Number of commits found XX: 1926 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

New port: security/py-xkcdpass

A flexible and scriptable password generator which generates
strong diceword-style passphrases, inspired by XKCD 936.

  $ xkcdpass
  > correct horse battery staple

Usable as standalone script or a module within a larger
Python project.

WWW: https://github.com/jwfh/xkcdpass

Submitted by:	jacob_jwfh.ca
Differential Revision:	https://reviews.freebsd.org/D21234

Add security/py-certbot-dns-cpanel: CPanel DNS Authenticator plugin for Certbot

Plugin to allow acme dns-01 authentication of a name managed in cPanel. Useful
for automating and creating a Let's Encrypt certificate (wildcard or not) for a
service with a name managed by cPanel, but installed on a server not managed in
cPanel.

WWW: https://pypi.org/project/certbot-dns-cpanel/

PR:		244096
Submitted by:	Venim <h.freshports@skarnell.se>

new port: security/vigenere: cipher algorithm tool

vigenere is an implementation of the Vigenere cipher algorithm extended
to the entire set of printable ASCII characters

https://www.olivermahmoudi.com/programming/vigenere-cipher/

PR:	247244
Submitted by:	fbsd@olivermahmoudi.com

Made rubygem net-ssh version 5 available as it is required by
net-mgmt/rubygem-oxidized.

PR:		247172

[NEW] security/yubikey-agent: Seamless ssh-agent for YubiKeys

  (*) Easy to use. A one-command setup, one environment variable,
    and it just runs in the background.
  (*) Indestructible. Tolerates unplugging, sleep, and suspend.
    Never needs restarting.
  (*) Compatible. Provides a public key that works with all services
    and servers.
  (*) Secure. The key is generated on the YubiKey and can't be
    extracted. Every session requires the PIN, every login requires a
    touch. Setup takes care of PUK and management key.

  WWW: https://filippo.io/yubikey-agent

Remove expired port:

2020-05-05 security/pam_pseudo: Broken for more than 6 months

security/bro: Remove expired port

2020-06-01 security/bro: Please migrate to security/zeek

New port: security/fizz: C++14 implementation of the TLS-1.3 standard

New port: security/cfssl: CloudFlares PKI and TLS toolkit

PR:		205326
Submitted by:	Tomoyuki Sakurai <trombik1973@gmail.com> (latest version), me
(original version)

New ports required for www/gitlab-ce 12.10 upgrade.

Remove expired ports:

Adjusted for ports rescued since r534032

2020-05-05 audio/festvox-czech: Broken for more than 6 months
2020-05-05 audio/gkrellmvolume2: Broken for more than 6 months
2020-05-05 audio/mixmos: Broken for more than 6 months
2020-05-05 audio/mma: Broken for more than 6 months
2020-05-05 audio/pd-cyclone: Broken for more than 6 months
2020-05-05 audio/shorten: Broken for more than 6 months
2020-05-05 audio/taglib-sharp: Broken for more than 6 months
2020-05-05 audio/xhippo: Broken for more than 6 months
2020-05-05 biology/consed: Broken for more than 6 months
2020-05-05 biology/plinkseq: Broken for more than 6 months
2020-05-05 biology/seqtools: Broken for more than 6 months

(Only the first 15 lines of the commit message are shown above )

New port: security/rubygem-net-ssh-krb

Add Kerberos (password-less) authentication capabilities to Net::SSH, without
the need for modifying Net::SSH source code.

This is a great way to help get Capistrano to be accepted in mid-to-large size
enterprises with strict security rules.

No more getting locked out of the network because you mis-typed your password -
even if your company prohibits public key or host-based authentication. If your
organization uses Kerberos (many mid-to-large size corporations do), you can
use this package to get password-less authentication without breaking your
company's security guidelines.

WWW: http://rubygems.org/gems/net-ssh-krb

Add security/py-pyotp2289

Pure Python implementation of RFC-2289 - "A One-Time Password System"

"The system provides authentication for system access (login) and other
applications requiring authentication that is secure against passive attacks
based on replaying captured reusable passwords. OTP evolved from the S/KEY
(S/KEY is a trademark of Bellcore) One-Time Password System that was released
by Bellcore."

WWW: https://github.com/blackm0re/pyotp2289

PR:		245755
Submitted by:	Simeon Simeonov <sgs@pichove.org>

security/openssl-devel: Resurrect OpenSSL devel port

Add security/py-pgpy:  Pretty Good Privacy for Python

PGPy is a Python (2 and 3) library for implementing Pretty Good Privacy into
Python programs, conforming to the OpenPGP specification per RFC 4880.

WWW: https://github.com/SecurityInnovation/PGPy

PR:		245335
Submitted by:	contact@evilham.com

[NEW] security/bsmtrace3: BSM based intrusion detection system

bsmtrace is a BSM based intrusion detection system, utilizing audit trails
and real-time audit event analysis through auditpipe(4).  This host based
IDS operates using a finite state machine principles with a flexible
sequence driven signature system.

WWW: https://www.github.com/openbsm/bsmtrace

This is a repocopy of security/bsmtrace, updated to recently-released 3.x.
There are breaking changes between 1.x and 3.x, so it was decided to create
a new port to give consumers some time to update their configs. The old
security/bsmtrace should be deprecated in fairly short order, after
bsmtrace3 has received a little bit of soak time in ports.

(Only the first 15 lines of the commit message are shown above )

Remove expired port:

2020-04-20 security/suricata5: security/suricata is already at version 5

This port contains the Smallstep step-ca certificates component

It can be used together with the Smallstep step-ca client.
step-ca is a local CA. It can be used to create your own local PKI
Infrastructure and includes things like e.g. the possibility to have your
own ACME server.

A private certificate authority (X.509 & SSH) & ACME server for secure
automated certificate management, so you can use TLS everywhere & SSO for SSH.

WWW: https://smallstep.com/certificates/

PR:		245535
Submitted by:	Markus Wipp <mw@wipp.bayern>

step is a zero trust swiss army knife that integrates with step-ca for
automated certificate management. It's an easy-to-use and hard-to-misuse utility
for building, operating, and automating systems that use zero trust technologies
like authenticated encryption (X.509, TLS), single sign-on (OAuth OIDC, SAML),
multi-factor authentication (OATH OTP, FIDO U2F), encryption mechanisms (JSON
Web Encryption, NaCl), and verifiable claims (JWT, SAML assertions).

WWW: https://smallstep.com/cli/

PR:		245534
Submitted by:	Markus Wipp <mw@wipp.bayern>

USES=lua gained flavors.

Ports using USES=lua:module or lua:flavors will be flavored.  A range of
supported lua versions can be set using XX-YY (or XX-, or -YY, or simply ZZ)
for ports not supporting all lua versions.

USES=lua sets LUA_FLAVOR that needs to be used on all dependencies of
flavored lua ports, in a similar way as PHP or Python flavors.

PR:		245038
Submitted by:	andrew tao11 riddles org uk
Reviewed by:	mat, kevans, russ haley gmail com
Approved by:	mat (portmgr)
Differential Revision:	https://reviews.freebsd.org/D16494

New port: security/tailscale

Tailscale is a mesh VPN alternative, based on WireGuard, that connects your
computers, databases, and services together securely without any proxies.

WWW: https://tailscale.com/

Reviewed by:	dmgk
Differential Revision:	https://reviews.freebsd.org/D24376

security/sedutil: create port

Self Encrypting Drive utility.

This allows encrypting and decrypting drives that use encryption based on
the various TCG (Trusted Computing Group) specifications.

From the web site:

   The Drive Trust Alliance software (sedutil) is an Open Source (GPLv3)
   effort to make Self Encrypting Drive technology freely available to
   everyone. It is a combination of the two known available Open Source code
   bases today: msed and OpalTool.

   The DTA Open Source can be employed freely not only for higher security

(Only the first 15 lines of the commit message are shown above )

Remove expired ports:

2020-03-29 security/w3af: Uses deprecated version of Python
2020-03-30 sysutils/duplicity-devel: Obsolete now, use sysutils/duplicity
instead
2020-03-31 net-mgmt/tornova: Use EOL'd Python 2.7
2020-03-31 audio/py-ogg: Unmaintained, uses EOLed python27
2020-03-31 net-mgmt/onionlauncher: Use EOL'd Python 2.7
2020-03-31 databases/mongodb34: EOL January 2020; See
https://www.mongodb.com/support-policy
2020-03-31 graphics/sane-frontends: Unmaintained upstream, no consumers left
2020-03-31 lang/ruby24: Move to a new version (lang/ruby26 or above). Ruby 2.4
is in security maintenance phase and planned for EOL on March 31, 2020
2020-03-31 databases/pgpool: Reached EOL at 2019-10-31, please use pgpool-II-35
or higher
2020-03-31 net/pygopherd: Unmaintained, uses EOLed python27
databases/mongodb34-tools: Part of expired MongoDB 3.4

New ports required for gitlab-ce 12.9 upgrade.

A Python implementation of the SCRAM authentication protocol defined
by RFC 5802 and RFC 7677. Scramp supports the following mechanisms:
  * SCRAM-SHA-256
  * SCRAM-SHA-1

WWW: https://github.com/tlocke/scramp

Rename swatch to swatchdog, update to 3.2.4, unbreak build

Reported by:	Andrea Venturoli <ml@netfence.it>

New port: security/py-angr

angr is a platform-agnostic binary analysis framework in a form of a suite
of Python 3 libraries that let you load a binary and do a lot of cool
things to it:

- Disassembly and intermediate-representation lifting
- Program instrumentation
- Symbolic execution
- Control-flow analysis
- Data-dependency analysis
- Value-set analysis (VSA)
- Decompilation

The most common angr operation is loading a binary:

(Only the first 15 lines of the commit message are shown above )

New port: security/py-ailment

AIL is the angr intermediate language.

It is developed within the angr project.

WWW: https://github.com/angr/pyvex

PR:		244562

New port: security/rubygem-hrr_rb_ssh

Pure Ruby SSH 2.0 server implementation.

WWW: https://github.com/hirura/hrr_rb_ssh

Hook security/py-pyvex to the build

PR:		244562

New port: security/gef

GEF (pronounced "Jeff") is a set of commands for x86/64, ARM, MIPS, PowerPC
and SPARC to assist exploit developers and reverse-engineers when using old
school GDB. It provides additional features to GDB using the Python API to
assist during the process of dynamic analysis and exploit development.
Application developers will also benefit from it, as GEF lifts a great part
of regular GDB obscurity, avoiding repeating traditional commands, or
bringing out the relevant information from the debugging runtime.

Some of GEF features include:
- One single GDB script.
- Fast limiting the number of dependencies and optimizing code to make the
  commands as fast as possible.
- Provides more than 50 commands to drastically change your experience in
  GDB.
- Easily extendable to create other commands by providing more
  comprehensible layout to GDB Python API.
- Built around an architecture abstraction layer, so all commands work in
  any GDB-supported architecture such as x86-32/64, ARMv5/6/7, AARCH64,
  SPARC, MIPS, PowerPC, etc.
- Suited for real-life apps debugging, exploit development, just as much as
  CTF.

WWW: https://gef.rtfd.io

New port: security/py-ropper

You can use ropper to look at information about files in different
file formats and you can find ROP and JOP gadgets to build chains for
different architectures. Ropper supports ELF, MachO and the PE file
format. Other files can be opened in RAW format. The following
architectures are supported:

- x86 / x86_64
- Mips / Mips64
- ARM (also Thumb Mode)/ ARM64
- PowerPC / PowerPC64

Ropper is inspired by ROPgadget, but should be more than a gadgets
finder. So it is possible to show information about a binary like
header, segments, sections etc. Furthermore it is possible to edit the
binaries and edit the header fields, but currently this is not fully
implemented and in a experimental state. For disassembly ropper uses
the awesome Capstone Framework.

Now you can generate rop chain automatically (auto-roper) for execve
and mprotect syscall.

WWW: https://scoding.de/ropper/

Add Perl implementation of Shamir's Secret Sharing System.

WWW: https://metacpan.org/release/Crypt-SSSS

Remove expired ports:

2020-03-01 audio/idjc: Old, uses EOLed python27
2020-03-01 cad/py-pycam: Old, uses EOLed python27
2020-02-27 chinese/gimp-help-zh_CN: Broken
2020-03-01 databases/emma: Old, uses EOLed python27
2020-03-01 deskutils/anamnesis: Old, uses EOLed python27
2020-02-28 deskutils/cherrytree: Old, uses EOLed python27
2020-03-01 deskutils/gbirthday: Old, uses EOLed python27
2020-03-01 deskutils/gtg: Old, uses EOLed python27
2020-03-01 deskutils/nemo-extensions: Old, uses EOLed python27
2020-03-01 deskutils/pybookreader: Old, uses EOLed python27
2020-03-01 devel/diffuse: Old, uses EOLed python27
2020-02-28 devel/dreampie: Old, uses EOLed python27
2020-03-01 devel/gtkparasite: Old, uses EOLed python27

(Only the first 15 lines of the commit message are shown above )

Add py-python3-saml 1.9.0

Add SAML support to your Python software using this library. Forget those
complicated libraries and use the open source library provided and supported by
OneLogin Inc.

WWW: https://github.com/onelogin/python3-saml

Add py-authlib 0.14.1

Authlib is the ultimate Python library in building OAuth and OpenID Connect
servers. JWS, JWK, JWA, JWT are included.

WWW: https://authlib.org/
WWW: https://github.com/lepture/authlib

Obsolete by gitlab-ce upgrade.

New ports required for gitlab-ce 12.8 upgrade.

New port: security/hs-cryptol: Language of cryptography

With help of:	arrowd

Add libgsasl 1.8.1 (split from gsasl)

- Add LICENSE
- Add GSSAPI_BASE, GSSAPI_HEIMDAL, GSSAPI_MIT and GSSAPI_NONE options

GNU SASL has been split into 2 ports:
- security/gsasl: the command-line utility
- security/libgsasl: the library

Remove expired ports, all Python-2.7-only:

2020-02-17 audio/decibel-audio-player: Old, uses EOLed python27
2020-02-17 audio/soundconverter: Old, uses EOLed python27
2020-02-19 cad/linuxcnc-devel: Broken, uses EOLed python27
2020-02-19 databases/monetdb: Broken, uses EOLed python27
2020-02-19 databases/py-cql: Broken, uses EOLed python27
2020-02-18 databases/zodb3: Old, uses EOLed python27
2020-02-17 deskutils/gourmet: Old, uses EOLed python27
2020-02-18 devel/py-Products.PlacelessTranslationService: Old, uses EOLed
python27
2020-02-18 devel/py-Products.ZopeVersionControl: Old, uses EOLed python27
2020-02-18 devel/py-Products.statusmessages: Old, uses EOLed python27
2020-02-18 devel/py-collective.z3cform.datetimewidget: Old, uses EOLed python27
2020-02-20 devel/py-five.formlib: Old, uses EOLed python27
2020-02-18 devel/py-five.localsitemanager: Old, uses EOLed python27

(Only the first 15 lines of the commit message are shown above )

New port: security/nflib: NTT-based fast lattice cryptography library

Welcome the new KRB5 1.18 (krb5-118)

In addition, deprecate krb5-116 to retire one year after the release
of krb5-118: Feb 12, 2021.

Major changes in 1.18 (2020-02-12)
==================================

Administrator experience:

* Remove support for single-DES encryption types.

* Change the replay cache format to be more efficient and robust.
  Replay cache filenames using the new format end with ".rcache2" by
  default.

(Only the first 15 lines of the commit message are shown above )

Remove expired ports:

2020-02-16 archivers/rox-archive: Old, uses EOLed python27
2020-02-15 databases/ldb: Old version, uses EOLed python27
2020-02-15 databases/ldb12: Old version, uses EOLed python27
2020-02-15 databases/ldb13: Old version, uses EOLed python27
2020-02-15 databases/tdb1: Old version, uses EOLed python27
2020-02-16 deskutils/rox-memo: Old, uses EOLed python27
2020-02-16 devel/py-roxlib: Old, uses EOLed python27
2020-02-15 devel/talloc1: Old version, uses EOLed python27
2020-02-15 devel/tevent1: Old version, uses EOLed python27
2020-02-16 editors/rox-edit: Old, uses EOLed python27
2020-02-15 graphics/ocre: unfetchable, author not reachable, seems discontinued
2020-02-14 math/py-basemap: Deprecated upstream
2020-02-16 multimedia/rox-videothumbnail: Old, uses EOLed python27
2020-02-14 security/morphis: Fails to build with recent versions of python,
upstream git repository is gone
2020-02-16 x11/rox-wallpaper: Old, uses EOLed python27
2020-02-16 x11-fm/rox-mime-editor: Old, uses EOLed python27
2020-02-16 x11-fm/rox-session: Old, uses EOLed python27

Sort SUBDIRs

New port: security/honeytrap

HoneyTrap is a modular framework for running, monitoring and managing honeypots.
Using HoneyTrap you can use sensors, high interaction and low
interaction honeypots together, while still using the same event mechanisms.
HoneyTrap consists of services, directors, listeners and channels. It is easy to
build new services, attach existing honeypots and extend channels or directors.

PR:		242740
Submitted by:	ezri.mudde@dutchsec.com

[NEW PORT] security/spm: spm - Simple password manager

Remove expired ports:

2020-02-05 devel/py-DocumentTemplate: Outdated, uses EOLed python27
2020-02-05 devel/py-Missing: Outdated, uses EOLed python27
2020-02-05 devel/py-MultiMapping: Outdated, uses EOLed python27
2020-02-05 devel/py-Persistence: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.BTreeFolder2: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFActionIcons: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFCalendar: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFCore: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFDefault: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFDiffTool: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFDynamicViewFTI: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFEditions: Outdated, uses EOLed python27
2020-02-05 devel/py-Products.CMFFormController: Outdated, uses EOLed python27

(Only the first 15 lines of the commit message are shown above )

Remove expired ports:

2020-02-03 devel/py-Products.ATContentTypes: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-Products.ATReferenceBrowserWidget: Outdated version of plone
4.3 (legacy), uses EOLed python27
2020-02-03 devel/py-Products.Archetypes: Outdated version of plone 4.3 (legacy),
uses EOLed python27
2020-02-03 devel/py-Products.CMFTestCase: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-Products.Marshall: Outdated version of plone 4.3 (legacy),
uses EOLed python27
2020-02-03 devel/py-Products.PasswordResetTool: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-Products.PloneTestCase: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-Products.PortalTransforms: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-Products.ResourceRegistries: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-archetypes.querywidget: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-archetypes.referencebrowserwidget: Outdated version of plone
4.3 (legacy), uses EOLed python27
2020-02-03 devel/py-archetypes.schemaextender: Outdated version of plone 4.3
(legacy), uses EOLed python27
2020-02-03 devel/py-five.customerize: Outdated version of plone 4.3 (legacy),
uses EOLed python27

(Only the first 15 lines of the commit message are shown above )

gnupg-pkcs11 is a project to implement a BSD-licensed smart-card daemon to
enable the use of PKCS#11 tokens with GnuPG.

WWW: https://github.com/alonbl/gnupg-pkcs11-scd

Hook security/py-vici to the build

PR:		243270
Submitted by:	Dries Michiels <driesm.michiels@gmail.com>

Remove expired ports:

2020-01-31 www/py-dj21-django-auth-ldap: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 www/py-dj21-django-crispy-forms: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 www/sogo3-activesync: Deprecated, replaced by www/sogo4
2020-01-31 devel/sope3: Deprecated, replaced by devel/sope4
2020-01-31 www/py-dj21-django-mptt: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 graphics/py-willow11: Use graphics/py-willow instead
2020-01-31 www/py-dj21-django-tables2: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 www/py-dj21-django-debug-toolbar: Django 2.1 is now End-of-Life
(Since December 2 2019) and no longer supported. Switch to Django 2.2+ versions
of this port as soon as possible
2020-01-31 security/krb5-115: EOL one year after the release of krb5 1.17
2020-01-31 www/py-dj21-django-taggit: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 www/py-dj21-django-cors-headers: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 graphics/py-imgurpython: No longer supported by upstream
2020-01-31 www/py-dj21-django-taggit-serializer: Django 2.1 is now End-of-Life
(Since December 2 2019) and no longer supported. Switch to Django 2.2+ versions
of this port as soon as possible
2020-01-31 www/py-dj21-django-filter: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 www/py-dj21-django-timezone-field: Django 2.1 is now End-of-Life
(Since December 2 2019) and no longer supported. Switch to Django 2.2+ versions
of this port as soon as possible
2020-01-31 devel/py-xarray011: Use devel/py-xarray instead
2020-01-31 www/py-django-modelcluster4: Use www/py-django-modelcluster instead
2020-01-31 devel/py-semantic_version26: Use devel/py-semantic_version instead
2020-01-31 www/py-dj21-django-js-asset: Django 2.1 is now End-of-Life (Since
December 2 2019) and no longer supported. Switch to Django 2.2+ versions of this
port as soon as possible
2020-01-31 www/py-dj21-drf-yasg: Django 2.1 is now End-of-Life (Since December 2
2019) and no longer supported. Switch to Django 2.2+ versions of this port as
soon as possible

Remove expired ports (part 2):

2020-01-27 security/kedpm: Unmaintained, uses EOLed python27
2020-01-27 security/parano: Unmaintained, uses EOLed python27
2020-01-27 security/py-cryptkit: Unmaintained, uses EOLed python27
2020-01-27 security/py-fchksum: Unmaintained, uses EOLed python27
2020-01-27 security/py-mhash: Unmaintained, uses EOLed python27
2020-01-27 security/py-pow: Unmaintained, uses EOLed python27
2020-01-27 security/py-pycryptopp: Unmaintained, uses EOLed python27
2020-01-27 security/py-trustedpickle: Unmaintained, uses EOLed python27
2020-01-27 security/py-twofish: Unmaintained, uses EOLed python27
2020-01-27 security/revelation: Unmaintained, uses EOLed python27
2020-01-27 security/spike-proxy: Unmaintained, uses EOLed python27
2020-01-27 security/umit: Unmaintained, uses EOLed python27
2020-01-27 sysutils/feather: Unmaintained, uses EOLed python27

(Only the first 15 lines of the commit message are shown above )

Remove expired ports:

2020-01-27 accessibility/py-papi: Unmaintained, uses EOLed python27
2020-01-27 archivers/py-czipfile: Unmaintained, uses EOLed python27
2020-01-27 audio/boodler: Unmaintained, uses EOLed python27
2020-01-27 audio/dir2ogg: Unmaintained, uses EOLed python27
2020-01-27 audio/jokosher: Unmaintained, uses EOLed python27
2020-01-27 audio/mpdbrowser: Unmaintained, uses EOLed python27
2020-01-27 audio/nekobee: Unmaintained, uses EOLed python27
2020-01-27 audio/patchage: Unmaintained, uses EOLed python27
2020-01-27 audio/py-ao: Unmaintained, uses EOLed python27
2020-01-27 audio/py-id3: Unmaintained, uses EOLed python27
2020-01-27 audio/py-shout: Unmaintained, uses EOLed python27
2020-01-27 audio/py-speex: Unmaintained, uses EOLed python27
2020-01-27 audio/pytone: Unmaintained, uses EOLed python27

(Only the first 15 lines of the commit message are shown above )

Fix INDEX.

Add imds-filterd.

The imds-filterd tool allows administrators of EC2 instances to lock down
which data from the Instance Metadata Service can be accessed by specified
system users and groups, thereby making the EC2 Instance Metadata Service
compatible with traditional UNIX privilege separation.

Reviewed by:	otis, dizzy, lwhsu
Sponsored by:	Tarsnap Backup Inc.

New port: security/py-volatility3

Volatility is the world's most widely used framework for extracting digital
artifacts from volatile memory (RAM) samples.  The extraction techniques are
performed completely independent of the system being investigated but offer
visibility into the runtime state of the system.  The framework is intended to
introduce people to the techniques and complexities associated with extracting
digital artifacts from volatile memory samples and provide a platform for
further work into this exciting area of research.

WWW: http://www.volatilityfoundation.org/

Move security/py-pymacaroons-pynacl to security/py-pymacaroons

- Change MASTER_SITES to CHEESESHOP
- Update pkg-descr
- Update WWW

Add security/horcrux: Split files into encrypted fragments

Utility to split files into encrypted fragments
(using the shamir secret sharing scheme) so that
you don't need to remember a passcode.

WWW: https://github.com/jesseduffield/horcrux

PR:		243423
Submitted by:	Lewis Cook <vulcan@wired.sh>

New port: security/helib: Implementation of homomorphic encryption

Add py-pysaml24 4.9.0 (copied from py-pysaml2)

- Add PORTSCOUT

A secure memorable password generator inspired by the wonderful XKCD
webcomic and Steve Gibson's Password Haystacks webpage.

WWW: https://metacpan.org/release/Crypt-HSXKPasswd

security/openssl111: Rename to openssl

 - Honoring promise from DEPRECATED message
 - Unbreak people's builds

PR:		243014
MFH:		2020Q1

Remove expired ports:

2019-12-31 accessibility/linux-c6-atk: Superseded by CentOS 7
2019-12-31 audio/exaile-devel: this port is older than audio/exaile
2019-12-31 audio/linux-c6-alsa-lib: Superseded by CentOS 7
2019-12-31 audio/linux-c6-alsa-plugins-oss: Superseded by CentOS 7
2019-12-31 audio/linux-c6-alsa-plugins-pulseaudio: Superseded by CentOS 7
2019-12-31 audio/linux-c6-alsa-utils: Superseded by CentOS 7
2019-12-31 audio/linux-c6-flac: Superseded by CentOS 7
2019-12-31 audio/linux-c6-libaudiofile: Superseded by CentOS 7
2019-12-31 audio/linux-c6-libogg: Superseded by CentOS 7
2019-12-31 audio/linux-c6-libsndfile: Superseded by CentOS 7
2019-12-31 audio/linux-c6-libvorbis: Superseded by CentOS 7
2019-12-31 audio/linux-c6-mikmod: Superseded by CentOS 7
2019-12-31 audio/linux-c6-nas-libs: Superseded by CentOS 7

(Only the first 15 lines of the commit message are shown above )

New port: security/age

age is a simple, modern and secure encryption tool with small explicit keys, no
config options, and UNIX-style composability.

WWW: https://github.com/FiloSottile/age

Perl module and command line utility for issuing and maintaining the ACME
(Let's Encrypt) SSL certificates.

Submitted by:	Zeus Panchenko

New port: security/palisade: PALISADE lattice cryptography library

Remove PHP 7.1 ports, upstream security support ended on 2019-12-01 :

2019-12-01 archivers/php71-bz2
2019-12-01 archivers/php71-phar
2019-12-01 archivers/php71-zip
2019-12-01 archivers/php71-zlib
2019-12-01 converters/php71-iconv
2019-12-01 converters/php71-mbstring
2019-12-01 converters/php71-recode
2019-12-01 databases/php71-dba
2019-12-01 databases/php71-interbase
2019-12-01 databases/php71-mysqli
2019-12-01 databases/php71-odbc
2019-12-01 databases/php71-pdo
2019-12-01 databases/php71-pdo_dblib

(Only the first 15 lines of the commit message are shown above )

New port: security/py-ctypescrypto: CTypes-based interface for some OpenSSL
libcrypto features

Unbreak INDEX

new port: security/kpmenu

Kpmenu is a tool written in go used to view a KeePass database via a dmenu, or
rofi, interface

WWW: https://www.alessiodp.com/kpmenu

Pull out mere ports again

- The software is not production ready yet,
  and will be readded once it is.

Approved by:	bhuiyan.mohammad.iklash@gmail.com (maintainer)
Discussed with:	adamw

security/zeek: This adds security/zeek, the new version of security/bro.
This is being done as svn copy instead of rename so that users of
security/bro can have some time to migrate. It also allows for
possible security updates to the old bro port which upstream has
indicated is possible for at least a few months.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D22376

security/clamav: upgrade 0.101.4 -> 0.102.0

- Enable MILTER option by default
- Disable MSPACK option by default
- Sort OPTIONS_DEFINE, OPTIONS_DEFAULT and *_DESC
- Remove security/clamav-milter, slave port that enables MILTER option
- Add entry for security/clamav-milter to MOVED

PR:		241860
Submitted by:	Yasuhiro Kimura <yasu@utahime.org> (maintainer)

New port --  security/mere-auth: Auth library to be used for mere system
interface

Auth library for mere system interface
A library to expose simple api for the auth-aware application to check an user.
Current it support PAM authentication only.

WWW: https://auth.merelab.io/

PR:		241839
Submitted by:	Bhuiyan Mohammad Iklash <bhuiyan.mohammad.iklash@gmail.com>

New port: security/farmhash: Hash functions for strings and other data

Remove expired ports:

2019-10-16 archivers/freetar: Unfetchable, unmaintained
2019-10-16 archivers/hffzip: Unfetchable, unmaintained
2019-10-16 archivers/hpack.non-usa.only: Unfetchable, unmaintained
2019-10-16 archivers/untar: Unfetchable, unmaintained
2019-10-16 astro/gpsdrive: Unfetchable, unmaintained
2019-10-16 astro/planets: Unfetchable, unmaintained
2019-10-16 audio/ascd: Unfetchable, unmaintained
2019-10-16 audio/audiotag: Unfetchable, unmaintained
2019-10-16 audio/gmidimonitor: Unfetchable, unmaintained
2019-10-16 audio/gmpc-lyricwiki: Unfetchable, unmaintained
2019-10-16 audio/jack_mixer: Unfetchable, unmaintained
2019-10-16 audio/jmusic: Unfetchable, unmaintained
2019-10-16 audio/maplay: Unfetchable, unmaintained

(Only the first 15 lines of the commit message are shown above )

New ports security/libscep and security/p5-Crypt-LibSCEP

libscep is a client side implementation of the Simple Certificate
Enrollment Protocol (SCEP) library.

p5-Crypt-LibSCEP is a perl module using the libscep library
to generate and read messages for the Simple Certificate Enrollment
Protocol (SCEP) in perl applications.

PR:		241195
Submitted by:	Sergei Vyshenski <svysh.fbsd@gmail.com>

New port: security/tfhe: Fast Fully Homomorphic Encryption (FHE) library over
the Torus

New port: security/aws-vault

AWS Vault is a tool to securely store and access AWS credentials in a
development environment.

AWS Vault stores IAM credentials in your operating system's secure keystore and
then generates temporary credentials from those to expose to your shell and
applications. It's designed to be complementary to the AWS CLI tools, and is
aware of your profiles and configuration in ~/.aws/config.

WWW: https://github.com/99designs/aws-vault

Approved by:	araujo (mentor)
Differential Revision:	https://reviews.freebsd.org/D21955

Remove expired ports:

2019-10-01 security/softhsm: End-of-life announced, update to softhsm2 ASAP.
2019-10-03 net/asterisk15: Asterisk 15.x will reach EOL on 2019-10-03. Please
migrate to net/asterisk16

New port: security/protonvpn-cli

protonvpn-cli is an user-friendly command-line tool for accessing the
swiss-based privacy-focused ProtonVPN VPN service.
You need a ProtonVPN account to use it: you can create one at
https://protonvpn.com. Free accounts are available, although with
limited features: only 3 countries (Netherlands, USA, Japan) are
available with the free plan.
It can also easily add an extra layer of privacy by activating Tor
(needs payed plan).

No manual page is provided with protonvpn-cli, but you can get help
on usage by running protonvpn-cli -h.

Warning: although user is asked about enabling a killswitch or not, no
killswitch is available at the moment.

WWW: https://protonvpn.com

PR:		240841
Submitted by:	Lorenzo Salvadore <phascolarctos@protonmail.ch>

New port security/pam_script

PAM script module allows to hook user space scripts on PAM events

PR:		240669
Submitted by:	Natalino Picone <natalino.picone@nozominetworks.com>

Kernel module containing a KTLS software backend for AES-GCM connections
using Intel's ISA-L crypto library.

Only for amd64 and only for very recent -CURRENT.

Submitted by:		jhb
Reviewed by:		gallatin
Differential Revision:	D21446

- Add new port: security/R-cran-askpass

  Cross-platform utilities for prompting the user for credentials or
  a passphrase, for example to authenticate with a server or read a
  protected key. Includes native programs for MacOS and Windows, hence
  no 'tcltk' is required. Password entry can be invoked in two different
  ways: directly from R via the askpass() function, or indirectly as
  password-entry back-end for 'ssh-agent' or 'git-credential' via the
  SSH_ASKPASS and GIT_ASKPASS environment variables. Thereby the user
  can be prompted for credentials or a passphrase if needed when R
  calls out to git or ssh.

  WWW: https://cran.r-project.org/web/packages/askpass/

Fix INDEX

Attempt to unbreak INDEX

Welcome PHP 7.4 RC 1 in the ports-tree.

There are many greater changes including:
- New module ffi
- Remove interbase module
- Remove recode module
- Remove wddx module
- Many modules changes the build switches
- Many modules changes the config format, so patches needed to be recreated

Special thanks to tobik and ale for their support.

Reviewed by:	tobik, ale, joneum
Sponsored by:	PHP Update Service
Differential Revision:	https://reviews.freebsd.org/D21349

Add security/tpm2-abrmd, TPM2 Access Broker & Resource Manager Deamon

Submitted by:	Tadeusz Struk <tadeusz.struk@intel.com>
Differential Revision:	https://reviews.freebsd.org/D21651

Add security/tpm2-tools, TPM2 tools

Submitted by:	Tadeusz Struk <tadeusz.struk@intel.com>
Differential Revision:	https://reviews.freebsd.org/D21650

Add security/tpm2-tss, TPM2 Software Stack core library

Submitted by:	Tadeusz Struk <tadeusz.struk@intel.com>
Differential Revision:	https://reviews.freebsd.org/D21649

The Wazuh agent runs on the hosts that you want to monitor.
It is multi-platform and provides the following capabilities:

- Log and data collection
- File integrity monitoring
- Rootkit and malware detection
- Security policy monitoring.
- Configuration assessments
- Software inventory

In addition, it communicates with the Wazuh manager, sending data in near
real-time through an encrypted and authenticated channel.

WWW: https://github.com/wazuh/wazuh

PR:		237900
Submitted by:	Michael Muenz <m.muenz@gmail.com>

Add totp-cli 1.1.1

This is a simple TOTP (Time-based One-time Password) CLI tool. TOTP is the most
common mechanism for 2FA (Two-Factor-Authentication). You can manage and
organize your accounts with namespaces and protect your data with a password.

WWW: https://github.com/yitsushi/totp-cli

[NEW PORT]: security/py-exscript

Exscript is a Python module and a template processor for automating network
connections over protocols such as Telnet or SSH.
We attempt to create the best possible set of tools for working with
Telnet and SSH.

WWW: https://github.com/knipknap/exscript

PR:		233999
Submitted by:	rozhuk.im@gmail.com (initial version), jhay
Reviewed by:	koobs

[NEW] security/suricata5: High Performance Network IDS, IPS and Security
Monitoring engine(v5)

The Suricata Engine is an Open Source Next Generation Intrusion Detection and
Prevention Engine developed by the Open Information Security Foundation (OISF).

This engine is not intended to just replace or emulate the existing tools in
the industry, but will bring new ideas and technologies to the field.

OISF is part of and funded by the Department of Homeland Security's Directorate
for Science and Technology HOST program (Homeland Open Security Technology),
by the Navy's Space and Naval Warfare Systems Command (SPAWAR), as well as
through the very generous support of the members of the OISF Consortium.

More information about the Consortium is available, as well as a list of our
current Consortium Members.

This is upcoming version 5.

WWW: https://suricata-ids.org

Remove expired ports:
2019-09-04 devel/ace+tao-doc: Broken for more than 6 months
2019-09-04 devel/dfmt: Broken for more than 6 months
2019-09-04 devel/ignition-transport: Broken for more than 6 months
2019-09-04 devel/spin: Broken for more than 6 months
2019-09-04 editors/dexed: Depends on expiring devel/dfmt
2019-09-04 editors/p5-Padre: Depends on expiring x11-toolkits/p5-Wx
2019-09-04 emulators/qemu2: Latest 3.X branch is in ports tree
2019-09-04 games/asc: Broken for more than 6 months
2019-09-04 games/slade: Broken for more than 6 months
2019-09-04 graphics/gimp-wavelet-decompose-plugin: Broken for more than 6 months
2019-09-04 graphics/py-pyembree: Depends on expiring graphics/embree
2019-09-04 irc/irssi-otr: Broken for more than 6 months
2019-09-04 mail/p5-Mail-ClamAV: Broken for more than 6 months
2019-09-04 mail/qmail-ldap: Broken for more than 6 months

(Only the first 15 lines of the commit message are shown above )

security/spass{-qt5}: Update to 3.2

* Introduce security/spass-qt5 as a slave port that contains only the GUI
  version which was added with the 3.1 release.

* Use the latest commit d38d173 to make use of the WITH_GUI boolean flag
  that enables the GUI/CLI-only build.

Changelog since 3.0:

* Minor tweaks for the CLI version
* Additional Qt5 GUI version

PR:		238621
Submitted by:	Thomas Merkel <tm@NetBSD.org> (initial patch)
Reviewed by:	mat (portmgr, to determine if FLAVORS can be used or not)
Differential Revision:	https://reviews.freebsd.org/D21084

Remove security/rubygem-devise-two-factor30-rails5

It is no longer needed after gitlab-ce 12.1 update (r510253).

Remove expired ports:
2019-05-08 security/kr: Broken for more than 6 months
2019-05-08 lang/swift: Broken for more than 6 months

Add rubygem-devise-two-factor30-rails52 3.0.3 (copied from
rubygem-devise-two-factor30-rails5)

Number of commits found XX: 1926 (showing only 100 on this page)

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  [Last Page]

19 vulnerabilities affecting 148 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2020-07-11 12:42:41