| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
changes:
-bugfixes
-speed improvements, added benchmark tools
-support to RSA key objects for blinding and unblinding data
- * Renamed cansign(), canencrypt(), hasprivate(), to
can_sign, can_encrypt, has_private.
-* Many randpool changes.
|
|
|
|
m2crypto-0.11, a crypto and SSL toolkit for Python.
|
|
|
|
was commented out because it didn't work with recent openssh, is now fiexed
and commented back in). This support is conditional on ${KERBEROS} being
set, and currently enables support for both kerberos 4 and 5. This should
be refined.
This has been tested and confirmed on -current and 1.6. Testing on other
platforms (if any? solaris?) in which we support kerberos in pkgsrc should
be done.
|
|
COMMENT, and add comment to Makefile explaining why we copy, rather than
source, files from ../openssh.
|
|
20030430 of the GSSAPI patches from
http://www.sxw.org.uk/computing/patches/openssh.html
. From the site:
The patches on this page are concerned with adding support for
authenticating users via their Kerberos credentials, and allowing
authenticated users to forward their credentials to a remote
machine over ssh.
These patches are against various versions of the OpenSSH portable
code. SSH has both a legacy protocol version 1, and a newer,
protocol version 2 (which is being standardised in the IETF).
Techniques exist for performing Kerberos authentication over both
protocols, and GSSAPI authentication over protocol version 2.
In this package standard ssh support for kerberos versions 4 and 5 is kept
for version 1 of the ssh protocol (openssh does not support kerberos 4 in
ssh protocol version 2).
These patches, which provide a much more thorough implementation of kerberos
5 support than that shipped with openssh, are pkg'ed here with an eye toward
evaluation of their usefullness for inclusion in the base os.
|
|
|
|
|
|
|
|
Use buildlink2.
ONLY_FOR_PLATFORM -> NOT_FOR_PLATFORM (*BSD have skey in base system.)
Workaround a bug in GCC on sparc64.
Whitespace.
|
|
making some directories that are automatically created by mtree.
Patch provided in PR pkg/22234 by Jonathan Perkin.
|
|
|
|
as proposed in PR pkg/22227 by reed@reedmedia.net.
|
|
|
|
Since "ossl" is only distribution file's name and real library name is
"openssl", ruby-openssl is better name. I was much confused yesterday.
name
|
|
|
|
|
|
|
|
Wed, 16 Jul 2003 16:04:02 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl-0.1.4a released
Wed, 16 Jul 2003 15:43:52 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* extconf.rb: check CRYPTO_malloc for libcrypto.
* ossl.h: include <openssl/bn.h>.
* ossl_bn.c: use BN_CTX_new instead of BN_CTX_init.
* ossl_cipher.c: NIDs of AES were changed.
* ossl_x509store.c: alias add_cert add_trusted.
* lib/net/https.rb: follow HTTPResponse.read_new's incompatiplity.
Tue, 15 Jul 2003 04:48:33 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl-0.1.4 released
Tue, 15 Jul 2002 04:19:44 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* openssl_missing.h: add MS_CALLBACK.
* extconf.rb: should check <openssl/e_os.h>.
* ossl.h: check HAVE_OPENSSL_E_OS_H.
* net/https.rb: follow ruby-1.8.
|
|
Add conflict with its older name, ruby-openssl package.
Thanks to advise by a private mail from wiz.
Wed, 16 Jul 2003 16:04:02 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl-0.1.4a released
Wed, 16 Jul 2003 15:43:52 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* extconf.rb: check CRYPTO_malloc for libcrypto.
* ossl.h: include <openssl/bn.h>.
* ossl_bn.c: use BN_CTX_new instead of BN_CTX_init.
* ossl_cipher.c: NIDs of AES were changed.
* ossl_x509store.c: alias add_cert add_trusted.
* lib/net/https.rb: follow HTTPResponse.read_new's incompatiplity.
Tue, 15 Jul 2003 04:48:33 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl-0.1.4 released
Tue, 15 Jul 2002 04:19:44 +0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* openssl_missing.h: add MS_CALLBACK.
* extconf.rb: should check <openssl/e_os.h>.
* ossl.h: check HAVE_OPENSSL_E_OS_H.
* net/https.rb: follow ruby-1.8.
|
|
|
|
|
|
|
|
|
|
the package name.
|
|
- Added keychain man page
- Fixed bugs with displaying colors for keychain --help
- Added a $grepopts to fix the grepping for a pid on cygwin
- Added a TODO document color fix based on submission by Luke Holden
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bunch of stability fixes
|
|
Changes:
2003-03-09 Gisle Aas <gisle@ActiveState.com>
Release 2.24
Don't let the $^W test get confused by lexical warnings.
Sync up with bleadperl; safer patchlevel include.
2003-01-18 Gisle Aas <gisle@ActiveState.com>
Release 2.23
Override INSTALLDIRS for 5.8 as suggested by
Guido Ostkamp <Guido.Ostkamp@t-online.de>.
|
|
Changelog:
1.8.3 (Feb 6, 2003)
- Lots of new signatures
- URL's for papers and sites with information on fingerprinting.
- Information on the windows/Cygwin port. .exe for 1.8.3 will
show up soon.
1.8.2.2 (May 13, 2002)
- Rechecked version numbers. (Bill)
- Mysql cleanup and integration
- Mysql quickstart (Marion)
1.8.2.1 (May 12, 2002)
- Mysql Support Added (Evrim ULU <evrim@core.gen.tr>)
- FPS Buffer Length increased from 120 to 150 (Evrim)
- p0f-mysql.conf config file added for mysql connectivity (Evrim)
- parser for p0f.fp was corrected. It was including
wwww:ttt: ... line in the comments. (Evrim)
- mysql/db.sql file is included for creation of db tables (Evrim)
- Makefile.mysql is added - no gnu autoconf support yet. (Evrim)
- New RedHat 7.0 Beta Fischer FP added. (Evrim)
- Max fingerprints raised to 5000 for the moresigs project. (Bill)
|
|
It broke installation of audit-packages as the first package in the system.
Okayed by Alistair.
|
|
- ad hoc fix build problem on NetBSD current.
- changes from 0.1.2a:
Tue, 10 Dec 2002 02:32:54 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl-0.1.3 released
Mon, 9 Dec 2002 22:26:15 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* x509name.c: let initialize() give a Array instead of a Hash.
to_a is implemented and to_h is deprecated.
* openssl.rb: X509::Name is refined.
Mon, 9 Dec 2002 20:21:32 -0900 -- GOTOU Yuuzou <gotoyuzo@notwork.org>
* ossl.c: use ruby_unsetenv() instead of unsetenv().
* ssl.c: the return value of SSL_read/SSL_write is int (not size_t).
This fix is suggested by matz. ([ruby-list:36721])
Mon, 28 Oct 2002 10:39:43 +0100 -- Michal Rokos <m.rokos@sh.cvut.cz>
* LICENCE: update to latest Ruby's
* extconf.rb: fix to make it work under Ruby 1.7.3
* pkey.c: fix MACRO
* ChangeLog: changed style
|
|
|
|
|
|
force gcc if *gcc* - Sun's compiler is never going to be installed
into a path with 'gcc' in it(!)
|
|
|
|
|
|
since there is a problem with aide-0.9 which results in it sending an
email warning on every run of the scanner. Whilst this version may
have other problems (it believes opendir(3)'s output, IIRC), it does
keep quiet about them.
aide-0.6 creates a database from the regular expression rules that it finds
from the config file. Once this database is initialized it can be
used to verify the integrity of the files. It has several message
digest algorithms (md5,sha1,rmd160,tiger,haval,etc.) that are used to
check the integrity of the file. More algorithms can be added with
relative ease. All of the usual file attributes can also be checked
for inconsistencies. It can read databases from older or newer
versions. See the manual pages within the distribution for further
info. There is also a beginning of a manual at
http://www.cs.tut.fi/~rammer/aide/manual.html
|
|
end up with multiple version dependencies.
|
|
Changes (from 0.49) :
- fixed build problem for OpenSSL 0.9.6 and some builds
of perl 5.8.x which resulted in make error:
/usr/include/openssl/des.h:193: parse error before '&' token"
Thanks to Rob Brown for submitting a similar patch to cover
this problem
- bug fix from Dongqiang Bai when server using proxy cannot
resolve host name being connected to
- Added c:/openssl in default search path on win32 machines
which is the recommended installation area in the openssl dist
- Added patch from Pavel Hlavnicka for freeing memory leaks
from SSL_CTX_use_pkcs12_file() whose functionality is triggered
by the $ENV{HTTPS_PKCS12_*} settings
- Added alarm() during Net::SSL->read() to honor socket timeout
setting for more robust applications. read()
will die_with_error() which in consistent with previous
semantics used during SSL read() failure
Thanks to Pavel Hlavnicka for prompting this change.
- Removed code that supported versions of SSLeay before version 0.8
I believe SSLeay v.8 was released back in 1998
- Added patch from Devin Heitmueller so that initial random seed
would be taken from /dev/urandom if available via RAND_load_file
API
|
|
Changes :
1.22
- proxy auth fix from Bill.Muller@@ubsw_..com
- RAND patch from Toni Andjelkovic <toni@soth._at>
1.23
- some minor tweaks by many, mainly for RH build
- memory leak and cleanup patches from
Marian Jancar <mjancar@suse._cz>
|
|
|
|
Bump to 1.16.
|
|
now and not NetBSD-*-arm32. Changes include one or more of:
- Change MACHINE_ARCH == arm32 to also match arm
- Where ONLY_FOR_PLATFORM includes NetBSD-*-arm32, add NetBSD-*-arm
- Where BROKEN or worked around for arm gcc bugs, set USE_GCC3
The last may shake out a few more broken packages the next bulk build.
|
