Commit graph

45 commits

Author SHA1 Message Date
maya
c91c49833f pkgrevision bump for changed apache default.
bumping any package depending on a pkg with APACHE_PKG_PREFIX but without
APACHE_PKG_PREFIX in its PKGNAME.
2017-03-12 07:20:51 +00:00
wiz
982c8f22e9 Recursive bump for all users of pgsql now that the default is 95. 2016-10-09 21:41:55 +00:00
taca
5f84ee3fc6 Drop "55" (php55) from PHP_VERSIONS_ACCEPTED. 2016-09-11 17:03:25 +00:00
wiz
73716d23de Bump PKGREVISION for perl-5.24.0 for everything mentioning perl. 2016-07-09 06:38:30 +00:00
taca
c4d7c37e80 Explicitly restrict PHP_VERSIONS_ACCEPTED to 55 and 56 for packages which
use php-mysql package.
2015-12-06 12:13:12 +00:00
agc
5293710fb4 Add SHA512 digests for distfiles for security category
Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
2015-11-04 01:17:40 +00:00
wiz
2e65d464e8 Recursive PKGREVISION bump for all packages mentioning 'perl',
having a PKGNAME of p5-*, or depending such a package,
for perl-5.22.0.
2015-06-12 10:50:58 +00:00
wiz
7eeb51b534 Bump for perl-5.20.0.
Do it for all packages that
* mention perl, or
* have a directory name starting with p5-*, or
* depend on a package starting with p5-
like last time, for 5.18, where this didn't lead to complaints.
Let me know if you have any this time.
2014-05-29 23:35:13 +00:00
bsiegert
11eb68bbc8 Fix a common mistake in many different packages: POSIX says that when using
pax -rw, the destination directory must exist. pax in NetBSD creates it if
not, pax in MirBSD complains. I read through all pkgsrc Makefiles that use
pax and added an entry to INSTALLATION_DIRS, or an INSTALL_DATA_DIR
invocation.

I did not test all the changes but they should be fairly safe. If you notice
any breakage because of this change, please contact me.
2013-10-18 11:41:17 +00:00
wiz
d2ca14a3f1 Bump all packages for perl-5.18, that
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package

Like last time, where this caused no complaints.
2013-05-31 12:39:57 +00:00
obache
778bed8bfb Bump PKGREVISION from default PHP version change to 5.4. 2013-03-16 07:21:18 +00:00
wiz
a8730d5aa1 Bump PKGREVISION for mysql default change to 55. 2013-03-02 20:33:21 +00:00
wiz
8b5d49eb78 Bump all packages that use perl, or depend on a p5-* package, or
are called p5-*.

I hope that's all of them.
2012-10-03 21:53:53 +00:00
obache
d76d024350 Recursive bump from mysql51-client library changed to use openssl. 2012-09-15 15:03:21 +00:00
adam
88bb0e6439 Removed mk/apachever.mk 2012-04-14 16:25:11 +00:00
obache
dca078f299 Bump PKGREVISION from PHP_VERSION_DEFAULT changes. 2011-09-16 05:46:22 +00:00
obache
f8c4ad9dca Bump PKGREVISION by default mysql version changed from 5.0 to 5.1. 2010-09-30 10:49:10 +00:00
adrianp
2ae6078ec7 Give up MAINTAINER 2009-07-17 18:00:13 +00:00
joerg
b96f88a8db Convert @exec/@unexec to @pkgdir or drop it. 2009-06-14 21:21:16 +00:00
joerg
f0bbd1517d Remove @dirrm entries from PLISTs 2009-06-14 18:13:25 +00:00
adrianp
c597aec617 4/03/2009 1.4.2 (chandy)
- EmThreats_link opens now in separate browser window -- Juergen Leising for Micah Gersten
- A new reference "[rule]" points now to base_local_rules.php,
which displays a particular rule for a given rules id (sid).
Prerequisite for this is that "local_rules_dir" in base_conf.php
points to an actually existing and readable/searchable directory which
contains the snort rules.  Please note, that a web server
is usually NOT allowed to access any files outside of its
document root.  Feature request by Chris Ryan, cf.
https://sourceforge.net/forum/message.php?msg_id=5310420
https://sourceforge.net/forum/message.php?msg_id=5311517
-- Juergen Leising
- Update of base.spec; works with fedora 10 -- Juergen Leising
- I have applied two patches submitted by asavenkov
with regard to the oci8 driver (oracle 10), cf.
https://sourceforge.net/forum/message.php?msg_id=5795641
https://sourceforge.net/forum/message.php?msg_id=5796556
-- Juergen Leising
- The "email-the-alerts"-variables were defined twice at different
locations in base_conf.php.  Fixed this.  -- Juergen Leising
- Emails from BASE containing one or more alerts include now a
"To:"-header, as well.  Bug report no. 2234733 -- Juergen Leising
- $sort_order, once it has been chosen, survives now a possible "action",
even in base_stat_uaddr.php, base_stat_ports.php, base_stat_iplink.php,
base_stat_class.php and base_stat_sensor.php.
Bug no. 2234745. -- Juergen Leising
- The refresh-problem, when an "action" has been taken, is now fixed in
base_stat_uaddr.php, base_stat_ports.php, base_stat_iplink.php,
base_stat_class.php and base_stat_sensor.php, as well.
Bug no. 1681012. -- Juergen Leising
- I have corrected the way ICMP redirect messages are displayed
by BASE, inspired by Bruno G. San Alejo. -- Juergen Leising
- Several preprocessor events that did not get stored in the acid_event
table, so far, are now processed and displayed by BASE.  This affects
all those preprocessors which have sig names that do NOT start with
a "spp_" prefix. -- Juergen Leising
- Fixed bug with archiving IP options. -- Juergen Leising

5/14/09 1.4.3 (gabi)
- XSS Flaws fixed in alert groups -- Kevin Johnson
- Possible SQL injection flaw fixed in AG -- Kevin Johnson
- XSS Flaws fixed in base_qry files -- Kevin Johnson
- Multiple XSS flaws fixed in citems -- Kevin Johnson

5/30/09 1.4.3.1 (zig)
- Multiple XSS flaws fixed in User and Role management -- Kevin Johnson
2009-06-06 11:26:19 +00:00
adrianp
4c9bbb9c1f And pear-Mail_Mime while we're here 2008-12-07 22:41:25 +00:00
adrianp
696d40ebac DEPENDS+=mail/pear-Mail
PKGREVISION++
2008-12-07 22:38:13 +00:00
adrianp
25c40fa038 Add some extra install docs 2008-11-05 22:50:00 +00:00
adrianp
2b002c41a2 Update to 1.4.1
Some highlights:
Bug #1680965 sans lookup fails -- Jordan Wiens
Fixed index.php redirect -- Kevin Johnson for Terry Burton
Added Worldmap feature -- Juergen Leising
Added Vendor MAC Map -- Juergen Leising
Increased memory limit from 50 to 128 MB in base_graph_common.php
Fixed "Select Signature from List" in the query form -- Juergen Leising
Newly generated coordinates file world_map6.txt. -- Juergen Leising

See docs/CHANGELOG for all the details
2008-11-05 22:47:13 +00:00
joerg
3b0d97b0de Add DESTDIR support. 2008-06-20 01:09:05 +00:00
joerg
3d8ef5a52d Second round of explicit pax dependencies. As reminded by tnn@,
many packages used to use ${PAX}. Use the common way of directly calling
pax, it is created as tool after all.
2008-05-26 02:13:14 +00:00
adrianp
a30ed56204 - 11/20/2007 1.3.9 (anne)
- Update to Spanish -- David Gil
- Bug 1750697 base_header() is undefined fixed -- Juergen and Kevin Johnson
- Bug 1680965 sans lookup fails -- Jordan Wiens
- Updated Chinese language file -- Randy
- Added Sean Muller as the Project Manager -- Kevin Johnson
- Fixed error in contrib/base-rss.php -- Dan
- Added INSTALL and INSTALL.rtf files to docs directory -- Sean Muller
- Bug 1801192 XSS bug in BASE fixed -- Kevin Johnson and Sean Muller
- Bug 1760615 Sort order ignored -- Kevin Johnson and Jordan Weins
2007-11-25 18:09:53 +00:00
adrianp
68462e2da7 Update to 1.3.8
- Fixed base_conf_contents.php to include colored alerts -- Jonathan W Miner
- Fixed base_main.php to remove an extra table and repair two column display -- Jonathan W Miner
- Added exit() to the redirect to fix security hole -- Jon Hart
- removed fpdf file to save room since we are not using them. -- Kevin Johnson
- Fixed bug #1723928 Top Right, Database and User not shown -- Kevin Johnson
- Added base_header wrapper, please use it instead of header if you're not sure -- GaRaGeD
- Fixed Bug #1675094 snort signature information links broken (really a hack!) -- Kevin Johnson
- Fixed Bug #1689885 Maybe need count(DISTINCT ip_src) to sort by IP correctly -- Kevin Johnson
- Fixed Bug #1649659 Use of archive DB seems broken in "karen" release -- Kevin Johnson
- Cleaned a warning -- Marek Cruz
- Spanish install guide -- Daniel Medianero
2007-10-20 23:22:08 +00:00
jlam
4390d56940 Make it easier to build and install packages "unprivileged", where
the owner of all installed files is a non-root user.  This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.

(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
    unprivileged.mk.  These two variables are lists of other bmake
    variables that define package-specific users and groups.  Packages
    that have user-settable variables for users and groups, e.g. apache
    and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
    etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
    so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
    and ${UNPRIVILEGED_GROUP}.

(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.
2007-07-04 20:54:31 +00:00
joerg
f622125847 Must be restricted to PHP4 as adodb is not available for PHP5. 2007-06-30 13:47:38 +00:00
adrianp
fd28c73bb6 Update to 1.3.6
Lots of updates but some highlights in brief:

- Added base64 encoding support for ICMP payload additional table in base_qr
y_alert.php -- Juergen Leising
- Changed input type of the password field to actually be password in setup3
.php -- Nikns
- Fixed Time error in searches -- Jeff Kell
- Added FQDN to display -- Jonathan W Miner
- Fixed issues with graphing -- Kevin J
 - Updated tons of HTML for complience -- Marek Cruz
2007-05-18 23:27:22 +00:00
adrianp
56a242701f Update to 1.2.7
- 8/5/2006 1.2.7 (karen)
- Improved HTML <table> output in "base_qry_alert.php" -- Jonathan W Miner
- Remove message when 0 alerts -- Jonathan W Miner
- PrintBase64PacketPayload fix for payload lenght modulo = 0 -- Juergen Leising
- Added empty function to ProtocolFieldCriteria -- Kevin Johnson
- Fixed issue if sig_gid was empty -- Valter Santos
- Added SnortUnified, a perl replacement for Barnyard -- Jason Brvenik
- Updated base-rss.php -- Dan Michitsch
2007-02-17 19:18:24 +00:00
adrianp
c3eaaad248 Update to 1.2.5
- Added check for base_users and base_roles tables in base_main.php -
  Kevin Johnson
- Added . to VAR_PUNC to fix query issue - Kevin johnson
- Fixed issue with base_users table being required - Kevin Johnson
- Added search punctuation fix - Bruce Briggs
- Added FQDN to display -- Jonathan W Miner
- PrintForm() fixes - Bruce Briggs
- Settings for automatic expansion of the IP and Payload Criteria
  on Search screen - Bruce Briggs
- Save the fields entered on the Search screen for Back button proper
  refilling - Bruce Briggs
- RFE 1520185 Add support for managing last_cid - Eric Jacobsen
- Changed show_rows to 49 in base_conf.php.dist to fix IE 6/7 bug -
  Bruce Briggs
- Fixed link to FAQ - Juergen Leising
- Fixed VAR_BOOLEAN error and some typos in the footer - Eric Jacobsen
- Trivial patch to make base_stat_time.php use GET insted of POST to
  avoid the 'resend data' warning on refresh - GaRaGeD
- Added base-rss.php to the contrib section - Dan Michitsch
2006-10-23 18:19:45 +00:00
adrianp
3f9f234e5d Update distinfo missed in the update to 1.2.5 2006-06-06 20:09:49 +00:00
adrianp
23072d8ed9 Update to 1.2.5
> - 6/4/2006 1.2.5 (sarah)
> - Added base64 encoding support for MAC addresses presented on the screen for FLoP extended database -- Juergen Leising
> - Added base64 encoding support for rebuild of packet in pcap format for FLoP extended database -- Juergen Leising
> - Fixed issue with Oracle and schema version in base_db.inc.php -- Nikns
> - Fixed bug when alerts with sig references would fail to archive causing duplicates error -- Nikns
> - Added base64 encoding support for ICMP payload additional table in base_qry_alert.php -- Juergen Leising
> - Added check for PHP Logging Level against E_NOTICES in setup/index.php -- Nikns
> - Fixed bug when certain preprocessor alerts would not be cached (for example arpspoof) -- Nikns
> - Added setup/setup_db.inc.php with CreateBASEAG() to resolve redundancy in setup and base_db_setup.php -- Nikns
> - Removed unnecessary and broken search index stuff from Create BASE AG, since schemas are already with them  -- Nikns
> - Added XSSPrintSafe() (array safe htmlspecilchars() function) and made filterSql() use ADOdb qmagic() -- Nikns
> - Changed input type of the password field to actually be password in setup3.php -- Nikns
> - Filtered all unfiltred (mainly auth system stuff) $_POST and $_GET variables using filterSql() -- Nikns
> - Santized all $_SERVER variables to be protected against XSS attacks -- Nikns
> - Added "Clear Data Tables" option in base_maintenance.php and "Repair Tables" option to execute CreateBASEAG() -- Nikns
> - Make use of FLoP's event reference. Signature name of alert which trigered "Tagged Packet" alert is shown too -- Nikns
> - Updated chinese.lang.php -- Johnson Chiang
> - Fixed Time error in searches -- Jeff Kell
> - Fixed refresh issue with ~ directories -- Kevin Johnson
> - Fixed cookie stored data and authentication scheme to correct Nikns' report on session forge issue -- GaRaGeD
> - Updated link to the Nessus plug in DB -- Jonathan W Miner
> - Fixed display after deleting alerts -- Bruce Briggs
> - Fixed Bug #1466392 - Back button doesn't work after refresh. -- Juergen Leising
> - Patches from jhart@spoofed.org to add missing ICMP and TCP type and codes - GaRaGeD
> - add support for ICMP redirect decoding. - Jon Hart
> - add decoding support for ICMP source quench and ICMP parameter problem - Jon Hart
> - split up "flags" into DF and MF, much like tcp flags are currently handled - Jon Hart
2006-06-06 19:41:43 +00:00
joerg
337c6b1297 Rename all PHP 4 packages to php4-*, all PHP 5 packages to php5-*,
all PEAR packages to php?-pear-* and all Apache packages to ap13-* or
ap2-* respectively. Add new variables to simplify the Makefile
handling. Add CONFLICTS on the old names. Reset revisions of bumped
packages. ap-php will now depend on the default Apache and PHP version.
All programs using it have an implicit option of the Apache version
as well.

OK from jlam@ and adrianp@.
2006-06-02 18:27:54 +00:00
adrianp
a52ad051fc Update to BASE 1.2.4
> Changes:
>     - Fixed issue with PostGRES and schema in base_db.inc.php -- Kevin J and Nikns
>     - Fixed bug 1284695 Error in SQL with PostgreSQL -- Kevin J and Nikns
>     - Fixed issues displaying PortScans -- Nikns
>     - Fixed sig_class (bug 1407325) and sig_priority filter bug -- Nikns and Max Valdez (garaged)
>     - Fixed bug 1408387 Archive move and Email summary issues -- Nikns
>     - Fixed bug when, after setup, archive database wasn't used -- Nikns
>     - Fixed PostgreSQL archive database support -- Nikns
>     - Fixed bug 1313261 Unable to use actions in base_stat_sensor.php -- Nikns
>     - Fixed bug 1371532 First of month timestamp issue -- Nikns
>     - Fixed bug 1406945 Lost alert order when switching between payload display -- Nikns
>     - Fixed bug 1413712 base_conf.php file path issue under MS Windows -- garaged
>     - Fixed search by signature name -- Nikns
>     - Converted sql/create_base_tbls_mssql_extra.sql to CRLF line terminators -- Nikns
>     - Fixed broken auth system for MSSQL -- Nikns
>     - Changed MSSQL schema for table acid_event, sig_name now has type VARCHAR instead of TEXT -- Nikns
>     - Fixed bug 1307250 broken base_stat_alerts.php with MSSQL -- Nikns
>     - Fixed bug 1413594 Force to use alert database for auth system stuff -- Nikns
>     - Setup fix, on error form values are remembered, default language is English -- garaged
>     - Uppercased name 'Archive' in base_main.php (in sync with base_hdr1.php) -- Nikns
>     - Fixed support for actions in base_stat_class.php -- Nikns
>     - Fixed bug 1418660 Broken search by IP criteria -- Nikns
>     - Added checkboxes and fixed support for actions in base_stat_iplink.php -- Nikns
>     - Implemented RFE 1123382 support for actions in base_stat_uaddr.php -- Nikns
>     - Implemented support for actions in base_stat_ports.php -- Nikns
>     - Fixed bug 1422575 when empty email sent even if action unsuccessful -- Nikns
>     - Fixed bug 1424033 Unable to Graph Alert Detection Time -- Nikns
>     - Fixed bug 1426089 Score removed from email address -- Nikns
>     - Fixed bug 1210542 and 1288402 Packet display mode issues -- Nikns
>     - Detect archiving duplicates with select queries instead of catching db conflict error -- Nikns
>     - Fixed bug 1430686 Update alert cache for archived alert right after it is coppied to archive db -- Nikns
>     - Implemented archiving support for schema 107 -- Nikns
>     - Added sig_gid (signature generator id) to snort signature reference url for schema 107 -- Nikns
>     - session_start() on base_conf.php avoiding repetition, easier to handle with debug output -- garaged
>     - debug_mode needs to be off on login (index.php:45 ) -- garaged
>     - Fixed bug 1275536 Unable to download binary payload in Internet Explorer when using SSL -- Nikns
>     - Implemented archiving support for FLoP extended database schema -- Nikns
>     - Implemented rebuild of packet in pcap format for FLoP extended database -- Nikns
>     - Added display of MAC addresses in base_query_alert.php for FLoP extended database -- Nikns
>     - Fixed BASE authentication bypass in standalone mode for base_maintenance.php -- Nikns
>     - Added HTTP response codes on authentication failure in base_maintenance.php for standalone mode -- Nikns
>     - Fixed bug 1341286 Show IP header length in bytes, not words -- Juergen Leising
>     - In plain display mode several sequential non-ASCII payload characters join together displaying their count -- Nikns
>     - Changed input type of the password field in useradmin -- Kevin Johnson
2006-05-12 22:31:38 +00:00
jlam
1ec59ed085 USE_PKGINSTALL isn't needed here to make these packagse use the
pkginstall framework.  In the case of libtool-base, avoid using
FILES_SUBST_SED where it isn't needed.
2006-03-14 20:43:23 +00:00
adrianp
4960b29cf9 Update to 1.2.2
>     - Added Turkish -- Umut Nacak
>     - Changed login button to actually say login -- Jonathan W Minor
>     - Fixed issue with signature names and MySQL 5.0 -- Kade P. Cole
>     - Fixed Bug# 1347623 auto-refresh ignored for stat pages -- Shane Castle
>     - Fixed Sort order issues -- Timothy Doty
>     - Applied patch from Debian maintainer for final SQL injection fix -- Kevin
>     - Updated project lead comments -- Kevin
>     - Added Portscan Information -- Kevin for Nikns
2006-03-13 13:11:05 +00:00
adrianp
71358c45aa pkglintification.
Pattern fix for pear-Image_Graph
2006-03-13 12:25:29 +00:00
joerg
5911def816 Recursive revision bump / recommended bump for gettext ABI change. 2006-02-05 23:08:03 +00:00
wiz
768c589c29 Bump BUILDLINK_RECOMMENDED of textproc/expat to 2.0.0 because
of the shlib major bump.
PKGREVISION++ for the dependencies.
2006-01-24 07:31:52 +00:00
xtraeme
eadc9131c8 Bump PKGREVISION due to mysql.buildlink3.mk changes (default mysql
pkg has been changed to 5.x). Reminded by wiz... thanks.
2006-01-08 18:35:08 +00:00
adrianp
00ae2c0b89 The Basic Analysis and Security Engine (BASE) is a PHP-based analysis
engine to search and process a database of security events generated by
various IDSes, firewalls, and network monitoring tools.  The features currently
include:

o Query-builder and search interface for finding alerts matching
  on alert meta information (e.g. signature, detection time) as well as
  the underlying network evidence (e.g. source/destination address, ports,
  payload, or flags).

o Packet viewer (decoder) will graphically display the layer-3 and
  layer-4 packet information of logged alerts

o Alert management by providing constructs to logically group alerts
  to create incidents (alert groups), deleting the handled alerts or
  false positives, exporting to email for collaboration, or archiving of
  alerts to transfer them between alert databases.

o Chart and statistic generation based on time, sensor, signature, protocol,
  IP address, TCP/UDP ports, or classification
2006-01-03 21:09:44 +00:00