FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
squid HTTP Caching Proxy
3.5.20 www on this many watch lists=167 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: timp87@gmail.com search for ports maintained by this maintainer
Port Added: 13 Oct 2002 21:07:20
Also Listed In: ipv6
License: GPLv2
Squid is a fully-featured HTTP/1.0 proxy which is almost (but not quite)
HTTP/1.1 compliant. Squid offers a rich access control, authorization and
logging environment to develop web proxy and content serving applications.

WWW: http://www.squid-cache.org/
SVNWeb : Homepage : PortsMon

To install the port: cd /usr/ports/www/squid/ && make install clean
To add the package: pkg install squid

PKGNAME: squid

distinfo:

TIMESTAMP = 1467937151
SHA256 (squid3.5/squid-3.5.20.tar.xz) = 37db73bd33ddd3503fe375bc3f2b47d9fb7309042e439ad3651f21d5dcf2d395
SIZE (squid3.5/squid-3.5.20.tar.xz) = 2319780


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. perl5>=5.20<5.21 : lang/perl5.20
Runtime dependencies:
  1. perl5>=5.20<5.21 : lang/perl5.20

This port is required by:

for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for squid-3.5.20:
     ARP_ACL=on: ARP/MAC/EUI based authentification
     CACHE_DIGESTS=on: Use cache digests
     DEBUG=off: Build with extended debugging support
     DELAY_POOLS=on: Delay pools (bandwidth limiting)
     DOCS=on: Build and/or install documentation
     ECAP=off: Loadable content adaptation modules
     ESI=off: ESI support
     EXAMPLES=on: Build and/or install examples
     FOLLOW_XFF=on: Support for the X-Following-For header
     FS_AUFS=on: AUFS (threaded-io) support
     FS_DISKD=on: DISKD storage engine controlled by separate service
     FS_ROCK=on: ROCK storage engine
     HTCP=on: HTCP support
     ICAP=on: the ICAP client
     ICMP=on: ICMP pinging and network measurement
     IDENT=on: Ident lookups (RFC 931)
     IPV6=on: IPv6 protocol support
     KQUEUE=on: Kqueue(2) support
     LARGEFILE=on: Support large (>2GB) cache and log files
     LAX_HTTP=on: Do not enforce strict HTTP compliance
     NETTLE=off: Nettle MD5 algorithm support
     SNMP=on: SNMP support
     SSL=on: SSL gatewaying support
     SSL_CRTD=on: Use ssl_crtd to handle SSL cert requests
     STACKTRACES=off: Enable automatic backtraces on fatal errors
     VIA_DB=on: Forward/Via database
     WCCP=on: Web Cache Coordination Protocol
     WCCPV2=on: Web Cache Coordination Protocol v2
====> Authentication helpers
     AUTH_LDAP=off: Install LDAP authentication helpers
     AUTH_NIS=on: Install NIS/YP authentication helpers
     AUTH_SASL=off: Install SASL authentication helpers
     AUTH_SQL=off: Install SQL based auth
====> GSSAPI Security API support: you have to select exactly one of them
     GSSAPI_NONE=off: Disable GSSAPI support
     GSSAPI_BASE=on: GSSAPI support via base system (Kerberos required)
     GSSAPI_HEIMDAL=off: GSSAPI support via security/heimdal
     GSSAPI_MIT=off: GSSAPI support via security/krb5
====> Samba authentication helpers: you can only select none or one of them
     AUTH_SMB3=off: Install SMB3 auth. helpers (req. net/samba36)
     AUTH_SMB4=off: Install SMB4 auth. helpers (req. net/samba42)
====> Options available for the radio FW: you can only select none or one of them
     TP_IPF=off: Transparent proxying with IPFilter
     TP_IPFW=on: Transparent proxying with IPFW
     TP_PF=off: Transparent proxying with PF
===> Use 'make config' to modify these settings

USES:
compiler cpe perl5 shebangfix tar:xz ssl gssapi

Master Sites:
  1. http://www.eu.squid-cache.org/Versions/v3/3.5/
  2. http://www.squid-cache.org/Versions/v3/3.5/
  3. http://www1.at.squid-cache.org/Versions/v3/3.5/
  4. http://www1.jp.squid-cache.org/Versions/v3/3.5/
  5. http://www2.us.squid-cache.org/Versions/v3/3.5/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2008-07-14
    Affects: users of www/squid
    Author: Thomas-Martin Seck <tmseck@web.de>
    Reason: 
      www/squid has been updated to Squid 2.7.STABLE3.
    
      The update should be rather straightforward.
    
      The only noticeable change in the port is that the ICAP patch is no
      longer included; this is because this patch was unmaintained for a long
      time and its use was not really recommended.  Please consider moving to
      Squid-3 (currently available as www/squid30) if you need ICAP support.
    
      Squid 2.6 is still available as www/squid26 and will probably be removed
      from the Ports Tree by the end of 2008.
    
    
Port Moves
  • port moved here from www/squid33 on 2015-03-15
    REASON: Has expired: Reached EOL on 28 August 2014, use www/squid (v3.4) instead

Number of commits found: 226 (showing only 100 on this page)

1 | 2 | 3  »  

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
08 Jul 2016 00:59:59
Original commit files touched by this commit  3.5.20
Revision:418207
junovitch search for other commits by this committer
www/squid: update 3.5.19 -> 3.5.20

- Also swap USE_OPENSSL=yes to USES=ssl

PR:		210811
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
23 May 2016 20:35:01
Original commit files touched by this commit  3.5.19
Revision:415742
amdmi3 search for other commits by this committer
Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket
19 May 2016 11:09:14
Original commit files touched by this commit  3.5.19
Revision:415503
amdmi3 search for other commits by this committer
- Fix trailing whitespace in pkg-messages

Approved by:	portmgr blanket
15 May 2016 11:16:43
Original commit files touched by this commit  3.5.19
Revision:415227
brnrd search for other commits by this committer
www/squid: Fix configure errors for libssl

  - Fix building with ports' OpenSSL/LibreSSL
  - Use GSSAPI descriptions from Mk/Uses/gssapi.mk
  - Use more OPTIONS features

PR:		208584
Submitted by:	timp87@gmail.com (maintainer)
MFH:		2016Q2
11 May 2016 12:56:26
Original commit files touched by this commit  3.5.19
Revision:414987
matthew search for other commits by this committer
Security update to 3.5.19

PR:		209334
Submitted by:	timp87@gmail.com (maintainer)
Security:	25e5205b-1447-11e6-9ead-6805ca0b3d42
01 May 2016 20:31:28
Original commit files touched by this commit  3.5.17_1
Revision:414423 This port version is marked as vulnerable.
matthew search for other commits by this committer
Add conflicts against the new squid-devel port

Rework transparent proxy / firewall related options

PR:		203860
Submitted by:	timp87@gmail.com (maintainer)
21 Apr 2016 16:43:15
Original commit files touched by this commit  3.5.17
Revision:413746 This port version is marked as vulnerable.
swills search for other commits by this committer
many ports: mark broken on powerpc64
20 Apr 2016 18:49:29
Original commit files touched by this commit  3.5.17
Revision:413697 This port version is marked as vulnerable.
pi search for other commits by this committer
www/squid: 3.5.16 -> 3.5.17

Changes:
  http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID_3_5_17.html
  http://www.squid-cache.org/Advisories/SQUID-2016_5.txt

PR:		208939
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
MFH:		2016Q2
Security:	CVE-2016-4052, CVE-2016-4053, CVE-2016-4054
20 Apr 2016 13:45:22
Original commit files touched by this commit  3.5.16_1
Revision:413688 This port version is marked as vulnerable.
pi search for other commits by this committer
www/squid: Add all available official patches up to 14031

It fixes two annoying and long-standing problems:
- header forgery detection (using sslbump) leads to crash
- add chained certificates and signing certificate to
  peek-then-bumped connections.

PR:		207901
MFH:		2016Q2
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
Reported by:	Christophe Anselme-Moizan <christophe.anselmemoizan@orange.com>
02 Apr 2016 15:13:35
Original commit files touched by this commit  3.5.16
Revision:412410 This port version is marked as vulnerable.
riggs search for other commits by this committer
Update to upstream version 3.5.16

PR:		208463
Submitted by:	timp87@gmail.com (maintainer)
01 Apr 2016 14:33:58
Original commit files touched by this commit  3.5.15_2
Revision:412351 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories v, w, x, y, and z.

With hat:	portmgr
Sponsored by:	Absolight
31 Mar 2016 19:05:15
Original commit files touched by this commit  3.5.15_2
Revision:412287 This port version is marked as vulnerable.
pi search for other commits by this committer
www/squid: cleanup, adding patches

1. Turn ON all options that don't require external dependencies.
2. Split SMB options to more items to make it possible to compile
   squid with samba36 and samba42.*
3. Set databases/p5-DBI as a dependency for SQL option and add note
   to pkg-message about perl DBD drivers.*
4. Add fix for PF+IPv6.**
5. Require SSL option if SSL_CRTD is on.
6. Small fixes.
7. Add all available patches from upstream.

*  thanks to Alonso Cardenas Marquez!
** thanks to Orlando Bassotto!

PR:		208290
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
14 Mar 2016 16:26:41
Original commit files touched by this commit  3.5.15_1
Revision:411100 This port version is marked as vulnerable.
feld search for other commits by this committer
www/squid: Fix crashes under heavy load

Squid 3.5.15 addresses security issues, but reports have been made that
it is unstable under load. These patches repair stability while not
requiring we downgrade to 3.5.14 which reintroduces security vulnerabilities.

PR:		207762
Approved by:	maintainer
MFH:		2016Q1
25 Feb 2016 01:09:22
Original commit files touched by this commit  3.5.15
Revision:409487 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: update 3.5.14 -> 3.5.15

Changes:
* Bug 3870 assertion failed: String.cc: 'len_ + len <65536' in ESI::CustomParser
* Fix multiple assertion on String overflows
* Fix unit test errors on MacOS
* Better handling of huge response headers. Fewer incorrect "Bug #3279" messages
* Log noise reduction for eCAP

PR:		207454
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
Security:	https://vuxml.FreeBSD.org/freebsd/660ebbf5-daeb-11e5-b2bd-002590263bf5.html
X-MFH-With:	r406625, r409148
19 Feb 2016 03:40:24
Original commit files touched by this commit  3.5.14
Revision:409148 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: update 3.5.13 -> 3.5.14

PR:		207294
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
Security:	CVE-2016-2390
Security:	https://vuxml.FreeBSD.org/freebsd/56562efb-d5e4-11e5-b2bd-002590263bf5.html
X-MFH-Note:	MFH not required, only 3.5.13 in ports/head is vulnerable
23 Jan 2016 21:14:18
Original commit files touched by this commit  3.5.13_1
Revision:407058 This port version is marked as vulnerable.
johans search for other commits by this committer
Bump versions to chase Nettle shared library update
19 Jan 2016 00:20:22
Original commit files touched by this commit  3.5.13
Revision:406625 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: update 3.5.12 -> 3.5.13

Changes:
* Bug 4397: DragonFly BSD, POSIX shared memory is implemented as filepath
* Bug 4387: Kerberos build errors on Solaris
* TLS: Support Ephemeral Elliptic Curve Diffie-Hellman (EECDH) key exchange
* TLS: Complete certificate chains using external intermediate certificates
* Avoid memory leaks when an X.509 certificate validator is used with SslBump
* Fix connection retry and fallback after failed server TLS connections
* Fix GnuTLS detection via pkg-config
* Fix startup crash with a misconfigured (too-small) shared memory cache
* ... and some documentation updates

PR:             206127
Submitted by:   Pavel Timofeev <timp87@gmail.com> (maintainer)
05 Jan 2016 01:52:08
Original commit files touched by this commit  3.5.12
Revision:405267 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: Heimdal option build fixes

- Fix squid build with Heimdal from ports.
- Additionally fix squid build with base Heimdal when Heimdal from ports
  is installed.

PR:		205461
Reported by:	dewayne@heuristicsystems.com.au
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
MFH:		2016Q1 (build fix blanket)
06 Dec 2015 18:45:58
Original commit files touched by this commit  3.5.12
Revision:403151 This port version is marked as vulnerable.
flo search for other commits by this committer
Update to 3.5.12

PR:		204913
Submitted by:	<timp87@gmail.com> (maintainer)
11 Nov 2015 17:24:31
Original commit files touched by this commit  3.5.11
Revision:401286 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: update 3.5.10 -> 3.5.11

- Regen patches for new release and for portlint
- Drop creating/deleting /var/run/squid in the rc script as this duplicates
  handling it in the pkg-plist

Changes:
* Bug 3574: crashes on reconfigure and startup
* Bug 4347: compile errors with LibreSSL 2.3
* Bug 4281: copy-paste typos in src/tools.cc
* Bug 4279: No response from proxy for FTP-download of non-existing file
* Bug 4188: Bumping intercepted SSL connections does not work on Solaris
* Fix incorrect authentication headers on cache digest requests
* Fix connection stats, including %<lp, missing for persistent connections
* Fix invalid memory access issues in SBuf
* Avoid errors when parsing manager ACL in old squid.conf

PR:		204217
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
Tested by:	ncrogers@gmail.com
06 Oct 2015 18:53:13
Original commit files touched by this commit  3.5.10
Revision:398713 This port version is marked as vulnerable.
flo search for other commits by this committer
Update to 3.5.10

PR:		203501
Submitted by:	<timp87@gmail.com> (maintainer)
30 Sep 2015 18:58:05
Original commit files touched by this commit  3.5.9_1
Revision:398231 This port version is marked as vulnerable.
bdrewery search for other commits by this committer
rc.d/squid: Check the config before starting, reloading, or restarting.
21 Sep 2015 01:51:26
Original commit files touched by this commit  3.5.9
Revision:397476 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: security update and build fix

- security update 3.5.8 -> 3.5.9 [1]
- Fix TP_IPF build on FreeBSD 9 [2]

PR:		203186 [1]
PR:		202950 [2]
Approved by:	Pavel Timofeev <timp87@gmail.com> (maintainer) [1]
Security:	d3a98c2d-5da1-11e5-9909-002590263bf5
MFH:		2015Q3
X-MFH-With:	r391555, r392222, r393602, r396106, r396185, r397215
18 Sep 2015 05:12:13
Original commit files touched by this commit  3.5.8_2
Revision:397215 This port version is marked as vulnerable.
cy search for other commits by this committer
Rather than produce a warning message that IPv6 is not supported
under ipfilter 4 (FreeBSD 9) every tenth time, reduce the message
to one in a million. This has the effect of displaying the message
at or shortly after startup with a reminder every blue moon.

PR:		202950
05 Sep 2015 16:29:20
Original commit files touched by this commit  3.5.8_1
Revision:396185 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix TP_IPF build.
04 Sep 2015 16:12:49
Original commit files touched by this commit  3.5.8
Revision:396106 This port version is marked as vulnerable.
junovitch search for other commits by this committer
www/squid: update 3.5.7 -> 3.5.8

PR:		202826
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
Approved by:	feld (mentor)
05 Aug 2015 18:32:18
Original commit files touched by this commit  3.5.7
Revision:393602 This port version is marked as vulnerable.
robak search for other commits by this committer
www/squid: update 3.5.6 -> 3.5.7

- Fix build with ecap by clang
- Get rid of useless and always empty /var/squid/logs
- Rework patches to make portlint a bit happier

PR:		202053
Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
15 Jul 2015 20:59:03
Original commit files touched by this commit  3.5.6
Revision:392222 This port version is marked as vulnerable.
pgollucci search for other commits by this committer
www/squid: pkg-list fix

- add missing pkg-plist entry (SSL_CRTD option)

PR:                  201463
Submitted by:        s3erios@gmail.com
Approved by:         timp87@gmail.com (maintainer)
08 Jul 2015 09:30:18
Original commit files touched by this commit  3.5.6
Revision:391555 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: Support DragonFly SHM segments

Out of the box, squid would not run on dragonfly due to its handling
of SHM segments.  On DragonFly, SHM segments are always treated as files
but on FreeBSD it depends on whether or not application is inside a jail.

In any case, the case for DragonFly was no supported, so it has been
added via patch.  This also requires the return of /var/run/squid
directory which is where the SHM files are stored (defined by
localstatedir and supported by RC script).  The RC script would define
this directory if missing, but let's make sure it is always available.

PR:		201405
Submitted by:	marino
Approved by:	maintainer (timp87/gmail)
06 Jul 2015 17:38:19
Original commit files touched by this commit  3.5.6
Revision:391431 This port version is marked as vulnerable.
feld search for other commits by this committer
Update to 3.5.6
Resolve security issue, no CVE assigned yet

Approved by:	maintainer
Security:	150d1538-23fa-11e5-a4a5-002590263bf5
07 Jun 2015 21:03:25
Original commit files touched by this commit  3.5.5
Revision:388783 This port version is marked as vulnerable.
flo search for other commits by this committer
- update to 3.5.5
- fix GASSAPI_NONE handling;
- unbreak eCAP option, but only for FreeBSD < 10, no luck with clang.

PR:		200070
Submitted by:	<timp87@gmail.com> (maintainer)
14 May 2015 10:15:09
Original commit files touched by this commit  3.5.3_1
Revision:386312 This port version is marked as vulnerable.
mat search for other commits by this committer
MASTER_SITES cleanup.

- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
  of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
  no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.

While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.

Also, replace some EXTRACT_SUFX occurences with USES=tar:*.

Checked by:	make fetch-urlall-list
With hat:	portmgr
Sponsored by:	Absolight
01 May 2015 17:00:38
Original commit files touched by this commit  3.5.3_1
Revision:385128 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid finally gets a maintainer

Pavel Timofeev spearheaded the update to squid to version 3.5 and has
been prepared to be the port's maintainer.  Let's make that happen!

Thanks for taking care of this popular port, Timp87.
30 Apr 2015 19:34:47
Original commit files touched by this commit  3.5.3_1
Revision:385055 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: Add MAP_NOSYNC flay to mmap call

This is the same technique used by PostgreSQL to prevent dirty pages
from flushing prematurely (performance hit).  In any case, it can't hurt
and it's been used in production for 18 months.  Timp87 provided the 3.5
version of squid; the port is still unmaintained.

PR:		198920
Submitted by:	emz (norma.perm.ru)
concurred:	timp87 (gmail)
14 Apr 2015 16:34:37
Original commit files touched by this commit  3.5.3
Revision:384005 This port version is marked as vulnerable.
pi search for other commits by this committer
www/squid: 3.4.12 -> 3.5.3

As it is written on http://www.squid-cache.org/Versions/ for 3.4.x
versions: they are no longer intended for general use in new installations.
So this is a big upgrade.

Changes to squid-3.5.3 (28 Mar 2015):

- Regression Bug 4213: negotiate_kerberos_auth: freeing non-dynamic memory
- Regression Bug 4206: Incorrect connection close on expect:100-continue
- Bug 4204: ./configure does not abort when required helpers cannot be built
- Bug 3805: support shared memory on MacOS X in Mem::IPC::Segment
- Bug 2907: high CPU usage on CONNECT when using delay pools
- basic_getpwnam_auth: fail authentication on crypt() failures
- basic_nis_auth: fail authentication on crypt() failures
(Only the first 15 lines of the commit message are shown above View all of this commit message)
19 Feb 2015 19:58:58
Original commit files touched by this commit  3.4.12
Revision:379384 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Update to 3.4.12
- While I'm here:
  - Pet portlint
  - Remove contiguous blank lines

Changes:	http://www.squid-cache.org/Versions/v3/3.4/RELEASENOTES.html
PR:		197812
Submitted by:	<timp87@gmail.com>
17 Jan 2015 12:50:57
Original commit files touched by this commit  3.4.11
Revision:377223 This port version is marked as vulnerable.
madpilot search for other commits by this committer
- Update to 3.4.11
- Fix STACKTRACES option
- Put correct permissions on /var directories creted by the port

PR:		196711
Submitted by:	timp87 at gmail.com
22 Dec 2014 14:50:47
Original commit files touched by this commit  3.4.10_2
Revision:375240 This port version is marked as vulnerable.
rea search for other commits by this committer
www/squid: implement proper backtrace support

Now Squid will print full backtrace for problematic cases when it is
about to die on some signal and should emit stacktrace.  You'll
obviously need to compile it with STACKTRACES option.

Tested at:	KIAE Grid production Squid cluster
MFC after:	1 week
MFH:		2014Q4
Sponsored by:	Kurchatov Institute of Atomic Energy
21 Dec 2014 14:01:18
Original commit files touched by this commit  3.4.10_1
Revision:375163 This port version is marked as vulnerable.
antoine search for other commits by this committer
Remove a directory that is created/deleted by rc script from stagedir
20 Dec 2014 06:45:06
Original commit files touched by this commit  3.4.10_1
Revision:374991 This port version is marked as vulnerable.
kevlo search for other commits by this committer
Add security/nettle dependency and fix pkg-plist.
Squid detects libnettle when available and uses it without yet forcing
it as a required dependency.
10 Dec 2014 13:58:58
Original commit files touched by this commit  3.4.10
Revision:374457 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: Upgrade version 3.4.9 => 3.4.10

PR:		195843
Submitted by:	timp87 (gmail)
05 Dec 2014 14:24:38
Original commit files touched by this commit  3.4.9_1
Revision:374030 This port version is marked as vulnerable.
antoine search for other commits by this committer
Allow building with clang 3.5
Those warnings should be fixed, but squelch them for now

PR:		ports/195665
26 Nov 2014 09:57:24
Original commit files touched by this commit  3.4.9_1
Revision:373442 This port version is marked as vulnerable.
kevlo search for other commits by this committer
swapdir should be in /var/squid/cache.
03 Nov 2014 09:53:53
Original commit files touched by this commit  3.4.9
Revision:372103 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: Remove one file from SHEBANG_FILES

ksh was removed from dependencies list in version 3.4.9, so cert_tool
doesn't have to be fixed anymore.

PR:		194777
Submitted by:	timp87 (gmail)
31 Oct 2014 22:12:35
Original commit files touched by this commit  3.4.9
Revision:371944 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: Upgrade version 3.4.8 => 3.4.9

This update should address some memory leak issues

PR:		193938
PR:		194726
Submitted by:	timp87 (gmail)
23 Oct 2014 13:48:10
Original commit files touched by this commit  3.4.8_2
Revision:371394 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: DragonFly needs an include CFLAG with Kerberos
16 Oct 2014 07:24:13
Original commit files touched by this commit  3.4.8_2
Revision:370975 This port version is marked as vulnerable.
flo search for other commits by this committer
Since http://bazaar.launchpad.net/~squid/squid/3-trunk/revision/12842,
Squid's configure script defaults to -march=native, if the flag is
supported by the compiler.  And this even *overrides* your own specified
CPUTYPE or -march= flag!

That could cause squid to crash when using a package that was built on a
newer CPU type that the one where the package would run on.

Submitted by:	dim
22 Sep 2014 08:40:39
Original commit files touched by this commit  3.4.8_1
Revision:368828 This port version is marked as vulnerable.
madpilot search for other commits by this committer
Add CPE info to squid ports.

Requested by:	des@
19 Sep 2014 20:46:13
Original commit files touched by this commit  3.4.8_1
Revision:368596 This port version is marked as vulnerable.
madpilot search for other commits by this committer
- Make diskd and rock storage schemes options (diskd enabled by default) [1]
- Add note in pkg-message about diskd needing some tuning [1]
- Fix transparent proxy with PF [1] [2]
- Fix a pair of typos [1]

PR:		193705 [1], 193752 [2]
Submitted by:	arcade@b1t.name [1], kib@ [2]
18 Sep 2014 15:22:38
Original commit files touched by this commit  3.4.8
Revision:368485 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Unbreak ECAP option
18 Sep 2014 13:24:02
Original commit files touched by this commit  3.4.8
Revision:368457 This port version is marked as vulnerable.
madpilot search for other commits by this committer
Update squid to 3.4.8 and add patches to squid33.

This update addresses CVE-2014-6270.

PR:		193737
Submitted by:	timp87 at gmail.com
18 Sep 2014 06:58:47
Original commit files touched by this commit  3.4.7_1
Revision:368421 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid and www/squid33: Fix plist error depending on selected options

PR:		193717
Reported by:	kib@
Fixed by:	timp87 (gmail)
16 Sep 2014 12:29:20
Original commit files touched by this commit  3.4.7
Revision:368307 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid: Upgrade version 2.7.9 => 3.4.7

From now on, there will only be one squid port, this one.  Squid33 has
been deprecated and will expire on 31 JAN 2015.

PR:		192828
Submitted by:	timp87 (gmail)
Contributions:	takefu (airport.fm), Dennis Glatting
17 Aug 2014 14:06:11
Original commit files touched by this commit  2.7.9_5
Revision:365187 This port version is marked as vulnerable.
marino search for other commits by this committer
Retire www/squid in a month, and deprecate 6 dependent ports too

Squid cache is only supported for one stable release.  There was an
exception for squid 2.7 (www/squid) as it was supported until squid 3.x
reached feature parity which occurred with the release of Squid 3.2

Thus the maintainers of Squid have declared Squid 2.7 reached End-of-Life
on 14 August 2012.  As a result, set this port to expire on 15 Sept 2014.

Seven ports dependent on www/squid have been deprecated with the same
date. Perhaps they can be switched to www/squid33 before they expire.

Approved by:	portmgr (implicit, some ports not staged)
12 Aug 2014 14:57:48
Original commit files touched by this commit  2.7.9_5
Revision:364707 This port version is marked as vulnerable.
marino search for other commits by this committer
Stage www/squid

I went further than this PR, removing post-install script invocation
and cat messages, preinstall too.  This unmaintained port needs some
more modernizing, particularly involving options.

PR:		189898
Submitted by:	Joe (thrallingpenguin.com)
11 Aug 2014 13:18:58
Original commit files touched by this commit  2.7.9_5
Revision:364602 This port version is marked as vulnerable.
marino search for other commits by this committer
www/squid, squid32, squid33: Reset maintainer

At least 2 PRs per port have been submitted to provide staging going back
to May, but the maintainer has not responded.  These PRs prevented the
maintainer from being reset on the big pass, so do it now that there are
only 2 weeks left to stage these ports.

Approved by:	portmgr (implicit, NOT_STAGED)
29 Jul 2014 18:41:17
Original commit files touched by this commit  2.7.9_5
Revision:363371  Sanity Test Failure This port version is marked as vulnerable.
adamw search for other commits by this committer
Convert a bunch of USE_BZIP2 to USES=tar:bzip2

Approved by:	portmgr (not really, but touches unstaged ports)
29 Jul 2014 15:49:47
Original commit files touched by this commit  2.7.9_5
Revision:363346 This port version is marked as vulnerable.
adamw search for other commits by this committer
Rename www/ patch-xy patches to reflect the files they modify.
24 Jul 2014 18:34:16
Original commit files touched by this commit  2.7.9_5
Revision:362835 This port version is marked as vulnerable.
tijl search for other commits by this committer
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample
(Only the first 15 lines of the commit message are shown above View all of this commit message)
16 Jul 2014 08:44:05
Original commit files touched by this commit  2.7.9_4
Revision:362053 This port version is marked as vulnerable.
bapt search for other commits by this committer
Fix some non default LIB_DEPENDS

With hat:	portmgr
05 Dec 2013 11:10:50
Original commit files touched by this commit  2.7.9_4
Revision:335658 This port version is marked as vulnerable.
mat search for other commits by this committer
Fixup pkgnames.

PR:		ports/184440, ports/184441, ports/184442, ports/184443, ports/184444,
ports/184445, ports/184446, ports/184447, ports/184448, ports/184449,
ports/184450
Submitted by:	mat
Approved by:	portmgr (bapt)
01 Oct 2013 15:31:11
Original commit files touched by this commit  2.7.9_4
Revision:328957 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix typo in OPTIONS_DEFINE.

(maintainer timeout)

PR:		ports/181982
Submitted by:	mat
20 Sep 2013 23:36:54
Original commit files touched by this commit  2.7.9_4
Revision:327776 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
www)
14 Sep 2013 13:38:21
Original commit files touched by this commit  2.7.9_4
Revision:327283 This port version is marked as vulnerable.
az search for other commits by this committer
- convert to the new perl5 framework
- convert USE_GMAKE to Uses

Approved by:	portmgr (bapt@, blanket)
06 Jun 2013 01:12:56
Original commit files touched by this commit  2.7.9_4
Revision:320041 This port version is marked as vulnerable.
bdrewery search for other commits by this committer
Fix options conversion with bmake
05 Jun 2013 09:25:44
Original commit files touched by this commit  2.7.9_4
Revision:319969 This port version is marked as vulnerable.
bapt search for other commits by this committer
Convert to new options framework
02 May 2013 19:41:07
Original commit files touched by this commit  2.7.9_4
Revision:317143 This port version is marked as vulnerable.
tmseck search for other commits by this committer
- Add the vendor patch for SQUID-2012:1 (CVE-2012-5643) and update VuXML
  information accordingly
- Bump PORTREVISION

PR:		ports/177773
Submitted by:	Kan Sasaki
Approved by:	flo (mentor)
Security:	c37de843-488e-11e2-a5c9-0019996bc1f7
09 Mar 2013 18:09:25
Original commit files touched by this commit  2.7.9_3
Revision:313740 This port version is marked as vulnerable.
tmseck search for other commits by this committer
Change MAINTAINER to my FreeBSD.org address.

Approved by:	flo (mentor)
07 Feb 2013 12:37:48
Original commit files touched by this commit  2.7.9_3
Revision:311829 This port version is marked as vulnerable.
gahr search for other commits by this committer
- Get rid of PTHREAD_CFLAGS and PTHREAD_LIBS (category: www)

Approved by:	portmgr
10 Dec 2012 15:10:03
Original commit files touched by this commit  2.7.9_3
Revision:308609 This port version is marked as vulnerable.
ume search for other commits by this committer
Update cyrus-sasl2 to 2.1.26.
This bumps shlib version of libsasl2.
18 Nov 2012 16:33:31
Original commit files touched by this commit  2.7.9_2
Revision:307542 This port version is marked as vulnerable.
hrs search for other commits by this committer
Fix rc.d script to support systems before and after ${name}_fib is introduced
into rc.subr.  Bump PORTREVISION.

Feature safe:	yes
14 Jan 2012 08:57:23
Original commit files touched by this commit  2.7.9_1
 This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
23 Sep 2011 22:26:39
Original commit files touched by this commit  2.7.9_1
 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav
06 Jul 2011 16:37:55
Original commit files touched by this commit  2.7.9_1
 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Use PLIST_DIRSTRY for ETCDIR: configuration file (not in PLIST) is
ETCDIR/squid.conf by default
- Use ETCDIR
- Make portlint happier
- Bump PORTREVISION for PLIST change

PR:             ports/158524
Submitted by:   sunpoet (myself)
Approved by:    Thomas-Martin Seck <tmseck@web.de> (maintainer)
23 Jun 2011 15:11:18
Original commit files touched by this commit  2.7.9
 This port version is marked as vulnerable.
flo search for other commits by this committer
change all squid ports from CONFLICTS to CONFLICTS_INSTALL

PR:             ports/158194
Submitted by:   Fedor A Borshev <fedor9@gmail.com>
Approved by:    maintainer
19 Mar 2011 12:38:54
Original commit files touched by this commit  2.7.9
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Get Rid MD5 support
02 May 2010 10:51:09
Original commit files touched by this commit  2.7.9
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.7.STABLE9
- Update MASTER_SITES
- Move default cache and log directories from $PREFIX/squid/ to /var/squid/

PR:             145674
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
27 Mar 2010 00:15:24
Original commit files touched by this commit  2.7.8
 This port version is marked as vulnerable.
dougb search for other commits by this committer
Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#
17 Mar 2010 07:42:01
Original commit files touched by this commit  2.7.8
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.7.STABLE8

PR:             144668
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
15 Feb 2010 06:29:30
Original commit files touched by this commit  2.7.7_4
 This port version is marked as vulnerable.
delphij search for other commits by this committer
Update www/squid and www/squid30 to address Squid HTCP Packet Processing
NULL Pointer Dereference vulnerability (SQUID-2010:2)
01 Feb 2010 20:25:58
Original commit files touched by this commit  2.7.7_3
 This port version is marked as vulnerable.
delphij search for other commits by this committer
Security patch for Squid advisory 2010:1, denial of service.

Submitted by:   maintainer (Thomas-Martin Seck <tmseck web de>)
24 Dec 2009 02:58:32
Original commit files touched by this commit  2.7.7_2
 This port version is marked as vulnerable.
wen search for other commits by this committer
- Implement OPTIONS vor SQUID_KERBEROS_AUTH and SQUID_NIS_AUTH
- Add a CONFLICT with www/lusca-head
- Make the Squid configuration directory world readable in new
  installations to ease use of cachemgr.cgi
- Implement squid_conf in the rc script and document user settable
  variables

PR:             ports/141930
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
21 Nov 2009 15:19:57
Original commit files touched by this commit  2.7.7_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Add squid_fib option for alternate routing tables

PR:             140146
Submitted by:   Alson van der Meulen <alson+bugs@waalsdorp.nl> (based on)
Approved by:    maintainer
18 Sep 2009 22:41:44
Original commit files touched by this commit  2.7.7
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.7-STABLE7

PR:             138941
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
Feature safe:   yes
28 Jun 2009 16:20:42
Original commit files touched by this commit  2.7.6_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update MASTER_SITE_SUBDIR

PR:             136122
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
31 Mar 2009 22:20:42
Original commit files touched by this commit  2.7.6_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- The squid_kerb_auth helper needs to know about the endianness of the system
  at compile time. Its author suggests to use -D__LITTLE_ENDIAN__ in the
  program's Makefile and this is the solution proposed in ports/131878. Since
  FreeBSD (and FreeBSD ports) might be used on big-endian architectures as
  well as on little endian architectures I decided to instrument an already
  present endianness check directly in the affected source file instead.

- Bump PORTREVISION since this affects the content (and functionality) of
  the port's binary package.

Pr:             133159
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
09 Feb 2009 14:32:12
Original commit files touched by this commit  2.7.6
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update 2.7.STABLE6

PR:             131431
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
Security:      
http://www.vuxml.org/freebsd/9c2460a4-f6b1-11dd-94d9-0030843d3802.html
06 Jan 2009 16:53:07
Original commit files touched by this commit  2.7.5
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Remove conditional checks for FreeBSD 5.x and older

Approved by:    pav
24 Oct 2008 12:36:23
Original commit files touched by this commit  2.7.5
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.7.STABLE5

PR:             128253
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
10 Aug 2008 21:57:28
Original commit files touched by this commit  2.7.4
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.7.STABLE4

PR:             126413
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
14 Jul 2008 19:10:08
Original commit files touched by this commit  2.7.3
 This port version is marked as vulnerable.
beech search for other commits by this committer
- Update to 2.7.STABLE3

Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
03 Jul 2008 22:27:12
Original commit files touched by this commit  2.6.21
 This port version is marked as vulnerable.
beech search for other commits by this committer
- Update to 2.6.STABLE21

PR:             ports/125099
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
23 Jun 2008 10:51:51
Original commit files touched by this commit  2.6.20_3
 This port version is marked as vulnerable.
miwi search for other commits by this committer
Refactoring and fixes regarding the squid_kerb_auth helper:

- Move the content of
files/patch-helpers-negotiate_auth_squid_kerb_auth-Makefile.in and
-squid_kerb_auth.c to files/fix-kerberos.patch.

- Implement additional configure check for the presence of
gssapi/gssapi.h and gssapi.h and prefer the former over the latter in
squid_kerb_auth.c. This is done to prevent a compiler warning on
FreeBSD 7 and higher where gssapi.h is only present for compatibility
reasons.

- Actually enable the "negotiate" authentication method in Squid
(thanks to John Marshall for pointing this out to the maintainer).
Bump PORTREVISION for this change.

Removed files:

files/patch-helpers-negotiate_auth-squid_kerb_auth-Makefile.in
files/patch-helpers-negotiate_auth-squid_kerb_auth-squid_kerb_auth.c

PR:             124872
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
22 May 2008 00:08:58
Original commit files touched by this commit  2.6.20_2
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Fix build after Heimdal update on HEAD

PR:             123782
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
16 May 2008 12:27:17
Original commit files touched by this commit  2.6.20_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Fix a mistake I (the maintainer) had introduced regarding the
installation of the cachemgr.conf.default file: instead of explicitly
installing it I thought it would be enough to change an automake
variable that served an entirely different purpose, namely
hardcoding the path to the configuration in the cachemgr.cgi
binary.
- While at it: remove a no longer needed .sh reference from
files/pkg-message.in.
- Set PORTREVISION to 1 because the hardcoded name of the default
configuration file has changed within cachemgr.cgi.

PR:             123573
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
08 May 2008 12:07:41
Original commit files touched by this commit  2.6.20
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.6STABLE20

PR:             123432
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
05 Apr 2008 00:46:56
Original commit files touched by this commit  2.6.19
 This port version is marked as vulnerable.
beech search for other commits by this committer
- Update to 2.6.STABLE19
- Add a patch for Squid bug #2203 (Fixed in the 3.0 but not yet in the 2.6
series)
- Update maintainer mail address

PR:             ports/122383
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
12 Jan 2008 13:11:04
Original commit files touched by this commit  2.6.18
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.6.STABLE18

PR:             119563
Submitted by:   Thomas-Martin Seck <tmseck@web.de> (maintainer)
11 Dec 2007 19:24:36
Original commit files touched by this commit  2.6.17
 This port version is marked as vulnerable.
delphij search for other commits by this committer
Update to 2.6.STABLE17

PR:             ports/118430
Submitted by:   maintainer
04 Dec 2007 19:48:35
Original commit files touched by this commit  2.6.16_1
 This port version is marked as vulnerable.
delphij search for other commits by this committer
Apply vendor patch 11780 for SQUID-2007_2.

Security:       Denial of Service from trusted client
Security:       VuXML 6eb580d7-a29c-11dc-8919-001c2514716c
Approved by:    portmgr (erwin)

Number of commits found: 226 (showing only 100 on this page)

1 | 2 | 3  »  

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
linux-c6-openssl*Sep 30
openssl*Sep 30
openssl-devel*Sep 30
bind9-develSep 28
bind910Sep 28
bind911Sep 28
bind99Sep 28
libresslSep 26
libressl-develSep 26
opensslSep 26
openssl-develSep 26
irssi*Sep 22
irssi*Sep 22
firefoxSep 20
firefox*Sep 20

7 vulnerabilities affecting 32 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26279
Broken 371
Deprecated 211
Ignore 635
Forbidden 0
Restricted 199
No CDROM 83
Vulnerable 61
Expired 14
Set to expire 197
Interactive 0
new 24 hours 9
new 48 hours11
new 7 days35
new fortnight68
new month124

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.