| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
more than half a year)
|
|
|
|
|
|
aren't needed at run-time.
|
|
|
|
|
|
|
|
-lcrypto NetBSD-1.5*
-lcrypto -lrsaref OpenSSL and USE_RSAREF2=NO
-lcrypto -lRSAglue -lrsaref OpenSSL and USE_RSAREF2=YES
and use the first set of libraries which work.
Closes the following PRs: 9820, 10268, 10681.
|
|
|
|
|
|
Closes PR#10774.
|
|
we need stick to 1.2.27 (use openssh).
|
|
|
|
Kerberos is simply not configured on the system.
|
|
support in Heimdal.
|
|
be true.
|
|
Add note why we have both openssh.com entries.
|
|
|
|
|
|
explicitly specified in a Phase-1 proposal statement.
Patch sent to sakane@kame.net.
|
|
What is new in Nessus 1.0.4 :
changes by Christoph Puppe (pluto at defcom-sec.com) :
added "Sort by Port" to the report window.
Reports are sorted first by holes, then by warnings, then by notes.
Previous version only sorted by holes.
changes by Renaud Deraison (renaud at nessus.org) :
ftp related checks : the user can now supply a login/password for the ftp
checks, and relies on the ftp banner if nessusd can't log into
the ftp server (requested by Jens.Oeser at connector.de).
libnessus : ftp_log_in() would sometime fail against some ftp servers
better handling of large reports on the client side
tests are saved on the server side and can be restored. Note that this is
experimental and disabled by default. Do
./configure --enable-save-sessions
to enable this feature, and read doc/session_saving.txt for details.
better handling of targets with multiple web servers running
continue to launch the DoS if the state of the remote host can not be
determined
fixed a bug in smb_login_as_users.nasl, and improved
smb_accessible_shares.nasl
added checks for unpassworded MySQLs and PostgreSQL databases
nessusd uses less memory
changes by Pavel Kankovsky (peak at argo.troja.mff.cuni.cz) :
fixed a possible deadlock in the nessusd internal communication
fixed a problem in the client that would make it crash if it received
a malformed message from the server
the client would not detect the death of the server when run in batch
mode
possible header confusion (with regex.h) fixed
possible signal deadlock when exiting fixed
Other changes :
fixed a problem in the function is_cgi_installed() that may sometime
not work against odd clients (Thomas Reinke (reinke at
e-softinc.com))
fixed a bug in snmp_default_communities.nasl (Lionel Cons
(lionel.cons at cern.ch))
fixed showmount.nasl (Paul Ewing Jr. (ewing at ima.umn.edu))
typo in showmount.nasl would prevent it to work over udp (ctor at
krixor.xy.org)
|
|
link against libintl.so, update the dependency on gettext to >=0.10.35nb1.
|
|
- improvements in multiple address case
- sync with improvements in INET2000 bakeoff
|
|
the SUBDIR entries.
|
|
Main change is the splitup into libnasl, nessus-libraries, nessus-core
and nessus-plugins.
Too many changes come with 1.0.3, but most noteable the number of checked
security vulnerabilities increased and got updated.
This is based on work Hubert Feyrer did on some former version.
|
|
Security Scanner. Based on work Hubert Feyrer did on some former version.
|
|
Network security scanner. Based on work Hubert Feyrer did on some former
version.
|
|
Security Scanner. Based on work from Hubert Feyrer for some former version.
|
|
Based on work Hubert Feyrer did for some former version.
|
|
|
|
|
|
Taken from PR#10394 by Dave Burgess <burgess@neonramp.com> with
modifications.
|
|
|
|
a working /dev/urandom if it's found not to work.
|
|
RESTRICT="foo; bar"
Fix by s/;/,/
|
|
Also default to "start" command if run with no arguments.
|
|
|
|
and PLIST.
|
|
Package changes:
* Factor out common post-install code from PLIST and package Makefile
into files/INSTALL.
* Enhance files/sshd.sh to handle start/stop/restart/status.
* Check for usable installed version of OpenSSL. This bit possibly
closes the following PRs: 10404, 10501, 10593
Changes from 2.1.1p3:
* allow multiple whitespace but only one '=' between tokens
* close can fail on AFS
* allow leading whitespace in configuration files
* Always create ~/.ssh with mode 700
|
|
appropriate variables instead.
|
|
|
|
changes: basically, result from TAHI 2nd interop test (www.tahi.org)
- phase 1/2 SA removal corrections
- remove possible memory leak
- no notify message on information exchange
- correct isakmp payload manipulation on duplicated payload types
|
|
changes:
- RFC2367 conformance for SADB_[AE]ALG_xxx.
- implement initial contact
- runs in background by default
- delete notification
- improve error handling
|
|
Patch provided by Gabriel Rosenkoetter <gr@eclipsed.net>.
|
|
|
|
correctly)
|
|
|
|
|
|
|
|
have been integrated.
Relevant Changes:
* Fixed expiration handling of encryption keys.
* Add an experimental feature to do unattended key generation.
* The user is now asked for the reason of revocation as required by
the new OpenPGP draft.
* There is a ~/.gnupg/random_seed file now which saves the state of
the internal RNG and increases system performance somewhat. This
way the full entropy source is only used in cases were it is really
required. Use the option --no-random-seed-file to disable this
feature.
* New options --ignore-time-conflict and --lock-never.
* Encryption is now much faster: About 2 times for 1k bit keys and 8
times for 4k keys.
* New encryption keys are generated in a way which allows a much
faster decryption.
* New command --export-secret-subkeys which outputs the _primary_
key with it's secret parts deleted. This is useful for automated
decryption/signature creation as it allows to keep the real secret
primary key offline and thereby protecting the key certificates and
allowing to create revocations for the subkeys. See the FAQ for a
procedure to install such secret keys.
* Keygeneration now writes to the first writeable keyring or as
default to the one in the homedirectory. Prior versions ignored all
--keyring options.
* New option --command-fd to take user input from a file descriptor;
to be used with --status-fd by software which uses GnuPG as a
backend.
* There is a new status PROGRESS which is used to show progress during
key generation.
* Support for the new MDC encryption packets. To create them either
--force-mdc must be use or cipher algorithm with a blocksize other
than 64 bits is to be used. --openpgp currently disables MDC
packets entirely. This option should not yet be used.
* New option --no-auto-key-retrieve to disable retrieving of a missing
public key from a keyerver, when a keyerver has been set.
* Danish, Esperanto, Japanese, Dutch, and Swedish translations
|
