racoon 20050510a security =46

KAME racoon IKE daemon
Was Maintained by: sumikawa@FreeBSD.org
Port Added: 05 Jul 2000 07:19:29
Also Listed In: net ipv6

---

---

racoon speaks IKE (ISAKMP/Oakley) key management protocol, to
establish security association with other hosts.

Known issues:
- Too many use of dynamic memory allocation, which leads to memory leak.
- Non-threaded implementation.  Simultaneous key negotiation performance
  should be improved.
- Cannot negotiate keys for per-socket policy.
- Cryptic configuration syntax - blame IPsec specification too...
- Needs more documentation.

Design choice, not a bug:
- racoon negotiate IPsec keys only.  It does not negotiate policy.  Policy must
  be configured into the kernel separately from racoon.  If you want to
  support roaming clients, you may need to have a mechanism to put policy
  for the roaming client after phase 1 finishes.

WWW: http://www.kame.net/

CVSWeb : Main Web Site : Distfiles Availability : PortsMon

---

Required To Run: sysutils/rc_subr

---

No installation instructions: this port has been deleted.

The package name of this deleted port was: racoon

---

Configuration Options

     No options to configure

---

Master Sites:

ftp://ftp.kame.net/pub/kame/misc/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

• 2005-12-02

  Affects: users of security/racoon and security/ipsec-tools

  Author: lawrance@FreeBSD.org

  Reason: 
    security/racoon has been removed. You should migrate to its
    replacement, security/ipsec-tools. No configuration changes will
    be required.
  
    The default configuration file location has changed for ipsec-tools.
    You will need to move your racoon configuration files to the new
    location /usr/local/etc/racoon. Alternatively, add this line in
    rc.conf to continue using the old location:
  
    racoon_flags="-f /usr/local/etc"
  
  

• port moved to security/ipsec-tools on 2005-11-18
  REASON: removed, successor is ipsec-tools
  

Racoon is now maintained in security/ipsec-tools.

Add CONFLICTS= ipsec-tools-[0-9]*.

Remove old library compatibility checking.
It was necessary for 4.0-RELEASE.

Upgrade to 20050510a.  This is final release from KAME project.
racoon will be officially developed and supported by ipsec-tools team.
See ftp://ftp.kame.net/pub/mail-list/snap-users/9012 in detail.

Add ipv6 on CATEGORIES.

PR:             ports/70025
Submitted by:   Janos Mohacsi <janos.mohacsi@bsd.hu>

Fixed memory leak.

patch-kmpstat.c is not necessary anymore.

PR:             ports/70620, ports/70622
Submitted by:   Helge Oldach <racoonaug04@oldach.net>,
                Ying-Chieh Chen <yinjieh@csie.nctu.edu.tw>

Upgrade to 20040818a.

Fix build with gcc-3.4

Upgrade to 20040617a.

Submitted by:   ivi@dhs.net.ru

Upgrade to 20040408a.

Upgrade to 20040407b.

Quick fix to avoid DoS attack due to malloc(3) bug.

Related PR:     bin/64991
Submitted by:   suz

Add SIZE.

Submitted by:   trevor

Upgrade to 20040116a.

Upgrade to 20040114a.

rcNG'fy racoon.sh and removed unnecessary patches.

Submitted by:   ume

Upgrade to 20030826.

Fix libipsec checking.

PR:             ports/57106
Submitted by:   Bjoern A. Zeeb <bzeeb+freebsdports@zabbadoz.net>

- don't clobber any given LDFLAGS
  resolves conflitcs with bsd.openssl.mk
Approved by:    sumikawa

Upgrade to 20030711.

Add missing file

Clear moonlight beckons.
Requiem mors pacem pkg-comment,
And be calm ports tree.

E Nomini Patri, E Fili, E Spiritu Sancti.

Upgrade to 20021120.

Add startup script.

Submitted by:   Sam Pikesley <samdavidpikesley@yahoo.co.uk>

Upgrade to 20020507.  Unreadable log should be fixed.

Error reported by:      so many people

Upgrade to 20020426.

Upgrade to 20011215.    

Upgrade to 20011026.    

Upgrade to 20011016.    

Upgrade to 20010831.    

Make buildable on 4-STABLE    

Upgrade to 20010802a.    

Upgrade to 20010418a.    

Upgrade to 20010322.    

Upgrade to 20010222a.    

Upgrade to 20010215a.    

Fix typo.    

Upgrade to 20001111a.    

Upgrade to 20001017 snapshot.    

Convert category security to new layout.  

Update all ports using OpenSSL and RSA to work without rsaref since   it is no
longer required. Apologies to the various maintainers whom I   did not yet hear
back from, but the ports freeze is coming up in a few   hours and I will be
verifying all of these ports on a 4.1 machine   myself to catch any problems.   

Upgrade to 20000719a.    

upgrade to  20000718a.    

racoon: KAME IKE daemon    

5 vulnerabilities affecting 16 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities