| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
The directory ${PKGVULNDIR)} holding the 'vulnerabilities' file
which default value is determined at configure time can now be
overridden at runtime from the environment.
As a side effect the strings substituted at configure time in
files/{audit-packages,download-vulnerability-list} are now of the
form '@VAR@' and not '${VAR}'.
|
|
* Supporting MacOS X.
* Catching up to 2440bis-07.
* A bug fix of old_Public_Key_Packet.
|
|
and uses the correct HAVE_GETSPNAM.
From Jeremy C. Reed in PR 21413.
|
|
|
|
|
|
GnuTLS is a portable ANSI C based library which implements the TLS 1.0 and SSL
3.0 protocols. The library does not include any patented algorithms and is
available under the GNU Lesser GPL license.
Important features of the GnuTLS library include:
- Thread safety
- Support for both TLS 1.0 and SSL 3.0 protocols
- Support for both X.509 and OpenPGP certificates
- Support for basic parsing and verification of certificates
- Support for SRP for TLS authentication
- Support for TLS Extension mechanism
- Support for TLS Compression Methods
Additionaly GnuTLS provides an emulation API for the widely used OpenSSL
library, to ease integration with existing applications.
Package provided by Juan RP via pkgsrc-wip with modifications by me.
|
|
libtasn1 library was developed for ASN1 (Abstract Syntax Notation One)
structures management.
The main features of this library are:
- on-line ASN1 structure management that does
not require any C code file generation;
- off-line ASN1 structure management with C code
file generation containing an array;
- DER (Distinguish Encoding Rules) encoding;
- no limits for INTEGER and ENUMERATED values
Package provided bu Juan RP via pkgsrc-wip with some modifications by me.
|
|
|
|
OpenCDK (Open Crypto Development Kit) provides basic parts of the OpenPGP
message format. The aim of the library is *not* to replace any available
OpenPGP version. There will be no real support for key management (sign,
revoke, alter preferences, ...) and some other parts are only rudimentary
available. The main purpose is to handle and understand OpenPGP packets and
to use basic operations. For example to encrypt/decrypt or to sign/verify
and packet routines.
Provided by Juan RP via pkgsrc-wip with some modifications by me.
|
|
Based on a patch sent by Juan RP via PR pkg/21559.
Changes:
- DESCR has 80 columns
- style nits
1.1.12:
=======
- gcry_pk_sign, gcry_pk_verify and gcry_pk_encrypt can now handle an optional
pkcs1 flags parameter in the S-expression. A similar flag may be passed to
gcry_pk_decrypt but it is only syntactically implemented.
- New convenience macro gcry_md_get_asnoid.
- There is now some real stuff in the manual.
|
|
Based on a patch sent by Hiramatsu Yoshifumi via PR pkg/21540.
Changes:
- fix all installed scripts
- simplify installation
- DESCR has 80 columns
- style nits
20021111.1:
===========
- alerts with original packet included now have both sets of ports and first
set of IPs as links
- added -obfuscateip option to change the IP addresses in alerts to randomly
(but consistently) chosen alternates (not presently available for database
input)
- Updated parsing for Snort 1.9.0 full alert files
- new-style Spade reports now processed (Spade version 021008.1 and on)
- spp_portscan2 log files now processed (these entries are displayed somewhat
prettified)
- updated linking to ICMP log files; this involved updates for new ICMP header
format in Snort 1.9.0
- more robust recognition of non-packet alerts in different formats(these get
ignored)
- clarified warning about unknown ICMP type text and added repeat warning
suppression (you'll now only get a warning about a particular string twice)
- SnortSnarf will now ignore lines beginning with '#' between alerts, so you
can use that to begin a comment
|
|
|
|
This package provides the same secure shell software as the ssh2 package but
without X Windows support.
|
|
|
|
509) Fixed a typo that caused a compilation error on Heimdal.
510) Darwin (MacOS X) doesn't have a real setreuid() system call.
511) Fixed a problem with large numbers of environment variables.
|
|
|
|
|
|
|
|
|
|
least particually.
|
|
|
|
|
|
Security problem is reported on bugtraq.
http://www.securityfocus.com/archive/1/320444/2003-05-02/2003-05-08/0
2003-05-01 Werner Koch <wk@gnupg.org>
Released 1.2.2.
2003-04-30 David Shaw <dshaw@jabberwocky.com>
* NEWS: Note trust bug fix.
2003-04-29 David Shaw <dshaw@jabberwocky.com>
* NEWS: Add note about TIGER being dropped from OpenPGP.
* README: Add note about the HP/UX inline problem. Fix all URLs
to point to the right place in the reorganized gnupg.org web
pages. Some minor language fixes.
2003-04-27 David Shaw <dshaw@jabberwocky.com>
* NEWS: Add sig version, pk algo, hash algo, and sig class to
VALIDSIG.
* BUGS: Fix bug reporting URL.
2003-04-24 Werner Koch <wk@gnupg.org>
* configure.ac (ALL_LINGUAS): Added Hungarian translation by Nagy
Ferenc László.
2003-04-23 David Shaw <dshaw@jabberwocky.com>
* configure.ac: "TIGER" -> "TIGER/192".
* README: Put back proper copyright line.
2003-04-16 Werner Koch <wk@gnupg.org>
Released 1.2.2rc2.
2003-04-15 Werner Koch <wk@gnupg.org>
* configure.ac (ALL_LINGUAS): Add Slovak translation.
* configure.ac (HAVE_DOSISH_SYSTEM): New automake conditional.
* acinclude.m4 (GNUPG_CHECK_ENDIAN): Fixed quoting of r.e. using
quadrigraphs.
2003-04-08 David Shaw <dshaw@jabberwocky.com>
* configure.ac: Big warning that TIGER is being removed from the
standard.
2003-04-08 Werner Koch <wk@gnupg.org>
* Makefile.am (EXTRA_DIST): Add autogen.sh wrapper which is
useful for some cross-compiling targets.
2003-04-07 David Shaw <dshaw@jabberwocky.com>
* acinclude.m4: Fix URL to faqprog.pl.
* README: Add --enable-sha512 switch and update version number and
copyright date.
* NEWS: Add note about SHA-256/384/512.
2003-03-24 Werner Koch <wk@gnupg.org>
* configure.ac: Test for ranlib and ar.
2003-03-12 Werner Koch <wk@gnupg.org>
* acinclude.m4 (GNUPG_CHECK_ENDIAN): When crosscompiling assume
little only for Intel CPUs.
2003-02-19 David Shaw <dshaw@jabberwocky.com>
* configure.ac: Define @CAPLIBS@ to link in -lcap if we are using
capabilities.
2003-02-11 David Shaw <dshaw@jabberwocky.com>
* configure.ac: Add --enable-sha512 switch to add SHA384/512
support.
2003-02-06 David Shaw <dshaw@jabberwocky.com>
* configure.ac: Do not set GNUPG_LIBEXECDIR in ./configure, so
that makefiles can override it.
2003-02-02 David Shaw <dshaw@jabberwocky.com>
* configure.ac (ALL_LINGUAS): Needs to be on one line to avoid
problems during ./configure.
* NEWS: Note new --with-colons disabled key flag and new "revuid"
command.
2003-01-07 Werner Koch <wk@gnupg.org>
Released 1.2.2rc1.
* configure.ac (ALL_LINGUAS): Added fi and zh_TW.
2003-01-06 David Shaw <dshaw@jabberwocky.com>
* NEWS: Add notes about disabled keys and trustdb tweaks.
2002-12-04 David Shaw <dshaw@jabberwocky.com>
* NEWS: Add note about convert-from-106 script.
2002-11-25 David Shaw <dshaw@jabberwocky.com>
* NEWS: Add notes about notation names and '@', the "--trust-model
always" option, and non-optimized memory wiping.
2002-11-09 Werner Koch <wk@gnupg.org>
* configure.ac: Check for ctermid().
2002-10-31 David Shaw <dshaw@jabberwocky.com>
* Makefile.am: Put gnupg.spec in the root directory so rpm -ta
works.
* configure.ac: Add a check for volatile.
|
|
PKG_SYSCONFDIR. This is already done by bsd.pkg.install.mk in a better way.
|
|
|
|
|
|
dependency bumps.
|
|
|
|
|
|
|
|
|
|
Use OWN_DIRS to handle directories under /var.
Move the logcheck.sh script to where it belongs, the bin directory.
Use buildlink2.
Bump PKGREVISION to 1.
|
|
to "0.1" hence. This fixes PR pkg/21295 by Todd Vierling.
|
|
|
|
store the vulnerabilities file. This variable was already recognized by
audit-packages but not by bsd.pkg.mk which hardcoded DISTDIR.
|
|
|
|
|
|
508) Fixed remaining Kerberos V issues with MIT Kerberos V and old Heimdal.
|
|
|
|
amavis-perl. Fixed milter support for amavis-perl.
NB: the package was named amavis-perl-200xxxxx, now the version is 0.1,
which is lexicographically lower. I wrote v0.1 instead of 0.1 in order
to make 0.1 newer than 200xxxxx
|
|
# This hack goes away, once we formally de-support NetBSD-1.4.x.
We did that half a year ago.
|
|
Suggested by Robert Elz in PR#18825. Changelog unavailable.
|
|
tar. Do not pass P to tar when testing for removal of leading /'s.
This is a fix for PR#20928.
XXX On Solaris this package will be broken. It probably needs to
XXX depend on gtar in this case.
|
|
|
|
(suggested by lukem), group z, r and f flags.
some whitespace cleanup.
|
|
relevant changes are > 500 lines, see
ftp://ftp.ca.openbsd.org/pub/OpenBSD/OpenSSH/portable/ChangeLog
Personal selection:
rekeying bugfixes and automatic rekeying
bandwidth limitation (scp -l)
Add a -t life option to ssh-agent that set the default lifetime.
The default can still be overriden by using -t in ssh-add.
sftp progress meter support.
allow usernames with embedded '@', e.g. scp user@vhost@realhost:file /tmp;
[scp.c]
1) include stalling time in total time
2) truncate filenames to 45 instead of 20 characters
3) print rate instead of progress bar, no more stars
4) scale output to tty width
|
|
- group 'zrw' and 'p' args, -s last
- use the && operator consistently
- strip unneeded parens
- some whitespace cleanup
|
|
Changes since 1.6.7p2:
* Kerberos V support should work on latest MIT Kerberos V and Heimdal.
|
|
Changes since Sudo 1.6.7p1:
o Fixed an unterminated comment that broke Kerberos V authentication.
o The krb5-config script is now used to determine Kerberos V
CPPFLAGS and LDFLAGS/LIBS if it exists.
o Backed out changes to mkinstalldirs from autoconf 2.57 that
caused problems on Tru64 Unix.
|
|
|
