summaryrefslogtreecommitdiff
path: root/security/dropbear
AgeCommit message (Collapse)AuthorFilesLines
2006-03-14update to 0.48.1drochner6-72/+26
changes: -a security fix which was already in pkgsrc (0.46nb1) -bugfixes -zlib compression for dbclient -Set "low delay" TOS bit -client keyboard-interactive mode support -logging improvements -Added aes-256 cipher and sha1-96 hmac -allow connections to listening forwarded ports from remote machines
2006-03-04Point MAINTAINER to pkgsrc-users@NetBSD.org in the case where nojlam1-2/+2
developer is officially maintaining the package. The rationale for changing this from "tech-pkg" to "pkgsrc-users" is that it implies that any user can try to maintain the package (by submitting patches to the mailing list). Since the folks most likely to care about the package are the folks that want to use it or are already using it, this would leverage the energy of users who aren't developers.
2006-02-05Recursive revision bump / recommended bump for gettext ABI change.joerg1-2/+2
2006-01-19Prefer NAME_MAX over MAXNAMLEN.joerg2-1/+18
2005-12-27Add to description:reed1-2/+2
It includes a server, client and tools to generate server keys and to convert OpenSSH keys for Dropbear.
2005-12-14Add security patch fromreed3-2/+19
http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html Noted by waldeck of hk2.uwaterloo.ca via pkgsrc-bugs. Bump PKGREVISION. Tested build on NetBSD and Linux. Tested dropbear server on NetBSD. (This is during a freeze. Other stuff to be done later: update to latest version. Install man pages. Mention "client" in COMMENT and DESCR. Use CONF_FILES and sysconfdir. And maybe install the "scp" tool also.)
2005-12-05Fixed pkglint warnings. The warnings are mostly quoting issues, forrillig1-2/+2
example MAKE_ENV+=FOO=${BAR} is changed to MAKE_ENV+=FOO=${BAR:Q}. Some other changes are outlined in http://mail-index.netbsd.org/tech-pkg/2005/12/02/0034.html
2005-08-09add a "pam" pkg option and make it work with NetBSD's openpam if enableddrochner4-6/+63
2005-07-19update to 0.46drochner3-9/+18
changes: -Update to LibTomCrypt 1.05 and LibTomMath 0.35 -bugfixes and code cleanup
2005-05-22Remove USE_GNU_TOOLS and replace with the correct USE_TOOLS definitions:jlam1-2/+2
USE_GNU_TOOLS -> USE_TOOLS awk -> gawk m4 -> gm4 make -> gmake sed -> gsed yacc -> bison
2005-04-29update to 0.45drochner4-26/+26
changes: - Makefile no longer appends 'static' to statically linked binaries - Add optional SSH_ASKPASS support to the client - Respect HOST_LOOKUP option - Fix accidentally removed "return;" statement which was removed in 0.44 (causing clients which sent an empty terminal-modes string to fail to connect - including pssh, ssh.com, danger hiptop). (patches independently from Paul Fox, David Horwitt and Sven-Ola Tuecke) - Read "y/n" response for fingerprints from /dev/tty directly so that dbclient will work with scp.
2005-04-11Remove USE_BUILDLINK3 and NO_BUILDLINK; these are no longer used.tv1-2/+1
2005-02-24Add RMD160 digests.agc1-1/+2
2005-01-18update to 0.44drochner5-25/+49
changes: -IPv6 support -client added -bugfixes XXX dropbear wants to use /dev/random per default now which makes it unusable on systems w/o entropy source. I've patched it back to /dev/urandom. There might be security concerns.
2004-10-03Libtool fix for PR pkg/26633, and other issues. Update libtool to 1.5.10tv1-1/+2
in the process. (More information on tech-pkg.) Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and installing .la files. Bump PKGREVISION (only) of all packages depending directly on the above via a buildlink3 include.
2004-08-31Updated dropbear to 0.43martti3-14/+10
- SECURITY: Don't try to free() uninitialised variables in DSS verification code. Thanks to Arne Bernin for pointing out this bug. This is possibly exploitable, all users with DSS and pubkey-auth compiled in are advised to upgrade. - Clean up agent forwarding socket files correctly, patch from Gerrit Pape. - Don't go into an infinite loop when portforwarding to servers which don't send any initial data/banner. Patch from Nikola Vladov - Fix for network vs. host byte order in logging remote TCP ports, also from Gerrit Pape. - Initialise many pointers to NULL, for general safety. Also checked cleanup code for mp_ints (related to security issues above).
2004-06-26this uses zlib, so use buildlink3 and include zlib/buildlink3.mk.grant1-1/+3
2004-06-21update to 0.42drochner3-21/+27
Many fixes and feature additions since 0.38. Too many to list here.
2004-01-24replace deprecated USE_GMAKE with USE_GNU_TOOLS+=make.grant1-2/+2
2003-10-30Upgrade to 0.38. This closes PR pkg/22984 by Matt Jhonston.xtraeme3-15/+15
Changes: 0.38 - Sat Oct 11 2003 16:28:13 +0800 o Default hostkey path changed to /etc/dropbear/dropbear_{rsa,dss}_host_key rather than /etc/dropbear_{rsa,dss}_host_key o Added SMALL and MULTI text files which have info on compiling for multiple binaries or small binaries o Allow for commandline definition of some options.h settings (without warnings) o Be more careful handling EINTR o More fixes for channel closing o Added multi-binary support o Improved logging of IPs, now get logged in all cases o Don't chew cpu when waiting for version identification string, also make sure that we kick off people if they don't auth within 5 minutes. o Various small fixes, warnings etc o sftp support works (relies on OpenSSH sftp binary or similar) o Added --disable-shadow option (requested by the floppyfw guys) 0.37 - Wed Sept 24 2003 19:42:12 +0800 o Various portability fixes, fixes for Solaris 9, Tru64 5.1, Mac OS X 10.2, AIX, BSDs o Updated LibTomMath to 0.27 and LibTomCrypt to 0.90 o Renamed util.{c,h} to dbutil.{c,h} to avoid conflicts with system util.h o Added some small changes so it'll work with AIX (plus Linux Affinity). Thanks to Shig for them. More bugfixes, etc.
2003-08-19Initial import of dropbear-0.36 into the NetBSD Packages Collection.agc5-0/+62
The search for a small Secure Shell server to fit on a laptop with 4 megs ram and no hard disk was fruitless, so Matt Johnston decided to write his own, and Dropbear is the result. It implements various features of the SSH 2 protocol, including X11 and Authentication Agent forwarding. Dropbear is Open Source software, distributed under a MIT-style license. Features * A small memory footprint - Dropbear can compile to a 110kB statically linked binary with uClibc (and only minimal options selected). * Implements X11 forwarding, and authentication-agent forwarding for OpenSSH clients * Compatible with OpenSSH ~/.ssh/authorized_keys public key authentication * Features can easily be disabled when compiling to save space. * Preliminary TCP forwarding support (-L style only)