* Remove unncessary dependency on netbsd32_compat16 on NetBSD/amd64.
This package installs statically linked binaries, so there is no
need for any shared libraries or ld.elf_so to run fprot.
* Stop pretending to support non-NetBSD platforms -- the build and
install targets bear no relation to the extracted distfiles on Linux
or Solaris. Support will be re-added in the fullness of time.
INSTALLATION_DIRS, as well as all occurrences of ${PREFIX}/man with
${PREFIX}/${PKGMANDIR}.
Fixes PR 35265, although I did not use the patch provided therein.
F-PROT Antivirus for UNIX, version 4.6.7
Version 4.6.7 is a bugfix release which addresses the following issues:
o Fixed an issue with multipart zip files that could be reported
as invalid or corrupt
o Several fixes to the scanning engine to improve handling of
corrupted files, mostly .chm, .cab and .rar files.
o Fixed a potential endless loop in corrupted .ace files in response
to a vulnerability report.
o Fixed an error in f-prot.sh that would cause the wrong part of paths to be
substituted. Reported by Patrick Diddens.
developer is officially maintaining the package.
The rationale for changing this from "tech-pkg" to "pkgsrc-users" is
that it implies that any user can try to maintain the package (by
submitting patches to the mailing list). Since the folks most likely
to care about the package are the folks that want to use it or are
already using it, this would leverage the energy of users who aren't
developers.
Change MAINTAINER to tech-pkg. Stop using PKGREVISION in DISTNAME.
Notable changes include:
* Postfix config has been changed so TLS is not used internally, that is
when communicating with scan-mail.pl. TLS can nevertheless be used
when communicating with the outside world on port 25.
* f-protd has been tweaked for better performance
* A bug in f-protd when using the 'id=' argument was fixed
* A format string bug in f-protd which could cause malformed xml report
was fixed
* f-prot-milter's logging changed to facilitate more useful error logs
* Fixed startup/shutdown routine for f-prot-milter in scan-mail.pl
* .wmf scanning improved
* A bug in the .hqx scanner on x86 cpu's was fixed
* A bug in the .msl scanner was fixed
* Fixed a bug in .cab and lzh handling
* A race issue with OLE documents was fixed.
This addresses pr/32620, using the patch provided by Christian Gall.
Notable changes include:
* Fixed an endless loop encountered in a corrupted WMF sample.
* A bug in the ELF scanner could cause a crash.
* Using a symlink as a path element to f-protd could cause f-protd not to
start.
* A race issue with startproc (start-stop-daemon in LSB terms) could lead
to old DEF files being used by f-protd even after updates.
* UPX packed files could cause crash on Solaris/sparc.
* Better handling for corrupt mime files.
* A bug in MS office scanner on big-endian platforms was fixed.
* Anomy extended to do content-type fingerprinting which allows
scan-mail.pl to block attachments with false extension based on their
'real' extensions,
e.g. .wmf files claiming to be .jpg or .png files.
* A bug in scan-mail.pl's rc-script, which could cause problems in Debian
when shutting scan-mail.pl down, has been fixed.
* Tweaks and optimizations should improve scanning speed by appr. 15-40%
over previous releases.
* Engine version 3.16.10 will now try to scan zip files which falsly claim
to use 64-bit compression methods. 64 bit compression is not supported,
but the scanner will now try to scan those files using 32 bit methods.
* Improved handling of some types of corrupt files, which were previously
skipped with I/O error.
* A corrupt arj file could crash the scanner. This has been fixed.
* Fixed a bug in scan-mail.pl where attachments would sometimes be left in
quarantine.
* Trying to scan a device special file now results in non-zero exit code.
* Scanning of redirected stdin is now possible, e.g. 'f-prot /dev/fd/0 <
/path/to/file'
o A small bug was fixed in the check-updates.pl program where the updater
wouldn't find the DEF files to update.
o Bug in CHM mini-scanner which could lead to crashes was fixed
o f-prot-milter wouldn't run on Solaris 10 because of library issues
o Fixes an issue where the scanner would sometimes mis-identify .alr
files as base64 coded executables
o Fix where '-list' option to f-prot would not list the filenames of
text-based archives, such as MIME containers.
o Fix where certain executables would be mis-identified as UPX packed
o Fix where UTF8 coded text files would not be scanned
o Fix a crash issue when scanning .chm files containing strange header
values
o Updated error message when access is denied to files due to user
permission problems
o F-Prot 4.6.0 contains scanning engine version 3.16.7 which improves
detection capabilities significantly and improves several scanning
methods along with bugfixes.
as the INSTALL and DEINSTALL scripts no longer distinguish between
the two types of files. Drop SUPPORT_FILES{,_PERMS} and modify the
packages in pkgsrc accordingly.
Version 4.5.4 is a bugfix release.
Fixed a string error in the updater.
Fixed a race condition in f-protd where f-protd would report
'Bad file number' on accept() under high loads.
Fixed a crash issue with malformed word macros.
Fixed a memory corruption in the x86 emulation code.
Modified check-updates.pl to automatically detect f-prot version number.
This addresses PR#29271.
Changes include:
Version 4.5.3 adds a new commandline switch to f-protd, '-fullreport'
and new possible summary codes (see man page for details).
Version 4.5.2 is a bugfix release; f-protd would misidentify .pdf files
and block them from being delivered.
Version 4.5.1 is a bugfix release to fix a bug in scan-mail.pl where
scan-mail.pl would exit after first scan request on some unix platforms,
because of differing signal mechanism between BSD and SysV
Version 4.5.0 contains various bugfixes and improvements to the
documentation and software.
o check-updates.pl has been modified. It now identifies itself with a
unique user-agent string containing information on OS, kernel and
architecture.
o contains a major overhaul of the virus scanning engine
(new engine version 3.16.1). These changes improve its
detection capabilities. The engine can now better detect and
handle executable packers, often used by malware authors to conceal
malicious code.
o includes a more generic JPEG GDI+ exploit detection
o includes EMF/WMF image format exploit detection
o encrypted executables inside archives are now reported as
"could be a suspicious file (encrypted program in archive)",
previously reported as "could be a security risk".
o The argument switch "-archive" has been changed to support the form
"-archive=n" where n is a non-negative integer. This causes f-prot
to scan only n levels deep into nested archives of supported types in
order to protect against 'arhcive-bombs'.
The old form "-archive" is still supported, although depreciated, and
implies n==5. See the man page for details.
o Minor modifications in the DTD for the f-prot daemon XML.
o Bugfix where f-prot would return IO_ERROR when attempting to scan
unsupported partial archive files, e.g. .z01 files
o Improved RAR support. F-Prot fully supports rar versions 1.5, 2.0 and
2.6 and partially supports rar 2.9 (doesn't support RAR Virtual
Machine and the PPM model features)
various bugfixes and improvements to the documentation and software.
o Detection for new emf exploits added.
o A critical bug fixed in scan-mail.pl.
o Detection of JPG exploits has been added.
o A file descriptor leak has been fixed in f-protd.
o A minor bug in f-protd related to CPU hogging under certain
conditions has been fixed.
o A log level has been added (further information can be found in
the man pages).
o install-f-prot.pl will automatically run check-updates.pl
(Note, if you are manually installing from tar.gz this is
not automated and you will have out of date virus signature
files - in which case, make sure you run check-updates.pl
manually).
Addresses PR#27254
Version 4.4.7 contains various bugfixes and improvements to the
documentation and software.
o A critical bug fixed in scan-mail.pl.
o Detection of JPG exploits has been added.
o A file descriptor leak has been fixed in f-protd.
o A minor bug in f-protd related to CPU hogging under certain
conditions has been fixed.
o A log level has been added (further information can be found in
the man pages).
* change ${PREFIX}/lib to ${PREFIX}/libexec (like uvscan)
* change ${PREFIX}/share/doc/html to ${PREFIX}/share/doc
* change ${SED} to SUBST framework
* add DIST_SUBDIR because distfile changed without name change
* add SUPPORT_FILES from PKGINSTALL framework
* add patch-aa to deal with NetBSD mkdir() behavior, specifically the new
directory argument may not have a trailing backslash.
- Drop the DIST_SUBDIR needed when previous version of the distfile
changed without a version change.
- Neaten up DISTNAME generation a little.
Package changes include:
o A critical virtual memory bug has been fixed in f-prot-milter.
o We have moved all installation instructions into the HTML documentation
doc_{ms|fs|ws} and have removed the INSTALL file.
o Minor internationalization bugfix in scan-mail.pl.
o Improved handling of encrypted archives.
o We have obfuscated some of the test-case results in Anomy using simple
rot13 to prevent false positives of the f-prot archive.
o Minor improvement of MIME handling.
o Further enhancements of scanning password encrypted zip files.
o Minor bug-fixes in the F-Prot daemon.
available any more.
(c) FRISK Software International
http://www.f-prot.com/
F-PROT Antivirus for BSD, version 4.4.1
Version 4.4.1 contains various bugfixes and improvements to the documentation
and software.
o Further enhancements of scanning password encrypted zip files.
o Added detection of encrypted archives (since various new viruses
spread through encrypted archives).
o Minor bug-fixes in the F-Prot daemon.
o Minor bug-fixes in scan-mail.pl (smtp proxying).
o Critical bug-fixes in f-prot-milter.
While here, update to 4.4.0 since previous distfile disappeared.
Changes:
o Added detection of encrypted archives (since various new viruses
spread through encrypted archives).
o Minor bug-fixes in the F-Prot daemon.
o Minor bug-fixes in scan-mail.pl (smtp proxying).
o Critical bug-fixes in f-prot-milter.
o Minor modifications to the check-updates.pl script (disable proxy caching
by default).
Version 4.3.2 contains various bugfixes and improvements to the documentation
and software.
o Minor modifications to the check-updates.pl script.
o A libmilter plugin for the Mail Scanner added.
o A qmail plugin for the Mail Scanner added.
o Improved mime handling.
o Various features added to scan-mail.pl.
o Minor improvements in mime handling.
