Update libnasl, nessus{-core,-libraries,-plugins} to 1.2.0.

1.1.15/1.2.0 :

. changes by Nicolas Dubee (ndubee@secway.com) :
- Better support for AF_UNIX sockets

. changes by Brian (bmc@snort.org) :
- CVE references
- several bugfixes in the plugins

. changes by Peter Gründl (pgrundl@kpmg.dk) and
  Carsten Joergensen (carstenjoergensen@kpmg.dk) :
- Extensive review of the plugins and therefore numerous fixes

. changes by Axel Nennker (Axel.Nennker@t-systems.com)
- FD leak in save_kb.c fixed

. changes by Renaud Deraison (deraison at nessus.org)
- It is now possible to upload files to the server when using
  the command line client
- lrand48() portability problems worked around
- fixed a bug in the report window that would make it crash
  randomly

1.1.14 :

. changes by Renaud Deraison (deraison at nessus.org)
- SMB fixes (thanks to Michael Scheidell)
- When the safe checks option is enabled, dangerous tests with no
  alternate code (ie: plugins of type ACT_DESTRUCTIVE_ATTACK and
  ACT_DENIAL) are disabled
- Hosts can be designated by their MAC address of instead of their
  IP address (mostly useful for DHCP networks)
- Fixed a bug in the report generation which would replace newlines (\n)
  by semi-columns (;)
- Fixed a bug in the export of some types of reports, where open ports
  with no data associated would not be saved
- Integrated THC's Hydra as a Nessus plugin
- Added new NT security checks (related to user management)
- Plugins of type ACT_SETTINGS can not be disabled
- Fixed a bug which would make nessusd hang when a scanner was reporting
  too many open ports (as when a UDP scan reports all UDP ports as
  being open)

. changes by Dion Stempfley (dion at riptech.com)
- The client can now filter on category

. changes by Axel Nennker (Axel.Nennker@t-systems.com)
- Fixed some plugins causing error messages in some circumstances
  (dns_xfer.nasl, snmp_processes.nasl...)
- Stylish changes to prevent gcc -Wall from whining in some files
- XML NG output is now XML compliant
- Bug fixes

. changes by Jenni Scott (jenni.scott@guardent.com) and
  Michael Slifcak (michael.slifcak@guardent.com) :
- Improved the reporting of the plugins (better consistency, better
  wording)

1.1.13 :

. changes by Michel Arboi (arboi at algoriel.fr)
- New family ACT_SETTINGS dedicated to plugins which just let the user
  enter some preferences
- Optional NIDS evasion techniques (url encoding, tcp slicing)

. changes by Renaud Deraison (deraison at nessus.org)
- Fixed a bug in the command line client which would make it ignore
  some preferences
- SMB checks can now log into a Windows domain
- NIDS evasion techniques (data injection, short ttl)
- Fixed a bug which would randomly stall the scan

1.1.12 :

. changes by Renaud Deraison (deraison at nessus.org)
- Workarounds on FreeBSD to prevent a kernel panic
  (thanks to Michael Scheidell and Stefan Esser)
- nessus can export reports as other file formats again

1.1.11 :

. changes by Renaud Deraison (deraison at nessus.org)
- Fixed a bug regarding the saving of reports from the GUI
- Improved the backend in many ways (speed-wise, content-wise)
- Changes in the protocol
- More messages are sent between the server and the client (timestamps,
  plugins version, ...)
- New .nbe file format, which looks like .nsr but has more information
  in it
- Plugins now have versions numbers.
- The user can upload his plugins to the nessusd server from the client
- It is now possible to upload files to the server (ie: nmap's results) in
  command-line mode
- Fixed false positives in SNMP plugins when launched against a non-configured
  Solaris snmpd

. changes by Guillaume Valadon (guillaume at valadon.net)
- New XML output (the XML layout was defined by Lionel Cons [lionel.cons at cern.ch])

1.1.10 :

. changes by Renaud Deraison (deraison at nessus.org)
- Fixed a bug introduced in 1.1.9 which would sometimes prevent a user from
  aborting an on-going test
- Fixed a bug in the client which would prevent the user from setting a port
  range longer than 255 chars
- Fixed bugs in pcap_next() (thanks to Richard van den Berg). Also, pcap_next()   is now more flexible.
- Fixed a bug in the command line client which would make it close the
  communication too early when the client - server communication is not
  ciphered
- Added an "auto-load dependencies at runtime" option

1.1.9 :

. changes by Renaud Deraison (deraison at nessus.org)
- Fix in the GUI, when closing a saved report
- Fixed a bug in ftp_log_in() which would prevent nasl script from
  logging into some FTP servers
- Solaris build problems fixed
- Darwin 1.4.1 build problems fixed
- MkLinux DR3 build problems fixed  (is anyone using it anymore ?)
- GTK 1.0.x build problems fixed (the use of GTK 1.2 is recommended though)
- Fixed the "wrong call to getopt" problem which would make Nessus
  segfault when built with cygwin, and which would prevent options
  from working under Solaris & FreeBSD (thanks to Udo Schweigert)
- SMB checks speedup (thanks to Georges Dagousset's suggestion)
- Fixed a bug in the client - server communication that would make the
  server close the communication when the client is idle
- Better support for AF_UNIX socket for client-server communication
  (compile nessus-core with ./configure --enable-unix-socket)
- Plugins are disabled by default in batch mode

. changes by Michel Arboi (arboi at algoriel.fr)
- Client now properly checks the certificate of the server

. changes by Benoit Brodard (bbrodard at arkoon.net)
- fixed bugs in nasl/tcp.c (checksum, handling of unsigned int)


1.1.8 :

. changes by Renaud Deraison (deraison at nessus.org)
- Workaround for systems with a low number of bpfs (OpenBSD, Darwin)
- Added some length checks for SMB checks
- No more zombies
- Fixed accounts.nes
- Fixed the reporting of the client (reports would be mixed)
- Client removes tempfiles when exiting
- Repaired ptyexecvp() which would not work on Solaris
- Slight bugfix in the NASL interpretor

. changes by Georges Dagousset (georges at alert4web.com)
- More optimizations
- Properly reloads KBs with the same value defined more than once
- Fixes in some plugins dependencies

. changes by Michael Slifcak <Michael.Slifcak at guardent.com>
- More nmap options
- Quiet mode in nessus-adduser

1.1.7 :

. changes by Renaud Deraison (deraison at nessus.org)
- Compiles on platforms without OpenSSL
- Better Solaris support
- Ported under Darwin (many thanks to Dieter Fiebelkorn
  (dieter at fiebelkorn.net) who actually started the port and helped
  me test this)
- Unscanned ports can now be considered as closed or open (instead of
  just open), at user choice
- Upgraded to libtool 1.4.2
- fixed a bug in the client which would make it display the wrong report
  when doing multiple scans
- enhanced the plugins filter (that appear when pressing 'l' in the GUI)
- fixed a serious problem in the SMB plugins which would prevent them to work
  against Samba and which would make them slow against Windows (pointed out
  by Georges Dagousset)

. changes by Iouri Pletnev (Iouri.Pletnec at xacta.com)
- Ported under Cygwin

. changes by Michel Arboi (arboi at algoriel.fr)
- Added nessus-mkrand for hosts with no /dev/random AND no EGD
  running

1.1.6 :

. changes by Renaud Deraison (deraison at nessus.org)
- EGD support for OpenSSL (do ./configure --enable-egd=/path/to/egd/socket
  in nessus-libraries)
- KB items are now stored with individual dates instead of a global
  date for the whole KB file. Yes, this means you have to delete your
  old KB files
- When an host could not be pinged, his KB is not altered (nor created)
- fixed memory leaks in nessusd
- nessus-mkcert checks that the certificates were really created
  before congratulating the user
- fixed a security problem where anybody with a shell on the nessusd
  host could log in

1.1.5 :

. changes by Georges Dagousset (georges.dagousset at alert4web.com) :
- new KB entries for further "optimizations"
- improved find_services.nes

. changes by Renaud Deraison (deraison at nessus.org) :
- cleaned up the KB
- added doc/kb_entries.txt
- bugfix in find_services regarding the pem password
- new reporting GUI
- fixed a problem which would leave some plugin run against a host
  considered as dead
- the KB are now stored with properly escaped \n and \r chars
- greatly improved tcp_ping.nasl (and tcp_ping() in libnasl)

. changes by Michel Arboi (arboi at algoriel.fr) :
- replaced PEKS by OpenSSL in the client/server communication

. changes by H D Moore (hdm@secureaustin.com)
- fixed no404.nasl

1.1.4 :

. changes by Renaud Deraison (deraison at nessus.org) :
- fixed find_services.nes
- plugins that are slow to finish are _really_ killed by the server
- the client better handles the scan of big networks
- nmap_wrapper now updates its progress bar
- nessus-update-plugins support proxies (with or without authentication)
- monitor_backend.c and data_mining.c allow any developer to plug
  a database behind the client (by default flatfiles are used)
- bug fixed in nmap_wrapper which would make it kill its parent
  process randomly
- minor fix in the tcp_ping() function of NASL (ack would be set
  to non-zero for a syn packet)
- fixed Alexis's ftp_write_dirs.nes & ftp_bounce_scan.nes

. changes by Michel Arboi (arboi at noos.fr) :
- find_services accepts password-protected .pem files
- patches in the way files were transmitted between the client
  and the server (which could end up in a deadlock)

. changes by Alexis de Bernis <alexisb at tpfh.org) :
- fixed ftp_write_dirs.nes

1.1.3 :

. changes by Renaud Deraison (deraison at nessus.org) :
- added the plugin 'torturecgis.nasl' which supplies bogus args to
  the remote CGIs, in order to find the most blantantly broken
  ones
- webmirror.nasl now retrieves the list of arguments of each
  CGI.
- added filter support in the client. Use the key 'l' to filter
  out plugins you don't want to see.
- added the 'safe checks' option which allow the user to not disturb
  the network (but which weakens the Nessus tests)
- disabled backward support for port 3001 - the official port
  is 1241 now.

1.1.2 :

. changes by Renaud Deraison (deraison at nessus.org) :
- added the plugin 'webmirror.nasl', which extracts the list of
  CGIs used by a remote web server (and will do much more).
- fixed a problem in NASL due to the SSL patch that would cause
  a fd leak with some plugins.
- added a new plugin category (ACT_DESTRUCTIVE_ATTACK) for plugins
  that may harm the remote host.
- SSL certificates & key can be imported
- corrected a bug introduced in 1.1.0 that would make the client not display
  the name of the plugin currently being run.
- sending signal SIGUSR1 to nessusd makes the grandfather process (the one
  who listens on tcp ports) die without killing its children, thus
  allowing a smooth upgrade of nessusd
- updated config.guess and config.sub

1.1.1 :

. changes by Renaud Deraison (deraison at nessus.org) :
- fixed mem leaks in NASL
- fixed a bug introduced in 1.1.0 regarding recv_line()
- fixed a bug introduced in 1.1.0 in the process management of the plugins
  (all the KB would not be filled, resulting in incomplete tests)
- smb_sid2user.nasl is twice as fast ;)

1.1.0 :

. changes by Devin Kowatch (devink at SDSC.EDU) :
- fixed communication problem between client and server
- user-defined timing policy in nmap
- nessus-update-plugins uses wget (or any user-supplied command at
  compilation time) if available.

. changes by Michel Arboi (arboi at bigfoot.com) :
- support for the -T option of nmap
- SSL support

. changes by Zorgon (zorgon at antionline.org) :
- support for the --os_guess option of nmap

. changes by Renaud Deraison (deraison at nessus.org) :
- the user can upload files to plugins through the client (ie: it is possible
  to upload nmap's results directly to the nmap plugin)
- tests can be run in parallel now
- each user is now granted a home by nessus-adduser
- added nessus-rmuser
- per users plugins

Of course several new plugins were added as well.

5 files changed, 30 insertions, 80 deletions

diff --git a/security/nessus-libraries/patches/patch-aa b/security/nessus-libraries/patches/patch-aa
index 10fa75e1902..3078caf2e03 100644
--- a/security/nessus-libraries/patches/patch-aa
+++ b/security/nessus-libraries/patches/patch-aa
@@ -1,12 +1,13 @@
-$NetBSD: patch-aa,v 1.1.1.1 2000/07/30 11:14:32 frueauf Exp $
+$NetBSD: patch-aa,v 1.2 2002/05/10 13:18:46 frueauf Exp $
 
---- libpeks/us_export_wizard.c.orig	Sat Jul 22 01:22:08 2000
-+++ libpeks/us_export_wizard.c	Fri Jul 21 20:10:36 2000
-@@ -25,6 +25,7 @@
- 
- #include "common-stuff.h"
- 
-+#include <stdlib.h>
- #ifndef HAVE_RAND
- #define  rand()  random ()
- #define srand() srandom ()
+--- nessus-config.pre.in-orig	Wed Nov 14 17:18:04 2001
++++ nessus-config.pre.in	Fri May 10 13:27:27 2002
+@@ -48,7 +48,7 @@
+ 		;;
+ 	--libs)
+ 	
+-		echo $Xn "-lc -L$LIBDIR -lnessus -lhosts_gatherer @pcap_flag@ $CIPHER $EXTRA $Xc"
++		echo $Xn "-lc -Wl,-R$LIBDIR -L$LIBDIR -lnessus -lhosts_gatherer @pcap_flag@ $CIPHER $EXTRA $Xc"
+ 		;;
+ 	--cflags)
+ 		echo $Xn "-I$INCLUDEDIR $DEFS -I$INCLUDEDIR/nessus $CIPHER_CFLAGS $SSL_CFLAGS $Xc"
diff --git a/security/nessus-libraries/patches/patch-ab b/security/nessus-libraries/patches/patch-ab
deleted file mode 100644
index 054906d338d..00000000000
--- a/security/nessus-libraries/patches/patch-ab
+++ /dev/null
@@ -1,34 +0,0 @@
-$NetBSD: patch-ab,v 1.2 2002/03/12 20:58:42 jmc Exp $
-
---- libpeks/gmp3/mpn/Makefile.in.orig	Sun Aug  6 19:46:54 2000
-+++ libpeks/gmp3/mpn/Makefile.in	Tue Mar 12 20:46:49 2002
-@@ -142,7 +142,7 @@
- 
- # COMPILE minus CC.  FIXME: Really pass *_CFLAGS to CPP?
- COMPILE_FLAGS = \
--	$(DEFS) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS)
-+	$(DEFS) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS)
- 
- 
- SUFFIXES = .s .S .asm
-@@ -453,7 +453,7 @@
- 
- # *.m4 are preprocessed with m4.
- .asm.o:
--	$(M4) -DOPERATION_$* $< >tmp-$*.s
-+	$(M4) -DOPERATION_$* $< | tr -d '\377' >tmp-$*.s
- 	$(CCAS) $(COMPILE_FLAGS) tmp-$*.s -o $@
- 	rm -f tmp-$*.s
- .asm.obj:
-@@ -461,9 +461,9 @@
- 	$(CCAS) $(COMPILE_FLAGS) tmp-$*.s -o $@
- 	rm -f tmp-$*.s
- .asm.lo:
--	$(M4) -DPIC -DOPERATION_$* $< >tmp-$*.s
-+	$(M4) -DPIC -DOPERATION_$* $< | tr -d '\377' >tmp-$*.s
- 	$(LIBTOOL) --mode=compile $(CCAS) $(COMPILE_FLAGS) tmp-$*.s -o $@
--	$(M4) -DOPERATION_$* $< >tmp-$*.s
-+	$(M4) -DOPERATION_$* $< | tr -d '\377' >tmp-$*.s
- 	$(CCAS) $(COMPILE_FLAGS) tmp-$*.s -o $*.o
- 	rm -f tmp-$*.s
- 
diff --git a/security/nessus-libraries/patches/patch-ac b/security/nessus-libraries/patches/patch-ac
index b0500dd9c53..55aaec1315d 100644
--- a/security/nessus-libraries/patches/patch-ac
+++ b/security/nessus-libraries/patches/patch-ac
@@ -1,14 +1,25 @@
-$NetBSD: patch-ac,v 1.2 2001/01/28 18:52:34 frueauf Exp $
+$NetBSD: patch-ac,v 1.3 2002/05/10 13:18:46 frueauf Exp $
 
---- Makefile.orig	Tue Dec 26 17:20:05 2000
-+++ Makefile	Sun Jan 28 13:53:27 2001
-@@ -46,7 +46,8 @@
+--- Makefile.orig	Fri Oct 26 07:54:10 2001
++++ Makefile	Fri May 10 13:11:04 2002
+@@ -51,15 +51,17 @@
  	cd libhosts_gatherer && ${MAKE} install
- 	cd libpcap-nessus && ${MAKE} install 
+ 
  
 -	$(INSTALL) -m 0444 include/includes.h ${includedir}/nessus
-+# Use the includes.h from nessus-core:
-+#	$(INSTALL) -m 0444 include/includes.h ${includedir}/nessus
++	# Use the includes.h from nessus-core:
++	#$(INSTALL) -m 0444 include/includes.h ${includedir}/nessus
  	$(INSTALL) -m 0444 include/libnessus.h ${includedir}/nessus
  	$(INSTALL) -m 0444 include/harglists.h ${includedir}/nessus
  	$(INSTALL) -m 0444 include/libvers.h   ${includedir}/nessus
+ 	$(INSTALL) -m 0444 include/getopt.h    ${includedir}/nessus
+ 	test -d ${bindir} || ${INSTALL_DIR} -m 755 ${bindir}
+-	test -d ${sbindir} || ${INSTALL_DIR} -m 755 ${sbindir}
++	#test -d ${sbindir} || ${INSTALL_DIR} -m 755 ${sbindir}
+ 	$(INSTALL) -m 0755 nessus-config ${bindir}/nessus-config
+-	$(INSTALL) -m 0755 uninstall-nessus ${sbindir}/uninstall-nessus
++	# we use pkg_* tools to deinstall nessus
++	#$(INSTALL) -m 0755 uninstall-nessus ${sbindir}/uninstall-nessus
+ 	test -d ${mandir} || ${INSTALL_DIR} -m 755 ${mandir}
+ 	test -d ${mandir}/man1 || ${INSTALL_DIR} -m 755 ${mandir}/man1
+ 	$(INSTALL) -m 0644 nessus-config.1 ${mandir}/man1
diff --git a/security/nessus-libraries/patches/patch-ad b/security/nessus-libraries/patches/patch-ad
deleted file mode 100644
index a3dfdfc274c..00000000000
--- a/security/nessus-libraries/patches/patch-ad
+++ /dev/null
@@ -1,13 +0,0 @@
-$NetBSD: patch-ad,v 1.1 2000/09/18 18:46:27 skrll Exp $
-
---- libpeks/Makefile.in.orig	Mon Sep 18 19:10:53 2000
-+++ libpeks/Makefile.in
-@@ -154,7 +154,7 @@
- ldflags.out: Makefile
- 	@echo Generating $@ ...
- 	@$(RM) $@
--	echo $(PEKSLINK) $(GMPLINK) $(ZLINK) >$@
-+	echo $(PEKSLINK) $(GMPLINK) $(ZLINK) -Wl,-R${prefix}/lib >$@
- 
- # prepare for nt/win32
- win32 win32-prep:: peks.h us_export_wizard.h messages-int.h version.h
diff --git a/security/nessus-libraries/patches/patch-ae b/security/nessus-libraries/patches/patch-ae
deleted file mode 100644
index 4a7ed55c6b2..00000000000
--- a/security/nessus-libraries/patches/patch-ae
+++ /dev/null
@@ -1,15 +0,0 @@
-$NetBSD: patch-ae,v 1.1 2001/05/12 15:46:52 tron Exp $
-
---- libnessus/pcap.c.orig	Fri Apr 28 18:43:38 2000
-+++ libnessus/pcap.c	Sat May 12 17:45:15 2001
-@@ -23,6 +23,10 @@
- #include <sys/sockio.h>
- #endif
- 
-+#ifndef MAXHOSTNAMELEN
-+#include <sys/param.h>
-+#endif
-+
- struct interface_info {
-     char name[64];
-     struct in_addr addr;