FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
cfs Cryptographic file system implemented as a user-space NFS server
1.5.0.b security on this many watch lists=19 search for ports that depend on this port An older version of this port was marked as vulnerable.
Maintained by: crees@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
License: not specified in port
This is CFS, Matt Blaze's Cryptographic File System.  It provides
transparent encryption and decryption of selected directory trees.
It is implemented as a user-level NFS server and thus does not
require any kernel modifications.

For an overview of how to use it, read "${PREFIX}/share/doc/cfs/notes.ms"
and the manual pages.  There is a paper describing CFS at:

    http://www.crypto.com/papers/cfs.pdf

WWW: http://www.bayofrum.net/cgi-bin/fossil/cfs/
SVNWeb : Main Web Site : Distfiles Availability : PortsMonThere are no ports dependent upon this port

To install the port: cd /usr/ports/security/cfs/ && make install clean
To add the package: pkg install security/cfs


Configuration Options
     No options to configure

Master Sites:
  1. http://distcache.FreeBSD.org/ports-distfiles/
  2. http://www.bayofrum.net/dist/cfs/

Number of commits found: 42

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
13 Nov 2014 09:02:57
Original commit files touched by this commit  1.5.0.b
Revision:372514
antoine search for other commits by this committer
Cleanup plist
17 Jul 2014 08:57:51
Original commit files touched by this commit  1.5.0.b
Revision:362126
olgeni search for other commits by this committer
Remove indefinite articles and trailing periods from COMMENT, plus
minor COMMENT typos and surrounding whitespace fixes. A few Makefiles
where not included as they contain Latin-1 characters that break
the Phabricator workflow. Categories P-S.

CR:		D422
Approved by:	portmgr (bapt)
20 May 2014 19:32:39
Original commit files touched by this commit  1.5.0.b
Revision:354670
tijl search for other commits by this committer
Quote ${CC} and similar variables in MAKE_ARGS.

Reported by:	Dominic Fandrey <kamikaze@bsdforen.de>
20 Oct 2013 18:39:17
Original commit files touched by this commit  1.5.0.b
Revision:331051
eadler search for other commits by this committer
- Convert to staging

Approved by:	crees (maintainer)
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.5.0.b
Revision:327769
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
16 May 2013 18:22:09
Original commit files touched by this commit  1.5.0.b
Revision:318325
crees search for other commits by this committer
Use explicit IP for localhost rather than DNS name; this causes ipv6 attempts

PR:		ports/155788
Submitted by:	System Administrator <root@naboo.vindaloo.com>

Pass flag to mount to disable lockd

PR:		ports/137378
Submitted by:	kib
15 May 2013 17:29:34
Original commit files touched by this commit  1.5.0.b
Revision:318250
crees search for other commits by this committer
security/cfs: Resurrect and maintain CFS.

The referenced security issues have been fixed in this version (1.5.0 beta), and
some small bugs have been found too, with many fixes from Debian's Gerrit Pape.

Obtained from:	Debian (parts)
Security:	CVE-2002-0351
Security:	CVE-2006-3123
04 Oct 2011 23:16:31
Original commit files touched by this commit  1.4.1_6
 This port version is marked as vulnerable.
rene search for other commits by this committer
Remove expired port:
2011-10-04 security/cfs: Locks don't work, ports/137378, unmaintained, dead
upstream, insecure
04 Sep 2011 19:11:16
Original commit files touched by this commit  1.4.1_6
 This port version is marked as vulnerable.
crees search for other commits by this committer
- After more research, mark FORBIDDEN -- vulnerable to buffer overflows.
- As per policy on security issues, shorten removal date to one month.

Security:       CVE-2002-0351
Security:       DSA-116-1
04 Sep 2011 16:57:30
Original commit files touched by this commit  1.4.1_6
 This port version is marked as vulnerable.
crees search for other commits by this committer
Mark deprecated; broken for two years with no fix.

Expires on 4/Nov

PR:             ports/137378 ports/155788
17 Aug 2011 10:52:12
Original commit files touched by this commit  1.4.1_6
 This port version is marked as vulnerable.
crees search for other commits by this committer
Fix rc script to stop nfs hangs

PR:             ports/133563
Submitted by:   Thiemo Nordenholz <list@thiemo.net>, yar
03 Jul 2011 14:03:52
Original commit files touched by this commit  1.4.1_5
 This port version is marked as vulnerable.
ohauer search for other commits by this committer
-remove MD5
27 Mar 2010 00:15:24
Original commit files touched by this commit  1.4.1_5
 This port version is marked as vulnerable.
dougb search for other commits by this committer
Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#
21 Dec 2009 02:19:12
Original commit files touched by this commit  1.4.1_5
 This port version is marked as vulnerable.
dougb search for other commits by this committer
For ports maintained by ports@FreeBSD.org, remove names and/or
e-mail addresses from the pkg-descr file that could reasonably
be mistaken for maintainer contact information in order to avoid
confusion on the part of users looking for support. As a pleasant
side effect this also avoids confusion and/or frustration for people
who are no longer maintaining those ports.
01 Mar 2009 00:37:19
Original commit files touched by this commit  1.4.1_5
 This port version is marked as vulnerable.
linimon search for other commits by this committer
Attempt to fix port after usb2 import.

Submitted by:   ed
19 Dec 2008 17:34:15
Original commit files touched by this commit  1.4.1_5
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Mark BROKEN on FreeBSD 6.x

Reported by:    pointyhat
23 Sep 2008 04:12:14
Original commit files touched by this commit  1.4.1_5
 This port version is marked as vulnerable.
edwin search for other commits by this committer
Fix build for 7.0
Thanks to alfred@ for his help.
13 May 2006 04:15:53
Original commit files touched by this commit  1.4.1_4
 This port version is marked as vulnerable.
edwin search for other commits by this committer
Remove USE_REINPLACE from all categories starting with S
31 Mar 2006 06:35:51
Original commit files touched by this commit  1.4.1_4
 This port version is marked as vulnerable.
linimon search for other commits by this committer
Reset green@ as maintainer at his request.

Hat:            portmgr
24 Jan 2006 01:03:33
Original commit files touched by this commit  1.4.1_4
 This port version is marked as vulnerable.
edwin search for other commits by this committer
SHA256ify

Approved by: krion@
28 Oct 2005 23:01:35
Original commit files touched by this commit  1.4.1_4
 This port version is marked as vulnerable.
kris search for other commits by this committer
BROKEN on 7.0: Does not compile
08 Jun 2005 11:11:08
Original commit files touched by this commit  1.4.1_4
 This port version is marked as vulnerable.
jylefort search for other commits by this committer
- convert cfsd.sh to rcNG
- add a CFS bootstrap directory to the port (${PREFIX}/cfsd-bootstrap)
- mount that CFS bootstrap directory in cfsd.sh (default mountpoint is /crypt,
  configurable in /etc/rc.conf)
- explain how to quickly setup cfsd in pkg-message
- do display pkg-message
- while here, use USE_RC_SUBR

PR:             ports/18800
Submitted by:   Louis Mamakos <louie@TransSys.COM>, myself
Approved by:    green (maintainer)
12 Apr 2005 09:06:26
Original commit files touched by this commit  1.4.1_3
 This port version is marked as vulnerable.
flz search for other commits by this committer
- Merge and split existing patch-a[a-f] files.
- Fix types issues on 64-bits architectures.

PR:             ports/75878
Submitted by:   Ville-Pertti Keinonen <will@exomi.com>
Approved by:    maintainer timeout (3 months)
19 May 2004 21:20:01
Original commit files touched by this commit  1.4.1_2
 This port version is marked as vulnerable.
green search for other commits by this committer
Back out the work-around for CFS's failure to use 8-bit filenames.  It
appears to be crashing some people (but not others).
29 Apr 2004 03:26:11
Original commit files touched by this commit  1.4.1_1
 This port version is marked as vulnerable.
green search for other commits by this committer
Reinstate changes made during ports freeze, correcting "PORTREVESION"
so that the version is actually bumped.
23 Apr 2004 15:18:28
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
green search for other commits by this committer
Committing stuff during ports freezes is generally frowned upon.
22 Apr 2004 07:27:01
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
green search for other commits by this committer
Revamp cfssh(1) so that it creates the attach points randomly again.
It used $RANDOM when it was a ksh script, but here it had always
been broken because ash (/bin/sh) doesn't have it.

Also, make the cfssh manpage refer to itself as cfssh instead of ssh.

Submitted by:   Martin Kammerhofer <dada@sbox.tugraz.at>
PR:             65620
18 Apr 2004 03:12:05
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
green search for other commits by this committer
Previously, cfsd would screw up if you used 8-bit filenames.  Fix the
checksum mechanism for pathnames so that it works for those paths.

Submitted by:   Olof Samuelsson <olof@s8n.pp.se>
PR:     35353
31 Mar 2004 03:12:58
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
trevor search for other commits by this committer
SIZEify (maintainer timeout)
09 Jul 2003 00:39:32
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
jdp search for other commits by this committer
Update the link to Matt Blaze's CFS paper.
07 Mar 2003 06:10:51
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
ade search for other commits by this committer
Clear moonlight beckons.
Requiem mors pacem pkg-comment,
And be calm ports tree.

E Nomini Patri, E Fili, E Spiritu Sancti.
03 Feb 2003 15:37:55
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
green search for other commits by this committer
Notify users of security/cfs that rpcbind may need -L to accept
connections to register cfs with it.

Determined by:  Brad Forschinger <freebsd@bnjf.id.au>
17 May 2002 03:16:04
Original commit files touched by this commit  1.4.1
 This port version is marked as vulnerable.
green search for other commits by this committer
Upgrade to 1.4.1.

PR:             29638
Submitted by:   Scott Renfro <scott@renfro.org>
29 Oct 2001 21:56:08
files touched by this commit
green search for other commits by this committer
Bump PORTREVISION.    
29 Oct 2001 19:39:39
files touched by this commit
green search for other commits by this committer
Fix a possible-corruption-at-end-of-file bug.    
08 Oct 2000 07:30:58
files touched by this commit
asami search for other commits by this committer
Convert category security to new layout.  
22 Jul 2000 15:46:49
files touched by this commit
ache search for other commits by this committer
Install cfsd.sh script only if not already installed    
18 Jul 2000 04:42:15
files touched by this commit
ache search for other commits by this committer
Use 'killall cfsd' on stop    
18 Jul 2000 04:20:09
files touched by this commit
ache search for other commits by this committer
Use new style start/stop rc.d script   Unrestrict port since we are able to
distribute crypto    
15 Jul 2000 07:35:26
files touched by this commit
green search for other commits by this committer
Strategically change a couple malloc() calls to calloc() calls so that   every
request doesn't return NFSERR_STALE.  This CFS bug brought to   light by the
letters p, h, and k :)  
05 Jun 2000 04:31:19
files touched by this commit
kris search for other commits by this committer
Remove empty directory on deinstall    
23 May 2000 02:02:39
files touched by this commit
green search for other commits by this committer
Update to cfs version 1.4.0 beta 2.    

Number of commits found: 42

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
ntpDec 20
ntp-develDec 20
gitDec 19
otrsDec 16
mod_dav_svnDec 15
subversionDec 15
subversion16Dec 15
subversion17Dec 15
nvidia-driverDec 14
nvidia-driver-173Dec 14
nvidia-driver-304Dec 14
asterisk11Dec 11
bind99Dec 11
xorg-serverDec 10
unboundDec 09

10 vulnerabilities affecting 27 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24438
Broken 145
Deprecated 70
Ignore 398
Forbidden 2
Restricted 207
No CDROM 93
Vulnerable 19
Expired 0
Set to expire 65
Interactive 0
new 24 hours 2
new 48 hours6
new 7 days20
new fortnight45
new month129

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.