Port details |
- fwknop SPA implementation for Linux and FreeBSD
- 2.6.10_4 security =5 2.6.10_3Version of this port present on the latest quarterly branch.
- Maintainer: sean.greven@gmail.com
- Port Added: 2008-06-13 03:44:08
- Last Update: 2024-07-08 05:08:30
- Commit Hash: c1dda71
- People watching this port, also watch:: postfix, openssl, monit, gitolite, nut
- License: GPLv2
- WWW:
- https://www.cipherdyne.org/fwknop/
- Description:
- fwknop, "FireWall KNock OPerator", implements Single Packet Authorization (SPA).
- ¦ ¦ ¦ ¦
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- Conflicts:
- CONFLICTS_BUILD:
- To install the port:
- cd /usr/ports/security/fwknop/ && make install clean
- To add the package, run one of these commands:
- pkg install security/fwknop
- pkg install fwknop
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: fwknop
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1536844863
SHA256 (fwknop-2.6.10.tar.gz) = 2b15050bae92ec5210fcac944a7aa4bf9c651333a2b2960aabcd5cfc1d527cf1
SIZE (fwknop-2.6.10.tar.gz) = 1988197
Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- wget : ftp/wget
- Runtime dependencies:
-
- wget : ftp/wget
- indexinfo : print/indexinfo
- Library dependencies:
-
- libassuan.so : security/libassuan
- libgpgme.so : security/gpgme
- libgpg-error.so : security/libgpg-error
- There are no ports dependent upon this port
Configuration Options:
- ===> The following configuration options are available for fwknop-2.6.10_4:
GPGME=on: Build support for gpgme
====> Firewall Backend: you have to select exactly one of them
IPFW=on: Use the IPFW firewall
PF=off: Use the PF firewall.
===> Use 'make config' to modify these settings
- Options name:
- security_fwknop
- USES:
- cpe libtool
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|
Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
2.6.10_4 08 Jul 2024 05:08:30 |
Jason E. Hale (jhale) |
*/*: Chase security/libassuan shlib bump |
2.6.10_3 25 Feb 2024 13:19:41 |
Muhammad Moinur Rahman (bofh) |
security/fwknop: Moved man to share/man
Approved by: portmgr (blanket) |
07 Sep 2022 21:58:51 |
Stefan Eßer (se) |
Remove WWW entries moved into port Makefiles
Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.
This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.
Approved by: portmgr (tcberner) |
2.6.10_2 07 Sep 2022 21:10:59 |
Stefan Eßer (se) |
Add WWW entries to port Makefiles
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above ) |
2.6.10_2 20 Jul 2022 14:22:56 |
Tobias C. Berner (tcberner) |
security: remove 'Created by' lines
A big Thank You to the original contributors of these ports:
* <ports@c0decafe.net>
* Aaron Dalton <aaron@FreeBSD.org>
* Adam Weinberger <adamw@FreeBSD.org>
* Ade Lovett <ade@FreeBSD.org>
* Aldis Berjoza <aldis@bsdroot.lv>
* Alex Dupre <ale@FreeBSD.org>
* Alex Kapranoff <kappa@rambler-co.ru>
* Alex Samorukov <samm@freebsd.org>
* Alexander Botero-Lowry <alex@foxybanana.com>
* Alexander Kriventsov <avk@vl.ru>
* Alexander Leidinger <netchild@FreeBSD.org> (Only the first 15 lines of the commit message are shown above ) |
2.6.10_2 16 Oct 2021 09:51:39 |
Jimmy Olgeni (olgeni) |
*: fix tab vs. space issues, and comments according to the guide. |
2.6.10_2 08 Apr 2021 18:58:07 |
Kevin Bowling (kbowling) |
security/fwknop: Fix compilation on FreeBSD 13+
PR: 254570
Reported by: Jens Grassel <freebsd-ports@jan0sch.de>
Approved by: Sean Greven <sean.greven@gmail.com> (maintainer) |
2.6.10_1 06 Apr 2021 14:31:13 |
Mathieu Arnold (mat) |
all: Remove all other $FreeBSD keywords. |
2.6.10_1 06 Apr 2021 14:31:07 |
Mathieu Arnold (mat) |
Remove # $FreeBSD$ from Makefiles. |
2.6.10_1 18 Feb 2021 05:46:54 |
linimon |
Mark BROKEN in 13/14 (via latest llvm update). |
2.6.10_1 10 Nov 2018 18:12:58 |
bapt |
Install texinfo files (GNU info) into ${PREFIX}/share/info
After a discussion on the mailing list on moving manpages to
${PREFIX}/share/man for consistency with base where it is
installed in usr/share/man, it appeared the same should happen
to GNU info files which were installed under share in base and
not in ports.
Now texinfo is not in base on any of the supported version of FreeBSD
it is possible to proceed to this move and it is easier to do than
the manpage change.
Other benefit than consistency are less patching: all build tools but
cmake are expecting info files to be under share/info and cmake (patched here)
was having an exception for BSD so the patch makes FreeBSD case less
specific for them
Bump revision of all impacted ports
PR: 232907
exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D17816 |
2.6.10 30 Sep 2018 20:54:01 |
fernape |
security/fwknop: update to 2.6.10
PR: 231343
Submitted by: jan0sch@mykolab.com
Approved by: tcbener (mentor, implicit) sean.greven@gmail.com (maintainer) |
2.6.9_2 05 Oct 2017 19:27:45 |
cs |
Resolve conflict
PR: 222382
Submitted by: Jens Grassel <jan0sch@mykolab.com>
Approved by: maintainer |
2.6.9_1 15 Sep 2017 20:49:54 |
swills |
security/fwknop: update to 2.6.9
Update to 2.6.9 [0]
While here, add missing deps [1]
PR: 222287
Submitted by: sean.greven@gmail.com (maintainer) [0][1]
Reported by: Jens Grassel <jan0sch@mykolab.com> [1] |
2.6.8_1 02 Dec 2016 11:58:22 |
mat |
Do not use post-stage. Use post-install instead.
The only reason to use post-stage is because the port needs to do
"things" at a later time, like some plist manipulation.
While there, fold post-install in do-install targets when they are
defined.
PR: 214780
Submitted by: mat
Exp-run by: antoine
Sponsored by: Absolight |
2.6.8_1 26 Nov 2016 23:41:17 |
jhale |
Update security/gpgme-* to 1.8.0
In this version, libgpgme-pthread.so has been removed in favor of just
using libgpgme.so as the thread-safe library. PORTREVISION has been
bumped on all ports depending on security/gpgme so that any that may have
linked to -lgpgme-pthread will link to -lgpgme instead.
The Python module provided by security/py-gpgme has been renamed upstream
from pyme3 to gpg. This removes the conflict with security/py-pyme,
although security/py-gpgme is still the direct replacement of that
module. |
2.6.8 02 May 2016 16:02:26 |
arved |
Update to 2.6.8
PR: 209026
Submitted by: Jens Grassel
Approved by: maintainer |
2.6.7 01 Apr 2016 14:25:18 |
mat |
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.
With hat: portmgr
Sponsored by: Absolight |
2.6.7 23 Nov 2015 06:20:46 |
riggs |
Allow to select pf instead of default ipfw for firewall backend
PR: 204334
Submitted by: jan0sch@mykolab.com
Reviewed by: sean.greven@gmail.com (maintainer) |
2.6.7 16 Oct 2015 12:25:21 |
koobs |
security/fwknop: Update to 2.6.7
* Update to 2.6.7
* Update and sort pkg-plist
* Group/sort sections
* Convert to OPTIONS helpers
* Use install-strip target so binaries/libraries are stripped
PR: 203168
Submitted by: Sean Greven <sean.greven gmail com> (maintainer) |
2.5.1_3 20 Sep 2015 21:12:21 |
olgeni |
Typos, whitespace and capitalization fixes (S-X). |
2.5.1_3 02 Aug 2015 15:03:20 |
tijl |
By default libtool replaces -export-symbols <file> with -retain-symbols-file
<file> on ELF systems, but this doesn't really do what -export-symbols is
meant to do. On GNU ELF systems it converts <file> to a simple version
script first and then uses -version-script instead of -retain-symbols-file.
Let USES=libtool patch libtool scripts to do this on all systems with GNU
ld(1).
Bump PORTREVISION on all ports where the build log contains -export-symbols.
audio/calf: This port builds a module that now exports only one function,
but it also builds a number of executables that link to this module and
expect to see other functions. Because it's already a bit dodgy to link to
a module (libtool warns about this) let the module continue to export only
one function and instead build an ordinary library from the same source that
the executables can link to. Fix a number of other issues in the same (Only the first 15 lines of the commit message are shown above ) |
2.5.1_2 24 Apr 2015 00:55:51 |
amdmi3 |
- Add CPE info
Approved by: portmgr blanket |
2.5.1_2 13 Nov 2014 09:02:57 |
antoine |
Cleanup plist |
2.5.1_2 04 Jul 2014 07:41:55 |
amdmi3 |
- Switch to USES=libtool, drop .la files
Approved by: portmgr blanket |
2.5.1_1 09 Mar 2014 14:26:26 |
miwi |
- Stage support |
2.5.1_1 20 Oct 2013 19:20:16 |
jhale |
- Update security/gpgme to 1.4.3
- Use USE_GNOME= ltverhack to correct the library version number
to what the author intended. This effectively rolls the version
number backwards, but should prevent future unneccesary version
bumps.
- Support staging
- Use options helpers
- Use new LIB_DEPENDS syntax
- Bump PORTREVISION on dependent ports |
2.5.1 20 Sep 2013 22:55:26 |
bapt |
Add NO_STAGE all over the place in preparation for the staging support (cat:
security) |
2.5.1 13 Sep 2013 12:12:49 |
wg |
security/fwknop: update to 2.5.1
- Update to 2.5.1 [1]
- Add LICENSE (GPLv2) [1]
- Convert lib depends to new format
PR: ports/181642
Submitted by: Kozlov Sergey <kozlov.sergey.404 gmail.com>
Approved by: maintainer (timeout) |
2.0.4 01 Mar 2013 17:19:32 |
pawel |
- Update to version 2.0.4 [1]
- Package links to gpgme, make it LIB_DEPENDS also turn off
linking to it when GPGME=off
- Add empty line between description and WWW line,
remove extraneous whitespace on EOL in pkg-descr
PR: ports/174732 [1]
Submitted by: Sean Greven <sean.greven@gmail.com> (maintainer) |
2.0.3 27 Nov 2012 21:41:29 |
rakuco |
Update to 2.0.3.
This new version includes a migration from Perl to C and support for
ipfw and pf.
While here, trim the Makefile headers.
PR: ports/171951
Submitted by: Sean Greven <sean.greven@gmail.com> (maintainer)
Feature safe: yes |
1.8.3_2 25 Jul 2012 11:24:11 |
cs |
Fix typos in COMMENT |
1.8.3_2 30 Jun 2012 12:36:12 |
az |
- Remove SITE_PERL from *_DEPENDS
Approved by: portmgr@ (bapt@) |
1.8.3_2 21 Jan 2012 17:40:15 |
eadler |
At the moment 1385 ports use BUILD_DEPENDS= ${RUN_DEPENDS} and 450
ports use BUILD_DEPENDS:= ${RUN_DEPENDS}. This patch fixes ports that are
currently broken. This is a temporary measure until we organically stop using
:= or someone(s) spend a lot of time changing all the ports over.
Explicit duplication > := > = and this just moves ports one step to the left
Approved by: portmgr |
1.8.3_2 03 Jul 2011 14:03:52 |
ohauer |
-remove MD5 |
1.8.3_2 16 Dec 2010 02:34:07 |
glarkin |
- Chase security/libksba shlib version bump
Requested by: kwm
Pointyhat to: glarkin |
1.8.3_1 13 Jun 2008 11:20:13 |
edwin |
Temporary fix "building" by setting IS_INTERACTIVE |
1.8.3 13 Jun 2008 03:43:51 |
edwin |
New port: security/fwknop fwknop,"FireWall KNock OPerator", implements
Single Packet Authorization (SPA).
fwknop stands for the "FireWall KNock OPerator", and
implements an authorization scheme called Single Packet
Authorization (SPA). This method of authorization is based
around a default-drop packet filter (fwknop supports both
iptables on Linux systems and ipfw on FreeBSD and Mac OS X
systems) and libpcap.
SPA requires only a single encrypted packet in order to
communicate various pieces of information including desired
access through an iptables policy and/or complete commands
to execute on the target system. By using iptables to
maintain a "default drop" stance, the main application of (Only the first 15 lines of the commit message are shown above ) |