Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
|
|
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2004-001-an_to_ln.txt
|
|
include a fix for security advisory [MITKRB-SA-2004-001]:
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2004-001-an_to_ln.txt
Please read the security advisory to see if you are affected and should
update your MIT krb5 installation.
|
|
Don't include python/extension.mk, as it is also useless. Don't set
NO_CONFIGURE, because it makes PYTHON_PATCH_SCRIPTS useless. Don't set
MAKEFILE, as we don't actually use the included makefile for anything.
Changes since 1.24:
* Added more support for Microsoft's approach to internationalization.
* Added two new rules for GLib functions, "g_get_home_dir" and
g_get_tmp_dir".
* Added curl_getenv().
* Added several rules for input functions (for -I) -
recv, recvfrom, recvmsg, fread, and readv.
* Tightened the false positive test slightly; if a name is
followed by = or - or + it's unlikely to be a function call,
so it'll be quietly discarded.
* Modified the summary report format slightly.
* Modified the getpass text to remove an extraneous character.
* Added rules for cuserid, getlogin, getpass, mkstemp, getpw, memalign,
as well as the obsolete functions gsignal, ssignal, ulimit, usleep.
* Modified text for strncat to clarify it.
* Fixed error in --columns format, so that the output is simply
"filename:linenumber:columnnumber" when --columns (-C) is used.
* Eliminated "Number of" phrase in the footer report
* Added more statistical information to the footer report.
* Added shortcut single-letter commands (-D for --dataonly,
-Q for --quiet, -C for --columns), so that invoking from
editors is easier.
* Tries to autoremove some false positives. In particular, a function
name followed immediately by "=" (ignoring whitespace)
is automatically considered to be a variable and NOT a function,
and thus doesn't register as a hit. There are exotic cases
where this won't be correct, but they're pretty unlikely in
real code.
* Added a "--falsepositive" (-F) option, which tries to remove
many more likely false positives.
|
|
Many fixes and feature additions since 0.38. Too many to list here.
|
|
This is mainly a bugfix release. Sometimes EOF was not properly detected
while reading the password file. This would result in an 'Line too long'
error message (and some wierd behavour). Also, the current password file
is now backed up before each write.
|
|
|
|
|
|
|
|
* Make sure ${PKG_SYSCONFDIR} is passed to configure.
* Care ${PRIV_CONF_DIR} as an obsoleted variable.
Pointed out by Matt Green.
|
|
|
|
Problem probably introduced during the conversion to buildlink3.
Exposed by latest kristerw@'s bulk build in NetBSD 2.0_BETA/i386.
|
|
Georg Schwarz.
|
|
|
|
in PR 25654 from Hauke Fath.
Take any non-standard values from audit-packages.conf file in
audit-packages as well as download-vulnerability-list.
Fix the pre-formatted documentation so that filenames to be
substituted are not formatted with the bold or underline "overstrikes"
on ttys, so that the correct sed substitutions take place at package
install time.
|
|
|
|
the irix6.5 target into the Makefile.
|
|
do not have /usr/bin/ssh.
|
|
write can return 0 even when the select has indicated that socket
is writable. Do not consider this error, but call select again.
|
|
|
|
libgcrypt was recently upgraded. So when using binary packages
it is possible for new libgcrypt (libgcrypt.so.12.1) to be installed
with old opencdk-0.5.4 package.
So bump PKGREVISION and BUILDLINK_DEPENDS (to force a new package
to be required).
|
|
Bump PKGREVISION.
|
|
|
|
|
|
|
|
|
|
|
|
run @exec mkdir/rmdir here.
|
|
|
|
|
|
|
|
- Some complilation fixes.
- Added the --xml parameter to the certtool utility.
Changes 1.0.12:
- Corrected bug in OpenPGP key loading using a callback.
- Renamed gnutls-srpcrypt to srptool
- Allow handshake requests by the client.
* Things backported from the development branch:
- Added support for authority key identifier and the extended key usage
X.509 extension fields. The certtoool was updated to support them.
- Added batch support to certtool. Now it can use templates.
- The RC2 cipher is no more included. The one in libgcrypt is now used.
Changes 1.0.11:
- Added gnutls_sign_algorithm_get_name() and gnutls_pk_algorithm_get_name()
- Corrected bug in TLS renegotiation.
Changes 1.0.10:
- Corrected bug in RSA parameters handling which could cause
unexpected crashes.
- Corrected bug in SSL 3.0 authentication.
|
|
* First stable release.
Changes 1.1.94
* The support for multi-threaded users goes into its third
incarnation. We removed compile time support for thread libraries.
To support the thread library of your choice, you have to set up
callback handlers at initialization time. New data structures, a
new control command, and default initializers are provided for this
purpose.
* Interface changes relative to the 1.1.93 release:
libgcrypt-config --thread OBSOLETE
libgcrypt-pth.la REMOVED
libgcrypt-pthread.la REMOVED
GCRYCTL_SET_THREAD_CBS NEW
struct gcrypt_thread_cbs NEW
enum gcry_thread_option NEW
GCRY_THREAD_OPTION_PTH_IMPL NEW
GCRY_THREAD_OPTION_PTHREAD_IMPL NEW
Changes 1.1.93
* The automatic thread library detection has finally been removed.
From now on, only linking explicitely to libgcrypt, libgcrypt-pth
or libgcrypt-pthread is supported.
|
|
- Added scripts to assist in libtasn1 version detection
from configure scripts.
- Corrected a DER decoding bug which was reported
by Max Vozeler <max@hinterhof.net>.
Changes 0.2.9
- Accept negative numbers as range in INTEGER declarations
Changes 0.2.8
- Add asn1_delete_element function
|
|
It says to use "pseudo-device rnd" kernel configuration.
TODO: if the above instructions are fine for other
operating systems with /dev/urandom then add.
|
|
faults, and haven't tracked down why yet.
No allow PAM authentication if Linux (and USE_PAM is defined).
This will close my 20846 PR from March 2003.
Also, install the contrib/sshd.pam.generic file as the example
sshd.pam instead of the FreeBSD version, but this okay since
it was commented out in the first place.
TODO: test the PAM support on other platforms and allow
if USE_PAM is defined.
|
|
"nessus-core" won't build otherwise.
|
|
Fixes PR pkg/25623
|
|
* Fixed MacOS X portability issues
* Non-intrusive OS-fingerprinting (based on xprobe's techniques)
* DNS fingerprinting
* killall -1 nessusd does not restart the bpf server on BSD systems
* longer connect() timeout for TCP sockets
* Fixed hydra.nes
* WWW fingerprinting
* IP addresses are now sorted in EVERY reports
* Automagically rewrite banners to handle distributions which do
backporting of security fixes (ie: Debian)
|
|
|
|
|
|
used since revision 1.139 of mk/buildlink3/bsd.buildlink3.mk.
|
|
audit-packages version is now 1.31.
|
|
(Nothing in the build actually uses the static version of the library,
and it doesn't get installed either, so this has no effect beyond
making the build not bomb out on Darwin, pkg/25575).
|
|
|
|
|
|
|
|
sign is a file signing and signature verification utility.
It's main purpose is to be a simple and convenient extension to a tar/gz/bzip2
line of tools that performs file integrity and authenticity checks. It's small
and simple, it does just one thing and hopenfully does it well.
It is distributed under the BSD license.
|
|
|