Commit graph

5365 commits

Author SHA1 Message Date
drochner
e7ed3dfc76 add a patch from upstream CVS to fix a bug which could make keys
unusable on passphrase changes
bump PKGREVISION
2010-02-03 10:58:11 +00:00
schmonz
88d5c1db5d Update to 0.96. From the changelog:
- Added support for checking permissions in cvm-qmail.  See discussion
   of $CVM_QMAIL_CHECK_PERMS in cvm-qmail.html
- Added support for I/O timeouts for cvm-local modules.
- Fixed the SQLite module to copy the row data.
- Fixed cvm-qmail dieing if control/locals is missing.

pkgsrc changes: set LICENSE and support DESTDIR.
2010-02-03 07:06:12 +00:00
sno
960b63a939 Updating security/p5-Net-SSLeay from 1.35nb2 to 1.36
pkgsrc changes:
- Adjusting dependencies
- Removing compatibility patches which are all applied upstream

Upstream changes:
1.36 30.01.2010
	- Fix problems with building on GNU/kFreeBSD, to do with use of pack
	instread of sockaddr_in. Patched by Debian Perl Group. (Closes RT#40144)
	- Fixed a compile problem in t/local/ptr_cast_test.c for some gcc
	versions. Reported by "Ryan McGuigan via RT". (Closes RT#52525)
	- Improved OpenSSL detection on Win32/strawberry perl. Patch provided
	by kmx. (Closes RT#49287)
	- Fix test failures on some 64-bit platforms. (Closes RT#53585)
	- Make X509_NAME_get_text_by_NID return its result without a trailing NUL.
	Patched by Steffen Ullrich. (Closes RT#35754)
	- SSL_set_session_secret_cb required for EAP-FAST is now enabled for both
	SSL_F_SSL_SET_HELLO_EXTENSION and
	SSL_F_SSL_SET_SESSION_TICKET_EXT. The name of this #define
	changed after 0.9.8i. SSL_set_hello_extension is not available after
	0.9.8i.
	- Added SSL_CTX_get_client_CA_list sk_X509_NAME_free sk_X509_NAME_num
	sk_X509_NAME_value SSL_get_client_CA_list, from patch provided by
	Joerg Schneider
	- Added EVP_add_digest and EVP_sha256 (if available)
	- Improve documentation on callback functions.
	- Stop looping forever when writing to broken connections. Patched by
	Martin Mares. (Closes RT#44170)
	- Patches from "Martijn van Beers via RT" to add SSL_SENT_SHUTDOWN
	and SSL_RECEIVED_SHUTDOWN, remove broken URLs,
	and to fix some documentation issues.
	- Various changes to build with OpenSSL 1.0 beta1:
	SSL_SESSION_cmp has been removed
	return type of SSL_CTX_sessions changed in an ugly way
	- Fixed a build problem reported by SISYPHUS:
	On Windows Vista64, ActivePerl 5.10.0 (build 1004, x64), running 'nmake
	test', the process hangs forever when it comes to building the test
	executable (as the executable fails to build).
	- Applied patch from ecmenifee in to improve handling of errors in
	ssl_write_all. (Closes RT#48132)
	- Patch to permit compile and testing on OS/2 submitted by Ilya
	Zakharevich.
	- Fixed compile problems with openssl-1.0.0-beta3 due to MD2 now being
	optional. Reported by paul [...] city-fan.org.
	- Fixed compile problems with openssl-0.9.7 and earlier with undefined
	symbol EVP_sha256. Reported by paul [...] city-fan.org.
	- Fixed a typo reported by Dan Dascalescu.
	- added RIPEMD160 digest function.  Patch provided by dkg.
2010-02-02 20:53:46 +00:00
sno
4dd9b7d6b2 Updating security/p5-Net-OpenSSH from 0.36 to 0.44
Upstream changes:
0.44
	- solve bug on rsync methods not correctly handling
          pass-through options carrying an argument (bug report by
          Daiju Kito)
	- support several verbose levels in rsync methods
	- document spurious warnings that appear when tty => 1 is
          given and stdin is not attached to a tty

0.43  Dec 14, 2009
        - call ssh with -tt instead of -t to force remote tty
          allocation even when stdin is not attached to one locally
          (bug report by Todd E. Rinaldo)

0.42  Dec 5, 2009
        - add FAQ section
	- add commercial support offering
	- add pointer to my wishlist :-)

0.41_03 Nov 16, 2009
	- add testing known_hosts to MANIFEST
	- some bits where missing from 0.40
	- allow also keyboard-interactive authentication when password
          is given (bug report by Todd E. Rinaldo)

0.40  Nov 14, 2009
        - DESTROY was clobbering $@ (bug report by Todd E. Rinaldo)
	- when password authentication is requested add flags to ssh
          master command to disable other auth. options
	- document how to integrate Net::OpenSSH with Expect

0.39  Oct 10, 2009
	- use SIGTERM instead of SIGHUP to kill lazy SSH master
	- on 1_run.t remote commands could be aliased bug (report and
          patch by Danijel Tasov)
	- add methods for external master PID handling
	- add 'all' tag to Net::OpenSSH::Constants
	- check SSH client version from Makefile.PL
	- work around L<Foo::Bar> links in POD being rendered as "the
          Foo::Bar manpage" by some POD backends.

0.38  Sep 25, 2009
        - remove alpha-status warning from docs!
	- add debug support to master killing
        - DESTROY was generating warnings when called before the
          master connection had been established successfully
        - add variable expansion feature
	- minor doc corrections

0.37  Sep 15, 2009
        - add support for stdout_file, stderr_file and stdin_file
          options
2010-02-02 20:18:29 +00:00
tnn
14b2544237 sprinkle --tag=CC for libtool 2010-02-02 17:09:28 +00:00
joerg
3ee04332c3 Fix rpath. Honour strip settings. 2010-01-31 23:24:24 +00:00
joerg
08f74d4840 Fix permissions. 2010-01-31 23:13:24 +00:00
joerg
f9978cf975 DESTDIR support 2010-01-30 19:36:35 +00:00
sno
d58b53fa67 Updating security/p5-Crypt-OpenSSL-RSA from 0.25nb3 to 0.26
Upstream changes:
0.26  Sun Nov 22 2009 11:01:13
        - Change subclassing test to generate a 512 bit key in order to
          work around an odd issue seen on some 64-bit redhat systems.
          (CPAN bug 45498)
2010-01-29 10:40:20 +00:00
sno
60f86f0208 Updating security/p5-Crypt-Rijndael from 1.08 to 1.09
pkgsrc changes:
- Updating COMMENT to new short description from upstream

Upstream changes:
1.09 - Sun Jan 17 12:00:33 2010
	* Clarify in the Makefile.PL that this is under LGPL.
	* There are no code changes
2010-01-29 10:19:47 +00:00
joerg
b7362024b6 DESTDIR support 2010-01-27 22:05:28 +00:00
joerg
8b9636fd05 DESTDIR support. Fix libXt dependency. Bump revision. 2010-01-27 22:03:53 +00:00
joerg
87920b72f9 DESTDIR support 2010-01-27 21:59:21 +00:00
joerg
e5c0037f21 DESTDIR support 2010-01-27 21:47:00 +00:00
joerg
2898ec35f6 DESTDIR support 2010-01-27 21:32:58 +00:00
joerg
fd7f52ccb1 Supports DESTDIR. 2010-01-27 21:31:43 +00:00
joerg
3df47416d5 DESTDIR support 2010-01-27 20:57:22 +00:00
joerg
ff1bb81e90 DESTDIR support from Steven Drake. 2010-01-27 18:21:56 +00:00
joerg
b7f3604848 DESTDIR support 2010-01-27 16:52:13 +00:00
joerg
f8370c59e2 DESTDIR support 2010-01-27 16:41:59 +00:00
joerg
f18d81aefb DESTDIR support. Fix comment. 2010-01-27 14:28:28 +00:00
joerg
37b687298e DESTDIR support 2010-01-27 14:27:39 +00:00
sno
181b1cc6dc Added security/p5-Authen-Htpasswd version 0.16.1 2010-01-27 10:31:29 +00:00
sno
b7693d1e87 Importing security/p5-Authen-Htpasswd version 0.16.1 as dependency of
scheduled import of www/p5-Catalyst-Authentication-Store-Htpasswd,
which is recommended by the update of editors/p5-Padre-Plugin-Catalyst.

This module provides a convenient, object-oriented interface to Apache-style
.htpasswd files.  It supports passwords encrypted via MD5, SHA1, and crypt,
as well as plain (cleartext) passwords.  Additional fields after username
and password, if present, are accessible via the extra_info array.
2010-01-27 10:31:17 +00:00
heinz
d653ce6a74 Added LICENSE information. 2010-01-24 17:11:17 +00:00
wiz
319e13628d More PKGREVISION bumps of jpeg dependencies.
Identified by parsing the NetBSD-i386-5.0.1/2009Q3 pkg_summary files
and Robert Elz.
2010-01-24 13:26:09 +00:00
joerg
20dafd5800 Also works with Python 2.6. 2010-01-23 22:57:05 +00:00
taca
ee2930a3bc Add a patch from OpenSSL's repositroy to deal with CVE-2009-4355.
Bump PKGREVISION.
2010-01-22 03:35:10 +00:00
heinz
c286ae7afc Added LICENSE information. 2010-01-21 23:32:10 +00:00
wiz
21a84747a2 Update to 5.48:
5.48  Mon Jan  4 16:32:52 MST 2010
	- fixed "shasum -a0" option (ref. rt.cpan.org #53319)
		-- incorrectly accepted 0 as a valid algorithm
			-- thanks to Zefram for patch
	- updated URL for NIST test vectors
		-- ref. files t/nistbit.t, t/nistbyte.t
			-- thanks to Leon Brocard for patch
2010-01-20 14:54:58 +00:00
wiz
e17d6e3cac Update to 4.29:
Version 4.29, 2009.12.02, urgency: MEDIUM:
* New features sponsored by Searchtech Limited http://www.astraweb.com/
  - sessiond, a high performance SSL session cache was built for stunnel.
    A new service-level "sessiond" option was added.  sessiond is
    available for download on ftp://stunnel.mirt.net/stunnel/sessiond/ .
    stunnel clusters will be a lot faster, now!
* Bugfixes
  - "execargs" defaults to the "exec" parameter (thx to Peter Pentchev).
  - Compilation fixes added for AIX and old versions of OpenSSL.
  - Missing "fips" option was added to the manual.

Version 4.28, 2009.11.08, urgency: MEDIUM:
* New features
  - Win32 DLLs for OpenSSL 0.9.8l.
  - Transparent proxy support on Linux kernels >=2.6.28.
    See the manual for details.
  - New socket options to control TCP keepalive on Linux:
    TCP_KEEPCNT, TCP_KEEPIDLE, TCP_KEEPINTVL.
  - SSL options updated for the recent version of OpenSSL library.
* Bugfixes
  - A serious bug in asynchronous shutdown code fixed.
  - Data alignment updated in libwrap.c.
  - Polish manual encoding fixed.
  - Notes on compression implementation in OpenSSL added to the manual.
2010-01-20 14:46:17 +00:00
wiz
ecc8190b98 Update to 1.02:
2010-01-10   Gisle Aas <gisle@ActiveState.com>

   Release 1.02

   Give the distribution a META.yml file
2010-01-20 14:43:21 +00:00
wiz
52a88647f7 Update to 2.4:
* Noteworthy changes in release 2.4 (2010-01-18) [stable]
- Doc fixes.
- Updated gnulib files.
- Clean up copyright notices.
2010-01-20 11:17:34 +00:00
wiz
91871f449e Second try at jpeg-8 recursive PKGREVISION bump. 2010-01-18 09:58:37 +00:00
wiz
579796a3e5 Recursive PKGREVISION bump for jpeg update to 8. 2010-01-17 12:02:03 +00:00
sno
7b4e351c52 Updating security/p5-Crypt-Rijndael from 1.07nb1 to 1.08
pkgsrc changes:
  - Adjusting license definition

Upstream changes:
1.08 - Wed Dec  9 18:20:22 2009
	* Promoting development release to full release.
	* This release mainly clarifies the licensing.

1.07_02 - Tue Nov  4 02:21:27 2008
	* RT #40511: Give a better warning when you try to use tainted
	data as an initialization vector. If anyone wants to use
	tainted data, they can patch the code to accept it.

1.07_01 - Tue Oct 14 08:59:58 2008
	* Clarify that these files are under the Lesser GNU Public License
	(also known as the Library GNU Public License).
2010-01-16 22:28:59 +00:00
heinz
f6eb5e6f2a Set or updated LICENSE 2010-01-16 19:27:17 +00:00
wiz
662a258e1b Remove workaround for compiler bug in gcc2 on sparc64. 2010-01-16 17:57:36 +00:00
tron
3cf808624e Fix build under Solaris. 2010-01-16 11:23:03 +00:00
agc
ef466379c3 Update pam_ssh_agent_auth from 0.9.1 to 0.9.2
Changes since previous version:

+ move from GPLv3 to modified-bsd license, with huge thanks to Jamie Beverly
2010-01-15 22:23:48 +00:00
drochner
fe61bbf7dd update to 2.0.14
changes:
* The default for --include-cert is now to include all certificates
  in the chain except for the root certificate.
* Numerical values may now be used as an alternative to the
  debug-level keywords.
* The GPGSM --audit-log feature is now more complete.
* GPG now supports DNS lookups for SRV, PKA and CERT on W32.
* New GPGSM option --ignore-cert-extension.
* New and changed passphrases are now created with an iteration count
  requiring about 100ms of CPU work.
2010-01-15 20:15:07 +00:00
drochner
c4e7a43eec don't depend on gnupg directly, gpgme/bl3 will do this for us, and it
will deal with gnupg1/gnupg2 correctly
bump PKGREVISION
2010-01-15 20:11:34 +00:00
taca
1cb789fb37 Update openssl package to 0.9.8l, fixing security problem.
Approved by agc@.


Changes between 0.9.8k and 0.9.8l  [5 Nov 2009]

 *) Disable renegotiation completely - this fixes a severe security
    problem (CVE-2009-3555) at the cost of breaking all
    renegotiation. Renegotiation can be re-enabled by setting
    SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION in s3->flags at
    run-time. This is really not recommended unless you know what
    you're doing.
    [Ben Laurie]
2010-01-15 04:55:30 +00:00
schwarz
522df83954 streamlined syntax, using ${SETENV} instead of env. 2010-01-09 14:42:04 +00:00
joerg
967a2464d4 Expose the gpg binary gpgme is build against and use that in security/gpa. 2010-01-04 15:09:44 +00:00
schwarz
de1ea362ef improved CC and CFLAGS support 2010-01-03 14:30:37 +00:00
joerg
de807c0023 Needs pod2man. 2010-01-02 13:58:17 +00:00
he
f1e30ffb41 Moderate the wording slightly.
OK'ed by agc@
2009-12-28 23:18:09 +00:00
abs
fe90ac6faf polkit-explicit-grant-helper and polkit-grant-helper should also
be setgid polkit (apparently). Bump pkgrevision
2009-12-27 00:00:55 +00:00
obache
ee413a6d5a Fixes and improvement for Interix
* Not only interix-3, but also treat all interix release, allow to build on SUA.
* Gave up randomized image base, use 0x5e000000, as in mk/platform/Interix.mk.
  It is workaround of PR 42369.
* Use -D_REENTRANT flags for threads.
* replace -Wl,soname= linker flags with -Wl,h, for Interix
2009-12-25 11:58:06 +00:00