| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
pycryptopp is a set of Python wrappers for a few of the best crypto
algorithms from the Crypto++ library.
|
|
go well.
|
|
Python extensions using OpenSSL which contains hashing algorithms,
This package more or less supersedes py-amkCrypto.
chaffing/winnowing, random number generation, various utility modules,
and several block encryption and digital signature algorithms.
|
|
to their respective category Make files.
|
|
Library implementing OAuth version 1.0a as documented at http://oauth.net/
|
|
|
|
Upstream changes:
2010-07-03 Release 2.13
Mike McCauley (1):
Fix memory leak in sha1_transform
|
|
|
|
|
|
|
|
Bugfixes:
* Bugreport #127: Large SOA serial numbers were not handled properly by signer
* Bugreport #133: Better handling of SOA serial when setting is 'keep'
* Bugreport #136: quicksorter could not handle standard bind format SOA rdata
* The Auditor could not handle the new way of rolling KSKs
* One log message in the Enforcer referred to an old command
* The Enforcer forgot to publish certain keys during transition between states
|
|
|
|
|
|
|
|
PR#43594 by Aleksey Cheusov.
|
|
|
|
changes:
-bugfixes
-Add dbus activation service file for org.freedesktop.secrets
pkgsrc note: removed dependency on libgnome-keyring; child pkgs
should have been updated to list this dependency explicitely
|
|
This switches to the gnome-2.30 release branch.
|
|
more and he has agreed in private mail to drop maintainership.
|
|
Major changes between sudo 1.7.2p7 and 1.7.2p8:
* Fixed a crash on AIX when LDAP support is in use.
* Fixed problems with the QAS non-Unix group support
|
|
|
|
|
|
daemon to enable the use of PKCS#11 tokens with GnuPG. The motivation
behind this project originates in the following two threads:
* http://lists.gnupg.org/pipermail/gnupg-users/2006-February/027964.html
* http://lists.gnupg.org/pipermail/gnupg-devel/2004-November/021522.html
* http://lists.gnupg.org/pipermail/gnupg-users/2004-November/023673.html
PKCS#11 is the de-facto standard for accessing cryptographic tokens,
and thus we strongly disagree with WK's attitude towards it.
The patch mentioned in the above threads is unmaintained, so we
decided to implement PKCS#11 support "the right way". gnupg-pkcs11
is a (hopefully) drop-in replacement for the smart-card daemon
(scd) shipped with GnuPG.
|
|
|
|
|
|
|
|
defined twice.
|
|
|
|
|
|
|
|
|
|
crpytographic PKCS#11 tokens such as smart cards and usb crypto
tokens for local authentication.
Pam_p11 implements two authentication modules:
* pam_p11_openssh authenticates the user against public keys found
in OpenSSH ~/.ssh/authorized_keys file.
* pam_p11_opensc authenticates the user against certificates found
in ~/.eid/authorized_certificates.
|
|
No upstream changelog.
|
|
|
|
Aleksey Cheusov reports in PR 43519 that this fixes a problem on Linux,
and the function is still properly detected on NetBSD-5.99.31..
|
|
* define TEST_TARGET.
|
|
|
|
pkgsrc changes:
* Fix PKGNAME to really intended to.
* Some permission problem with using scan-mail.pl
6.0.3 (Initially NetBSD only):
- Scanning inside NSIS (Nullsoft) installer files
- Generic IFRAME exploit detection
- Numerous additions to the Eldorado heuristic engine, making it
significantly more powerful than before - Scanning of 7-Zip, ACE
and "solid RAR" archives - Improved scanning of JavaScript files
- List of detected malware now includes Eldorado heuristic detections
- Much faster initial loading of ANTIVIR.DEF
- Scan engine updated
|
|
* Partial Auditor added
* Dnsruby-1.46 required
* Improved error messages when the system runs out of keys
* Optimise communication of signconfs for multiple zones sharing keys.
Group zones in zonelist.xml by policy to get this benefit.
* Bugreport #101: Signer Engine now maintains its own pidfile.
* Jitter redefined: now in the range of [-jitter, ..., +jitter]
* Optimized sorter: quicksorter (sorter becomes obsolete).
* Optimized zone_reader, includes nseccing/nsec3ing (nseccer and nsec3er
become obsolete).
* Enable database selection using --with-database-backend={sqlite3|mysql}
* Enable the EPP-client using --enable-eppclient
For sending DS RR to the parent zone (experimental)
* Turn NSEC3 OptOut off by default
* Install kasp2html XML stylesheet
* Add simple kasp2html conversion script
* DNSKEY records communicated to an external script if configured
* The command 'ods-signer restart' is removed.
* Signer Engine now also reuses signatures after a change in NSEC(3)
configuration or rolling keys.
* Quicksorter defaults to class IN.
And a lot of bugfixes...
|
|
* authldapescape.c: Factor out LDAP string escape function.
* authldap.schema: Various fixes
* authldap.ldif (olcObjectClasses): Create LDIF format schema from
authldap.schema
* authoption.c (auth_getoptionenvint): For account options that
are parsed to an int, an option value that begins with t, T, y, or Y
is evaluated as 1, other alphabetic values as 0; so that 'true'
or 'yes' get evaluated as 1.
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
|
|
by Greg Oster
being here, disable avahi support which is mostly useless
|
|
The patch looks wrong to me, though, because stdint.h should be
generated in lib/gllib/ if the system does not have it (or if it is not
correct), and the -I's should make the code find the local file instead.
Thus, the code should be able to unconditionally include the header
file.
|
|
No PKGREVISION bump since this option never worked
with OpenSSH 5.5p1 before.
|
|
While here, do some minor delinting and set LICENSE.
|
|
(missed those and *emacs* the first time round because they pull
in their png dependencies via default-on options; they were included
in the test bulk build though)
|
|
Also add some patches to remove use of deprecated symbols and fix other
problems when looking for or compiling against libpng-1.4.x.
|
|
|
|
Lots of changes, including
* After a transition period of about 10 years, this release disables
SSH protocol 1 by default. Clients and servers that need to use the
legacy protocol must explicitly enable it in ssh_config / sshd_config
or on the command-line.
* Remove the libsectok/OpenSC-based smartcard code and add support for
PKCS#11 tokens. This support is automatically enabled on all
platforms that support dlopen(3) and was inspired by patches written
by Alon Bar-Lev. Details in the ssh(1) and ssh-add(1) manpages.
* Add support for certificate authentication of users and hosts using a
new, minimal OpenSSH certificate format (not X.509). Certificates
contain a public key, identity information and some validity
constraints and are signed with a standard SSH public key using
ssh-keygen(1). CA keys may be marked as trusted in authorized_keys
or via a TrustedUserCAKeys option in sshd_config(5) (for user
authentication), or in known_hosts (for host authentication).
Documentation for certificate support may be found in ssh-keygen(1),
sshd(8) and ssh(1) and a description of the protocol extensions in
PROTOCOL.certkeys.
* Added a 'netcat mode' to ssh(1): "ssh -W host:port ..." This connects
stdio on the client to a single port forward on the server. This
allows, for example, using ssh as a ProxyCommand to route connections
via intermediate servers. bz#1618
|
|
This switches to the gnome-2.30 release branch
pkgsrc note: temporarily add a dependency on libgnome-keyring which
was split out of the old gnome-keyring pkg, so that client pkgs
get the same as before
|
