Age | Commit message (Collapse) | Author | Files | Lines |
|
ftp://ftp.NetBSD.org/pub/pkgsrc/misc/kristerw/pkgstat/i386-3.0/20060501.1050/broken.html
|
|
|
|
* Version 1.4.0 (released 2006-05-15)
** Remove GnuTLS 0.8.x compatibility functions.
** The libgcrypt RNG is initialized in gnutls_global_init().
** TLS/IA API changes from Emile van Bergen.
A dummy credential structure is not needed now, if you wish to use the
low-level TLS/IA API, simply call gnutls_ia_enable to enable TLS/IA on
a session.
** The self-tests are now run under valgrind, if it is installed.
** Libtasn1 is updated to 0.3.4, and that version is now required.
** The command line tools now use getaddrinfo and support IPv6.
** API and ABI modifications:
_gnutls_x509_get_raw_crt_activation_time,
_gnutls_x509_get_raw_crt_expiration_time: Removed.
gnutls_ia_require_inner_phase: Removed, replaced by gnutls_ia_enable.
gnutls_ia_enable: Added.
|
|
Version 0.3.4 (released 2006-05-10)
- Really fix encodings.
- Add new self test, tests/Test_encoding.c.
- Self tests are ran under valgrind, if it is available.
- We test for the -Wno-pointer-sign parameter before using it.
Version 0.3.3 (released 2006-05-07)
- Add some 'const' to prototypes.
- Remove some 'unsigned' keywords.
- Corrected asn1_der_coding() bug introduced when it became reentrant.
Now it produces correct encodings.
|
|
|
|
|
|
Gives access to the routines of the GSSAPI library, as described in
rfc2743 and rfc2744 and implemented by the Kerberos-1.2 distribution
from MIT.
Since 0.14 it also compiles and works with Heimdal. Lacks of Heimdal
support are gss_release_oid(), gss_str_to_oid() and fail of some tests.
The API presented by this module is a mildly object oriented
reinterpretation of the C API, where opaque C structures are Perl
objects, but the style of function call has been left mostly untouched.
As a result, most routines modify one or more of the parameters passed
to them, reflecting the C call-by-reference (or call-by-value-return)
semantics.
All users of this module are therefore strongly advised to localize all
usage of these routines to minimize pain if and when the API changes.
|
|
installs its own glob.h and vis.h. Add them to PLIST.Linux.
Bump PKGREVISION.
|
|
3.4p1 and 3.4p2 that shows up on IRIX 5.
|
|
need to notify the author.
|
|
Separate out options.mk functionality
Add in options for subversion and postresql support
> CHANGELOG for 5.3:
> ###########
> * Added NTLM support modules for pop3, imap, smtp-auth and http-proxy.
> Work done by ilo (at) reversing.org. THANKS!
> * Added a http form module, thanks to phil (at) irmplc.com
> * Fixed a bug in the vnc module (thanks to kan (at) dcit.cz)
> * Input files may *not* contain null bytes. I might fix that in the future
> but currently I have enough other things on my todo sheet.
> Thanks to didiln (at) gmail.com for reporting.
|
|
|
|
> Changes:
> - Fixed issue with PostGRES and schema in base_db.inc.php -- Kevin J and Nikns
> - Fixed bug 1284695 Error in SQL with PostgreSQL -- Kevin J and Nikns
> - Fixed issues displaying PortScans -- Nikns
> - Fixed sig_class (bug 1407325) and sig_priority filter bug -- Nikns and Max Valdez (garaged)
> - Fixed bug 1408387 Archive move and Email summary issues -- Nikns
> - Fixed bug when, after setup, archive database wasn't used -- Nikns
> - Fixed PostgreSQL archive database support -- Nikns
> - Fixed bug 1313261 Unable to use actions in base_stat_sensor.php -- Nikns
> - Fixed bug 1371532 First of month timestamp issue -- Nikns
> - Fixed bug 1406945 Lost alert order when switching between payload display -- Nikns
> - Fixed bug 1413712 base_conf.php file path issue under MS Windows -- garaged
> - Fixed search by signature name -- Nikns
> - Converted sql/create_base_tbls_mssql_extra.sql to CRLF line terminators -- Nikns
> - Fixed broken auth system for MSSQL -- Nikns
> - Changed MSSQL schema for table acid_event, sig_name now has type VARCHAR instead of TEXT -- Nikns
> - Fixed bug 1307250 broken base_stat_alerts.php with MSSQL -- Nikns
> - Fixed bug 1413594 Force to use alert database for auth system stuff -- Nikns
> - Setup fix, on error form values are remembered, default language is English -- garaged
> - Uppercased name 'Archive' in base_main.php (in sync with base_hdr1.php) -- Nikns
> - Fixed support for actions in base_stat_class.php -- Nikns
> - Fixed bug 1418660 Broken search by IP criteria -- Nikns
> - Added checkboxes and fixed support for actions in base_stat_iplink.php -- Nikns
> - Implemented RFE 1123382 support for actions in base_stat_uaddr.php -- Nikns
> - Implemented support for actions in base_stat_ports.php -- Nikns
> - Fixed bug 1422575 when empty email sent even if action unsuccessful -- Nikns
> - Fixed bug 1424033 Unable to Graph Alert Detection Time -- Nikns
> - Fixed bug 1426089 Score removed from email address -- Nikns
> - Fixed bug 1210542 and 1288402 Packet display mode issues -- Nikns
> - Detect archiving duplicates with select queries instead of catching db conflict error -- Nikns
> - Fixed bug 1430686 Update alert cache for archived alert right after it is coppied to archive db -- Nikns
> - Implemented archiving support for schema 107 -- Nikns
> - Added sig_gid (signature generator id) to snort signature reference url for schema 107 -- Nikns
> - session_start() on base_conf.php avoiding repetition, easier to handle with debug output -- garaged
> - debug_mode needs to be off on login (index.php:45 ) -- garaged
> - Fixed bug 1275536 Unable to download binary payload in Internet Explorer when using SSL -- Nikns
> - Implemented archiving support for FLoP extended database schema -- Nikns
> - Implemented rebuild of packet in pcap format for FLoP extended database -- Nikns
> - Added display of MAC addresses in base_query_alert.php for FLoP extended database -- Nikns
> - Fixed BASE authentication bypass in standalone mode for base_maintenance.php -- Nikns
> - Added HTTP response codes on authentication failure in base_maintenance.php for standalone mode -- Nikns
> - Fixed bug 1341286 Show IP header length in bytes, not words -- Juergen Leising
> - In plain display mode several sequential non-ASCII payload characters join together displaying their count -- Nikns
> - Changed input type of the password field in useradmin -- Kevin Johnson
|
|
Remove the hostname subst, since it was fixed upstream
Changelog:
caff: - try hostname without -f first to be compatible with BSD
- make local-user a config option, and let it accept a list of keyids
pkg-clean: - add option to allow importing subkeys
|
|
XXX Are both needed on any platform at all?
|
|
|
|
in the same toplevel directory.
|
|
USE_LANGUAGES= c++
lines.
|
|
Add LICENSE=, and license file.
Set RESTRICTED and NO_BIN_ON_* because permission to distribute
derived works is unclear, limited to some operating systems, and
requires a reciprocal license grant.
|
|
|
|
Hide ut assignment in utmp.c (patch-aj), it doesn't exist at least in the
code path DragonFly is taking.
|
|
|
|
specified with PKG_GID.<group>.
|
|
Changelog:
* Update FSF addresses.
* caff: tweak documentation.
* caff: note that mailed keys are encrypted (suggested by Sune Vuorela).
* caff: You can now specify additional arguments to pass to the
send method of Mail::Mailer. This allows you to send mails via
SMTP and use authentication for instance. Thanks to Martin von Gagern.
* gpg-key2ps, keylookup: make them less dependent on specific
installation paths and thus better portable outside of Debian
(Closes: #354142).
|
|
|
|
- Replace patch with official fix 'Filter on Target' link (fix #148).
- Fix alert summary exception with alert including file permission (fix #149).
- Fix creation of an empty __init__.py file in lib/site-packages (#147).
- Print currently installed version on libpreludedb requirement error.
- Make sure /usr/bin/env is expanded.
|
|
- Improve idmef-path error reporting.
- Rework configure script so that it use --with[out] in
place of --(en|dis)able where we deal with external dependencies.
- Rework configure script so that --with[out] work as expected (enabling and
disabling the feature, explicit error if "with" feature is explicitly
specified but the feature it is unavailable, etc).
- Rework SNMPService class for IDMEF draft 16 compliance.
- Make sure we set alert CreateTime if the caller did not do it for us.
- Fix handling of \r\n terminated line.
- Ignore character that are part of the option value when comparing
option specified using --option=value. Fix handling of parent option.
|
|
|
|
Approved by <frueauf>
Changes:
- make it work as binary packages,
- remove useless MESSAGE files,
- add nmap.nasl plugin, not included by default upstream,
- make the installation a bit more sane and easier to configure.
2.2.7:
======
Nessus 2.2.7 contains several fixes for bugs which have been found
during the 3.x developement process and have been backported to this
branch. It also slightly extends the NASL language by adding support for
arrays of arrays. We will use this feature in some key plugins (SMB in
particular) within 6 months, so you should definitely upgrade to 2.2.7
or 3.0.x.
nessus-libraries:
- Fixed a NULL pointer dereferencement in the BPF server (this mostly
affects OpenBSD and FreeBSD < 5)
- The 'service' functions now only deal with the services file provided
- with Nessus (instead of using a mix of /etc/services and others)
libnasl:
- Fixed off-by-one bugs in insstr() and str_replace() which would
sometimes prevent these two functions from properly dealing with the
last character of a string
- Fixed tcp_ping() which was too aggressive and may therefore sometimes
miss a live host
- Fixed a bug in send() which would not properly validate the value of the
'length' variable
- Now handle arrays of arrays
- Fixed open_priv_sock_tcp() which would report a successful connection
when timing out
nessusd:
- Properly install the file 'nessus-services' in $prefix/var/nessus/
- Bigger buffer when receiving preferences from the client (to avoid a
possible truncation of the plugin list in the future)
- Fixed a bug in the preferences parser which would cause nessusd to die
on startup when processing a malformed preference file
nessus client:
- Fixed an unlikely but potential segmentation fault when viewing the
report in the GUI
- Erase the credentials from memory after having used them (thanks to
Sumiut Siddhart for noticing this)
plugins:
- Fixed several bugs in find_services.c which would not properly set the
key Transport/SSL or which may read some data beyond its buffer
- Fixed a bad #if/#endif clause in nessus_tcp_scanner.c which prevented it
from recomputing the RTT, hence negatively impacting the performance
- nmap.nasl has been removed from the main distribution (to use nmap from
within Nessus read http://www.nessus.org/documentation/?doc=nmap-usage)
|
|
|
|
|
|
Add --confirm option and corresponding regression tests for Debian bug 296382.
Thanks to Liyang HU for the patch. Also add initialization for $ssh_timeout
which was being inherited from the environment and add regression tests for
--timeout
|
|
- Enable write notification on queued write (Fix reverse relaying).
- Fix IDMEF message scheduler warning when plugin failover is enabled.
- Fix reverse relaying on some architecture due to thread safety
issue.
- Server scalability improvement in case of message burst.
- Start work on a normalization plugin. Very simple for now, mostly
sanitize IDMEF Address and IDMEF Service classes.
- When an analyzer have read and write permission to prelude-manager,
avoid acting as an echo server, don't send received message from this
analyzer to itself.
- When no listen address is specified, try to bind all
system address (both ipv4/ipv6).
- Send an alert to the peer on handshake failure, so that
the peer have some information on what happened.
- Consistency work accross all plugin logfile option.
- Various bug fixes and improvements.
|
|
'Filter on this Target' bug (re Prelude Trac ticket 148)
|
|
Changes:
- Fix Perl/Python bindings uint64 handling on 32 bits machine.
- Make preludedb_check_version available from Perl/Python bindings.
- Use new IDMEF_LIST_APPEND primitive, require libprelude 0.9.6.
- Add libprelude dependencie to SQL plugins, since they depend on
libprelude symbols. Fix compilation problem with some distribution.
- Use global transaction surrounding all operation in preludedb-admin,
this bring a major performance improvement for insert operation.
- API improvement.
|
|
|
|
syntax as specified in pkgsrc/mk/install/bsd.pkginstall.mk:1.47.
|
|
need them, for example RESTRICTED and SUBST_MESSAGE.*.
|
|
|
|
(mainly those with PAM builtin, as it was being seen "accidentally",
bump PKGREVISION.
|
|
|
|
include:
* saslauthd/lak.c: leak fix from Igor Brezac
* saslauthd/krbtf.c: updated from CMUCS
* saslauthd/auth_krb5.c: log the krb5 error return if get_creds fails
* saslauthd/auth_krb5.c, saslauthd/auth_krb4.c,
saslauthd/krbtf.h (added), saslauthd/krbtf.c (added),
saslauthd/cfile.h (added), saslauthd/cfile.c (added),
saslauthd/Makefile.am: Kerberos V4/V5 alternate keytab
in saslauthd, plus common code merging (from David Eckhardt
via Dale Moore)
* saslauthd/auth_krb5.c: verify against the service we
were passed. needs to be made configurable.
|
|
|
|
fixes a security vulnerability where the realm wasn't checked during
DIGEST-MD5 negotiation which could be the basis for a DoS attack.
|
|
* lib/dlopen.c: log the reason for opendir() failure
when loading plugin.
* lib/common.c: honor log level setting
* sample/sample-client.c, sample/sample-server.c: Fixed several
64 bit portability warnings.
* utils/testsuite.c: Fixed several 64 bit portability warnings.
* utils/saslpasswd.c: Fixed typo in an auxprop name.
* include/saslplug.h, lib/common.c, lib/saslint.h,
lib/server.c: Added sasl_server_plugin_info().
* lib/common.c: initialize path in case caller didn't.
|
|
|
|
|
|
hashcash-1.22 - 08-Apr-2006 - Adam Back <adam@cypherspace.org>
[BUG FIXES]
hashcash-1.18 - 05-Jul-2005 - Adam Back <adam@cypherspace.org>
* add a simpler minting API to make it easier to mint stamps
from VB scripting
hashcash-1.17 - 30-Mar-2005 - Adam Back <adam@cypherspace.org>
[BUG FIXES]
hashcash-1.15 - 12-Jan-2005 - Adam Back <adam@cypherspace.org>
* make "Hashcash:" be accepted as well as "X-Hashcash:"
suggestion by Simon Josefsson <jas@extundo.com>. This way
if/when the X- is dropped from hashcash headers we will not
have a backwards compatibility problem. (Well not after
version 1.15).
* implement the -Z option to compress stamps; in fact the
usage changed so -Z takes an argument: 0, 1 or 2. 0 = not
compressed, 1 = compressed but not so the counter + padding
is split, and 2 = very compressed, but slow. (Due to a late
discovered bug 2 is the same as 1 for now until I can fix
that.)
* added -O x -sv to request benchtest of core x only
* make code work with -DOPENSSL, think this slipped during
integration of Jonathan's libfastmint as it uses some lower
level openssl APIs internally. I fixed it but it might be
a bit openssl version specific, if they changed the state
fields at any point. (This change coincidentally I think
should work around the linking with openssl problem that Hal
Finney <hal@finney.org> reported).
* add libhashcash.a intermediate target to make hashcash more
convenient to link into other software on linux. (A
suggestion from Hal Finney who was trying to link to his
RPOW system.)
hashcash-1.14 - 14-Dec-2004 - Adam Back <adam@cypherspace.org>
* make hashcash -cX accept continuation lines starting with
space as well as tab
* add library function to wrap lines and use it from hashcash
command line tool.
* fix long vs time_t prototype mismatch that was giving
compile errors on BSD; also cleaned up some warnings that
can be obtained with gcc -Wall.
|
|
PKGLOCALEDIR and which install their locale files directly under
${PREFIX}/${PKGLOCALEDIR} and sort the PLIST file entries. From now
on, pkgsrc/mk/plist/plist-locale.awk will automatically handle
transforming the PLIST to refer to the correct locale directory.
|
|
|