| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
http://secunia.com/advisories/16669/
|
|
Linux 2.6.x and newer.
|
|
bump package revision.
|
|
|
|
- MiniLZO updated to version 2.01 and moved to separate directory.
- Collision between system LZO header files and MiniLZO header file fixed.
- Will now test for liblzo functionality in liblzo2 too.
- Minilibtasn1 is now 0.2.14 (no code changes).
- Some code changes to avoid GTK-DOC warnings.
- API and ABI modifications:
No changes since last version.
|
|
* Various build fixes, to make version info not say 0.5.5 any more.
Changes 0.5.6:
* Use libtool -export-symbols-regex instead of GNU ld script.
* Fix license with new FSF address.
* Test for socklen_t, needed for libgcrypt on some platforms.
* A few configure/build fixes.
* Don't use malloc.h.
|
|
- Gnulib is used to implement memmove if your system does not have it.
- Simplified assert/error handling slightly.
|
|
- Fixed the autoconvert feature of cvm-vmailmgr to set the permissions
and ownership of the created password table to that of the original.
- Added a feature to all qmail-based modules to treat all domains as
local if $CVM_QMAIL_ASSUME_LOCAL is set.
|
|
changes:
-manpage added
-fix for BUG#210: use start_tls on referrals if configured to do so
-when handling new password policy control, only fall through to account
management module if a policy error was returned (CERT VU#778916)
pkgsrc change: use /etc/pam_ldap.conf as config file, to distinguish
from nss_ldap
|
|
|
|
patch-ba, patch-bb, patch-bc, and patch-bd.
|
|
to get it working properly on the 64-bit platform (amd64).
|
|
- Added an "autoconvert" mode to cvm-vmailmgr, which converts encrypted
passwords to plain-text on successful authentication if
$VMAILMGR_AUTOCONVERT is set.
|
|
Okayed by lha@. I tested on Linux and DragonFly. I got this from
Joerg Sonnenberger.
On DragonFly, the configure errored like:
/usr/include/openssl/md5.h:110: error: syntax error before "size_t"
In file included from conftest.c:34:
/usr/include/openssl/sha.h:109: error: syntax error before "size_t"
This caused tests to break and it ended up building and installing libdes
and des.h, md4.h, and related headers.
So later libgssapi needed this libdes which was not buildlinked which
broke kdelibs3 build.
|
|
backslashes anymore. A single backslash is enough. Changed the
definition in all affected packages. For those that are not caught, an
additional check is placed into bsd.pkginstall.mk.
|
|
|
|
Here's an excerpt from the rather long RELEASE_NOTES included in the
distribution:
QUICK OVERVIEW:
Provides more flexible configuration of decoders. Allows recipients to have
individual banning rules. Assigns a long-term unique id to each message,
reducing clashes and facilitating retrieval of information. The daemon can
store information to a SQL database for logging, reporting and quarantine
retrieval, optionally storing entire message to a SQL database. File-based
quarantine can disperse files to 62 subdirectories. Provides a quarantine
release mechanism. Reconnects to SQL if connection is broken. Can skip
quarantining high-score spam. Compatibility with IPv6-enabled Postfix
is improved.
SECURITY:
- require minimal version 1.05 of Convert::UUlib to avoid a known security
problem in the underlying uulib (likely to be exploitable);
|
|
- src/racoon/dnssec.c: fix bogus test on function result
- src/racoon/isakmp.c: Improved in/out SA addresses check in
purge_remote()
- src/libipsec/{key_debug.c|pfkey.c|pfkey_dump.c}: de-lint, warnings
- src/racoon/privsep.c: Fixed a %d -> %zu in port_check()
|
|
there already, so don't use OWN_DIRS -- just use @dirrm. Bump the
PKGREVISION to 2.
|
|
the first line was too long and wrapped.
|
|
as the INSTALL and DEINSTALL scripts no longer distinguish between
the two types of files. Drop SUPPORT_FILES{,_PERMS} and modify the
packages in pkgsrc accordingly.
|
|
and remove documentation.
|
|
header in the buildlink directory that just pulls in /usr/include/des.h.
This should allow packages that purposely include <openssl/des_old.h> on
post-0.9.7 versions of OpenSSL to find it on NetBSD.
|
|
changes:
* Better documentation [Adam Schreiber]
* Keyring backups not world readable. [Adam Schreiber]
* Nautilus context menu items cleaned up.
* Better file association for armor encoded keys.
* Create agent socket inside user"s home directory.
* Clearer status text for key operations.
* Cleaned up menus and added GNOME features like dynamic
accelerator assignment (ie: using GtkUIManager).
* HIG polish and UI fixes. [Jim Pharis, Flavio daCosta]
* Better command line handling and aded command line
help. [Adam Schreiber]
* Many bug and crasher fixes.
-translation updates
|
|
changes:
-license changed to LGPL
-changed default for "include certs" to use the backend's setting
-bugfixes
|
|
include:
* authlib: create the authtest and authpasswd manual pages.
* authdaemon.c (auth_generic): Silly bug in auth_generic().
* authldaplib.c (auth_ldap_do3): Fix call of authcryptpasswd().
* authpgsqllib.c (auth_pgsql_setpass): Ditto.
* authmysqllib.c (auth_mysql_setpass): Ditto.
* authmysqllib.c (auth_mysql_setpass): Fix a memory leak.
* authpipe: more fixes to the authpipe module.
* authpipe: various fixes to the authpipe module.
* authpipe.c (auth_pipe_pre): Fix zombies created by the authpipe
module.
* New authpipe authentication module.
* authldap.schema: Add mailhost to the recommended LDAP schema.
* README_authlib.sgml: Document updated authpipe protocol.
* cryptpassword.c (authcryptpasswd): Fix handling of encryption hints.
* checkpassword.c (do_authcheckpassword): Ignore {CRYPT} prefix on
crypted passwords.
* checkpasswordsha1.c (authcheckpasswordsha1): Fix {SHA256} passwords.
* authdaemond.c: Strip full name/gecos field after the first comma.
* authdaemond: Pass LOGGEROPTS option to authdaemond.
* liblog/logger.c: Fix wrong args to setuidgid().
* liblog/logger.c: Added -droproot option to courierlogger.
* liblock/lockdaemon.c: Try to recover if upgraded daemon process runs
under a different uid.
* Changed -uid and -gid options to -user and -group for consistency
with couriertcpd. Change them to affect courierlogger itself,
after it has spawned any child.
* Optional default domain for authentication requests.
* Fix the error code when an empty password is provided.
|
|
file's sole purpose was to provide a dependency on pkg-config and set
some environment variables. Instead, turn pkg-config into a "tool"
in the tools framework, where the pkg-config wrapper automatically
adds PKG_CONFIG_LIBDIR to the environment before invoking the real
pkg-config.
For all package Makefiles that included pkg-config/buildlink3.mk, remove
that inclusion and replace it with USE_TOOLS+=pkg-config.
|
|
dependence is inherited from the "nessus-plugins" package anyway.
|
|
|
|
|
|
|
|
|
|
of Perl files to deal with the perl-5.8.7 update that moved all
pkgsrc-installed Perl files into the "vendor" directories.
|
|
Changes since version 0.6b2:
- NAT-T fixes for situations where NAT-T is not used
- OpenSSL 0.9.8 support
- keys are not restricted to OpenSSL default size anymore
- PKCS7 support
- SHA2 support
|
|
This patch is the same as revision 1.3 of
/cvsroot/src/crypto/dist/heimdal/lib/asn1/gen_glue.c by matt@
those cvs log:
Don't emit struct units [] anymore. emit a struct units * const foo and
in the C file initialize that to the static list.
Bump pkgrevision: it changes the binary package on gcc<4 platforms
approved by wiz@
|
|
|
|
* lots of bug fixes
|
|
Bump to nb2
make pkglint happy
|
|
|
|
pkgsrc/mk/defaults/mk.conf.
This is from PR 30741 from anonymous AT example.net.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Mike M. Volokhov.
pwsafe is a unix commandline program that manages encrypted password
databases. There are few features listed:
* Pure command-line operation if desired (good for remote access over ssh).
* Can interact with X11 selection & clipboard.
* Portable, endianess-clean, misaligned-access-free C++.
* Compatible with CounterPane's PasswordSafe Win32 program versions 1.9.x.
* Funny comments included in source code.
|
|
|
|
and /etc/sshd.conf is old (and I assume some configurations from
there don't apply any more), user and group are not created
automatically (only if PKG_CREATE_USERGROUP is at default YES),
UsePrivilegeSeparation is the default, and seems to imply that
openssh is insecure without it.
Bump PKGREVISION.
Change comment regarding MESSAGE.Interix.
Removed unused MESSAGE_SUBST settings. Move one to the options.mk
as it is for "pam" only.
|
