| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
CHANGES FOR PKGSRC:
==================
Makefile:
+ Modify section that manually handles the ELF symlinks for samba
shared libraries -- add additional libraries that are built (addns,
smbsharemodes) and reorganize so we don't need two loops where one
will do.
+ Pass --with-included-popt to the configure script to force using
the popt distribution included with samba to avoid any library
mismatch errors between samba and any installed popt. This fixes
PR pkg/34444 by Jason Lingohr.
+ Don't build the smbmount programs on Linux -- they're deprecated in
favor of the mount.cifs programs.
+ Remove some pkgviews-related settings -- I'm not supporting pkgviews
installation of samba.
Makefile.patches:
+ Empty out PATCHFILES because we are updating to the latest release
of samba, which has all previous patches for security advisories
already rolled into the main sources.
Makefile.mirrors:
+ Update SAMBA_MIRRORS in Makefile.mirrors to the latest list of FTP
mirrors.
options.mk:
+ Only show the ``acl'' option on platforms that actually support
POSIX ACLs.
+ Add a new ``fam'' option to enable building the notify_fam VFS
module.
patch-ab, patch-ax:
+ Remove patch-ab and update patch-ax -- there's nothing for the
scripts to back up so we don't need to patch the install* scripts
to avoid this.
patch-ae, patch-ah:
+ Update patch-ae and remove patch-ah -- we should definitely check
that PAM_AUTHTOK_RECOVERY_ERR is defined before using its value to
define PAM_AUTHTOK_RECOVER_ERR.
patch-at, patch-au:
+ Fix patch-at and patch-au -- in configure.in, we need to "escape"
left and right brackets or else m4 will strip them away in the
resulting configure script. This should fix the detection of FreeBSD
and NetBSD systems capable of using nss_winbind noted in PR pkg/38076
by Ingo Meyer.
patch-ay:
+ Remove some unnecessary changes -- we can safely just do "mkdir" in
some places because we know the parent and any intermediate directories
exist.
patch-be:
+ Fix a bug in locating WINS_LIST -- nmbd/nmbd_winsserver.c was
referring to WINS_LIST under the state directory in one place and
under the lock directory in another; change all references to be
under the state directory.
patch-db:
+ Add patch to fix the build of samba on older BSDs. Patch supplied
in PR pkg/37487 by John Frear.
All remaining changes to patches/patch-* are simply to remove fuzz.
MAJOR CHANGES FROM VERSION 3.0.26a:
* Fix failure to join Windows 2008 domains.
* Fix Windows Vista (including SP1 RC) inter-op issues.
* Add a new ``administrative share'' service parameter for defining
hidden shares that cannot be managed from Windows.
* Fix for CVS-2007-6015 (already fixed in 3.0.26anb4 in pkgsrc).
* Fix for CVS-2007-5398 (already fixed in 3.0.26anb4 in pkgsrc).
* Fix for CVS-2007-4572 (already fixed in 3.0.26anb4 in pkgsrc). Also
subsequent fix for regression experienced by smbfs clients caused by
the fix for CVS-2007-4572, noted in PR pkg/38300 by Dave Barnes.
* Many other bugs fixed and memory leaks plugged.
|
|
- remove most of the debug junk
- fix a buffer overflow in the config parser
- replace stdio usage with a simple abstract IO framework. currently
without explicit buffering, but that might be added later
|
|
doesn't clash if something else happens to pull in that include
file - as now happens with XI.h file in inputproto-1.4.3.
Should fix PR 38227.
|
|
- security fixes for X.509sat, Roofnet, LDAP and SCCP dissectors
- several SNMP-related bugs have been fixed.
- several memory-related bugs have been fixed.
- Wireshark now supports custom columns.
- New Protocol Support:
IEEE 802.15.4, Infiniband, Parallel Redundancy Protocol,
RedBack Lawful Intercept, Xcsl
- Updated Protocol Support:
- AFS, ALCAP, ATM, BACapp, CIGI, DCC (renamed from DCCP), DCCP (renamed
from DCP), DCERPC SPOOLSS, DCERPC NT, DHCP, DirectPlay, EtherCAT, FIX,
GIOP, GTP, H.248, HTTP, ICMPv6, ICQ, IPv6, ISIS, JXTA, NCP, P_Mul, PCAP,
PKIX1Explicit, PTP, RADIUS, Roofnet, RTCP, RTMPT, RTP, RX, SABP,
SCSI OSD, sFlow, SMPP, SNMP, SSCOP, TAPA, TIPC, TPNCP, UNISTIM, X.25,
X.509sat, XML
- New and Updated Capture File Support:
Hilscher Analyzer
|
|
(CVE-2007-5623, ticket #16441)
Approved-by: gdt, joerg
|
|
check_http (CVE-2007-5198)
Approved-by: gdt
|
|
PR pkg/38268 from HAT.
And a little pkglint fixes.
Bump PKGREVISION.
|
|
Crafted CNAME entries can be used to DoS MaraDNS without this patch
See CVE-2008-0061 for more details
Approved-by: wiz
|
|
The former version (1.5) was quite old, so there are too many changes
to list here.
No pkgs in pkgsrc are formally using this pkg, but the "sonata" audio
player is able to fetch lyrics if this version is installed.
|
|
Take over maintainership as suggested by jlam
Approved-by: jlam
|
|
http://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk/plugins/check_pgsql.c
revision 1951
|
|
|
|
2.4 instead.
|
|
Changes since version 0.62:
===========================
*** 0.63, 8 Feb 2008
This version contains a Security Fix.
Feature NotifyHandler in Nameserver
The NotifyHandler is a new attribute to the nameserver used in the
same way as the ReplyHandler except that it is executed when the
opcode is NS_NOTIFY (RFC1996). It takes the same arguments as the
reply handler (i.e. $qname, $qclass, $qtype, $peerhost, and $query).
Corrections made in the documentation.
Fix rt.cpan.org #32937: 5.11 introduces new warning on uc(undef)
The patch supplied fixes for methods where undefined arguments were
likely. For methods where undefined arguments don't make the warning
will be printed.
Fix rt.cpan.org #32147: Default LocalAddr broken in Net::DNS::Nameserver 0.62
Listen on the default address if LocalAddr not defined.
Fix rt.cpan.org #30316 Security issue with Net::DNS Resolver.
Net/DNS/RR/A.pm in Net::DNS 0.60 build 654 allows remote attackers
to cause a denial of service (program "croak") via a crafted DNS
response (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6341). Packet
parsing routines are now enclosed in eval blocks to trap exception
and avoid premature termination of user program.
Bug: mbox-dname and txt-dname were not allowed to be empty in the RP RR.
Fix by Peter Koch
|
|
|
|
|
|
clive is a cross-platform command line video extraction tool for
user-uploaded video hosts such as Youtube, Google Video, Dailymotion,
Guba, and Metacafe. It can be chained with 3rd party tools for
subsequent video re-encoding and playing.
|
|
Remove PostgreSQL 8.0 as choice.
|
|
e.g. match IRIX 5.x but not 6.x. Some of these may indeed apply to 6.x
too, but let's be conservative. PR pkg/38224.
|
|
+ Support user-destdir installation.
Bump the PKGREVISION to 1.
|
|
|
|
identified by Charles Zmudzinski in pr pkg/32275
- use EXPORT_SYMBOLS_LDFLAGS as suggested by salo@
- resolves pkg/32275
|
|
Suggested by Alan Barrett.
|
|
Changes: This release adds support for downloading high quality videos
using the -b or --best-quality command line option.
|
|
see <http://samba.rsync.org/> or ${WRKSRC}/CHANGES for more information.
While here:
- Build it with libtool.
- Include buildlink3.mk file for libiconv and change hacks.mk
to set USE_GNU_ICONV=yes instead of including libiconv's b3.mk.
- Added options.mk for inet6 and debug options.
- Added example configuration file (all entries commented out)
|
|
- add patch to src/gnug++/int.defs.h for Solaris compatibility
(by Ian Dickinson, iand@eng.pipex.net)
- move Errors manpage to a less general name (suggested by Ian Dickinson)
- add patch to src/RtConfig/f_cisco.cc by Hagen Boehm <hboehm@NIC.DTAG.DE>
(fixes up the string that gets output instead of a copy of said string)
- improve src/Makefile.in some more
|
|
|
|
(I have been using this for years.)
This is an RPC portmapper that prevents theft of NIS (YP), NFS,
and other sensitive information via the portmapper. As an option,
the program supports access control in the style of the TCP Wrappers
(log_tcp) package.
Daemons that offer RPC services tell the portmapper on what port
they listen. And clients asks the portmapper what port the daemon
is using. RPC network port numbers may change each time the system
is booted.
This is Wietse Venema's fourth replacement portmapper. It is
derived from source code in the RPCSRC 4.0 and the TIRPC source
distributions.
|
|
PKGREVISION++
|
|
|
|
|
|
from archivers/pax and net/tnftp, respectively. In the past, the
pkgtools version of these packages installed into ${PKG_TOOLS_BIN},
but this was changed in:
pkgtools/pax/Makefile:1.15
pkgtools/tnftp/Makefile:1.3
+ Get rid of archivers/pax/Makefile.common and net/tnftp/Makefile.common
by merging them into their respective Makefiles. The Makefile.common
files existed solely for inclusion by the pkgtools versions of these
packages, but with the removal of those packages, these files are
now unnecessary.
+ Add full DESTDIR support to archivers/pax and net/tnftp.
+ Modify the bootstrap to build archivers/pax and net/tnftp instead of
the pkgtools versions of these packages.
|
|
|
|
|
|
|
|
them at will.
|
|
|
|
Bump PKGREVISION
|
|
|
|
- Security-related vulnerabilities in the SCTP, SNMP, and TFTP dissectors
have been fixed.
- This release adds configuration profiles, temporary coloring rules,
enhanced I/O graphs, WLAN traffic statistics, and many other useful
features.
|
|
to shut up the pkglint warnings.
|
|
so add a myusleep() wrapper to DTRT. This should fix the 100% CPU
utilisation.
PKGREVISION -> 1.
|
|
can be configured to chain to other proxies.
|
|
Changes since last packaged version (1.5.5):
2008-02-22
- Add icmp type/code decoding
- Add proper icmp v9 decoding
- Fix memory leaks in -e auto expire mode in nfcapd.
- Fix somee potential dead locks with file locking, when expiring
- Fix multicast bug in nfreplay
- Add hostname lookup for IP addresses in filter.
2007-10-15 stable-1.5.6
- Fix odd CISCO behaviour for ICMP type/code in src port.
- Add fast LZO1X-1 compression option (-z) for output file.
- Add lists for port in syntax -> port in [ 135 137 445]
- Add lists for AS syntax -> as in [ 1024 1025 ]
- Bug fix in filter for syntax 'src as and dst as'
|
|
Changed wording in COMMENT slightly.
Shut up some complaints by pkglint ("set -e", "unquoted shell variable f")
|
|
"courier-gnutls" option/toggle that allows using GNU TLS instead of
defaulting to OpenSSL.
Bump the PKGREVISION of couriertcpd, courier-imap, and courier-mta to 1.
|
|
|
|
Minor bugfixes
|
|
+ Replace unnecessary /bin/bash in easy-rsa scripts with /bin/sh.
Bump the PKGREVISION to 1.
|
