Commit graph

1454 commits

Author SHA1 Message Date
wiz
4f11014906 Add CONLICT with ssh2 package. From Greg A. Woods in PR 18729. 2002-10-20 00:49:55 +00:00
jlam
76147a5a3d Add and enable pyca. 2002-10-18 17:07:37 +00:00
jlam
3e5d0e2935 Initial import of of security/pyca.
pyCA tries to make it easier for people to set up and run a organizational
certificate authority which fulfills the need for a fairly secure
certification processing.  The package also tries to reduce administrative
tasks and user's frustration by providing a comfortable web interface to
users contacting the certificate authority.
2002-10-18 17:06:00 +00:00
tron
b1702f4003 Remove entry for "sbin/nessus-mkcert-client" which apparently doesn't
get installed by the latest version of this package.
2002-10-14 12:54:45 +00:00
martti
a9e061798a Updated php to 4.2.3
* lots of bug fixes
* experimental apache2 support
* added IPv6 support to gethostbyaddr()

ATTENTION!! register_globals defaults to 'off' now
2002-10-14 06:21:05 +00:00
frueauf
387a5766f5 Update nessus{-libraries,-core,-plugins} and libnasl to 1.2.6.
Changes since 1.2.0:

1.2.6 :
. changes by Michael Slifcak (Michael.Slifcak@guardent.com)
- Added Bugtraq cross reference in the plugins
- Added support for BID in nessusd (this has yet to be done on the
  client side)
. changes by Axel Nennker (Axel.Nennker@t-systems.com)
- fixed the xml and html outputs
- fixed array issues in a couple of plugins
. changes by Michel Arboi (arboi@bigfoot.com)
- find_service now detects services protected by TCP wrappers or ACL
- find_service detects gnuserv
- ptyexecvp() replaced by nessus_popen() (*)
. changes by Renaud Deraison (deraison@cvs.nessus.org)
- Fixed a bug which may make nasl interpret backquoted strings
  (\n and \r) received from the network (problem noted by Pavel Kankovsky)
- nmap_wrapper.nes calls _exit() instead of exit() (*)
- Solved the lack of bpf's on Free/Open/NetBSD and MacOSX by
  sharing _one_ among all the Nessus processes. As a result, Nessus's
  ping is much more effective on these platforms
- bugfix in plug_set_key() which would eventually make some scripts
  take too long when writing in the KB
- Plugins of family ACT_SETTINGS are run *after* plugins of family
  ACT_SCANNERS
- replaced the implementation of md5 which was used when OpenSSL is disabled
  by the one from RSA (the old one would not work on a big-endian host)
- Fixed plugins build issues on MacOS X
- The nessus client compiles and links against GTK+-2.0. Of course, it will
  be horrible and instable, as the GTK team does not care about backward
  compatibility
  (*) These two modifications solve the problems of nmap hanging under FreeBSD

1.2.5 :
. changes by Michel Arboi (arboi@bigfoot.com)
- find_service now displays unknown services that run on assigned ports
- read_stream_connection smarter (smaller timeout)
- find_service sometimes declared IDENT as "unknown"
. changes by Renaud Deraison (deraison@cvs.nessus.org)
- Fixed a deadlock that would prevent some plugins from completing
- Fixed a possible (although rare) corruption issue in the reports
  (the script IDs could under some circumstances be random)
- Fixed a potential segfault in the execution of nasl scripts

1.2.4 :
. changes by Renaud Deraison (deraison@cvs.nessus.org)
- Reverted back to autoconf 2.13.
- Bug fix in nessus-core/nessusd/pluginlaunch.c - under some circumstances,
  data might have be lost in the reports
- Fixed a bug in several plugins for web checks (under some circumstances,
  a plugin would do N x N checks against the remote web servers (where
  N equals to the number of web servers running on the remote host)

1.2.3 :
. changes by Isaac Dawson (idawson@securitymanagementpartners.com)
- New html output layout.
. changes by Pasi Eronen (pasi.eronen@nixu.com)
- fix in nmap_wrapper
. changes by Renaud Deraison (deraison@cvs.nessus.org)
- Fixed a bug which could make, under some circumstances, make nessusd
  crash the host it is running on.
- If the option log_whole_attack is set to "no", then only the begining
  and the end of the attack is logged (and not the time each plugin takes)
- Improved no404.nasl to further reduce false positives
- Bug fix in nessusd - under some rare circumstances, report data could
  be lost (if many many plugins were enabled at the same time and were
  sending data at the same time).
- UDP packets are resent while we wait for a reply (avoids to loose packets
  en route)
- Fixed the option "auto_enable_dependencies" which would not always work
- Sending a SIGTERM to the nessus client during a command line scan
  forces it to save its result to the current test file
- Non-printables characters are not shown in the report any more

1.2.2 :
. changes by Renaud Deraison (deraison@cvs.nessus.org)
- In the GUI, while running a scan, plugins names are only updated once
  in a while (saves CPU)
- Bugfix in the client : some host names would make the client crash
- Repaired the '-P' switch in the client

1.2.1 :
. changes by Simon Law (sfllaw@engmail.uwaterloo.ca)
- Made a manpage for nessus-mkcert-client(1) and have it installed by
  the Makefile
- Revised most other manpages for missing information and to increase
  clarity
2002-10-13 09:11:51 +00:00
wiz
066a1b7b7d Unused. 2002-10-12 01:25:37 +00:00
wiz
90e464773d Unused. 2002-10-09 23:32:33 +00:00
wiz
741e63c1e5 Unused. 2002-10-09 21:53:50 +00:00
wiz
ec45992471 buildlink1 -> buildlink2. 2002-10-09 21:52:36 +00:00
wiz
8729bda89f Unused. 2002-10-09 21:51:04 +00:00
wiz
fc8531e30b buildlink1 -> buildlink2. 2002-10-09 19:45:26 +00:00
wiz
9ab3428f49 Unused. 2002-10-09 19:41:58 +00:00
wiz
44809c3ab4 Unused. 2002-10-09 19:32:10 +00:00
itojun
59d301eeab upgrade to 1.2.0, from skrueger@europe.com
2002-09-21  Werner Koch  <wk@gnupg.org>
        Released 1.2.0.
	* configure.ac: Bumbed version number and set development version
	to no.
2002-09-19  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Try linking LDAP as just -lldap as it seems very
	recent OpenLDAPs (>=2.0.23) support that.
2002-09-14  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Try linking LDAP without -lresolv first, just in
	case the platform has libresolv, but doesn't actually need it to
	use LDAP.
2002-09-12  David Shaw  <dshaw@jabberwocky.com>
	* NEWS: Note that the old IDEA plugin won't work with post-1.1.90
	gpg.
2002-09-11  Werner Koch  <wk@gnupg.org>
	Released 1.1.92.
	* configure.ac (random_modules): The default random module for
	system lacking a /dev/random is now auto selected at runtime.
2002-09-09  David Shaw  <dshaw@jabberwocky.com>
	* NEWS: typo.
	* configure.ac: Add a link test for LDAP without -lresolv for
	HPUX.  Remove "hstrerror" test as it is no longer needed.
2002-09-02  Werner Koch  <wk@gnupg.org>
	* README: Removed the note about a development version so that we
	later don't forget this.  Minor other changes.
2002-08-29  Werner Koch  <wk@gnupg.org>
	* configure.ac (random_modules): Reworked the code to select the
	random module.  Define USE_ALL_RANDOM_MODULES for value all.
2002-08-27  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Check type of mode_t.
	* NEWS: Clarify that --libexecdir is a configure option.
	* configure.ac: Check for hstrerror.
2002-08-19  David Shaw  <dshaw@jabberwocky.com>
	* NEWS: Document new ways to enable MDC, and change in automatic
	compression disabling.
	* configure.ac: No such thing as the "none" random gather any
	longer.
2002-08-08  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Add an --enable-tiger.
	* NEWS: Clarify new permission checks.
2002-08-07  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: If the static IDEA cipher is present, disable
	dynamic loading.  Also fix backwards grammar of keyserver
	exec-path CHECKING message.
2002-08-05  Werner Koch  <wk@gnupg.org>
	* configure.ac: Bumbed version number.
2002-08-04  Werner Koch  <wk@gnupg.org>
	Released 1.1.91.
	* configure.ac (ALL_LINGUAS): Added Catalan.
2002-08-02  Werner Koch  <wk@gnupg.org>
	* configure.ac: Removed all extension stuff but keep the tests for
	dlopen.  We don't need to figure out the flags required.  All
	stuff is now statically loaded.
2002-07-30  David Shaw  <dshaw@jabberwocky.com>
	* README, configure.ac: --with-exec-path is now clarified into
	--disable-keyserver-path
	* NEWS: changes since 1.1.90.
2002-07-24  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Include a GNUPG_LIBEXECDIR in g10defs.h, as well
	as a SUBST for Makefiles.
2002-07-22  Timo Schulz  <ts@winpt.org>
	* configure.ac: Replace the 'c:/' variables with 'c:\' due
	to the fact we already use '\' in the remaining code.
2002-07-08  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Add --with-mailprog to override the use of
	sendmail with another MTA.  We can use anything that follows the
	"$MAILPROG -t" convention.
2002-07-04  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: --enable-exec-path should be a 'with'.  Fix 'no'
	cases of --with-exec-path and --with-photo-viewer.
	* README: Document --disable-exec, --disable-photo-viewers,
	--disable-keyserver-helpers, --enable-exec-path, and
	--with-photo-viewer.
	* configure.ac: Add --with-photo-viewer to lock the viewer at
	compile time and --disable-keyserver-helpers and
	--disable-photo-viewers to allow disabling one without disabling
	the other.
2002-07-03  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Allow setting USE_EXEC_PATH to lock the exec-path
	to a fixed value.
2002-07-01  Werner Koch  <wk@gnupg.org>
	* configure.ac: Set version number to 1.1.91.
        Released 1.1.90.
	* INSTALL: Replaced by generic install file.
	* README: Marked as development version and moved most stuff of
	the old INSTALL file to here.
2002-06-30  Werner Koch  <wk@gnupg.org>
	* configure.ac: Link W32 version against libwsock32.
2002-06-29  Werner Koch  <wk@gnupg.org>
	* configure.ac (development_version): New.
	(HAVE_DEV_RANDOM_IOCTL): Removed test for it; it was never used.
	* BUGS, AUTHORS: Add a note on how to send security related bug
	reports.
2002-06-20  David Shaw  <dshaw@jabberwocky.com>
	* NEWS: changes since 1.0.7.
	* configure.ac: Set new version number (1.1.90), and fix Solaris
	compiler flags for shared objects.
2002-06-11  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Move -lsocket and -lnsl checks before LDAP link
	tests so they work properly on Solaris.  Noted by David Champion.
	Also, check for the Mozilla LDAP library if the OpenLDAP library
	check fails.  Put -lsocket and -lnsl in NETLIBS rather than LIBS
	so not all programs are forced to link to them.
2002-06-05  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Add a switch for the experimental external HKP
	keyserver interface.
2002-05-22  Werner Koch  <wk@gnupg.org>
	* configure.ac: Check for strcasecmp and strncasecmp.  Removed
	stricmp and memicmp checks.
2002-05-08  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: If LDAP comes up unusable, try #including <lber.h>
	before giving up.  Old versions of OpenLDAP require that.
2002-05-03  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: In g10defs.h, use \ for the directory separator
	when HAVE_DOSISH_SYSTEM is on.
	* configure.ac: Add --disable-exec flag to disable all remote
	program execution.  --disable-exec implies --disable-ldap and
	--disable-mailto.  Also look in /usr/lib for sendmail.  If
	sendmail is not found, do not default - just fail.
2002-04-30  David Shaw  <dshaw@jabberwocky.com>
	* configure.ac: Try and link to a sample LDAP program to check if
	the LDAP we're about to use is really sane.  The most common
	problem (using a very old OpenLDAP), could be fixed with an extra
	#include, but this would not be very portable to other LDAP
	libraries.
2002-10-09 14:16:55 +00:00
wiz
b3cd887fd9 Update MASTER_SITES and HOMEPAGE.
From Jim Geovedi on tech-pkg <20021007224707.GA16634@toxic.magnesium.net>.
2002-10-07 23:49:28 +00:00
seb
cf0b1c7919 Convert to buildlink2. Use perl5/module.mk. 2002-10-07 22:34:23 +00:00
jschauma
86453d8a91 Allow this to build on Linux (the Debian flavor, at least) 2002-10-07 22:09:41 +00:00
seb
32e335d7fc Use int32_t while dealing with sasldb version not long! This fix cyrus sasl
on sparc64.
Bump PKGREVISION.
2002-10-07 19:16:46 +00:00
seb
9e04fbd4b5 Convert to buildlink2. Use perl5/module.mk. 2002-10-06 22:31:03 +00:00
seb
8aa2719201 Use buildlink2. Use perl5/module.mk. 2002-10-06 22:26:49 +00:00
heinz
82ec958700 Add p5-Digest-Nilsimsa 2002-10-06 03:10:19 +00:00
heinz
5bdfeab57e Import of p5-Digest-Nilsimsa, a perl5 extension module for Nilsimsa
signatures. A Nilsimsa signature is a statistic of n-gram occurance in
a piece of text. It is a 256 bit value usually represented in hex
2002-10-06 03:07:03 +00:00
wiz
3b52e946a2 Unused. 2002-10-05 12:41:02 +00:00
wiz
6bde5d450a Convert to buildlink2. 2002-10-05 12:40:46 +00:00
wiz
cee8cf48b4 Add and enable optcalc. 2002-10-04 15:52:39 +00:00
hubertf
f1f1746ed8 Add otpCalc-0.96: OTP and S/Key calculator for X
otpCalc is an RFC2289 and RFC1760 compliant one time password
calculator, written to use the GTK+ library for screen I/O.

Contributed by Michael Santos <mike@ethmoid.org> in PR 18527.
2002-10-04 15:05:05 +00:00
wiz
f27a9bb935 Drop unneeded patch, and unneeded automake dependency. 2002-10-02 22:19:47 +00:00
dillo
b28374defa get rid of autoconf build dependency by patching configure 2002-10-02 19:11:59 +00:00
wiz
9ebd5c8b3c Convert comments to use automake.mk. 2002-10-02 18:59:50 +00:00
chris
2ccfd08f73 Belated bump to nb2, following fixes to dlsym return checks to work properly against -current. 2002-10-01 19:53:54 +00:00
chris
bc11ddbaf3 fixup dlsym error checks. An error is indicated by dlsym returning NULL not
dlerror returning something valid.
2002-09-30 22:41:30 +00:00
taca
a9749c89a5 Update ratas to 2.1
Here is quote from 2.0's release announce but changes from 2.0 to 2.1 are
unknown.

New in this version of RATS:

RATS can now descend through directories recursively, analyzing any supported
source code it finds.

Ability to output results as HTML or XML.

Result output can contain the line of code that caused each problem to be
reported, along with the column number in the source file the problem was
detected at.

RATS will now report various statistics at the end of the reporting phase,
including total time spend on the analysis, and number of source lines analyzed.


Various database additions.

A new database file, rats-openssl, which aids in analyzing any code that
utilizes the OpenSSL C API. (Thanks to Ben Laurie for contributing this
database)
2002-09-30 13:52:55 +00:00
shell
850b1606f5 Updated to p5-SSLeay-0.45
Changes :
+ PKCS12 certificate support, patch submitted by Beni Takahashi,
  author of patch Daisuke Kuroda
+ Fixing compile warnings on Solaris 8/Sparc with Forte 7.0 about
  implicit conversions and implicit declarations.  Thanks to
  Marek Rouchal for bug report.
- Removed unused dependency on URI::URL, thanks to Ric Steinberger
  for pointing out this problem under perl 5.8.0
- fixed Makefile.PL use of dirname() which could error for perl 5.8.x
  Thanks to Chip Turner of RedHat for patch.
- Fixed a runtime error with Net::SSL->proxy for running under
  perl warnings with no proxy defined, which t/net_ssl.t test case
  revealed.
+ Added t/net_ssl.t test for initializing a Net::SSL object
+ Added build auto-detect for 0.9.6+ and only then use OPENSSL_free
  instead of free() since older OpenSSL like 0.9.4 did not have it.
+ Added ./net_ssl_test -CAfile documentation, and root CA file from mod_ssl
  distribution at certs/ca-bundle.crt that can be used for general root CA
  peer certificate verification.
+ Plus many bugs fixed and improvement... see CHANGES for more
2002-09-27 09:41:21 +00:00
shell
202d8ddb83 Updated to p5-IO-Socket-SSL-0.91
Two recent changes :
v0.91
  - Added support for SSL_peek and SSL_pending (peek() and
    pending()).  Updated documentation, tests, etc. to reflect
    this.

v0.901  2002.08.19
  - Fixed the warning that happens when sockets are not explicitly
    closed() before the program terminates.

For full log, please see Changes
2002-09-27 09:35:43 +00:00
shell
291d192572 Updated to p5-Net-SSLeay-1.20
Changes :
- Additional SSL_peek patch to ssl_read_until from
  Peter Behroozi <peter@@fhpwireless_.com> --Sampo

pkgsrc changes :
- buildlink -> buildlink2
- perl5 module
2002-09-27 09:33:08 +00:00
jlam
9295ae4eb1 * Use buildlink2.
* Use bsd.pkg.install.mk and install the example xdm config files.
* Rename the rc.d script to "xdm_krb4.sh" and make it use /etc/rc.subr.
* Remove redundant MESSAGE; the INSTALL script says all the right things.
2002-09-26 23:58:59 +00:00
abs
98365a1737 Update msudir to 0.12:
Fix compilation error on Linux
2002-09-24 17:17:58 +00:00
wiz
dcdf9bd97d Sort. 2002-09-24 13:51:21 +00:00
wiz
e8817c9088 Complete standardization of messages according to latest pkglint. 2002-09-24 12:29:55 +00:00
jlam
e5d99640da buildlink1 -> buildlink2 2002-09-24 10:49:48 +00:00
jlam
3ac80e007e buildlink1 -> buildlink2 2002-09-23 23:55:25 +00:00
wiz
f0ef988870 Convert to buildlink2. 2002-09-23 17:29:43 +00:00
wiz
cc40e08ca9 Update to 1.21:
* Improved the default output so it creates multiple formatted lines
          instead of single very long lines for each hit.
          Use the new "--singleline" (-S) option to get the original
          "long line" format.
        * Removed duplicate "getpass" entry in the ruleset;
          this didn't hurt anything, but was unnecessary.
          Thanks to the user who gave me that feedback, wish I'd kept your
          email address so I could credit you properly :-).
        * Added a short tutorial to man page.
        * Fixed initial upper/lower case on many entries in the ruleset.
        * Allow "--input" as a synonym for "--inputs".
2002-09-23 15:19:37 +00:00
abs
2e920c42d5 Update msudir to 0.11:
Allow fromgroup and rootdir to be unset in the config file.
2002-09-23 10:16:48 +00:00
jlam
476b670382 Unused. 2002-09-23 09:24:02 +00:00
jlam
10bdf67101 buildlink1 -> buildlink2 2002-09-23 09:22:43 +00:00
jlam
ee12419f1f Instead of using BUILDLINK_TRANSFORM.<pkg> to change the location of
headers in ${BUILDLINK_DIR}, simply create BUILDLINK_CPPFLAGS.<pkg>
variables whose values are appended to CPPFLAGS, which are automatically
passed to the configure and build processes.

BUILDLINK_TRANSFORM.<pkg> has little use in buildlink2 since packages are
now told that the software may be found where it really is installed, not
in ${BUILDLINK_DIR} as was the case with buildlink1.  Eventually, these
variables will be declared unsupported by buildlink2.
2002-09-23 09:22:14 +00:00
jlam
e44bf515dc Strip the ".buildlink" from the names of the python application and
extension Makefile fragments, because they really don't have anything to
do with the buildlink[12] frameworks.  Change all the Makefiles that use
application.buildlink.mk and extension.buildlink.mk to use application.mk
and extension.mk instead.
2002-09-21 23:46:45 +00:00
jlam
41ed4d01d8 buildlink1 -> buildlink2 2002-09-21 07:44:28 +00:00