Number of commits found: 968 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10  »  

Add pcsc-tools, tools for testing PCSC cards and readers

First submission:
PR:             42702
Submitted by:   bms

Certifi: Python Mozilla's SSL Certificates.

WWW:    http://pypi.python.org/pypi/certifi/

PR:             ports/163970
Submitted by:   Olivier Duchateau <duchateau.olivier@gmail.com>

The Authen::OATH module provides a Perl implementation of the
HOTP and TOTP One Time Password algorithms as defined by OATH
(http://www.openautentication.org).

WWW: http://search.cpan.org/dist/Authen-OATH/

PR:             ports/164035 (based on)
Submitted by:   Jui-Nan Lin <jnlin@csie.nctu.edu.tw>

2012-01-08 security/cryptplug: development has ceased
2012-01-08 security/gpgme03: superceded by security/gpgme

Import plone4 dependencies part 8/15

The murmur hash algorithm by Austin Appleby is an exteremely fast
algorithm that combines both excellent collision resistence and
distribution characteristics.

WWW: http://search.cpan.org/dist/Digest-MurmurHash/

- Add fifth portion of dependencies needed for Plone 4 import.

Approved by:   novel (mentor)

- Add p5-CACertOrg-CA 20110724.001

CACertOrg::CA provides a copy of Certificate Authority certificate for
CACert.org. This is the Class 1 PKI Key.

sha1 13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33
md5  A6:1B:37:5E:39:0D:9C:36:54:EE:BD:20:31:46:1F:6B

WWW: http://search.cpan.org/dist/CACertOrg-CA/

- Remove expired security/p5-Digest-SHA256: use the builtin
  Digest::SHA instead

Add py-ssh 1.7.11, python SSH2 protocol library.

- Add first portion of dependencies needed for Plone 4 import.

Submitted by:   rm (myself, via github)
Approved by:    novel (mentor)

TLS/SSL proxy in front of the application creates a transparent
encryption tunnel.

WWW: http://search.cpan.org/dist/App-TLSMe/

Feature safe:   yes

Scannedonly is a samba VFS module and a scanning daemon that ensure that only
files that have been  scanned for viruses are visible and accessible to the end
user.

Scannedonly was developed because of scalability problems with samba-vscan: high
server loads when (the same) files were requested often, and timeouts when large
zip files were requested. Scannedonly doesn't have these problems, but it does
introduce some other issues.  Choose the product that suits you best.

Scannedonly is available under the open source GPL licence. The source code
repository is available on Sourceforge.

WWW: http://olivier.sessink.nl/scannedonly/

PR:             ports/154202
Submitted by:   girald@etcom.ufrgs.br
Feature safe:   yes

The OATH Toolkit contains a shared library, command line tool
and a PAM module that makes it possible to build one-time
password authentication systems. Supported technologies include
the event-based HOTP algorithm and the time-based TOTP algorithm.
OATH is the Open AuTHentication organization which specify
the algorithms.

The components included in the package is:

- liboath:  A shared and static C library for OATH handling.
- oathtool: A command line tool for generating and validating OTPs.
- pam_oath: A PAM module for pluggable login authentication for OATH.

Feature safe:   yes

Add security/clamav-milter, clamav's meta-port with MILTER on

Submitted by:   bz@
Feature safe:   yes

- Add p5-Net-SSL-ExpireDate 1.10

Net::SSL::ExpireDate get certificate from network (SSL) or local file and obtain
its expiration date.

WWW: http://search.cpan.org/dist/Net-SSL-ExpireDate/

PR:             ports/161258 (based on)
Submitted by:   Stephon Chen <stephon@gmail.com>
Feature safe:   yes

libfwbuilder-devel has been merged into fwbuilder-devel and is no longer
required.

Feature safe:   yes

AccessControl provides a general security framework for use in Zope2.

WWW: http://pypi.python.org/pypi/AccessControl

Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru>
Feature safe:   yes

The Security framework provides a generic mechanism to implement security
policies on Python objects.

WWW: http://pypi.python.org/pypi/zope.security/

Feature safe:   yes

This package provides a password manager mechanism. Password manager is
an utility object that can encode and check encoded passwords.

WWW: http://pypi.python.org/pypi/zope.password

Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru> (via github)

Net::OpenID::Common - Libraries shared between Net::OpenID::Consumer
and Net::OpenID::Server

WWW: https://metacpan.org/release/Net-OpenID-Common

Remove ports@ ports that have been DEPRECATED for at least 1 month

audio/shoutcast         Unfetchable; website rearranged
audio/linux-shoutcast   Unfetchable; website rearranged
chinese/scim-chewing    Does not configure
converters/py-cjkcodecs Integrated into every python version in the tree
databases/kpogre        Does not compile
deskutils/mhc           Does not fetch
deskutils/org-mode.el6  Does not fetch
deskutils/gemcal        Does not fetch
devel/erlang-thrift     Does not build
dns/domtools            Does not fetch
editors/richtext        Does not compile
games/vultures-claw     Does not fetch
games/bomb              Does not fetch

(Only the first 15 lines of the commit message are shown above )

x11-toolkits/gambas2-gb-qt has been broken for over a year.

Remove it, and the ports that depend on it.

New port: security/pam_krb5-rh

The pam_krb5 module allows PAM-aware applications to authenticate
users by performing an AS exchange with a Kerberos KDC.

This module includes many configurable options and provides functionality
and features that other pam_krb5 modules do not provide.

WWW: https://fedorahosted.org/pam_krb5/

The anonymizing relay monitor (arm) is a terminal status monitor for Tor,
intended for command-line aficionados, ssh connections, and anyone with a tty
terminal. This works much like top does for system usage, providing real time
statistics for:

  * bandwidth, cpu, and memory usage
  * relay's current configuration
  * logged events
  * connection details (ip, hostname, fingerprint, and consensus data)
  * ... etc

PR:             ports/159017
Approved by:    glarkin@ (mentor)

Remove port security/py-arm to rename it

Suggested by:   danfe@
Approved by:    glarkin@ (mentor)

Replacement for htpasswd.

This port will install htpasswd.py that can be found in trac trac contrib
directory.

WWW: http://trac.edgewall.org/browser/trunk/contrib/htpasswd.py

PR:             ports/160213
Submitted by:   Aldis Berjoza <aldis@bsdroot.lv>
Approved by:    bapt (mentor)

The anonymizing relay monitor (arm) is a terminal status monitor for Tor,
intended for command-line aficionados, ssh connections, and anyone with a tty
terminal. This works much like top does for system usage, providing real time
statistics for:

  * bandwidth, cpu, and memory usage
  * relay's current configuration
  * logged events
  * connection details (ip, hostname, fingerprint, and consensus data)
  * ... etc

PR:             ports/159017
Approved by:    glarkin@ (mentor)

- Add port for shipping of PAM modules used by KDM.

It deprecates the "kde" module in base, and installs (optionally) the
"kde-np" module, which enables auto-logins.

New port: security/sssd

sssd integrates the functionality of pam_krb5 and pam_ldap/nss_ldap
with caching and additional features.

This project provides a set of daemons to manage access to remote
directories and authentication mechanisms, it provides an NSS and
PAM interface toward the system and a pluggable backend system to
connect to multiple different account sources. It is also the
basis to provide client auditing and policy services for projects
like FreeIPA.  sssd also features caching, which can allow for
offline use to assist laptop users.

WWW: https://fedorahosted.org/sssd/

PR:             ports/161555
Submitted by:   Andrew Elble <aweits@rit.edu>

RestrictedPython provides a restricted execution environment for Python,
e.g. for running untrusted code.

WWW: http://pypi.python.org/pypi/ExtensionClass

Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru> (via GitHub)

Remove security/snort_inline:

Does not build properly, no longer supported upstream

PR:             ports/161410
Approved by:    maintainer

Remove ports maintainted by ports@ which have passed their EXPIRATION_DATE

astro/gkrellsun         Abandonware
astro/xrmap             No more distfiles
audio/midimountain      Abandonware
audio/gkrellmss         Abandonware
audio/gnapster          Abandonware
databases/xbase         No more public distfiles
databases/xbsql         No more public distfiles
games/gtkabale          No more public distfiles
games/battleball        No more public distfiles, does not compile on ia64 or
sparc64
games/race              No more public distfiles
games/stvef-paks        No more public distfiles
games/stvef-server      No more public distfiles
games/tome              No more public distfiles

(Only the first 15 lines of the commit message are shown above )

Remove expired port:
2011-10-04 security/cfs: Locks don't work, ports/137378, unmaintained, dead
upstream, insecure

Add NaCl, a high speed cryptography library.

- Add p5-App-Genpass 2.10

If you've ever needed to create 10 (or even 10,000) passwords on the fly with
varying preferences (lowercase, uppercase, no confusing characters, special
characters, minimum length, etc.), you know it can become a pretty pesky task.

This module makes it possible to create flexible and secure passwords, quickly
and easily.

WWW: http://search.cpan.org/dist/App-Genpass/

This Python package is a high-level wrapper for Kerberos (GSSAPI) operations.
The goal is to avoid having to build a module that wraps the entire
Kerberos.framework, and instead offer a limited set of functions that do what
is needed for client/server Kerberos authentication based on
<http://www.ietf.org/rfc/rfc4559.txt>.

PR:             ports/156791
Submitted by:   Roland van Laar <roland@micite.net>
Approved by:    wen@ (co-mentor)

As previously advertised, delete ports that have
vulnerabilities listed in portaudit, and those
that depend on them - part 1

math/mupad
        Relies on xpm, vulnerable since 2004-09-15
net-p2p/torrentflux
        Vulnerable since 2006-10-07
net/tptest
        Vulnerable since 2009-12-17
security/pgp6
        Vulnerable since 2005-07-31
www/p5-RTx-RightsMatrix
        Only works with www/rt36, which is FORBIDDEN
www/p5-RTx-Shredder

(Only the first 15 lines of the commit message are shown above )

Add linux-f10-gnutls 2.4.2, GNU Transport Layer Security library.

Changes over original shar file at the PR:
. change the maintainer to emulation@ (since it's an infrastructure linux port);
. use the latest version of the package (2.4.2-5.fc10);
. fix pkg-plist.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

Add linux-f10-libgpg-error 1.6, common error values for all GnuPG
components.

Changes over original shar file at the PR:
. change the maintainer to emulation@ (since it's an infrastructure linux port);
. add BRANDELF_FILES;
. fix pkg-plist.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

Add linux-f10-libgcrypt 1.4.4, general purpose crypto library based on
code used in GnuPG.

Changes over original shar file at the PR:
. change the maintainer to emulation@ (since it's an infrastructure linux port);
. use the latest version of the package (1.4.4-1.fc10);
. use PLIST_FILES, PLIST_DIRSTRY and post-install target instead of pkg-plist.

Notes: the port uses ${PREFIX}/etc/gcrypt directory for configuration files
(i.e. /compat/linux/etc/gcrypt). We usually try to use FreeBSD directories.
But there is no [/usr/local/]/etc/gcrypt directory.
I'm open to ideas on what to do here.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

Add linux-f10-libtasn1 1.5, ASN.1 structure parser library.

Changes over original shar file at the PR:
 . change the maintainer to emulation@ (since it's an infrastructure linux
port);
 . remove commented out lines;
 . use PLIST_FILES, DOCSDIR_REL and PORTDOCS instead of pkg-plist.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

2011-09-23 devel/libnotifymm: Doesn't build and isn't used by anything.
2011-09-11 games/abuse: BROKEN after games/abuse_sdl update
2011-09-01 security/donkey: No more public distfiles
2011-09-01 graphics/moth: No more public distfiles
2011-09-01 net-mgmt/aguri: No more public distfiles
2011-09-01 games/senso: No more public distfiles
2011-09-01 net-im/jabber-users-agent: No more public distfiles
2011-09-01 games/cchess: No more public distfiles

2012-09-20 www/ruby-http-access: Deprecated upstream, please use
www/rubygem-httpclient
2011-09-01 sysutils/wots: No more public distfiles
2011-09-15 sysutils/gpart: Upstream disappeared
2011-09-01 sysutils/plod: No more public distfiles
2011-09-01 sysutils/checkservice: BROKEN for more than 6 month
2011-09-01 security/nsm-console: BROKEN for more than 6 month
2011-09-01 security/fressh: No more public distfiles
2011-09-01 palm/pose: No more public distfiles
2011-09-01 palm/isilo: No more public distfiles
2011-09-01 news/ija: BROKEN for more than 6 month
2011-09-01 news/PicMonger: Abandonware

An ncurses based password database client that is compatible
with KeePass 1.x format databases.

WWW:    http://ckpass.sourceforge.net/

PR:             ports/160676
Submitted by:   Gvozdikov Veniamin <g.veniamin@googlemail.com>
Approved by:    miwi, wen (mentors implicit)

Libkpass is a from-scratch C implementation of reading and writing
KeePass 1.x format password databases.

WWW:    http://libkpass.sourceforge.net/

PR:             ports/160675
Submitted by:   Gvozdikov Veniamin <g.veniamin@googlemail.com>
Approved by:    miwi, wen (mentors implicit)

Massh makes it possible to perform the following on hundreds, or even
thousands of hosts in a parallelized fashion:

    * Run Remote Commands
    * Push and Execute Pre-Written Scripts
    * Push Files
    * Pull Files

WWW: http://m.a.tt/er/massh/
PR:             ports/159770
Submitted by:   Sascha Klauder <sklauder@trimind.de>
Approved by:    bapt (mentor)

- Add a new port: security/R-cran-ROAuth

  This package provides an interface to the OAuth 1.0 specification,
  allowing users to authenticate via OAuth to the server of their
  choice.

  WWW:  http://cran.r-project.org/web/packages/ROAuth/

- Add a new port: security/R-cran-digest

  The digest package provides a function 'digest' for the creation
  of hash digests of arbitrary R objects (using the md5, sha-1, sha-256
  and crc32 algorithms) permitting easy comparison of R language
  objects, as well as a function hmac() to create hash-based message
  authentication code. The md5 algorithm by Ron Rivest is specified
  in RFC 1321, the SHA-1 and SHA-256 algorithms are specified in
  FIPS-180-1 and FIPS-180-2, and the crc32 algorithm is described in
  ftp://ftp.rocksoft.com/cliens/rocksoft/papers/crc_v3.txt. For md5,
  sha-1 and sha-256, this packages uses small standalone implementations
  that were provided by Christophe Devine. For crc32, code from the
  zlib library is used. Please note that this package is not meant
  to be deployed for cryptographic purposes for which more comprehensive
  (and widely tested) libraries such as OpenSSL should be used.

  WWW:  http://cran.r-project.org/web/packages/digest/

- Add p5-Crypt-OpenSSL-CA 0.21

Crypt-OpenSSL-CA - Model of an X509v3 Certification Authority

This package performs the cryptographic operations necessary to issue
X509 certificates and certificate revocation lists (CRLs).  It is
implemented as a Perl wrapper around the popular OpenSSL library.  All
certificate and CRL extensions supported by OpenSSL are available, and
then some.

WWW: http://search.cpan.org/dist/Crypt-OpenSSL-CA/

PR:             ports/160167
Submitted by:   Rodrigo Mosconi <freebsd@mosconi.mat.br>

Bring COPS back from the dead.

New port: security/duo

Duo provides simple two-factor authentication as a service via:

    1.  Phone callback
    2.  SMS-delivered one-time passcodes
    3.  Duo mobile app to generate one-time passcodes
    4.  Duo mobile app for smartphone push authentication
    5.  Duo hardware token to generate one-time passcodes

This package allows an admin (or ordinary user) to quickly add Duo
authentication to any Unix login without setting up secondary user
accounts, directory synchronization, servers, or hardware.

WWW: http://duosecurity.com

Approved by:    tabthorpe (mentor)

Remove some expired ports

2011-08-08 deskutils/alexandria: Upcoming ruby-gnome removes dependencies
2011-08-06 security/drweb: fails to fetch (website rearranged)
2011-08-06 security/drweb-postfix: fails to fetch (website rearranged)
2011-08-06 security/drweb-qmail: fails to fetch (website rearranged)
2011-08-06 security/drweb-sendmail: fails to fetch (website rearranged)

Removing old ruby stuff

2011-08-03 comms/ruby-serialport: Doesn't work with Ruby 1.9
2011-08-03 databases/ruby-search-namazu: Doesn't work with Ruby 1.9
2011-08-03 databases/ruby-sqlite: Doesn't work with Ruby 1.9
2011-08-03 databases/rubygem-kirbybase: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-eet: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-filelock: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-filemagic: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-metaruby: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-poll: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-rrb: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-strongtyping: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-textbuf: Doesn't work with Ruby 1.9
2011-08-03 graphics/ruby-graph: Doesn't work with Ruby 1.9

(Only the first 15 lines of the commit message are shown above )

DES, Blowfish, AES, TEA, SHA1, MD5, RSA, BubbleBabble, Hexdump, Support for
Word128, Word192 and Word256 and Beyond, PKCS5 Padding, Various Encryption
Modes e.g. Cipher Block Chaining all in one package, with HUnit and
QuickCheck tests, and examples.

WWW:    http://hackage.haskell.org/package/Crypto

Obtained from:  FreeBSD Haskell

Bye bye abandonwares (part 5)

2011-08-08 russian/messarge: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 russian/pgp.language: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 security/ifd-gempc410: Has expired: Looks like an abandonware, no
more public distfiles
2011-08-08 security/libidea: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 security/rain: Has expired: Looks like an abandonware, no more public
distfiles
2011-08-08 sysutils/Tee: Has expired: No more public distfile
2011-08-08 sysutils/curly: Has expired: No more public distfiles
2011-08-08 sysutils/i855vidctl10: Has expired: No more public distfiles
2011-08-08 sysutils/ltrace: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 sysutils/rsyslog3-snmp: Has expired: unsupported upstream
2011-08-08 sysutils/xapply: Has expired: No more public distfiles
2011-08-08 textproc/asm2html: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 textproc/diff-mode.el: Has expired: Looks like an abandonware, no
more public distfiles
2011-08-08 vietnamese/gtk-im-vi: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 www/campsite: Has expired: Does not work
2011-08-08 www/p5-PLP: Has expired: No more upstream, looks like an abandonware
2011-08-08 www/wcol: Has expired: Looks like an abandonware, no more public
distfiles
2011-08-08 x11-toolkits/sdl_gui: Has expired: Looks like an abandonware, no more
public distfiles

- Add a new port: security/rubygem-twitter_oauth

  twitter_oauth is a Ruby client for the Twitter API using OAuth.

  WWW:  https://github.com/moomerman/twitter_oauth

Add security/p11-kit, a library which provides a way to load and enumerate
PKCS#11 modules and provides a standard configuration setup for installing
PKCS#11 modules in such a way that they're discoverable.

Disconnect the following deprecated ports that only work with java1.4:

  devel/colorer
  java/jboss3
  security/jce_policy14
  textproc/galax

PR:             ports/158969
Submitted by:   rene

This Horde package provides an OAuth consumer (http://oauth.net)
and OAuth infrastruture, and in the future will provide an OAuth server.

WWW: http://pear.horde.org

- Replaced by new pear install
security/horde4-auth

The Horde_Crypt package class provides an API for various cryptographic
systems.

WWW: http://pear.horde.org

Horde_Share provides an interface to all shared resources a user
owns or has access to.

WWW: http://pear.horde.org

The Perms package provides an interface to the Horde permissions system.

WWW: http://pear.horde.org

The Horde_Auth package provides a common interface into the various backends
for the Horde authentication system.

WWW: http://pear.horde.org

Package for managing and accessing the Horde groups system.

WWW: http://pear.horde.org

The Horde_Secret library provides an API for encrypting and decrypting
small pieces of data with the use of a shared key.

WWW: http://pear.horde.org

Belier allows opening a shell or executing a command on a remote computer
through a SSH connection. The main feature of Belier is its ability to cross
several intermediate computers before realizing the job.

WWW: http://www.ohmytux.com/belier/index.html

PR:             ports/156757
Submitted by:   rokaz

SSLScan is a fast SSL port scanner. SSLScan connects to SSL ports and determines
what ciphers are supported, which are the servers prefered ciphers, which SSL
protocols are supported and returns the SSL certificate. Client certificates and
private key can be configured and output is to text / XML.

PR:             ports/158111
Submitted by:   Matthieu BOUTHORS <matthieu@labs.fr>

Free open-source disk encryption software

Main Features:
* Creates a virtual encrypted disk within a file and mounts it as
  a real disk.
* Encrypts an entire partition or storage device such as USB flash
  drive or hard drive.
* Encryption is automatic, real-time (on-the-fly) and transparent.
* Parallelization and pipelining allow data to be read and written
  as fast as if the drive was not encrypted.
* Provides plausible deniability, in case an adversary forces you
  to reveal the password:
  Hidden volume (steganography) and hidden operating system.

WWW: http://www.truecrypt.org/

NOTE: This port is experimental and provides no GUI for managing
truecrypt volumes.

PR:             ports/157072
Submitted by:   Ryan Steinmetz <rpsfa@rit.edu>

Dicewaregen is simple perl script that generated Diceware dictionaries, that
can be used to create secure passwords.

Dicewaregen relies on aspell, to make wordlist. Once you have wordlist you can
create Diceware dictionary. You can make few dictionaries using different
languages, merge them and then make Diceware dictionary.

More info about Diceware: http://world.std.com/~reinhold/diceware.html

WWW: http://hg.bsdroot.lv/aldis/dicewaregen/

PR:             ports/157251
Submitted by:   Aldis Berjoza <aldis at bsdroot.lv>

The Horde_Auth package provides a common interface into the
various backends for the Horde authentication system.

Approved by:    itetcu (mentor)(implicit)

Add pam_google_authenticator 20110519, PAM module for two-step
authentication from Google.

PR:             ports/157152
Submitted by:   Jui-Nan Lin <jnlin at csie.nctu.edu.tw>

- add patch to barnyard2 to allow build with postgresql and tcl
  (reported and fixed upstream)
- display option TCL only for Master port, it makes no sense if
  the slave can de-select a required option
- remove broken barnyard-sguil (master port was removed 2011-04-04)
- add new port barnyard2-sguil [1]
- add entry to MOVED

PR:             ports/156188 [1]
Submitted by:   me
Approved by:    maintainer timeout

- Add p5-String-MkPasswd

This Perl library defines a single function, mkpasswd(), to generate
random passwords. The function is meant to be a simple way for
developers and system administrators to easily generate a relatively
secure password.

WWW: http://search.cpan.org/dist/String-MkPasswd

PR:             ports/156714
Submitted by:   Frank Wall <fw@moov.de>

Libfwbuilder has been merged into fwbuilder.

Add rubygem-net-ssh-multi 1.0.1, SSH connection multiplexing library for
Ruby.

PR:             ports/ports/156780
Submitted by:   Renaud Chaput <renchap at cocoa-x.com>

Remove unmaintained expired ports from security

2011-05-01 security/aafid2: Upstream disapear and distfile is no more available
2011-05-01 security/bjorb: Upstream disapear and distfile is no more available
2011-05-01 security/borzoi: Upstream disapear and distfile is no more available
2011-05-01 security/cmd5checkpw: Upstream disapear and distfile is no more
available
2011-05-01 security/cops: Upstream disapear and distfile is no more available
2011-05-01 security/find_ddos: Upstream disapear and distfile is no more
available
2011-05-01 security/ftpmap: Upstream disapear and distfile is no more available
2011-05-01 security/hafiye: Upstream disapear and distfile is no more available
2011-05-01 security/ident2: Upstream disapear and distfile is no more available
2011-05-01 security/liedentd: Upstream disapear and distfile is no more
available
2011-05-01 security/pam_pop3: Upstream disapear and distfile is no more
available
2011-05-01 security/poc: Upstream disapear and distfile is no more available
2011-05-01 security/portscanner: Upstream disapear and distfile is no more
available
2011-05-01 security/ppgen: Upstream disapear and distfile is no more available
2011-05-01 security/qident: Upstream disapear and distfile is no more available
2011-05-01 security/quintuple-agent: Upstream disapear and distfile is no more
available
2011-05-01 security/rc5pipe: Upstream disapear and distfile is no more available
2011-05-01 security/rid: Upstream disapear and distfile is no more available
2011-05-01 security/ssh: Upstream disapear and distfile is no more available
2011-05-01 security/tea-total: Upstream disapear and distfile is no more
available
2011-05-01 security/uberkey: Upstream disapear and distfile is no more available

arpCounterattack is a program for detecting and remedying "ARP attacks." It
monitors traffic on any number of Ethernet interfaces and examines ARP replies
and gratuitous ARP requests. If it notices an ARP reply or gratuitous ARP
request that is in conflict with its notion of "correct" Ethernet/IP address
pairs, it logs the attack if logging is enabled, and, if the Ethernet
interface that the attack was seen on is is configured as being in aggressive
mode, it sends out a gratuitous ARP request and a gratuitous ARP reply with
the "correct" Ethernet/IP address pair in an attempt to reset the ARP tables
of hosts on the local network segment. The corrective gratuitous ARP request
and corrective gratuitous ARP reply can be sent from an Ethernet interface
other than the one that the attack was seen on.

WWW: http://acm.poly.edu/wiki/ARP_Counterattack

PR:             ports/151973
Submitted by:   Boris Kochergin <spawk@acm.poly.edu>

Remove unmaintained port that depends on expired security/newpki-lib:
security/newpki-client

Remove most expired ports:
2011-04-17 cad/tclspice: has been broken for more than a year
2011-04-17 comms/hcfmdm: does not compile on 7.X or higher
2011-04-17 databases/mysqlcc: has been broken for almost a year
2011-04-17 devel/ruby-rjudy: does not compile on FreeBSD 7.x or newer
2011-04-17 devel/xfc: does not compile on FreeBSD 7.x or newer
2011-04-17 devel/lamson: has been broken for a half year
2011-04-17 devel/cocktail: does not build on FreeBSD 7.x or newer
2011-04-17 devel/djgpp-gcc: has been broken for half a year
2011-04-17 devel/gauche-sdl: has been broken for a year
2011-04-17 devel/gdb53-act: does not compile on FreeBSD 7.x and up
2011-04-17 editors/zed: does not compile on FreeBSD 7.x or newer
2011-04-17 games/aqbubble: does not compile on FreeBSD 7.x or newer
2011-04-17 graphics/libvisual-plugins: has been broken for 3 years
2011-04-17 japanese/roundcube: has been broken for almost a year

(Only the first 15 lines of the commit message are shown above )

Remove expired ports:
2011-04-11 lang/gpc: development has ceased; use lang/fpc instead
2011-04-11 security/mypasswordsafe: development has ceased; try security/gorilla
instead

pkcs11-gateway is a software that allows you to use a Linux 32-bit PKCS#11
module on FreeBSD i386/amd64.
It consists of a FreeBSD Cryptoki wrapper library that serializes and forwards
PKCS#11 function calls to a Linux server program that dlopen() and use the
real module. The communication between the two components is via a UNIX socket.
pkcs11-gateway is based on the rpc-layer of Gnome Keyring.

- Alex Dupre
ale@FreeBSD.org

pkcs11-dump is a small utility to dump PKCS#11 token contents.

WWW:    http://sites.google.com/site/alonbarlev/pkcs11-utilities

 - remove expired port security/barnyard
 - remove barnyard from security/Makefile

Garbage collect expired ports
2011-04-01 accessibility/linux-f8-atk: End of Life since Jan 7, 2009
2011-04-01 archivers/linux-f8-ucl: End of Life since Jan 7, 2009
2011-04-01 archivers/linux-f8-upx: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-alsa-lib: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-arts: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-esound: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-freealut: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-libaudiofile: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-libogg: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-libvorbis: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-mikmod: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-nas-libs: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-openal: End of Life since Jan 7, 2009
2011-04-01 audio/linux-f8-sdl_mixer: End of Life since Jan 7, 2009

(Only the first 15 lines of the commit message are shown above )

- Add create-cert 2.0

create-cert is a script that uses openssl(1) to create self-signed host
certificates and private keys for fully qualified domain names (FQDNs).

PR:             ports/155014
Submitted by:   Craig Leres <leres@ee.lbl.gov>

Get weak or strong random data from pluggable sources

WWW: http://search.cpan.org/dist/Crypt-Random-Source

PR:             ports/155572
Submitted by:   Dereckson <dereckson at gmail.com>

Two new ports: security/yara and security/py-yara. The latter is the python
bindings for the former.

"YARA is a tool aimed at helping malware researchers to identify and classify
malware samples. With YARA you can create descriptions of malware families
based on textual or binary patterns contained on samples of those families.
Each description consists of a set of strings and a Boolean expression which
determines its logic."

WWW: http://code.google.com/p/yara-project/

This module extends existing IO::Async classes with extra methods to
allow the use of SSL or TLS-based connections using IO::Socket::SSL.

WWW:    http://search.cpan.org/dist/IO-Async-SSL/

PR:             ports/155336
Submitted by:   "ports@c0decafe.net" <ports@c0decafe.net>

The OpenVPN Radius Plugin provides RADIUS authentication
and accounting support for OpenVPN.

WWW: http://www.nongnu.org/radiusplugin/index.html

PR:             ports/155259
Submitted by:   Mikhail T. <m.tsatsenko at gmail.com>

Remove extra spaces after port names

Approved by:    portmgr@, ehaupt (mentor)

- Part 1 of python24 removal
        - Clean up bsd.python.mk (remove PYWSGIREF, PYHASHLIB, PYCTYPES and
PYEXPAT) all these is now part of python
          since python25

Remove:
        textproc/py-expat
        devel/py-ctypes
        security/py-hashlib
        www/py-wsgiref

bcrypt() is a sophisticated and secure hash algorithm designed by The OpenBSD
project for hashing passwords. bcrypt-ruby provides a simple, humane wrapper
for safely handling passwords.

WWW: http://rubygems.org/gems/bcrypt-ruby

PR:             ports/153965
Submitted by:   Jason Helfman <jhelfman at experts-exchange.com>
Feature safe:   yes

Twofish is a 128-bit symmetric block cipher with a variable key
length (128, 192, or 256 bits) key, developed by Counterpane Labs.
It is unpatented and free for all uses, as described at
http://www.counterpane.com/twofish.html. It has been one of the
five finalists for AES.

This module is written in pure Perl, it should run everywhere
where Perl runs.

WWW:    http://search.cpan.org/dist/Crypt-Twofish_PP/

PR:             ports/154142
Submitted by:   Konstantin Menshikov <kostjnspb@yandex.ru>
Feature safe:   yes

Add ssh-copy-id 5.6p1, small script which copy your ssh public-key to a
remote host; appending it to your remote authorized_keys.

Feature safe: yes

Honggfuzz is a general-purpose fuzzing tool. Given a starting corpus of test
files, Hongfuzz supplies and modifies input to a test program and utilize the
ptrace() API/POSIX signal interface to detect and log crashes.

WWW:    http://code.google.com/p/honggfuzz/

The x11/libcapplet has been broken for over a year (will be two in June 2011)
and no one has any of interest to fix it. It's an ancient software and
is part of GNOME 1. It's time for us to get rid of some of GNOME 1 stuff as
the GNOME 3 is coming sometimes in 2011. Any ports that required libcappet
are removed and ports that have optional aren't remove.

PR:             ports/153355
Discussed with: My team, FreeBSD GNOME Team
Tested by:      pointyhat-exp (thanks pav!)

Remove expired ports:

2011-01-01 audio/emphasis: abandoned upstream
2011-01-01 converters/ecore-txt: abandoned upstream
2011-01-01 deskutils/estickies: abandoned upstream
2011-01-01 devel/ecore-job: abandoned upstream
2011-01-01 devel/engrave: abandoned upstream
2011-01-01 devel/evfs: abandoned upstream
2011-01-01 devel/ruby-ecore: abandoned upstream
2011-01-01 graphics/exhibit: abandoned upstream
2011-01-01 graphics/epsilon: abandoned upstream
2011-01-01 graphics/esmart: abandoned upstream
2011-01-01 graphics/ruby-edje: abandoned upstream
2011-01-01 graphics/ruby-esmart: abandoned upstream
2011-01-01 graphics/ruby-evas: abandoned upstream

(Only the first 15 lines of the commit message are shown above )

Garbage collect unmaintained expired ports:
2011-01-01 security/lxnb: Development has ceased, mastersite disappeared
2011-01-01 x11-wm/lxsession-lite: Superseded by x11-wm/lxsession

Number of commits found: 968 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10  »  

15 vulnerabilities affecting 34 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities