Number of commits found: 1605 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

Snort 3 is the next major release of the Snort utility:

Here are some key features of Snort 3:

    Support multiple packet processing threads
    Use a shared configuration and attribute table
    Use a simple, scriptable configuration
    Make key components pluggable
    Autodetect services for portless configuration
    Support sticky buffers in rules
    Autogenerate reference documentation
    Provide better cross platform support
    Facilitate component testing

Additional features on the roadmap include:

    Use a shared network map
    Support pipelining of packet processing
    Support hardware offload and data plane integration
    Support proxy mode
    Windows support

WWW: http://www.snort.org/

Audit base system against known vulnerabilities and generate reports
including references to security advisories.
It uses pkg audit and Vuxml database as is used for packages but this script
checks base system.

security/u2f-devd: Devd hotplug rules for Universal 2nd Factor (U2F) tokens

Automatic device permission handling for Universal 2nd Factor (U2F) USB
authentication tokens.

PR:		224199
Submitted by:	Greg V <greg@unrelenting.technology>

Welcome the new security/krb5-116 port. This port follows MIT's
KRB5 1.16 releases.

Major changes in 1.16 (2017-12-05)
==================================

Administrator experience:

* The KDC can match PKINIT client certificates against the
  "pkinit_cert_match" string attribute on the client principal entry,
  using the same syntax as the existing "pkinit_cert_match" profile
  option.

* The ktutil addent command supports the "-k 0" option to ignore the
  key version, and the "-s" option to use a non-default salt string.

(Only the first 15 lines of the commit message are shown above )

New port: security/libhijack: Runtime process infection made easy

PR:		221322
Submitted by:	Shawn Webb <shawn.webb@hardenedbsd.org>
Approved by:	tcberner (mentor)
Differential Revision:	https://reviews.freebsd.org/D13256

Remove expired port:
2017-12-02 security/krb5-113: EOL twelve months after release of krb5-1.15

Remove expired port:
2017-11-30 security/webshag: Abandoned

Remove expired port:
2017-11-29 security/py-rekall_gui: PoC that is no longer supported

Convert Python ports to FLAVORS.

  Ports using USE_PYTHON=distutils are now flavored.  They will
  automatically get flavors (py27, py34, py35, py36) depending on what
  versions they support.

  There is also a USE_PYTHON=flavors for ports that do not use distutils
  but need FLAVORS to be set.  A USE_PYTHON=noflavors can be set if
  using distutils but flavors are not wanted.

  A new USE_PYTHON=optsuffix that will add PYTHON_PKGNAMESUFFIX has been
  added to cope with Python ports that did not have the Python
  PKGNAMEPREFIX but are flavored.

  USES=python now also exports a PY_FLAVOR variable that contains the

(Only the first 15 lines of the commit message are shown above )

New port: security/rubygem-rbnacl-libsodium

rbnacl with bundled libsodium

WWW: https://github.com/cryptosphere/rbnacl-libsodium

Submitted by: Matthias Fechner <idefix@fechner.net>

New port: security/rubygem-bcrypt_pbkdf

This gem implements bcrypt_pdkfd (a variant of PBKDF2 with bcrypt-based PRF)

WWW: https://github.com/net-ssh/bcrypt_pbkdf-ruby

Submitted by: Matthias Fechner <idefix@fechner.net>

Add kbfs 1.0.36

kbfs is the official Keybase implementation of the client-side code for the
Keybase filesystem (KBFS).

This client allows you to mount KBFS as a proper filesystem at some mountpoint
on your local device (by default, /keybase/). It communicates locally with the
Keybase service, and remotely with three types of KBFS servers (block servers,
metadata servers, and key servers).

WWW: https://keybase.io/docs/kbfs
WWW: https://github.com/keybase/kbfs

www/nextcloud: Add essential apps

New port: security/py-ssh-audit: SSH server auditing

PR:		223810
Submitted by:	Piotr Kubaj <pkubaj@anongoth.pl>
Approved by:	tcberner (mentor)
Differential Revision:	https://reviews.freebsd.org/D13207

New port: security/2fa: Two-factor authentication on the command line

PR:		223822
Submitted by:	Dmitri Goutnik <dg@syrec.org>
Approved by:	tcberner (mentor)
Differential Revision:	https://reviews.freebsd.org/D13220

New port: security/rubygem-rbnacl

The Networking and Cryptography (NaCl) library provides a high-level toolkit for
building cryptographic systems and protocols.

WWW: https://github.com/cryptosphere/rbnacl

Add PHP 7.2 RC6

Notable changes:
- mcrypt module was removed
- sodium module was added
- sybase_ct artifacts removed

Also many PECL ports will not work with this version
since some files got renamed.

Reviewed by:           mat, ale, Rainer Duffner <rainer@ultra-secure.de>
Differential Revision: https://reviews.freebsd.org/D12980

New port: security/botan2: Portable, easy to use and efficient C++ crypto
library

PR:		223199
Submitted by:	Ralf van der Enden <tremere@cainites.net>
Reviewed by:	tcberner (mentor)
Differential Revision:	https://reviews.freebsd.org/D13043

Remove expired ports:
2017-11-04 lang/ats: Unmaintained, outdated, needs lots of refreshment
2017-11-09 games/lordsawar: Broken for more than 6 months
2017-11-09 databases/elixir-ecto_migrate: Broken for more than 6 months
2017-11-09 audio/gspeakers: Broken for more than 6 months
2017-11-09 net/p5-Filesys-SmbClient: Broken for more than 6 months
2017-11-09 audio/tclmidi: Broken for more than 6 months
2017-11-09 security/py-xmlsec: Broken for more than 6 months
2017-11-09 security/samba-virusfilter: Broken for more than 6 months
2017-11-09 textproc/ocaml-pxp: Broken for more than 6 months
2017-11-09 audio/sooperlooper: Broken for more than 6 months
2017-11-09 devel/dwarves: Broken for more than 6 months
2017-11-09 devel/cl-cffi-sbcl: Broken for more than 6 months
2017-11-09 devel/pinba_engine: Broken for more than 6 months
2017-11-09 devel/py-event: Broken for more than 6 months

Add python3 stub ports required for the upcoming update of finance/electrum.

Approved by:	portmgr (bdrewery)
Differential Revision:	D13000

Nyx is a command-line monitor for Tor. With this you can get detailed real-time
information about your relay such as bandwidth usage, connections, logs, and
much more.

WWW: https://nyx.torproject.org/

- Rename securitypy-btchip to security/py-btchip-python to reflect official
  Python modules naming scheme [1].
- Explain in MOVED why the port was renamed
- Update security/py-btchip-python to 0.1.22
- Update dependency of finance/electrum

Notified by:	koobs [1]

- add tinc-devel port

This script uses a downloaded copy of the pwned passwort hashes available
from https://haveibeenpwned.com/Passwords/ to allow passwords to be locally
checked, whether they are known to have been obtained in a data breach and
therefore should not be used.

Approved by:	Antoine (mentor)

Add cvechecker, forgotten in r451847.

Reported by:	antoine

Add py-btchip 0.1.21, python communication library for Ledger Hardware
Wallet.

Add py-trezor 0.7.16, client side implementation for TREZOR Bitcoin
hardware wallets.

Add py-mnemonic 0.17, implementation of Bitcoin BIP-0039.

security/openssl-unsafe: Add OpenSSL port for scanning/testing

 - OpenSSL binary and libs for testing and scanning
 - Use with e.g. sslscan or testssl.sh

Differential Revision:	https://reviews.freebsd.org/D9483

git-remote-gcrypt is a git remote helper to push and pull from
repositories encrypted with GnuPG. It works with the standard git
transports, including repository hosting services like GitHub.

WWW: https://spwhitton.name/tech/code/git-remote-gcrypt/

The sandsifter audits x86 processors for hidden instructions and
hardware bugs, by systematically generating machine code to search
through a processor's instruction set, and monitoring execution for
anomalies. Sandsifter has uncovered secret processor instructions from
every major vendor; ubiquitous software bugs in disassemblers,
assemblers, and emulators; flaws in enterprise hypervisors; and both
benign and security-critical hardware bugs in x86 chips.

WWW: https://github.com/xoreaxeaxeax/sandsifter

PR:		221132
Submitted by:	rozhuk.im AT gmail.com
Reviewed by:	swills

Remove security/py-twistedConch

Update gnupg to 2.2.1, and remove the security/gnupg22 port

I misjudged the timeline for 2.3, and had not processed that the
intent of 2.3 is different from 2.1. Rather than 2.3 being a "modern"
branch and 2.2 being purely "stable," 2.3 will be development and
users are encouraged to remain on 2.2. Furthermore, upstream doesn't
expent a 2.3 release for a year or so.

Accordingly, I'm removing the gnupg22 port and updating security/gnupg
to be 2.2. gnugp20 is still scheduled for deletion at the end of the
year.

Remove expired port:
2017-09-13 security/clambc: Practically unmaintained, featuring issues elsewhere
solved 6 years ago

The Double Ratchet Algorithm is a protocol (similar to OTR) that provides for
perfect forward secrecy in (a)synchronous communications. It uses triple
Diffie-Hellman for authentication and ECDHE for perfect forward secrecy. The
protocol is lighter and more robust than the OTR protocol - providing better
forward and future secrecy, as well as deniability.

The protocol was developed by Trevor Perrin and Moxie Marlinspike. Its chief
use currently is in the Open Whisper Systems Signal package.

WWW: https://github.com/rxcomm/pyaxo

PR:		222040
Submitted by:	Yuri Victorovich (maintainer)
Reviewed by:	lifanov (mentor), matthew (mentor), koobs, sunpoet
Approved by:	lifanov (mentor), matthew (mentor), koobs
Differential Revision:	https://reviews.freebsd.org/D12310

txtorcon is an implementation of the control-spec for Tor using the Twisted
networking library for Python.

This is useful for writing utilities to control or make use of Tor in
event-based Python programs. If your Twisted program supports endpoints (like
twistd does) your server or client can make use of Tor immediately, with no
code changes. Start your own Tor or connect to one and get live stream, circuit,
relay updates; read and change config; monitor events; build circuits; create
onion services; etcetera (ReadTheDocs).

PR:		222042
Submitted by:	Yuri Victorovich (maintainer)
Reviewed by:	lifanov (mentor), matthew (mentor), koobs
Approved by:	lifanov (mentor), matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D12311

Sort categories Makefiles properly.

Sponsored by:	Absolight

Add the official 1Password CLI client. It is provided by AgileBits as
precompiled
binaries. Its binary is named op, but this port is being called 1password-client
to avoid conflict with security/op. The binary name itself still conflicts
though.

WWW: https://support.1password.com/command-line-getting-started/

Remove expired port:
2017-09-03 security/py-pyme: Merged with GPGme project. Please use
security/py-gpgme instead

Add gnupg22 port. GnuPG 2.2 is the new LTS stable version. gnupg20 is
now marked for deprecation at the end of the year (when upstream support
for it will end). Users of gnupg20 should migrate to gnupg22.

The gnupg port is remaining at 2.1.x for now, as it's essentially the
same thing as 2.2.0. It will become 2.3 soon-ish.

Remove expired ports:
2017-08-23 games/plee-the-bear: Broken for more than 6 months
2017-08-23 x11-themes/kde-icons-umicons: Broken for more than 6 months
2017-08-23 lang/bigloo: Broken for more than 6 months
2017-08-23 audio/linux-neroaaccodec: Broken for more than 6 months
2017-08-23 x11-themes/kde-icons-dark-glass: Broken for more than 6 months
2017-08-23 misc/fortune-mod-ferengi_rules_of_acquisition: Broken for more than 6
months
2017-08-23 misc/fortune-mod-culmea-culmilor: Broken for more than 6 months
2017-08-23 misc/xyzcmd: Broken for more than 6 months
2017-08-23 russian/fortuneru: Broken for more than 6 months
2017-08-23 security/bdc: Broken for more than 6 months
2017-08-23 x11-themes/kde-icons-icosx: Broken for more than 6 months
2017-08-23 devel/insight: Broken for more than 6 months
2017-08-23 devel/gdb66: Broken for more than 6 months
2017-08-23 biology/biojava: Broken for more than 6 months
2017-08-23 games/xroach: Broken for more than 6 months

Add rubygem-gpgme 2.0.13

Ruby-GPGME is a Ruby language binding of GPGME (GnuPG Made Easy). GnuPG Made
Easy (GPGME) is a library designed to make access to GnuPG easier for
applications. It provides a High-Level Crypto API for encryption, decryption,
signing, signature verification and key management.

WWW: https://github.com/ueno/ruby-gpgme

Strong (well-distributed and unpredictable) hashes:

* Portable implementation of SipHash
* HighwayHash, a 5x faster SIMD hash with security claims

WWW: https://github.com/google/highwayhash

PR:		219232
Submitted by:	Yuri Victorovich (maintainer)
Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D12002

security/cyrus-sasl2: separate sql plugins into security/cyrus-sasl2-sql
Fix circular-dependency problem happens after SASL/LDAP was added as
plugin to mysql57-client in r446496

Reviewed by:	bapt, mat (mentor), ume (maintainer)
Approved by:	mat (mentor), ume (maintainer)
MFH:		2017Q3
Differential Revision:	https://reviews.freebsd.org/D11805

- Create python3 version of security/py-ecdsa

Approved by:	portmgr (feld), python (koobs)
Differential Revision://reviews.freebsd.org/D11821

Remove security/rubygem-hashie-forbidden_attributes, duplicate of
devel/rubygem-hashie-forbidden_attributes

- Update The Glorious Glasgow Haskell Compiler to version 8.0.2
- Simplified port by only suporting GCC, and creating a build.mk file
- Update Pandoc to 1.19.2.1
- Update git-annex to 6.20170520
- Update Darcs to 2.12.5
- Update Gtk2Hs to 0.13.2.2
- Update Agda to 2.5.2

Please note that port revisions for all the Haskell ports without version
changes are bumped.

See the UPDATING file for instructions.

New ports (63):

(Only the first 15 lines of the commit message are shown above )

New port: security/rubygem-hashie-forbidden_attributes

Hashie compatibility layer for forbidden attributes protection.

WWW: https://github.com/Maxim-Filimonov/hashie-forbidden_attributes

Submitted by: Matthias Fechner <idefix@fechner.net>

- New port: security/openvas9 (metaport)

This is the metaport to install OpenVAS 9 applications and libraries.

WWW: http://www.openvas.org

- New port: security/openvas8 (metaport)

This is the metaport to install the mupen64plus emulator and all libraries and
tools.

WWW: http://www.openvas.org

- New port: security/greenbone-security-assistant9

The Open Vulnerability Assessment System (OpenVAS) is a framework of several
services and tools offering a comprehensive and powerful vulnerability
scanning and vulnerability management solution.

This package contains the Greenbone Security Assistant, a web interface for
the OpenVAS Manager.

WWW: http://www.openvas.org/

- New port: security/openvas9-manager

The Open Vulnerability Assessment System (OpenVAS) is a framework of several
services and tools offering a comprehensive and powerful vulnerability
scanning and vulnerability management solution.

This package contains the OpenVAS Manager which provides services on top of
the OpenVAS Scanner to manage scan results, configurations and user access
control.

WWW: http://www.openvas.org/

New port: security/openvas9-scanner

The Open Vulnerability Assessment System (OpenVAS) is a framework of several
services and tools offering a comprehensive and powerful vulnerability
scanning and vulnerability management solution.

This package contains the OpenVAS Scanner which executes Network Vulnerability
Tests (NVTs) provided by the OpenVAS NVT Feed or a commercial feed service.

WWW: http://www.openvas.org/

- New port: security/openvas9-cli

The Open Vulnerability Assessment System (OpenVAS) is a framework of several
services and tools offering a comprehensive and powerful vulnerability
scanning and vulnerability management solution.

This package contains a command-line tool to control the OpenVAS Manager and
a Nagios plugin.

WWW: http://www.openvas.org/

- New port: security/openvas9-libraries

The Open Vulnerability Assessment System (OpenVAS) is a framework of several
services and tools offering a comprehensive and powerful vulnerability
scanning and vulnerability management solution.

This package contains core libraries.

WWW: http://www.openvas.org/

- Rename openvas ports for reflect 8 version in name. I'll add openvas9 ports
  and I'll take maintainership of them

Remove expired ports:
2017-07-31 net/rubygem-oauth212: Only created for www/gitlab; please use
net/rubygem-oauth2 instead
2017-07-31 textproc/rubygem-liquid3: Use textproc/rubygem-liquid instead
2017-07-31 mail/dovecot2-antispam-plugin: Use pigeonhole instead. See
https://wiki2.dovecot.org/HowTo/AntispamWithSieve
2017-07-31 mail/dovecot-antispam: Dovecot-1.x is deprecated. Use dovecot2 and
dovecot2-antispam-plugin instead
2017-07-31 mail/dovecot-sieve: Dovecot-1.x is deprecated. Use dovecot2 and
dovecot-pigeonhole instead
2017-07-31 mail/dovecot-managesieve: Dovecot-1.x is deprecated. Use dovecot2 and
dovecot-pigeonhole instead
2017-07-31 www/rubygem-jquery-ui-rails5-rails4: Only created for www/gitlab;
please use www/rubygem-jquery-ui-rails-rails4 instead
2017-07-31 security/rubygem-omniauth13: Only created for www/gitlab; please use
security/rubygem-omniauth instead
2017-07-31 devel/rubygem-health_check22: Only created for www/gitlab; please use
devel/rubygem-health_check instead
2017-07-31 devel/rubygem-semantic_puppet0: Use devel/rubygem-semantic_puppet
instead
2017-07-31 devel/rubygem-newrelic_rpm3: Only created for www/gitlab; please use
devel/rubygem-newrelic_rpm instead
2017-07-31 lang/p5-Parse-Perl: does not build with Perl >= 5.22
2017-07-31 sysutils/rubygem-puppet_forge1: Use sysutils/rubygem-puppet_forge
instead
2017-07-31 sysutils/rubygem-SyslogLogger: Project is EOL'd because it was merged
into Ruby 2.0

Vuls is an agentless vulnerability scanner written in golang.
It can scan localhost or remote hosts via SSH. Vuls has a Terminal-Based User
Interface(TUI) to display the scan results.

Vuls' features include:

* scan for vulnerabilitie in Ubuntu, Debian, CentOS, Amazon Linux, RHEL, Oracle
Linux, FreeBSD and Raspbian;
* scan middleware that are not included in OS package management;
* nondestructive testing;
* email and slack notification.

WWW: https://github.com/future-architect/vuls

PR:		220328
Submitted by:	Alexandru Ciobanu <iscandr@gmail.com> (maintainer)
Reviewed by:	matthew (mentor), mat
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D11746

This is tool to build a local copy of the National Vulnerabilities Database(NVD)
and the Japan Vulnerability Notes (JVN). NVD and JVN contain security
vulnerabilities according to their CVE identifiers, including exhaustive
information and a risk score. The local copy is generated in sqlite format, and
the tool has a server mode for easy querying.

WWW: https://github.com/kotakanbe/go-cve-dictionary/

PR:		220561
Submitted by:	Alexandru Ciobanu <iscandr@gmail.com> (maintainer)
Reviewed by:	matthew (mentor), koobs, mat
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D11745

Function Identification and Recovery Signature Tool

Add missing entry to security/Makefile for rubygem-hkdf

rubygem-webpush: Encryption utilities for Web Push payload

WWW: https://github.com/zaru/webpush

Add crackpkcs12 0.2.10, multithreaded program to crack PKCS#12 files.

Revert the removal of security/sha2wordlist via revision 446377. That
happened since it was not connected to the build.  Instead fix a typo
in security/Makefile and hence connect this port.

Reported by:	jbeich

Remove 4 ports that are probably useless (not properly hooked to the build)

With hat:	portmgr

security/sshguard: Update to 2.0.0

PR:		219409

Add sha2wordlist.

sha2wordlist makes a sha256 digest and outputs it in PGP Words, to be used
when verifying hashes verbally.

Submitted by:	Peter Ankerstal

- New port: security/veracrypt

VeraCrypt is a free open source disk encryption software for Windows, Mac OSX,
FreeBSD and Linux. Brought to you by IDRIX (https://www.idrix.fr) and based on
TrueCrypt 7.1a.

VeraCrypt main features:

- Creates a virtual encrypted disk within a file and mounts it as a real disk.
- Encrypts an entire partition or storage device such as USB flash drive or
  hard drive.
- Encrypts a partition or drive where Windows is installed (pre-boot
  authentication).
- Encryption is automatic, real-time(on-the-fly) and transparent.
- Parallelization and pipelining allow data to be read and written as fast as
  if the drive was not encrypted.
- Encryption can be hardware-accelerated on modern processors.
- Provides plausible deniability, in case an adversary forces you to reveal the
  password: Hidden volume (steganography) and hidden operating system.
- More information about the features of VeraCrypt may be found in the
  documentation

WWW: http://www.veracrypt.fr

ntroducing the new krb5-devel port, tracking MIT KRB5 development
on github.

New port libu2f-host

Libu2f-host provides a C library and command-line tool that implements the
host-side of the U2F protocol. There are APIs to talk to a U2F device and
perform the U2F Register and U2F Authenticate operations.

WWW: https://developers.yubico.com/libu2f-host/

New port: security/rubygem-metasploit-aggregator

The Metasploit Aggregator is a proxy for Meterpreter sessions.

WWW: https://github.com/rapid7/metasploit-aggregator

Add security/linux-c7-trousers, needed by security/linux-c7-gnutls.

Add security/linux-c7-p11-kit, needed by security/linux-c7-gnutls.

Add security/linux-c7-nettle, needed by security/linux-c7-gnutls.

New port: security/hardening-check

Check binaries for security hardening features

Hardening-check is a perl script to verify that the resulting binary
does, in fact, have hardening features enabled, you can use it to
test each ELF binary and the output will show if the binary has
position independent executable, stack protected, fortify source
functions(not supported on FreeBSD now), read only relocations or
immediate binding supported.

WWW: https://wiki.debian.org/Hardening

PR:		220245
Submitted by:	amutu@amutu.com

New port: security/testssl.sh

testssl.sh is a command line tool which checks a server's service on
any port for the support of TLS/SSL ciphers, protocols as well as some
cryptographic flaws.  Key features:

- Clear output: you can tell easily whether anything is good or bad
- Flexibility: You can test any SSL/TLS enabled and STARTTLS service,
  not only webservers at port 443
- Toolbox: Several command line options help you to run YOUR test and
  configure YOUR output
- Reliability: features are tested thoroughly
- Verbosity: If a particular check cannot be performed because of a
  missing capability on your client side, you'll get a warning
- Privacy: It's only you who sees the result, not a third party

WWW: https://github.com/drwetter/testssl.sh

Approved by:	mat (mentor)
Differential Revision:	https://reviews.freebsd.org/D11406

security/boringssl: create port

Fork of OpenSSL that is designed to meet Google's needs

WWW: https://github.com/google/boringssl

New port: security/rubygem-doorkeeper-openid_connect

Implements an OpenID Connect authentication provider for Rails applications on
top of the Doorkeeper OAuth 2.0 framework.

OpenID Connect is a single-sign-on and identity layer with a growing list of
server and client implementations. If you're looking for a client in Ruby check
out omniauth-openid-connect.

WWW: https://github.com/doorkeeper-gem/doorkeeper-openid_connect

New port: security/rubygem-securecompare

securecompare borrows the secure_compare private method from
ActiveSupport::MessageVerifier which lets you do safely compare strings without
being vulnerable to timing attacks. Useful for Basic HTTP Authentication in your
rack/rails application.

WWW: https://github.com/samuelkadolph/securecompare

Remove expired ports:
2017-05-31 mail/linux-thunderbird: Use the native thunderbird mail/thunderbird
instead
2017-06-01 devel/p5-Penguin: Depends on expired security/pgp
2017-06-01 security/p5-Crypt-PGPSimple: Depends on expired security/pgp
2017-06-01 mail/pgpsendmail: Depends on expired security/pgp
2017-04-01 security/pgp: This software was last updated in 1996, use
security/gnupg1 as a drop-in replacement with legacy PGP support.

[NEW] security/py3-openssl: Create Python 3.x version of port

The latest www/py-requests update [1] unbundled its dependencies, now
requiring chardet, idna, urllib3 and certifi from ports.

www/py3-requests port was not tested during QA, which would have highlighted
the need for many new py3-* ports (and their dependencies).

This change creates one of those ports.

[1] https://svnweb.freebsd.org/changeset/ports/442565

PR:		219833

[NEW] security/py3-cryptography: Create Python 3.x version of port

The latest www/py-requests update [1] unbundled its dependencies, now
requiring chardet, idna, urllib3 and certifi from ports.

www/py3-requests port was not tested during QA, which would have highlighted
the need for many new py3-* ports (and their dependencies).

This change creates one of those ports.

[1] https://svnweb.freebsd.org/changeset/ports/442565

PR:		219833

[NEW] security/py3-certifi: Create Python 3.x port of py-certifi

The latest www/py-requests update [1] unbundled its dependencies, now
requiring chardet, idna, urllib3 and certifi from ports.

www/py3-requests port was not tested during QA, which would have highlighted
the need for many new py3-* ports (and their dependencies).

This change creates one of those ports.

[1] https://svnweb.freebsd.org/changeset/ports/442565

PR:		219833
Approved by:	koobs (python, with hat)

Sort SUBDIRs

Hook security/pecl-ssh2-0 to the build

Add rubygem-pundit 1.1.0

Pundit provides a set of helpers which guide you in leveraging regular Ruby
classes and object oriented design patterns to build a simple, robust and
scaleable authorization system.

WWW: https://github.com/elabs/pundit

security/rubygem-doorkeeper-rails50: Create rails version 5.0 port by
copying security/rubygem-doorkeeper-rails5

Approved by:	swills (mentor, implicit)

security/rubygem-devise-two-factor-rails50: Create rails version 5.0 port
by copying security/rubygem-devise-two-factor-rails5

Approved by:	swills (mentor, implicit)

A pure Unix shell script implementing ACME client protocol

Differential Revision: https://reviews.freebsd.org/D10308

Add py-google-auth 1.0.1

google-auth is the Google authentication library for Python. This library
provides the ability to authenticate to Google APIs using various methods. It
also provides integration with several HTTP libraries.

- Support for Google Application Default Credentials.
- Support for signing and verifying JWTs.
- Support for Google Service Account credentials.
- Support for Google Compute Engine credentials.
- Support for Google App Engine standard credentials.
- Support for various transports, including Requests, urllib3, and gRPC.

WWW: https://pypi.python.org/pypi/google-auth
WWW: https://github.com/GoogleCloudPlatform/google-auth-library-python

Tool to analyze Nginx configuration for security misconfiguration

The python binding of the cryptographic library cryptlib.

WWW: http://www.cs.auckland.ac.nz/~pgut001/cryptlib/

PR:		216011
Submitted by:	Yuri Victorovich <yuri@rawbw.com>

Simple utility for submitting to transparency logs

PR:		216766
Submitted by:	Jim Ohlstein <jim@ohlste.in>

2017-04-30 devel/stormlib-ghost++: Unfetchable for more than six months (google
code has gone away)
2017-04-30 devel/py-coil: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/py-cmdln: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/privman: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/c-unit: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/py-px: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/nglogc: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/bncsutil-ghost++: Unfetchable for more than six months (google
code has gone away)
2017-04-30 devel/liblouisxml: Unfetchable for more than six months (google code
has gone away)
2017-04-30 devel/nxt-python: Unfetchable for more than six months (google code
has gone away)
2017-04-30 devel/spdict: Unfetchable for more than six months (google code has
gone away)
2017-04-30 devel/guiloader-c++: Unfetchable for more than six months (google
code has gone away)
2017-04-30 devel/streamhtmlparser: Unfetchable for more than six months (google
code has gone away)
2017-04-30 devel/winpdb: Unfetchable for more than six months (google code has
gone away)
2017-04-30 net/opendpi: Unfetchable for more than six months (google code has
gone away)

(Only the first 15 lines of the commit message are shown above )

net/softethervpn: rename to security/softether-devel

PR:		217732
Submitted by:	pi
Approved by:	hrs (maintainer timeout)

Create rails version 5 ports to avoid conflicts.

Approved by:	swills (mentor, implicit)

Add rubygem-omniauth13 1.3.2 (copied from rubygem-omniauth)

- Add PORTSCOUT

New port, security/rubygem-openssl: Gem that wraps around OpenSSL library

While there is an OpenSSL gem packaged with Ruby, a separate gem has been
created, so that when OpenSSL security issues arise, the separate gem can
be released independently of Ruby.

WWW: https://github.com/ruby/openssl/

Approved by:	swills (mentor)
Differential Revision:	https://reviews.freebsd.org/D10415

Remove expired ports:
2015-10-01 www/py-django16: End of extended support: April 1, 2015
www/py-django16-tastypie: Uses expired Django version
2017-04-01 www/py-django-pipeline13: Depends on expired www/py-django16, and
expired upstream
2017-04-19 www/py-djblets: Does not build with py-django18 see pr: 216758
2017-04-19 security/py-crits: Does not build with py-django18 see pr: 216758
www/py-cactus: Depends on expired Django version
devel/py-django16-tastypie-mongoengine: Uses expired Django version

security/py3-pycrypto: create port

Python 3 version of py-pycrypto

Number of commits found: 1605 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

14 vulnerabilities affecting 119 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2018-09-22 17:51:27