11:51:42 +00:00
obache	b33dc97d95	DESTDIR ready.	2007-12-28 11:47:24 +00:00
obache	5bcacb16f6	Fixes invalid lvalue in assignment.	2007-12-28 11:45:42 +00:00
obache	9ad21a5b6e	Also need for NetBSD.	2007-12-28 05:13:23 +00:00
obache	35eed689d9	Switch to SUBST framework.	2007-12-28 05:01:47 +00:00
obache	b1fe4da4d5	Honor PKGMANDIR.	2007-12-28 04:22:43 +00:00
gdt	efee29e6e8	Remove deprecated "fee-based commercial use" license for idea, mdc2, rc5, and replace with {idea,mdc2,rc5}-nonlicense. Because pkgsrc does not yet handle multiple licenses, set LICENSE to openssl-patented-algorithms-nonlicense.	2007-12-27 23:41:42 +00:00
adrianp	5723ca178b	Add a PCRE bl3 depends to fix builds (found by DragonFly bulk builds) PKGREVISION++	2007-12-27 16:39:07 +00:00
joerg	2e20c7d21d	Explicitly depend on Perl. Bump revision.	2007-12-27 16:31:23 +00:00
obache	3be1e9beac	Change MASTER_SITES to archive directory, 1.4.11 only exsits in it.	2007-12-27 15:46:00 +00:00
obache	83dfac88b1	Try to create target directories before install manuals.	2007-12-27 15:06:02 +00:00
obache	b992f36697	Try to fix build problem on NetBSD, use the same strategies as DragonFly.	2007-12-27 14:13:58 +00:00
markd	48ae334282	Now that package is installed into qt4 subdirectory, pkg-config can't find the qca2.pc file so copy to where it can. OKed jdolecek. Bump PKGREVISION.	2007-12-25 20:09:47 +00:00
jdolecek	07910e4767	restore security/qca-tls to state on pkgsrc-2007Q3-base tag (just before the removal), rather then revision 1.1 of all files, used for original revival test compiled on Mac OS X 10.5	2007-12-23 21:05:51 +00:00
jdolecek	124723b3de	install qca2 files into qt4 subdirectory, so that qca 1.x and qca2 could be installed at the same time bump PKGREVISION	2007-12-22 19:36:27 +00:00
joerg	17adb7cfd1	I18N (PR 37581) and DESTDIR support.	2007-12-21 20:35:36 +00:00
taca	dca1f5683b	Update sudo pacakge to 1.6.9p10. Major changes since Sudo 1.6.9p9: o Moved LDAP options into a table for simplified parsing/setting. o Fixed a problem with how some LDAP options were being applied. o Added support for connecting directly to LDAP servers via SSL/TLS for servers that don't support the start_tls extension.	2007-12-21 03:12:34 +00:00
jdolecek	96641aef3f	install qca2 files into qt4 subdirectory, so that qca 1.x and qca2 could be installed at the same time; also speedup build by disabling building tests and other miscellaneous cleanup bump PKGREVISION	2007-12-21 00:19:43 +00:00
jdolecek	550c7f21f9	put back qca-tls, add qca2 and qca2-ossl	2007-12-20 21:21:16 +00:00
jdolecek	e210ff0a0a	move back to version 1.0 for security/qca and re-add security/qca-tls (for qca 1.x), so that kdenetwork3 works again XXX these should be renamed to qca1* after current freeze	2007-12-20 20:37:21 +00:00
jdolecek	4188ec7c1a	files moved to security/qca2-ossl	2007-12-20 20:21:03 +00:00
jdolecek	bfb290e37b	reimport security/qca-ossl as security/qca2-ossl (it's qca 2.x only)	2007-12-20 20:20:17 +00:00
jdolecek	99087ddfcd	re-import security/qca version 2.0.0 as security/qca2 in preparation for having both qca 1.x and qca 2.x in tree	2007-12-20 20:17:47 +00:00
jdolecek	65df391662	add qca-ossl	2007-12-19 13:05:42 +00:00
jdolecek	ddb6d04cf4	Add qca-ossl 2.0.0-beta3 - OpenSSL plugin for security/qca	2007-12-19 13:05:05 +00:00
jdolecek	9e0b36c71a	remove qca-tls - it's replaced by qca-ossl in QCA 2.x	2007-12-19 13:02:11 +00:00
jdolecek	058acc3df0	Update qca to version 2.0.0 (needed for update of chat/psi). Change list is not available, but the project now depends on QT 4.2 and was incorporated into KDE4 too	2007-12-19 13:01:36 +00:00
drochner	a667d0e7df	pull in pam.buildlink3.mk for proper handling of the various PAM versions, fixes PR pkg/37545 by Ondrej Tuma, and makes special handling of Darwin unnecessary (tested by Matthias Scheler)	2007-12-17 16:45:11 +00:00
bjs	6e1399f17e	Update to version 1.7.1. Changes: Update to version 1.7.1. Changes: v1.7.1 (Amy) 10jun07 -------------------- * windows SSH agent support can use the 'ctypes' module now if 'win32all' is not available [patch from alexander belchenko] * SFTPClient.listdir_attr() now preserves the 'longname' field [patch from wesley augur] * SFTPClient.get_channel() API added * SSHClient constuctor takes an optional 'timeout' parameter [patch from james bardin] v1.7 (zubat) 18feb07 -------------------- * added x11 channel support (patch from david guerizec) * added reverse port forwarding support * (bug 75370) raise an exception when contacting a broken SFTP server * (bug 80295) SSHClient shouldn't expand the user directory twice when reading RSA/DSS keys * (bug 82383) typo in DSS key in SSHClient * (bug 83523) python 2.5 warning when encoding a file's modification time * if connecting to an SSH agent fails, silently fallback instead of raising an exception v1.6.4 (yanma) 19nov06 ---------------------- * fix setup.py on osx (oops!) * (bug 69330) check for the existence of RSA/DSA keys before trying to open them in SFTPClient * (bug 69222) catch EAGAIN in socket code to workaround a bug in recent Linux 2.6 kernels * (bug 70398) improve dict emulation in HostKeys objects * try harder to make sure all worker threads are joined on Transport.close() v1.6.3 (xatu) 14oct06 --------------------- * fixed bug where HostKeys.__setitem__ wouldn't always do the right thing * fixed bug in SFTPClient.chdir and SFTPAttributes.__str__ [patch from mike barber] * try harder not to raise EOFError from within SFTPClient * fixed bug where a thread waiting in accept() could block forever if the transport dies [patch from mike looijmans] v1.6.2 (weedle) 16aug06 ----------------------- * added support for "old" group-exchange server mode, for compatibility with the windows putty client * fixed some more interactions with SFTP file readv() and prefetch() * when saving the known_hosts file, preserve the original order [patch from warren young] * fix a couple of broken lines when exporting classes (bug 55946) v1.6.1 (vulpix) 10jul06 ----------------------- * more unit tests fixed for windows/cygwin (thanks to alexander belchenko) * a couple of fixes related to exceptions leaking out of SFTPClient * added ability to set items in HostKeys via __setitem__ * HostKeys now retains order and has a save() method * added PKey.write_private_key and PKey.from_private_key v1.6 (umbreon) 10may06 ---------------------- * pageant support on Windows thanks to john arbash meinel and todd whiteman * fixed unit tests to work under windows and cygwin (thanks to alexander belchenko for debugging) * various bugfixes/tweaks to SFTP file prefetch * added SSHClient for a higher-level API * SFTP readv() now yields results as it gets them * several APIs changed to throw an exception instead of "False" on failure	2007-12-14 13:35:04 +00:00
rhaen	c9222026c9	- added DESTDIR support - added USE_TOOLS - it should build now on NetBSD, Dragonfly - new maintainer - PKGREVISION bump	2007-12-13 12:02:09 +00:00
wiz	b524dc18ff	Reset maintainer on his request.	2007-12-12 20:42:28 +00:00
adam	ad2a3bc804	Changes 2.1.15: * Bug fix release	2007-12-12 17:59:20 +00:00
taca	a208a673da	sudo-1.6.9p9.tar.gz was updated now. So, introduce DIST_SUBDIR and bump PKGREVISION. A little bug fix seems to applied. -rw-r--r-- 1 taca taca 578259 Dec 3 19:38 sudo-1.6.9p9.tar.gz-prev -rw-r--r-- 1 taca taca 578262 Dec 5 00:27 sudo-1.6.9p9.tar.gz diff -dupNr sudo-1.6.9p9-20071203/parse.c sudo-1.6.9p9/parse.c --- sudo-1.6.9p9-20071203/parse.c 2007-11-28 08:29:59.000000000 +0900 +++ sudo-1.6.9p9/parse.c 2007-12-05 00:26:40.000000000 +0900 @@ -90,7 +90,7 @@ #endif /* HAVE_EXTENDED_GLOB / #ifndef lint -__unused static const char rcsid[] = "$Sudo: parse.c,v 1.160.2.14 2007/10/24 16:43:27 millert Exp $"; +__unused static const char rcsid[] = "$Sudo: parse.c,v 1.160.2.15 2007/12/04 15:26:40 millert Exp $"; #endif / lint / / @@ -202,7 +202,7 @@ sudoers_lookup(pwflag) return(VALIDATE_OK \| (no_passwd == TRUE ? FLAG_NOPASS : 0) \| (no_execve == TRUE ? FLAG_NOEXEC : 0) \| - (setenv_ok == TRUE ? FLAG_SETENV : 0)); + (setenv_ok >= TRUE ? FLAG_SETENV : 0)); } else if ((runas_matches == TRUE && cmnd_matches == FALSE) \|\| (runas_matches == FALSE && cmnd_matches == TRUE)) { /* @@ -212,7 +212,7 @@ sudoers_lookup(pwflag) return(VALIDATE_NOT_OK \| (no_passwd == TRUE ? FLAG_NOPASS : 0) \| (no_execve == TRUE ? FLAG_NOEXEC : 0) \| - (setenv_ok == TRUE ? FLAG_SETENV : 0)); + (setenv_ok >= TRUE ? FLAG_SETENV : 0)); } } top--; diff -dupNr sudo-1.6.9p9-20071203/sudo.c sudo-1.6.9p9/sudo.c --- sudo-1.6.9p9-20071203/sudo.c 2007-12-03 02:13:52.000000000 +0900 +++ sudo-1.6.9p9/sudo.c 2007-12-04 01:12:03.000000000 +0900 @@ -730,8 +730,10 @@ parse_args(argc, argv) while (NewArgc > 0) { if (NewArgv[0][0] == '-') { - if (NewArgv[0][1] != '\0' && NewArgv[0][2] != '\0') + if (NewArgv[0][1] != '\0' && NewArgv[0][2] != '\0') { warnx("please use single character options"); + usage(1); + } switch (NewArgv[0][1]) { case 'p':	2007-12-05 10:07:14 +00:00
taca	498d04a83c	Update sudo package to 1.6.9p9. Major changes since Sudo 1.6.9p8: o The ALL command in sudoers now implies SETENV permissions. o The command search is now performed using the target user's auxiliary group vector, not just the target's primary group. o When determining if the PAM prompt is the default "Password: ", compare the localized version if possible. o New passprompt_override option in sudoers to cause sudo's prompt to be used in all cases. Also set when the -p flag is used.	2007-12-05 04:14:42 +00:00
wiz	0e3f271eab	Remove Ex-MASTER_SITEs. From Zafer Aydogan.	2007-12-02 12:22:45 +00:00
wiz	a40a8b4e34	Remove Ex-MASTER_SITE. From Zafer Aydogan.	2007-12-02 12:20:12 +00:00
wiz	198adbc012	Remove Ex-MASTER_SITE. From Zafer Aydogan.	2007-12-02 11:37:24 +00:00
wiz	f109fb13b1	Remove Ex-MASTER_SITEs. From Zafer Aydogan.	2007-12-02 11:35:41 +00:00
wiz	48aee8ab57	Remove Ex-MASTER_SITE. From Zafer Aydogan.	2007-12-02 11:31:49 +00:00
rillig	f338d15c24	Some more packages need lex and yacc. Patch by Aleksey Cheusov on pkgsrc-users.	2007-12-02 08:32:23 +00:00
rillig	82f6e28d42	Updated crypto++ to 5.5.2. Changes since 5.2.1: 5.2.2 - added SHA-224 - put SHA-256, SHA-384, SHA-512, RSASSA-PSS into DLL 5.2.3 - fixed issues with FIPS algorithm test vectors - put RSASSA-ISO into DLL 5.3 - ported to MSVC 2005 with support for x86-64 - added defense against AES timing attacks, and more AES test vectors - changed StaticAlgorithmName() of Rijndael to "AES", CTR to "CTR" 5.4 - added Salsa20 - updated Whirlpool to version 3.0 - ported to GCC 4.1, Sun C++ 5.8, and Borland C++Builder 2006 5.5 - added VMAC and Sosemanuk (with x86-64 and SSE2 assembly) - improved speed of integer arithmetic, AES, SHA-512, Tiger, Salsa20, Whirlpool, and PANAMA cipher using assembly (x86-64, MMX, SSE2) - optimized Camellia and added defense against timing attacks - updated benchmarks code to show cycles per byte and to time key/IV setup - started using OpenMP for increased multi-core speed - enabled GCC optimization flags by default in GNUmakefile - added blinding and computational error checking for RW signing - changed RandomPool, X917RNG, GetNextIV, DSA/NR/ECDSA/ECNR to reduce the risk of reusing random numbers and IVs after virtual machine state rollback - changed default FIPS mode RNG from AutoSeededX917RNG<DES_EDE3> to AutoSeededX917RNG<AES> - fixed PANAMA cipher interface to accept 256-bit key and 256-bit IV - moved MD2, MD4, MD5, PanamaHash, ARC4, WAKE_CFB into the namespace "Weak" - removed HAVAL, MD5-MAC, XMAC 5.5.1 - fixed VMAC validation failure on 32-bit big-endian machines 5.5.2 - ported x64 assembly language code for AES, Salsa20, Sosemanuk, and Panama to MSVC 2005 (using MASM since MSVC doesn't support inline assembly on x64) - fixed Salsa20 initialization crash on non-SSE2 machines - fixed Whirlpool crash on Pentium 2 machines - fixed possible branch prediction analysis (BPA) vulnerability in MontgomeryReduce(), which may affect security of RSA, RW, LUC - fixed link error with MSVC 2003 when using "debug DLL" form of runtime library - fixed crash in SSE2_Add on P4 machines when compiled with MSVC 6.0 SP5 with Processor Pack - added support for newly released compilers: MSVC 2008, GCC 4.2, Sun CC 5.9, Intel C++ Compiler 10.0, and Borland C++Builder 2007	2007-12-01 04:17:50 +00:00
wiz	a34ac258dd	Bump PKGREVISION because openexr now depends on ilmbase.	2007-11-30 21:55:01 +00:00
rillig	ff6d0eddfa	Discard the -mcpu=i686 option for the C++ compiler, since g++4 doesn't accept it.	2007-11-30 20:02:39 +00:00
wiz	7461b89fc8	Update to 0.4.13: Changes unknown.	2007-11-30 17:22:20 +00:00
drochner	1d77bfd6a8	update to 2.20.2 changes: -build fixes (not relevant to pkgsrc) * Don't print out a warning message in applications using libgnome-keyring when non-pageable memory cannot be allocated.	2007-11-29 20:14:26 +00:00
wiz	fb40b4d3d9	Update to 0.6.6: Noteworthy changes in version 0.6.6 (2007-11-15) ------------------------------------------------ * Slightly adjust the stream code. The check for fflush is omitted because the return value might be undefined. This fixes a problem reported from the NetBSD team. * Don't use __inline__ in src/cipher.c (breaks on Sun CC).	2007-11-29 16:35:12 +00:00
wiz	05c42389be	Update to 0.57: 0.57 2007-09-17 20:45:20 UTC - Honour both $ENV{NO_PROXY} and $ENV{no_proxy} in Net::SSL::proxy_connect_helper. (Bug #29371 reported by Jan Dubois). - $@ construction used in Net::SSL::connect was messed up, which could lead to sub-optimal error reporting. (Bug #29372 reported by Jan Dubois). - Ensure no proxification is used in t/01-connect.t (which might be the reason for all the spurious smoke failures). Bug #29373 reported by, you guessed it, Jan Dubois). - Silence a dubious fopen() warning in SSLeay.xs. - s/Netware/NetWare/ in Net/SSL.pm platform check - Improvements to Makefile.PL for dealing with platforms where openssl is installed with ./include and ./lib as sibling directories rather than child directories. This should allow the code to configure and build "out of the box" on Solaris (and probably other proprietary platforms). - Don't carp in LICENSE key addition code in Makefile.PL 0.56_01 2007-08-09 21:59:47 UTC - Various improvements to the Win32 configure code in Makefile.PL, based on CPAN tickets #28431 and #28432, by Guenter Knauf, notably to allow static linking and OpenSSL living in a relative directory. - Net::SSL: alarm() is not implemented on Netware platform, so don't try to set one there. (Guenter Knauf). - Should build on Solaris correctly (bug fix in include dir specification). Based on fix suggested in CPAN bug #28680. 0.56 2007-07-10 19:08:20 UTC - Purely a documentation issue raised by CPAN bug #27935. Users of previous versions do not need to upgrade.	2007-11-29 14:16:37 +00:00
jlam	b250f2c691	Document where this file is included.	2007-11-27 16:27:30 +00:00
adam	028262906e	Changes 184: * fix for BUG 312: pam_ldap does not try to reconnect when LDAP server closed the connection	2007-11-27 08:27:06 +00:00
wiz	4f0bb18778	Update to 2.0.4: * Version 2.0.4 (released 2007-11-16) Corrected bug in decompression of expanded compression data. API and ABI modifications: No changes since last version.	2007-11-25 23:45:15 +00:00
adrianp	a30ed56204	- 11/20/2007 1.3.9 (anne) - Update to Spanish -- David Gil - Bug 1750697 base_header() is undefined fixed -- Juergen and Kevin Johnson - Bug 1680965 sans lookup fails -- Jordan Wiens - Updated Chinese language file -- Randy - Added Sean Muller as the Project Manager -- Kevin Johnson - Fixed error in contrib/base-rss.php -- Dan - Added INSTALL and INSTALL.rtf files to docs directory -- Sean Muller - Bug 1801192 XSS bug in BASE fixed -- Kevin Johnson and Sean Muller - Bug 1760615 Sort order ignored -- Kevin Johnson and Jordan Weins	2007-11-25 18:09:53 +00:00
tron	1065fcff24	Fix warning reported by "pkglint".	2007-11-18 23:38:12 +00:00
tron	7cbebdfaeb	Add buildlink3 support file.	2007-11-18 23:37:59 +00:00
wiz	0b09193af9	Reset maintainer for itojun's packages.	2007-11-17 13:40:15 +00:00
rillig	105dd4b97c	Some packages need lex and yacc. Patch by Aleksey Cheusov via pkgsrc-users.	2007-11-17 12:04:11 +00:00
rillig	0d736f5a52	By default, chmod follows symlinks, which is not intended here. Patch by Lloyd Parkes in PR 37391.	2007-11-16 00:16:29 +00:00
rillig	438bd8aea8	Added a patch that fixes the build on Solaris 10.	2007-11-13 12:04:24 +00:00
heinz	949b357145	Removed ftp7.usa.openbsd.org from MASTER_SITES, doesn't resolve anymore in DNS. Mentioned by Zafer Aydogan in PR pkg/37331.	2007-11-12 20:52:14 +00:00
taca	8b69268cf1	- Fix build problem on DragonFly BSD. - Reduce patch size. Build problem on DragonFly BSD was noted by YONETANI Tomokazu via private mail.	2007-11-12 11:12:16 +00:00
wiz	a2ced84564	Remove ftp.aet.tu-cottbus.de from MASTER_SITES, doesn't resolve. From Zafer Aydogan in PR 37332.	2007-11-12 00:07:48 +00:00
wiz	1a9fb1c283	Remove ftp.ch.pgpi.com from MASTER_SITES, doesn't resolve. From Zafer Aydogan in PR 37331.	2007-11-12 00:06:52 +00:00
wiz	499dbfee47	Remove ftp7.usa.openbsd.org from MASTER_SITES, doesn't resolve. From Zafer Aydogan in PR 37331.	2007-11-12 00:06:06 +00:00
wiz	32ea59e233	Remove ftp.lothar.com from MASTER_SITES, doesn't resolve. From Zafer Aydogan in PR 37328.	2007-11-12 00:04:06 +00:00
wiz	c57b8d02b6	Remove ws.obit.nl from MASTER_SITES, doesn't resolve. From Zafer Aydogan in PR 37329.	2007-11-12 00:03:18 +00:00
wiz	37b88d319f	Update to 2.0.3: * Version 2.0.3 (released 2007-11-10) This version backports several fixes from the 2.1.x branch. Fixed PKCS #3 parameter export. Added gnutls_record_disable_padding() to allow servers talking to buggy clients that complain if the TLS 1.0 record protocol padding is used. Introduced gnutls_session_enable_compatibility_mode() to allow enabling all supported compatibility options (like disabling padding). Corrected bug which did not allow a server to run without supporting certificates. API and ABI modifications: gnutls_session_enable_compatibility_mode: ADDED gnutls_record_disable_padding: ADDED Add LICENSE, commented out; it contains both LGPL-2.1 and GPL2 code.	2007-11-11 19:28:27 +00:00
martti	9afb20a137	Added commented-out LICENSE=something.	2007-11-11 11:35:48 +00:00
bjs	4e3bb28481	Bump revision, as the resulting binary should differ because it finds gpg2.	2007-11-08 21:22:40 +00:00
bjs	179d6dfdcd	Tell gpgme where the gnupg2 binary is should the user build with the 'gpgsm' option.	2007-11-08 21:19:22 +00:00
bjs	b9c0db4ce7	Remove space between '=' and "idea" in "PKG_OPTIONS.libgcrypt+= idea". This was causing a build failure for gpgme if the package was built with the "idea" option.	2007-11-08 21:06:33 +00:00
wiz	32be62aaa3	Update to 0.6.5: Noteworthy changes in version 0.6.5 (2007-10-27) ------------------------------------------------ * Cleanups for the key export and import functionality. * Clarified the semantic of cdk_pk_check_sigs. * Now the by usage keydb function correctly finds the self signature. patch-aa provided by drochner@; sent upstream, will be in next release.	2007-11-08 19:43:37 +00:00
shannonjr	ee670685e1	1) Added configuration arg so that PKG_SYSCONFDIR is honored 2) Added missing PLIST entry	2007-11-08 09:56:03 +00:00
shannonjr	9d741e1557	1) Fix incorect patch 2) Fix incorrect socket permission	2007-11-07 19:38:12 +00:00
shannonjr	55bd53c608	Added missing entry	2007-11-07 15:26:20 +00:00
shannonjr	33068eba75	Update to 2.0.7. This is maintenance release with a few minor enhancements. Changes: * Fixed encryption problem if duplicate certificates are in the keybox. * Add new options min-passphrase-nonalpha, check-passphrase-pattern, enforce-passphrase-constraints and max-passphrase-days to gpg-agent. * Add command --check-components to gpgconf. Gpgconf now uses the installed versions of the programs and does not anymore search via PATH for them.	2007-11-07 15:24:26 +00:00
shannonjr	5d0e9e75a1	Update to 1.0.1. Changes: * The option --ocsp-signer may now take a filename to allow several certificates to be valid signers for the default responder. * New option --ocsp-max-period and improved the OCSP time checks. * New option --force-default-signer for dirmngr-client.	2007-11-07 12:43:21 +00:00
shannonjr	d8efb0bb19	Upgrade to 1.0.3. This is a maintenance upgrade. Noteworthy changes in version 1.0.3: * New functions assuan_process_done and assuan_inquire_ext to support external event loops. * Changed the license of the library code back to LGPLv2.1 to support a bunch of GPLv2(only) software which does not allow the use of LGPLv3. * Assorted bug fixed and code cleanups.	2007-11-07 11:13:15 +00:00
drochner	4b5e9f8971	update to 2.20.1 This switches to the new gnome-2.20 branch.	2007-11-05 19:49:04 +00:00
tron	2c10fdef3b	Fix detection of PAM support under Mac OS X to get "pam_gnome_keyring.la" built. Bump package revision because package was previously incomplete and the package list incorrect.	2007-11-04 14:36:05 +00:00
taca	2628c96443	Update sudo package to 1.6.9p8. Major changes since Sudo 1.6.9p7: o Fixed a bug where a sudoers entry with no runas user specified was treated differently from a line with the default runas user explicitly specified.	2007-11-04 12:07:24 +00:00
rillig	5282781bd9	Fixed building the package with sunpro.	2007-11-03 23:45:56 +00:00
rillig	dc7f429739	Added MAKE_JOBS_SAFE as suggested in PR 37261.	2007-11-03 22:40:27 +00:00
drochner	e3011dc2e9	update to 2.20.0 This switches to the new gnome-2.20 branch.	2007-11-03 17:35:40 +00:00
wiz	adb0276c75	Update to 1.12: v1.12 - treat timeouts of 0 for accept_SSL and connect_SSL like no timeout, like IO::Socket does.	2007-11-01 08:31:40 +00:00
drochner	7bbeb9cae3	update to 2.20.1 This switches to the new gnome-2.20 branch. (While this is not part of the "platform" subset formally, it is used by platform -- this looks like an inconsistency in gnome packaging.)	2007-10-31 20:20:30 +00:00
jlam	de737429da	Comment out LICENSE=gnu-gpl-v3 for now as part of transition to switching pkgsrc to using license.mk. This will eventually be turned back on.	2007-10-31 14:22:55 +00:00
rillig	ece592ed4a	Renamed the deprecated LICENCE to LICENSE, which has the exactly same meaning.	2007-10-31 12:29:33 +00:00
martti	9fc7653761	Based on some feedback, comment out the newly added LICENSE=xxx for now. I'll re-activate this later when the global license stuff is activated.	2007-10-30 19:31:38 +00:00
martti	f326f1a223	Added LICENSE=modified-bsd	2007-10-30 13:59:38 +00:00
martti	c95b7ca9f8	Added LICENSE=gnu-gpl-v2	2007-10-30 13:57:17 +00:00
shannonjr	4d45d601c7	Update to 0.9.13. Changes: - Only perform additional database request when using Sensor localtime: this bring a performance improvement of about 36% on aggregated query, when using either frontend localtime (the default), or UTC time. - JQuery support: Port most of the javascript code to make use of JQuery. Add show/hide effect to CSS popup. More filtering functionality in the SensorListing view. - Cleanup the Authentication class, so that uper Prewikka layer can act depending whether the backend support user creation / deletion. Anonymous authentication is nowa plugin. - Better integration of CGI authentication allowing user listing and deletion. - Report template exception directly to the user. - Fix exception if an alert analyzer name is empty. - Fix problem when adding new Prewikka users (#262). - Fix exception when user has no permission set. - When changing password, we didn't try to match an empty 'current password' (which is a minor issue since the user is already authenticated). Thanks to Helmut Azbest <helmut.azbest@gmail.com> for the fix. - Fix a typo making mod_python use the parent method (patch from Helmut Azbest <helmut.azbest@gmail.com>). - In the configuration file, recognize section even if there are whitespace at the beginning of the line. - Localization fixes, by Sebastien Tricaud <toady@gscore.org>, and Bjoern Weiland.	2007-10-29 21:59:00 +00:00
shannonjr	e3cb2576aa	Update to 0.9.10. Changes: - Make threshold act like a real threshold: pass every Nth events in the defined amount of seconds. - Allow mixing Limit and Threshold. - Do not share the tresholding hash accross thresholding plugin instance: previously, the shared hash would result in strange thresholding plugin behavior if you had several instance of thresholding loaded. - Various bug fixes concerning plugin instance un-subscribtion (unsubscribtion of certain plugin was not triggered).	2007-10-29 21:57:17 +00:00
shannonjr	4ee9e5abe2	Update to 0.9.16. Changes: - Implement prelude-admin list [-l] command, which provide the ability to list existing profile name, permission, registration permission, analyzerID, and Issuer analyzerid. - Implement multiple analyzer deletion in prelude-admin. - Correct printing of IDMEF time field using non local GMT offset. - Patch to avoid struct typespec redefinition, due to variable mispelling. This fixes a compilation problem on OpenBSD 3.8. - Various bug fixes.	2007-10-29 21:55:30 +00:00
shannonjr	ba17d64c40	PLIST correction	2007-10-29 21:53:24 +00:00
agc	7c64224428	Add and enable snow.	2007-10-29 09:58:43 +00:00
agc	febcc845a2	Initial import of snow-20060213 into the Packages Collection. Whitespace steganography The program snow is used to conceal messages in ASCII text by appending whitespace to the end of lines. Because spaces and tabs are generally not visible in text viewers, the message is effectively hidden from casual observers. And if the built-in encryption is used, the message cannot be read even if it is detected. What's in a name? snow exploits the steganographic nature of whitespace. Locating trailing whitespace in text is like finding a polar bear in a snowstorm (which, by the way, explains the logo). And it uses the ICE encryption algorithm, so the name is thematically consistent.	2007-10-29 09:57:28 +00:00
taca	9685596eea	Update sudo package to 1.6.9p7. pkgsrc change: added DESTDIR support. Major changes since Sudo 1.6.9p6: o Reverted back to to using TCSAFLUSH instead of TCSADRAIN when turning off echo during password reading. o Fixed a configure bug that was preventing the addition of -lutil for login.conf support on FreeBSD and NetBSD. o Added a configure check for struct in6_addr since some systems define AF_INET6 but have no real IPv6 support.	2007-10-28 02:05:44 +00:00
adam	2a95649fd4	Changes 0.2.21: * Fix typos in manual. * Update gnulib files.	2007-10-25 21:24:53 +00:00
jlam	56ba4d2690	Remove empty PLISTs from pkgsrc since revision 1.33 of plist/plist.mk can handle packages having no PLIST files.	2007-10-25 16:54:26 +00:00
wiz	fdc7ca16d9	Update to 2.0.2: * Version 2.0.2 (released 2007-10-17) TLS authorization support removed. This technique may be patented in the future, and it is not of crucial importance for the Internet community. After deliberation we have concluded that the best thing we can do in this situation is to encourage society not to adopt this technique. We have decided to lead the way with our own actions. certtool: Fixed data corruption when using --outder. Fix configure-time Guile detection. API and ABI modifications: GNUTLS_SUPPLEMENTAL_USER_MAPPING_DATA: ADDED. To avoid that the gnutls_supplemental_data_format_type_t enum type becomes empty. * Version 2.0.1 (released 2007-09-20) New directory doc/credentials/ with test credentials. This collects the test credentials from the web page and from src/. The script gnutls-http-serv has also been moved to that directory. Update SRP extension type and cipher suite with official IANA values. This breaks backwards compatibility with SRP in older versions of GnuTLS, but this is intentional to speed up the adoption of the official values. The old values we used were incorrect. Guile: Fix `x509-certificate-dn-oid' API and ABI modifications: No changes since last version.	2007-10-23 11:43:56 +00:00
dogcow	cded6f8ed6	Update to Net::SSH::Perl 1.3.0: 1.30 2006.03.17 - Fix for local READ/WRITE tie problem in open2 function (Bas van Sisseren). - Add back 'use IO::Socket' to fix 'Can't locate object method "blocking" via package "IO::Handle"' error (rt.cpan.org #15102). - Allow "The socket is already in use" as well as "Address already in use" to detect port already in use (for AIX, rt.cpan.org #16301). - Use sysread (not <>) to read the version string to avoid mixing read types and allow pre-version data (fix by Denis Bider, rt.cpan.org #14812). - Fix warnings on empty hostfile lines (fix by JOHANL, rt.cpan.org #13750). - Get the user's home directory from getpwuid() if the HOME environment variable isn't set (rt.cpan.org #13434).	2007-10-22 06:53:16 +00:00
adrianp	e35260c69d	Full and proper fix for CVE-2007-5135 PKGREVISION++	2007-10-21 17:52:52 +00:00
adrianp	86a02d0d3e	+keepassx	2007-10-21 13:51:41 +00:00
adrianp	1027ed767f	KeePass is a free/open-source password manager or safe which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key-disk. So you only have to remember one single master password or insert the key-disk to unlock the whole database. The databases are encrypted using the best and most secure encryption algorithms currently known (AES and Twofish).	2007-10-21 13:51:01 +00:00
adrianp	68462e2da7	Update to 1.3.8 - Fixed base_conf_contents.php to include colored alerts -- Jonathan W Miner - Fixed base_main.php to remove an extra table and repair two column display -- Jonathan W Miner - Added exit() to the redirect to fix security hole -- Jon Hart - removed fpdf file to save room since we are not using them. -- Kevin Johnson - Fixed bug #1723928 Top Right, Database and User not shown -- Kevin Johnson - Added base_header wrapper, please use it instead of header if you're not sure -- GaRaGeD - Fixed Bug #1675094 snort signature information links broken (really a hack!) -- Kevin Johnson - Fixed Bug #1689885 Maybe need count(DISTINCT ip_src) to sort by IP correctly -- Kevin Johnson - Fixed Bug #1649659 Use of archive DB seems broken in "karen" release -- Kevin Johnson - Cleaned a warning -- Marek Cruz - Spanish install guide -- Daniel Medianero	2007-10-20 23:22:08 +00:00
wiz	8296f8378e	Update to 1.11: v1.11 - fixed errors in accept_SSL which would work when called from start_SSL but not from accept v1.10 - start_SSL, accept_SSL and connect_SSL have argument for Timeout so that the SSL handshake will not block forever. Only used if the socket is blocking. If not set the Timeout value from the underlying IO::Socket is used	2007-10-17 20:50:05 +00:00
tnn	24d5b54409	Fix abusers of LOWER_OPSYS to check OPSYS or MACHINE_PLATFORM instead.	2007-10-16 23:48:58 +00:00
jlam	55592c3715	Update security/courier-authlib to 0.60.1. Changes from version 0.59.3 include: * MYSQL_CHARACTER_SET option. * Allow underscores, colons and plusses, in account names. * Add {MD5RAW} hash method. * Fix runtime problems with hardcoded file descriptors in the daemon code by using OPEN_MAX instead.	2007-10-15 15:37:01 +00:00
obache	47e3e9f2b6	Update putty to 0.60. Patch provided by Jukka Salmi in PR 37056. These features are new in beta 0.60 (released 2007-04-29): * Pressing Ctrl+Break now sends a serial break signal. (The previous behaviour can still be obtained with Ctrl+C.) * Serial ports higher than COM9 now no longer need a leading \\.\. * You can now store a host name in the Default Settings. * Bug fix: serial connections and local proxies should no longer crash all the time. * Bug fix: configuring the default connection type to serial should no longer cause the configuration dialog to be skipped on startup. * Bug fix: "Unable to read from standard input" should now not happen, or if it still does it should produce more detailed diagnostics. * Bug fix: fixed some malformed SSH-2 packet generation. * Other minor bug fixes.	2007-10-13 09:14:16 +00:00
taca	8a81fb76e1	Update sudo package to 1.6.9p6. Major changes since Sudo 1.6.9p5: o Worked around bugs in the session support of some PAM implementations. The full tty path is now passed to PAM as well. o Sudo now only prints the password prompt if the process is in the foreground. o inttypes.h is now included when appropriate if it is present. o Simplified alias allocation in the parser.	2007-10-10 00:08:24 +00:00
martti	bd986edbc7	Remove trailing spaces.	2007-10-09 19:19:08 +00:00
rillig	feb1668cdf	Needs pre-created directories.	2007-10-09 12:49:23 +00:00
agc	69578ff1af	Make this package compile and run with recent C++ from gcc4. Take maintainership. Anglicise some of the text in DESCR.	2007-10-02 19:03:11 +00:00
wiz	2f2166a0fb	Reset maintainer -- shell@ is inactive.	2007-09-30 17:45:23 +00:00
bjs	cde8014a55	PKG_OPTIONS_OPTIONAL_GROUPS/PKG_OPTIONS_NONEMPTY_SETS have their respective options added to PKG_SUPPORTED_OPTIONS automagically. Duplicate options removed.	2007-09-26 05:47:46 +00:00
minskim	23242fb4e9	This package requires libgpg-error>=1.4. Bump PKGREVISION.	2007-09-25 15:19:29 +00:00
hira	6cdb950b99	Fix comment (GConf2 -> GConf).	2007-09-25 10:54:09 +00:00
taca	aa535dccfb	Update pgpdump package to 0.26. Add support of DESTDIR_SUPPORT, too. 0.26 2007/09/06 * Catching upto ID 22. (http://www.ietf.org/internet-drafts/draft-ietf-openpgp-rfc2440bis-22.txt)	2007-09-24 03:57:59 +00:00
wiz	2fb38c2870	Fix typo in comment.	2007-09-23 12:05:44 +00:00
wiz	9553c3e461	Update HOMEPAGE.	2007-09-23 12:02:02 +00:00
wiz	3528e06345	Fix paths for GConf, libglade, libart, libsigc++, lablgtk moves. Bump PKGREVISION.	2007-09-21 13:03:25 +00:00

... 2 3 4 5 6 ...

4748 commits