diff options
| author | mspo <mspo@pkgsrc.org> | 2013-09-14 03:40:01 +0000 |
|---|---|---|
| committer | mspo <mspo@pkgsrc.org> | 2013-09-14 03:40:01 +0000 |
| commit | 200edaf522aa01297b92d8de8a0f6786471c715e (patch) | |
| tree | f4e74a50890279d97c32385c007d7d8406564f04 /security | |
| parent | 7dda76e2a559100b39f3f0c957e6420e59ac3f79 (diff) | |
| download | pkgsrc-200edaf522aa01297b92d8de8a0f6786471c715e.tar.gz | |
version bump to latest 2012.55 to 2013.58
also added a netbsd-specific build option
(changes)
2013.58 - Thursday 18 April 2013
- Fix building with Zlib disabled, thanks to Hans Harder and cuma@freetz
- Use % as a separator for ports, fixes scp in multihop mode, from Hans Harder
- Reject logins for other users when running as non-root, from Hans Harder
- Disable client immediate authentication request by default, it prevents
passwordless logins from working
2013.57 - Monday 15 April 2013
- Decreased connection setup time particularly with high latency connections,
the number of round trips has been reduced for both client and server.
CPU time hasn't been changed.
- Client will send an initial key exchange guess to save a round trip.
Dropbear implements an extension kexguess2@matt.ucc.asn.au to allow the first
packet guess to succeed in wider circumstances than the standard behaviour.
When communicating with other implementations the standard behaviour is used.
- Client side: when public key or password authentication with
$DROPBEAR_PASSWORD is used an initial authentication request will
be sent immediately rather than querying the list of available methods.
This behaviour is enabled by CLI_IMMEDIATE_AUTH option (on by default),
please let the Dropbear author know if it causes any interoperability
problems.
- Implement client escape characters ~. (terminate session) and
~^Z (background session)
- Server will more reliably clean up utmp when connection is closed, reported by
Mattias Walstr<C3><B6>m
- Don't crash if /dev/urandom isn't writable (RHEL5), thanks to Scott Case
- Add "-y -y" client option to skip host key checking, thanks to Hans Harder
- scp didn't work properly on systems using vfork(), thanks to Frank Van Uffelen
- Added IUTF8 terminal mode support (Linux and Mac OS). Not standardised yet
though probably will be soon
- Some verbose DROPBEAR_TRACE output is now hidden unless $DROPBEAR_TRACE2
enviroment variable is set
- Fix using asymmetric MAC algorithms (broke in )
- Renamed configure.in to configure.ac to quieten autoconf, from Mike Frysinger
2013.56 - Thursday 21 March 2013
- Allow specifying cipher (-c) and MAC (-m) lists for dbclient
- Allow using 'none' cipher or MAC (off by default, use options.h). Encryption
is used during authentication then disabled, similar to OpenSSH HPN mode
- Allow a user in immediately if the account has a blank password and blank
passwords are enabled
- Include a few extra sources of entropy from /proc on Linux, hash private keys
as well. Dropbear will also write gathered entropy back into /dev/urandom
- Added hmac-sha2-256 and hmac-sha2-512 support (off by default, use options.h)
- Don't sent bad address "localhost" for -R forward connections,
reported by Denis Bider
- Add "-B" runtime option to allow blank passwords
- Allow using IPv6 bracket notation for addresses in server "-p" option, from Ben Jencks
- A few improvements for Android from Reimar D<C3><B6>ffinger
- Fix memory leak for TCP forwarded connections to hosts that timed out,
reported by Norbert Bencz<C3><BA>r. Appears to be a very long-standing bug.
- Fix "make clean" for out of tree builds
- Fix compilation when ENABLE_{SVR,CLI}_AGENTFWD are unset
Diffstat (limited to 'security')
| -rw-r--r-- | security/dropbear/Makefile | 9 | ||||
| -rw-r--r-- | security/dropbear/distinfo | 8 |
2 files changed, 11 insertions, 6 deletions
diff --git a/security/dropbear/Makefile b/security/dropbear/Makefile index 669090fe9d7..a6b51599c05 100644 --- a/security/dropbear/Makefile +++ b/security/dropbear/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.27 2012/10/23 18:16:26 asau Exp $ +# $NetBSD: Makefile,v 1.28 2013/09/14 03:40:01 mspo Exp $ -DISTNAME= dropbear-2012.55 +DISTNAME= dropbear-2013.58 CATEGORIES= security MASTER_SITES= http://matt.ucc.asn.au/dropbear/releases/ @@ -10,6 +10,7 @@ COMMENT= Small SSH2 server and client, aimed at embedded market GNU_CONFIGURE= yes USE_TOOLS+= gmake +EXTRACT_SUFX= .tar.bz2 CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR:Q} @@ -47,6 +48,10 @@ CPPFLAGS+=-DXAUTH_COMMAND="\"${X11BASE}/bin/xauth\"" CPPFLAGS+=-DXAUTH_COMMAND="\"${X11PREFIX}/bin/xauth\"" .endif +.if ${OPSYS} == "NetBSD" +CFLAGS+= -DHAVE_NETINET_IN_SYSTM_H +.endif + INSTALLATION_DIRS= share/doc/dropbear ${PKGMANDIR}/man1 ${PKGMANDIR}/man8 BUILD_TARGET= all scp diff --git a/security/dropbear/distinfo b/security/dropbear/distinfo index ed39b463d6a..6df5d14ce26 100644 --- a/security/dropbear/distinfo +++ b/security/dropbear/distinfo @@ -1,7 +1,7 @@ -$NetBSD: distinfo,v 1.19 2012/08/13 17:47:26 drochner Exp $ +$NetBSD: distinfo,v 1.20 2013/09/14 03:40:01 mspo Exp $ -SHA1 (dropbear-2012.55.tar.gz) = 2c65dd1f423884a38079f5e4386c698015222279 -RMD160 (dropbear-2012.55.tar.gz) = 1eff6fa5260e938a4b34cf426a6d29fe1e9e4a34 -Size (dropbear-2012.55.tar.gz) = 1774927 bytes +SHA1 (dropbear-2013.58.tar.bz2) = fdbc0ed332b17fc7579dbce6d95d585cf5d653d7 +RMD160 (dropbear-2013.58.tar.bz2) = 4eac17f92d90d06556034432e9a2f7bbd51e3eaa +Size (dropbear-2013.58.tar.bz2) = 1580584 bytes SHA1 (patch-aa) = 01bf4d80c4e76f9a60341b448cd7e77b2a03c286 SHA1 (patch-ab) = 911a0525f309386901d32c23404d13ae67c2e2d1 |