22:30 dougb 

As previously advertised, complete removal of vulnerable ports that
no one has stepped up to deal with:

archivers/pecl-phar             Vulnerable since 2011-01-13
comms/libsyncml                 Depends on devel/libsoup22, which is FORBIDDEN
databases/mysql323-server       Vulnerable since 2006-10-29
databases/mysql323-client       Vulnerable since 2006-10-29
databases/mysql323-scripts      Vulnerable since 2006-10-29
databases/mysql40-server        Vulnerable since 2006-10-29
databases/mysql40-client        Vulnerable since 2006-10-29
databases/mysql40-scripts       Vulnerable since 2006-10-29
databases/p5-DBD-mysql40
                Depends on databases/mysql40-server, which is FORBIDDEN
deskutils/buoh                  Depends on devel/libsoup22, which is FORBIDDEN
deskutils/libopensync-plugin-syncml
                Depends on comms/libsyncml, which is DEPRECATED
devel/libsoup22                 Vulnerable since 2011-07-28
dns/bind9-sdb-ldap              Vulnerable since 2011-06-04
dns/bind9-sdb-postgresql        Vulnerable since 2011-06-04
ftp/wgetpro                     Vulnerable since 2004-12-14
games/quake2forge               Vulnerable since 2005-01-21
graphics/linux-tiff             Vulnerable since 2004-10-13
japanese/mutt                   Vulnerable since 2007-07-29
japanese/asterisk14-sounds      Depends on net/asterisk14, which is FORBIDDEN
net/asterisk14                  Vulnerable since 2011-06-25
net/isc-dhcp31-client           Vulnerable since 2011-04-10
net/isc-dhcp31-server           Vulnerable since 2011-04-10
net/isc-dhcp31-relay            Vulnerable since 2011-04-10
net/asterisk-app-ldap           Depends on net/asterisk14, which is FORBIDDEN
net/asterisk-app-notify         Depends on net/asterisk14, which is FORBIDDEN
net/asterisk-oh323
   Depends on net/asterisk14, which is FORBIDDEN, does not compile on sparc64
net/asterisk14-addons           Depends on net/asterisk14, which is FORBIDDEN
net/astfax                      Depends on net/asterisk14, which is FORBIDDEN
net-mgmt/nagios2                Vulnerable since 2009-06-30
www/gforge                      Vulnerable since 2005-08-09
www/linux-flashplugin7          Vulnerable since at least 2008-05-30
www/opera-devel                 Vulnerable since 2010-06-25, does not fetch
www/plone3                      Vulnerable and unsupported upstream
www/serendipity-devel           Vulnerable since 2008-04-25
www/ziproxy                     Vulnerable since 2010-06-15
www/asterisk-gui                Depends on net/asterisk14, which is FORBIDDEN
x11-toolkits/linux-pango        Vulnerable since 2009-05-13

09:24 dougb 

Mark FORBIDDEN the remaining ports that are vulnerable for more than
2 weeks according to portaudit (ranging from 23 days to 7 years).
The maintainers were notified by mail that this action would be taken
on 2011-09-03. (Ports for which maintainers responded have been/will be
dealt with separately.)

Also mark DEPRECATED ports that rely on the FORBIDDEN ports, and a few
ports that rely on those DEPRECATED ports.

01:32 delphij 

Chase after net/openldap24-server update.

Reminded by:    miwi

22:07 pav 

- Mark MAKE_JOBS_UNSAFE

Reported by:    pointyhat

11:21 mm 

- update to security release 9.4.3-P1
- import OPTIONS and other stuff from dns/bind94

PR:             ports/131160
Submitted by:   mm (myself)
Approved by:    maintainer (timeout)

19:04 delphij 

Bump PORTREVISION's after OpenLDAP update.

Suggested by:   rafan

07:26 dougb 

Update CONFLICTS to reflect the addition of the bind96 port,
the demise of bind9-dlz, and updates to the bind9-sdb-* ports.

12:46 mm 

- Update to 9.4.2-P1

PR:             ports/126159
Submitted by:   mm
Approved by:    maintainer (timeout)

15:43 dougb 

Update CONFLICTS:
1. To take bind95 into account
2. s/bind9-sdb-ldap/bind9-sdb-mysql/
3. Delete references to BIND 8

13:48 mm 

- Update to 9.4.1.1

PR:             ports/115163
Submitted by:   Aleksey Ovcharenko <aleksey.ovcharenko at gmail.com>
Patch by:       sumbitter, mm [1]
Approved by:    Hugo Meiland <hugo at chem.leidenuniv.nl> (maintainer)

[1] fixed patch approved by maintainer timeout (14+ days)

09:36 rafan 

- Set --mandir and --infodir in CONFIGURE_ARGS if the configure script
  supports them.  This is determined by running ``configure --help'' in
  do-configure target and set the shell variable _LATE_CONFIGURE_ARGS
  which is then passed to CONFIGURE_ARGS.
- Remove --mandir and --infodir in ports' Makefile where applicable
  Few ports use REINPLACE_CMD to achieve the same effect, remove them too.
- Correct some manual pages location from PREFIX/man to MANPREFIX/man
- Define INFO_PATH where necessary
- Document that .info files are installed in a subdirectory relative to
  PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and
  subdirectory detection.

PR:             ports/111470
Approved by:    portmgr
Discussed with: stas (Mk/*), gerald (info related stuffs)
Tested by:      pointyhat exp run

12:55 mat 

Update to bind 9.3.2

PR:             97600
Submitted by:   maintainer

14:21 mnag 

Use USE_OPENLDAP variable

PR:             86762
Submitted by:   Arseny Nsokin <tarc@tarc.po.cs.msu.su>
Approved by:    Hugo@Meiland.nl (maintainer), pav (mentor)

19:24 flz 

- Add bin9-sdb-ldap, a patched bind9 version to use with an LDAP based backend.

PR:             ports/62840
Submitted by:   Hugo Meiland <hugo@meiland.nl>