A ports freeze means that commits will be few and far between and only by approval.

Number of commits found: 128 (showing only 100 on this page)

1 | 2  »  

Fix rootless build.

PR:             ports/126164
Submitted by:   skv
Approved by:    maintainer timeout (> 3 months)

Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk

(Only the first 15 lines of the commit message are shown above )

- Mark BROKEN after recent kerberos update

- Update to 5.0p1
- Port LPK patch to 5.0p1 and add to files dir
- Remove USE_PERL_BUILD since doesn't need [1]
- Update KERB_GSSAPI to 5.0p1
- Update HPN patch to 5.0p1 13v3
- Respect LOCALBASE on configure_args of LPK [2]
- Change MASTER_SITE of snapshot
- portlint(1)

PR:             121826 [2]
Submitted by:   Andrew Kolchoogin <andrew___rinet.ru> [2]
Reported by:    Björn König <bkoenig___alpha-tierchen.d [1]

- Update HPN patch to hpn12v20
- Bump PORTREVISION

Submitted by:   Ollivier Robert <roberto__keltia.freenix.fr>

- Update gsskex patch to 20070927
- Update HPN patch to hpn12v19 [1]

Notified by:    ale [1]

Remove always-false/true conditions based on OSVERSION 500000

- Update to 4.7p1
- Update HPN patch to 4.7p1-hpn12v18
- Mark as BROKEN WITH_KERB_GSSAPI while developer release a new patch

- Enable ssl-engine
- Update gsskex patch to 4.6p1-gsskex-20070312
- Update lpk patch to 4.6p1-0.3.9
- Update hpn patch to 4.6p1-hpn12v17
- Fix challenge-response issue
- Bump PORTREVISION

Reported by:    Stefan Lambrev [1], ale@ [1]

- Set --mandir and --infodir in CONFIGURE_ARGS if the configure script
  supports them.  This is determined by running ``configure --help'' in
  do-configure target and set the shell variable _LATE_CONFIGURE_ARGS
  which is then passed to CONFIGURE_ARGS.
- Remove --mandir and --infodir in ports' Makefile where applicable
  Few ports use REINPLACE_CMD to achieve the same effect, remove them too.
- Correct some manual pages location from PREFIX/man to MANPREFIX/man
- Define INFO_PATH where necessary
- Document that .info files are installed in a subdirectory relative to
  PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and
  subdirectory detection.

PR:             ports/111470
Approved by:    portmgr
Discussed with: stas (Mk/*), gerald (info related stuffs)
Tested by:      pointyhat exp run

- Update OpenSSH to 4.6p1
- Update GSSKEX patch to 20061220
- Update HPN patch to hpn12v16
- Update LPK patch to 0.3.8

- Use RC_SUBR_SUFFIX

Approved by:    mnag (maintainer)

Update HPN patch to v14 for openssh 4.5p1.

Approved by:    mnag

- Update to 4.5p1
- patch-sshd.c unconditionally includes <gssapi.h>. Include "ssh-gss.h" instead.
[1]

PR:             104481 [1]
Submitted by:   Mark Andrews <Mark_Andrews___isc.org> [1]

- Update HPN patch. Patch are renamed, the only content differences are two rows
now enclosed in an "else" block.

Submitted by:   ale
Approved by:    portmgr (erwin)

- Add OPTION to enable Kerberos/GSSAPI patch [1]
- Add OPTION to enable LPK patch (ldap stored public key) [2]

PR:             86384 [1], 103399 [2]
Submitted by:   Garrett Wollman <wollman___khavrinen.csail.mit.edu> [1], Dmitriy
Kirhlarov <dkirhlarov___oilspace.com> [2]

- Fix package creation. [1]
- Update HPN patch and remove IGNORE. [2]
- Bump PORTREVISION

PR:             103961
Submitted by:   Phil Oleson <oz___nixil.net> [1], ale [2]

- Install ssh_config-dist and sshd_config-dist in OVERWRITE_BASE too.

- Update to 4.4p1.
- Disable temporary HPN patch until HPN release new version.
- Fix rc.d script path in sshd.8
- Add FreeBSD-${PKGNAME} in SSH_VERSION and SSH_RELEASE like src does.
- Sync patches with src.

Security:       CVE-2006-4924, CVE-2006-5051

Update HPN-12 patch to version 8 (no functional changes,
only documentation changes and a small bug fix on option parsing).

Approved by:    mnag

Add optional OpenSC PIN patch which make it possible for OpenSSH to ask
for a PIN when using an OpenSC smartcard.

Approved by:            mnag (maintainer)
Patch obtained from:    http://bugzilla.mindrot.org/show_bug.cgi?id=608

- Remove unecessary ?= in PKGNAMESUFFIX [1]
- Update HPN patch to hpn12. Now none cipher are configured in run time. [2]

Notified by:    Peter Losher <plosher___plosh.net> [1], Scott Larson
<stl___iowainteractive.com> [2]

Add support for smart cards.

Approved by:    maintainer

- Fix order in rc.d script. Because of pidfile are empty, reload [2] and restart
[1]
  commands kill all connections.
- Separate keygen part and create keygen command.
- Bump PORTREVISION

PR:             93228 [1]
Reported by:    DanGer on #bsdports [2]

Forget to add HPN patches.

- Update to 4.3p2

- Update to 4.3p1
- Use DISTVERSION
- Add most configuration in OPTIONS
- Enable support to libedit in sftp [1]
- Add OPTIONS to HPN patches [2]
- Add new rc.d script [3]
- New rc.d script are responsible to check configuration and create host keys
- Using USE_RC_SUBR
- Modify pkg-message to reflect new rc.d script
- Fix pkg-plist

Reviewd by:     dougb [3]
Submitted by:   vs [1], brooks [2]
Tested by:      me, John E Hein

- Reorganize Makefile in preparation to update to 4.3p1
- Add one http in MASTER_SITES
- Update WWW

Update my email

Approved by: pav (mentor)

- Pass maintainership to submitter, since he sent the last patch.

PR:             ports/85775
Submitted by:   Marcus Alves Grando <marcus@corp.grupos.com.br>

- Update to 4.2p1

PR:             ports/85578
Submitted by:   Marcus Grando <marcus@corp.grupos.com.br>

- Update to 4.1p1

PR:             ports/81948
Submitted by:   Daniel Gerzo <danger@rulez.sk>

- Don't specify --with-ssl-dir when using the system's OpenSSL

PR:             ports/79355
Submitted by:   Mark Andrews <Mark_Andrews@isc.org>

- Update to 4.0p1

PR:             ports/79029
Submitted by:   Dimitry Andric <dimitry@andric.com>

- drop maintainership

- new option WITH_OPENSSH_CHROOT
Submitted by:   KANAI Makoto

- update to 3.9p1

set PORTVERSION 3.9.0.1 to avoid another
bump of PORTEPOCH if 3.9.1p1 come out.

- new option OPENSSH_SNAPSHOT

- bump PORTEPOCH
Reported by kriS

- update to 3.8.1p1

- force kerberos by option WITH_GSSAPI

- make PKGNAMESUFFIX more flexible

- add SIZE

- update to 3.8p1

- new option WITHOUT_KERBEROS

PR:             58156
Submitted by:   matt@peterson.org

- fix build with kerberos5 from base and missing libdes
- get rid of autoconf dependency

- fix spelling of gssapi

- add CONFLICTS
Submitted by:   eikemeier@fillmore-labs.com

- GSSAPI patch improved for kerbers5 and hemidal

Submitted by:   bg@sics.se

- cleanup GSSAPI option

- update to 3.7.1p2
more regressions tests successfull

- Security Fix in PAM handling
Obtained from:  des

- mark FORBIDDEN until fixed.

- Security Fix obtained from OpenBSD
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/buffer.c.diff?r1=1.18&r2=1.19

Submitted by:   ash@lab.poc.net

Add Solar Designer's additional fixes to buffer management.

- Securitry Fix revision 2
http://www.openssh.com/txt/buffer.adv
Approved by:    lioux (portmgr)

Do not record expanded size before attempting to reallocate associated
memory.

Obtained from:  OpenBSD

- use OPENSSLRPATH from bsd.openssl.mk
- strip CONFIGURE_ENV, LDFLAGS is set in bsd.openssl.mk

- use hook for bsd.openssl.mk

- Update to gssapi-20030430
Submitted by:   wollman@lcs.mit.edu

- Update to 3.6.1p2

- honor any given LDFLAGS

- Change all USE_OPENSSL_* to WITH_OPENSSL_*

- use bsd.openssl.mk

- Update to 3.6.1p1

- extend regression tests

- Update to 3.6p1

- add USE_PERL5_BUILD

- add COMMENT

- openssh-3.5p1 doesn't log utmp for IPv6 connection correctly
Submitted by:   ume

openssh-gssapi-3.5p1 is marked as broken

remove an disfuntional MASTER_SITE

Update to 3.5p1

add bugfix from CURRENT

Fix resolver problem with privilege-separation.
PR:             39953

- add pam_cleanup from CURRENT
- Fix build problems < 4.0
PR:             40576

Add bits for regression tests
Fix build for /var/empty is schg and have open permissions.

- Fix Problem with HAVE_HOST_IN_UTMP
- update monitor.c

PR:             40576
Submitted by:   lxv@a-send-pr.sink.omut.org

merge PAM buffer management from current.

'PermitRootLogin no' is the new default for the OpenSSH port.
This now matches the PermitRootLogin configuration of OpenSSH in
the base system.  Please be aware of this when upgrading your
OpenSSH port, and if truly necessary, re-enable remote root login
by readjusting this option in your sshd_config.

Users are encouraged to create single-purpose users with ssh keys
and very narrowly defined sudo privileges instead of using root
for automated tasks.

- PKGNAMESUFFIX for GSSAPI set.
- Merged some patches from current to improve PAM.
- Fix BATCH=yes for bento.

give Enviroment from login.conf priority over all others,
problem found by drs@rucus.ru.ac.za.

Update gssapi patch

Defaults changed: (Gregory Sutter)
 ChallengeResponseAuthentication no
 UseLogin no

patch for configure, to detect MAP_ANON submitted by:
Christophe Labouisse,Michael Handler,Gert Doering,Phil Oleson,Dave Baker

fix missing includes for "canohost.h"

Update to openssh-3.4
Update to openssh-3.4p1

Security FIX, Please update to this Version.

Options for both:
USE_OPENSSL_BASE=yes
        uses an older opensssl in the base system.

Options for portable:
OPENSSH_OVERWRITE_BASE=yes
        includes USE_OPENSSL_BASE=yes
        installls in the paths of the base system

Thanks to max@wide.ad.jp, maxim, obraun@informatik.unibw-muenchen.de, fjoe
Patch from current, noted by drs@rucus.ru.ac.za:
environment variables in the 'setenv' field of login.conf are set now.

Streamline OPENSSH_OVERWRITE_BASE=yes

Migrate configuration files to $PREFIX/etc/ssh/
Add ${PREFIX}/etc/rc.d/sshd.sh.sample

change --with-privsep-path if OPENSSH_OVERWRITE_BASE is in effect.
Submitted by:   brad@brad-x.com

Create user for privsep

Update: openssh-3.2.3p1
New manpages: ssh-keysign.8 sftp-server.8 sshd.8
New program ssh-keysign

- Get rid of PERL and use SED

Fix typing error in OPTION

Submitted by:   joseph@randomnetworks.com

Honor Option ENABLE_SUID_SSH
Build defaults witouth SUID

- get rid of duplicate code in Makefiles.
- Fix USE_OPENSSL_PORT and USE_OPENSSL_BASE
- drop obsolete/broken USE_OPENSSL

Update to OpenSSH 3.2.3

- patch openssh-3.1-adv.token.patch is now obsolete.
- remerged PAM changes form previous port
- declare CMSG_* macros.
- fixed bad type in function input_userauth_passwd_changereq

Update to OpenSSH-portable-3.2.3p1

- patch openssh-3.1p1-adv.token.patch is now obsolete
- keep previously declared CONFIGURE_ARGS
- remove openssh-mit-krb5-20020326.diff (should be in the distribution now)
- patch patch-readpassphrase.c is now in teh distribution
- merged previous patches.
- extend CONFIGURE_ARGS so it find OPENSSL again.
- new patches for GSSAPI, not fully tested.

If you have the patch applied:
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/36080

Builds with openssl-0.9.6d under:
2.2.8-RELEASE
3.2-RELEASE
4.2-RELEASE
4.6-RC

Use crypto.3 as dependeny.
To keep consistent with USE_SSL in bsd.port.mk

Chase openssl shlib version increase.

Pointy hat to:  dinoex

openssl:
- some configure scripts check the version of the lib
  so we need to update SHLIBVER
- bump PORTREVISION

openssh:
- build ports with local openssl, if it exists

Security fix for token passing, see bugtraq for details.
- fetch and use openssh-3.1-adv.token.patch to build.
- bump PORTREVISION

- Fix problem with auth_ttyok and ttyname
- Make KERBEROS patch build with heimdal port

Number of commits found: 128 (showing only 100 on this page)

1 | 2  »  

14 vulnerabilities affecting 30 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities