| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
"unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related
to the randomness generator, which allows local users to cause a denial
of service by truncating the seed file, which prevents the server from
starting, or obtain sensitive seed information that could be used to
crack keys."
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0353
|
|
(There should be a pkgsrc-wide variable instead of a Ruby-specific one.)
|
|
(no functional change, just more effective because a compile check
is skipped)
|
|
Noteworthy changes in version 1.4.3 (2006-04-03)
------------------------------------------------
* If available, cURL-based keyserver helpers are built that can
retrieve keys using HKP or any protocol that cURL supports
(HTTP, HTTPS, FTP, FTPS, etc). If cURL is not available, HKP
and HTTP are still supported using a built-in cURL emulator. To
force building the old pre-cURL keyserver helpers, use the
configure option --enable-old-keyserver-helpers. Note that none
of this affects finger or LDAP support, which are unchanged.
Note also that a future version of GnuPG will remove the old
keyserver helpers altogether.
* Implemented Public Key Association (PKA) signature verification.
This uses special DNS records and notation data to associate a
mail address with an OpenPGP key to prove that mail coming from
that address is legitimate without the need for a full trust
path to the signing key.
* When exporting subkeys, those specified with a key ID or
fingerpint and the '!' suffix are now merged into one keyblock.
* Added "gpg-zip", a program to create encrypted archives that can
interoperate with PGP Zip.
* Added support for signing subkey cross-certification "back
signatures". Requiring cross-certification to be present is
currently off by default, but will be changed to on by default
in the future, once more keys use it. A new "cross-certify"
command in the --edit-key menu can be used to update signing
subkeys to have cross-certification.
* The key cleaning options for --import-options and
--export-options have been further polished. "import-clean" and
"export-clean" replace the older
import-clean-sigs/import-clean-uids and
export-clean-sigs/export-clean-uids option pairs.
* New "minimize" command in the --edit-key menu removes everything
that can be removed from a key, rendering it as small as
possible. There are corresponding "export-minimal" and
"import-minimal" commands for --export-options and
--import-options.
* New --fetch-keys command to retrieve keys by specifying a URI.
This allows direct key retrieval from a web page or other
location that can be specified in a URI. Available protocols
are HTTP and finger, plus anything that cURL supplies, if built
with cURL support.
* Files containing several signed messages are not allowed any
longer as there is no clean way to report the status of such
files back to the caller. To partly revert to the old behaviour
the new option --allow-multisig-verification may be used.
* The keyserver helpers can now handle keys in either ASCII armor
or binary format.
* New auto-key-locate option that takes an ordered list of methods
to locate a key if it is not available at encryption time (-r or
--recipient). Possible methods include "cert" (use DNS CERT as
per RFC2538bis, "pka" (use DNS PKA), "ldap" (consult the LDAP
server for the domain in question), "keyserver" (use the
currently defined keyserver), as well as arbitrary keyserver
URIs that will be contacted for the key.
* Able to retrieve keys using DNS CERT records as per RFC-2538bis
(currently in draft): http://www.josefsson.org/rfc2538bis
pkgsrc change:
make architecture-specific options really architecture-specific.
|
|
|
|
Used patch from Nicolas Joly in PR#33135.
|
|
2006-13-20 Gisle Aas
Release 1.15.
Improved documentation.
|
|
Version 0.3.2
- Corrected bug in asn1_der_coding() which overwrited some
data in the original structure.
- The asn1Parser, asn1Coding and asn1Decoding programs are now installed.
|
|
|
|
Ruby/Password is a suite of password handling methods for Ruby. It
supports the manual entry of passwords from the keyboard in both
buffered and unbuffered modes, password strength checking, random
password generation, phonemic password generation (for easy
memorization by human-beings) and the encryption of passwords.
|
|
|
|
GNOME Keyring Manager is an application that manages user keyrings.
The default window shows 'default' keyrings with its items and allows
to remove, add and edit them. It also lets you edit your secrets and
copy them using drag and drop. The Manager window allows to lock/unlock,
create and open other keyrings. At last, items can be moved between
different keyrings.
|
|
PKGINFODIR.
|
|
for the gss_* functions.
|
|
INSTALL/DEINSTALL scripts. Bump the PKGREVISION to 1.
|
|
INSTALL script using OWN_DIRS_PERMS. Drop the redundant targets and
PLIST entries. Bump the PKGREVISION to 3.
|
|
variable.
|
|
|
|
exists on the disk -- we can just check whether a variable defined by
find-files.mk is "__nonexistent__" or not.
|
|
"pfctl" binary.
|
|
Changes:
- download tar.bz2 distfile
1.7.0.2:
========
- 64-bit fix in src/rpp.c
|
|
* List the info files directly in the PLIST.
|
|
qt4 support (doesn't compile yet).
2006-03-26 19:06 nolan
* src/serializers.cpp: Had a reported bug in which only the items
in a single group got saved with a PwSafe 1.0 safe. The repro
steps were: Create a safe with a few entries Save it as a
PwSafe 1.0 safe Create a couple of folders Move the items
into those folders Save the safe. Reopen the safe It ended
up with the items from a single group instead of all the items.
The cause was that I was returning from a recursive call to
BlowfishLizer::saveGroup instead of only returning on an error.
2006-01-23 20:57 nolan
* MyPasswordSafe.pro, MyPasswordSafe.qrc, src/aboutdlg.ui,
src/main.cpp, src/manualdlg.ui, src/mypasswordsafe.ui,
src/mypasswordsafe.ui.h, src/newpassphrasedlg.ui,
src/passphrasedlg.ui, src/plaintextlizer.cpp,
src/plaintextlizer.hpp, src/preferencesdlg.ui,
src/preferencesdlg.ui.h, src/pwordeditdlg.ui, src/safe.hpp,
src/safedragobject.cpp, src/safedragobject.hpp,
src/safelistview.cpp, src/safelistview.hpp, src/serializers.cpp,
src/startupdlgbase.ui, src/xmlserializer.cpp,
src/tools/idle/idle_x11.cpp, uuid-1.0.0/Makefile,
uuid-1.0.0/config.status: Converted to Qt4
2005-12-17 06:47 nolan
* src/: mypasswordsafe.ui.h, pwordeditdlg.ui, pwordeditdlg.ui.h:
Set the edit dialog as the active window if the user tries to
edit that item a second time. Moved the future group handling
for new items into MyPasswordSafe
2005-12-17 06:33 nolan
* src/: mypasswordsafe.ui, mypasswordsafe.ui.h, pwordeditdlg.ui,
pwordeditdlg.ui.h, safelistview.cpp: Made the add and edit
dialogs non-modal Hiding during a lock now works
2005-12-17 05:03 nolan
* src/: mypasswordsafe.ui, mypasswordsafe.ui.h, pwordeditdlg.ui,
pwordeditdlg.ui.h, safelistview.cpp, safelistview.hpp: Attempted
to hide the edit dialog when MyPS got locked, but that caused a
crash so they get closed. Moved entry creation and updating to
PwordEditDlg Moved the default user name and generation length
into PwordEditDlg
2005-12-17 02:42 nolan
* src/pwordeditdlg.ui.h, src/serializers.cpp, uuid-1.0.0/Makefile,
uuid-1.0.0/config.status: Fixed the problem with the show
password button; was checking for a normal echo mode
2005-11-25 00:21 nolan
* src/: mypasswordsafe.ui, mypasswordsafe.ui.h: Lock on minimize
works under WindowMaker
2005-11-24 01:23 nolan
* src/mypasswordsafe.ui.h: Parented all the dialogs
2005-11-23 22:15 nolan
* release/Makefile: Updated release path and upload rules
2005-11-23 11:14 nolan
* src/: mypasswordsafe.ui.h, pwordeditdlg.ui, pwordeditdlg.ui.h:
Had a bug in the user name and password checking in the edit
dialog. Fixed that by adding an isNew attribute.
2005-11-23 08:21 nolan
* src/tools/idle/: idle.cpp, idle.h, idle.pri, idle_mac.cpp,
idle_win.cpp, idle_x11.cpp, win32/Makefile, win32/idleui.cpp,
win32/idleui.def, win32/idleui.dll, win32/idleui.h: Added Idle
from Psi to lock MyPS
2005-11-23 08:21 nolan
* src/mypasswordsafe.ui, src/mypasswordsafe.ui.h,
src/preferencesdlg.ui, src/preferencesdlg.ui.h,
src/pwordeditdlg.ui, src/pwordeditdlg.ui.h, src/safe.cpp,
src/safe.hpp, src/safelistview.cpp, src/safelistview.hpp,
src/serializers.cpp, test/safe/safe.pro, test/safe/safetest.cpp:
Added Idle from Psi to lock MyPS Add Password: automatically
generate a new password and display it to the user Confirm
changes to user name and/or password in entries Empty fields are
now saved working around a bug in Password Safe Clipboard will be
cleared after a specified time Generated passwords are
automatically fetched
2005-11-23 08:19 nolan
* MyPasswordSafe.pro: Added Idle from Psi
|
|
implementation was changed then.
|
|
PR-responsible person (such as I am ;) a little easier.
|
|
scripts prior to revision 1.43 of bsd.pkginstall.mk.
|
|
and replace with appropriate references to PKGINFODIR instead.
* Properly account for split info files during installation.
* Move info file listings directly into the package PLISTs.
This fixes info-file-related PLIST problems.
|
|
just create a cvmlog group as well.
|
|
|
|
|
|
|
|
pkginstall framework. In the case of libtool-base, avoid using
FILES_SUBST_SED where it isn't needed.
|
|
changes:
-a security fix which was already in pkgsrc (0.46nb1)
-bugfixes
-zlib compression for dbclient
-Set "low delay" TOS bit
-client keyboard-interactive mode support
-logging improvements
-Added aes-256 cipher and sha1-96 hmac
-allow connections to listening forwarded ports from remote machines
|
|
changes:
Fixed a couple of problems in lshd, where the server process
leaks file descriptors to user shells that it starts. These
bugs implied a local denial of service hole, at best.
Support for aes256-ctr.
Newer nettle library. Bugfixes and performance improvements
for the assembler code, in particular support for sparc64, and
Makefile fixes.
|
|
|
|
|
|
|
|
|
|
|
|
changes:
* Better HKP support for strange key servers.
* Updated gedit plugin to work with gedit 2.14
* Fixed signing of keys with GPG 1.4.2 [Daniel Rodriguez Garcia]
* Fixed some minor packaging and build problems.
* Many smaller fixes.
pkgsrc changes:
-don't build nautilus plugin to limit dependencies
(will be provided in a separate pkg)
-remove some more unneeded dependencies
-prepare for the gedit plugin as a separate pkg
|
|
|
|
The following changes have been made between John 1.7 and 1.7.0.1:
* Minor bug and portability fixes.
* Better handling of certain uncommon scenarios and improper uses of John.
* Bonus: "Keyboard" cracker included in the default john.conf (john.ini)
that will try sequences of adjacent keys on a keyboard as passwords.
The following major changes have been made since John 1.6:
* Bitslice DES code for x86 with MMX: more than twice faster than older
non-bitslice MMX code.
* Bitsliced the LM hash code as well: now several times faster.
* Significant improvements to the generic bitslice DES code: +20% on RISC.
* PowerPC G4+ AltiVec support (Mac OS X and Linux): effective 128-bitness
for bitslice DES, resulting in huge speedups.
* First attempt at generic vectorization support for bitslice DES.
* Two MD5 hashes at a time for extra ILP on RISC: up to +80% on Alpha EV5+.
* Generic Blowfish x86 assembly code in addition to the original Pentium
version: +15% on the Pentium Pro family (up to and including Pentium III),
+20% on AMD K6 (Pentium 4 and newer AMD CPUs are more happy running the
original Pentium code for Blowfish).
* Verbose logging of events to the global or a session-specific log file.
* Better idle priority emulation with POSIX.1b (POSIX.4) scheduling calls.
* System-wide installation support for *BSD ports and Linux distributions.
* AIX, DU/Tru64 C2, HP-UX tcb files support in unshadow.
* New make targets for Linux/x86-64, Linux/PowerPC, FreeBSD/Alpha,
OpenBSD/x86-64, OpenBSD/Alpha, OpenBSD/SPARC, OpenBSD/SPARC64,
OpenBSD/PowerPC, OpenBSD/PA-RISC, OpenBSD/VAX, NetBSD/VAX, Solaris/SPARC64,
Mac OS X (PowerPC and x86), SCO, BeOS.
* Bug and portability fixes, and new bugs.
* Bonus: "Strip" cracker included in the default john.conf (john.ini).
|
|
INSTALL/DEINSTALL script creation within pkgsrc.
If an INSTALL or DEINSTALL script is found in the package directory,
it is automatically used as a template for the pkginstall-generated
scripts. If instead, they should be used simply as the full scripts,
then the package Makefile should set INSTALL_SRC or DEINSTALL_SRC
explicitly, e.g.:
INSTALL_SRC= ${PKGDIR}/INSTALL
DEINSTALL_SRC= # emtpy
As part of the restructuring of the pkginstall framework internals,
we now *always* generate temporary INSTALL or DEINSTALL scripts. By
comparing these temporary scripts with minimal INSTALL/DEINSTALL
scripts formed from only the base templates, we determine whether or
not the INSTALL/DEINSTALL scripts are actually needed by the package
(see the generate-install-scripts target in bsd.pkginstall.mk).
In addition, more variables in the framework have been made private.
The *_EXTRA_TMPL variables have been renamed to *_TEMPLATE, which are
more sensible names given the very few exported variables in this
framework. The only public variables relating to the templates are:
INSTALL_SRC INSTALL_TEMPLATE
DEINSTALL_SRC DEINSTALL_TEMPLATE
HEADER_TEMPLATE
The packages in pkgsrc have been modified to reflect the changes in
the pkginstall framework.
|
|
generates valid Makefile.
|
|
Changes in version 0.4.9 are:
* Fix return value for some sync calls
* Translation updates
|
|
command line option isn't portable. Bump package revision because
of this fix.
|
|
> - Added Turkish -- Umut Nacak
> - Changed login button to actually say login -- Jonathan W Minor
> - Fixed issue with signature names and MySQL 5.0 -- Kade P. Cole
> - Fixed Bug# 1347623 auto-refresh ignored for stat pages -- Shane Castle
> - Fixed Sort order issues -- Timothy Doty
> - Applied patch from Debian maintainer for final SQL injection fix -- Kevin
> - Updated project lead comments -- Kevin
> - Added Portscan Information -- Kevin for Nikns
|
|
Pattern fix for pear-Image_Graph
|
|
runtime dependency on qt3-tools.
Bump PKGREVISION.
|
|
called. Also include pthread.buildlink3.mk directly.
- With the update of qt3-tools to use the libtool mode of qmake, it is
unnecessary to install files manually; "make install" just works.
Bump PKGREVISION.
|
