14:47 rafan 

Add p5-HTML-Email-Obfuscate 1.00, obfuscates HTML email addresses that
look normal.

PR:             ports/109381
Submitted by:   chinsan

23:12 rafan 

Add opensaml 1.1, open source implentation of SAML.

PR:             ports/109113
Submitted by:   Tony Maher

23:10 rafan 

Add apache-xml-security-c 1.3.1, apache XML security libraries C
version.

PR:             ports/109112
Submitted by:   Tony Maher

23:36 miwi 

snoopy is merely a shared library that is used as a wrapper
to the execve() function provided by libc as to log every call
to syslog (authpriv).  system administrators may find snoopy
useful in tasks such as light/heavy system monitoring, tracking other
administrator's actions as well as getting a good 'feel' of
what's going on in the system (for example apache running cgi
scripts).

WWW: http://sourceforge.net/projects/snoopylogger/

PR:             ports/108691
Submitted by:   Philippe Audeoud <jadawin at tuxaco.net>

11:49 skv 

Add keepassx 0.2.2, Cross Platform Password Manager.

01:08 pav 

Populate a new ports-mgmt category. List of moved ports:

  devel/portcheckout -> ports-mgmt/portcheckout
  devel/portlint -> ports-mgmt/portlint
  devel/portmk -> ports-mgmt/portmk
  devel/porttools -> ports-mgmt/porttools
  misc/instant-tinderbox -> ports-mgmt/instant-tinderbox
  misc/porteasy -> ports-mgmt/porteasy
  misc/portell -> ports-mgmt/portell
  misc/portless -> ports-mgmt/portless
  misc/tinderbox -> ports-mgmt/tinderbox
  security/jailaudit -> ports-mgmt/jailaudit
  security/portaudit -> ports-mgmt/portaudit
  security/portaudit-db -> ports-mgmt/portaudit-db
  security/vulnerability-test-port -> ports-mgmt/vulnerability-test-port
  sysutils/barry -> ports-mgmt/barry
  sysutils/bpm -> ports-mgmt/bpm
  sysutils/kports -> ports-mgmt/kports
  sysutils/managepkg -> ports-mgmt/managepkg
  sysutils/newportsversioncheck -> ports-mgmt/newportsversioncheck
  sysutils/pib -> ports-mgmt/pib
  sysutils/pkgfe -> ports-mgmt/pkgfe
  sysutils/pkg-orphan -> ports-mgmt/pkg-orphan
  sysutils/pkg_cutleaves -> ports-mgmt/pkg_cutleaves
  sysutils/pkg_install -> ports-mgmt/pkg_install
  sysutils/pkg_install-devel -> ports-mgmt/pkg_install-devel
  sysutils/pkg_remove -> ports-mgmt/pkg_remove
  sysutils/pkg_rmleaves -> ports-mgmt/pkg_rmleaves
  sysutils/pkg_trackinst -> ports-mgmt/pkg_trackinst
  sysutils/pkg_tree -> ports-mgmt/pkg_tree
  sysutils/portbrowser -> ports-mgmt/portbrowser
  sysutils/portconf -> ports-mgmt/portconf
  sysutils/portdowngrade -> ports-mgmt/portdowngrade
  sysutils/portcheck -> ports-mgmt/portcheck
  sysutils/portmanager -> ports-mgmt/portmanager
  sysutils/portmaster -> ports-mgmt/portmaster
  sysutils/portscout -> ports-mgmt/portscout
  sysutils/portsearch -> ports-mgmt/portsearch
  sysutils/portsman -> ports-mgmt/portsman
  sysutils/portsnap -> ports-mgmt/portsnap
  sysutils/portsopt -> ports-mgmt/portsopt
  sysutils/portupgrade -> ports-mgmt/portupgrade
  sysutils/portupgrade-devel -> ports-mgmt/portupgrade-devel
  sysutils/port-authoring-tools -> ports-mgmt/port-authoring-tools
  sysutils/port-maintenance-tools -> ports-mgmt/port-maintenance-tools
  sysutils/psearch -> ports-mgmt/psearch
  sysutils/p5-FreeBSD-Portindex -> ports-mgmt/p5-FreeBSD-Portindex
  sysutils/qtpkg -> ports-mgmt/qtpkg
  textproc/p5-FreeBSD-Ports -> ports-mgmt/p5-FreeBSD-Ports

Repocopies by:  marcus

14:13 gabor 

This AOLserver module performs SHA1 hashes.

WWW: http://www.aolserver.com/

- Martin Matuska
martin@matuska.org

PR:             ports/105781
Submitted by:   Martin Matuska <martin@matuska.org>
Approved by:    erwin (mentor)

14:09 gabor 

An AOLserver socket driver module which implements SSL/TLS encryption on
incomming sockets, and also adds an https client API.

WWW: http://www.aolserver.com/

- Martin Matuska
martin@matuska.org

PR:             ports/105781
Submitted by:   Martin Matuska <martin@matuska.org>
Approved by:    erwin (mentor)

14:06 gabor 

AOLserver interface to mhash library

WWW: http://www.aolserver.cz/

- Martin Matuska
martin@matuska.org

PR:             ports/105781
Submitted by:   Martin Matuska <martin@matuska.org>
Approved by:    erwin (mentor)

14:02 gabor 

AOLserver interface to mcrypt library

WWW: http://www.aolserver.cz/

- Martin Matuska
martin@matuska.org

PR:             ports/105781
Submitted by:   Martin Matuska <martin@matuska.org>
Approved by:    erwin (mentor)

13:57 gabor 

This module Uses OpenSSL to encrypt using the
AES, Blowfish, Cast5, IDEA and DES cyphers.

WWW: http://www.aolserver.com/

- Martin Matuska
martin@matuska.org

PR:             ports/105781
Submitted by:   Martin Matuska <martin@matuska.org>
Approved by:    erwin (mentor)

13:09 rafan 

Add p5-Authen-Bitcard 0.86, bitcard authentication verification.

PR:             ports/107968
Submitted by:   chinsan

09:12 ale 

pkcs11-helper is a library that simplifies the interaction
with PKCS#11 providers for end-user applications.

pkcs11-helper allows using multiple PKCS#11 providers at
the same time, enumerating available token certificates, or
selecting a certificate directly by serialized id, handling
card removal and card insert events, handling card re-insert
to a different slot, supporting session expiration and much
more all using a simple API.

pkcs11-helper is not designed to manage card content, since
object attributes are usually vendor specific, and 99% of
application need to access existing objects in order to
perform signature and decryption.

WWW:    http://www.opensc-project.org/pkcs11-helper/

18:42 miwi 

2007-01-01 graphics/teddy: No new releases in the past 4 years
2007-01-01 net/arla: "does not compile"
2007-01-02 sysutils/lsmlib: distfile and homepage disappeared
2007-01-02 security/ifd-gpr400: distfile and homepage disappeared
2007-01-04 science/mmtk: distfile and homepage disappeared
2007-01-04 print/xtem: distfile and homepage disappeared
2007-01-04 net/mrt: distfile and homepage disappeared

16:54 miwi 

2006-12-01 net-p2p/gnome-btdownload: does not run with BitTorrent 4.x yet
2006-12-01 print/ec-fonts-mftraced: Installs files before 'make install'
2006-12-01 print/yatex-xemacs-mule: hangs during build
2006-12-01 security/gnu-crypto: Does not compile
2006-12-01 www/linux-beonex: Security issues. From http://www.beonex.com/ 'The
currently available Beonex Communicator 0.8 builds have several known security
bugs'

07:31 clsung 

Text::Password::Pronounceable - Generate pronounceable passwords

This module generates pronuceable passwords, based the the
English digraphs by D Edwards.

WWW: http://search.cpan.org/dist/Text-Password-Pronounceable/

12:41 itetcu 

Vinetto extracts the thumbnails and associated metadata from the Thumbs.db
files.

The Windows systems (98, ME, 2000, XP and 2003 Server) can store thumbnails
and metadata of the picture files contained in the directories of its FAT32
or NTFS filesystems.

The thumbnails and associated metadata are stored in Thumbs.db files.
The Thumbs.db files are undocumented OLE structured files.

Once a picture file has been deleted from the filesystem, the related thumbnail
and associated metada remain stored in the Thumbs.db file. So, the data
contained in those Thumbs.db files are an helpful source of information
for the forensics investigator.

WWW:    http://vinetto.sourceforge.net/

PR:             ports/107235
Submitted by:   Aleksander Fafula <alex at BSDGuru.org>

20:08 gabor 

Overview:
Pantera uses an improved version of SpikeProxy to provide a powerful web
application analysis engine.

Goals:
The primary goal of Pantera is to combine automated capabilities with complete
manual testing to get the best penetration testing results.

WWW:
http://www.owasp.org/index.php/Category:OWASP_Pantera_Web_Assessment_Studio_Project

PR:             ports/105291
Submitted by:   Yonatan <onatan at gmail.com>

00:54 ade 

Fix Makefile now that gnupg-devel has disappeared, and gnupg1 has been
repocopied.  Takes care of current INDEX breakage.

Submitted by:   various scripts

11:41 clsung 

OpenID is a decentralized identity system, but one that's actually
decentralized and doesn't entirely crumble if one company turns evil
or goes out of business.

An OpenID identity is just a URL. You can have multiple identities in
the same way you can have multiple URLs. All OpenID does is provide a
way to prove that you own a URL (identity).

Anybody can run their own site using OpenID, and anybody can be an
OpenID server, and they all work with each other without having to
register with or pay anybody to "get started". An owner of a URL can
pick which OpenID server to use.

WWW: http://www.openidenabled.com/openid/libraries/perl/

09:53 clsung 

Python OpenID library implements recent changes to the OpenID
specification as well as making API changes that should make
integration with applications easier.

This library allows the use of XRI as OpenID identifiers, allowing users
to log in with their i-names.  For full XRI compatibility,
relying parties integrating this library should take note of the user's
CanonicalID, as described in the "Identifying the End User" section of
the OpenID 2.0 specification.

WWW: http://www.openidenabled.com/openid/libraries/python/

05:47 clsung 

Add phpmyid 0.3, a single user Identity Provider for the OpenID
framework.

PR:             ports/106874
Submitted by:   Gea-Suan Lin <gslin at gslin.org>

20:29 alepulver 

MyPasswordSafe is a straight-forward, easy-to-use password manager that
maintains compatibility with Password Safe files. MyPasswordSafe has the
following features:

* Safes are encrypted when they are stored to disk.
* Passwords never have to be seen, because they are copied to the clipboard.
* Random passwords can be generated.
* Window size, position, and column widths are remembered.
* Passwords remain encrypted until they need to be decrypted at the dialog and
  file levels.
* A safe can be made active so it will always be opened when MyPasswordSafe
  starts.
* Supports Unicode in the safes.
* Languages supported: English and French.

WWW: http://www.semanticgap.com/myps/

03:19 alexbl 

 - Add hashlib-20060408a

 Python secure hash and message digest module MD5, SHA1, SHA224, SHA256,
 SHA384 and SHA512 (backported from Python 2.5 for use on 2.3 and 2.4)

 WWW: http://code.krypto.org/python/hashlib/

22:33 miwi 

The tool is a simple flow-analyzing passive L7 fingerprinter. It
examines the sequence of client-server exchanges, their relative
layer 7 payload sizes, and transmission intervals (as opposed to
inspecting the contents, which is what most passive fingerprinters
and "smart" sniffers would do to analyze transmissions). This is
then matched against a database of traffic pattern signatures to
infer some interesting facts about the traffic.

PR:             ports/106351
Submitted by:   trasz <trasz at pin.if.uz.zgora.pl>

22:25 anders 

Add sshblock, a tool to block abusive SSH login attempts.

23:08 miwi 

A library for connecting to and sending commands to a local
ClamAV clamd service - an anti-virus daemon process.

You can find more information about clam anti-virus at
WWW: http://www.clamav.net/

File::Scan::ClamAV was originally based on the Clamd module

Submitted by:   Jan-Peter Koopmann <Jan-Peter.Koopmann at seceidos.de>

21:33 miwi 

Sguil (pronounced "sgweel") is a graphical interface to snort,
an open source intrusion detection system.
The actual interface and GUI server are written in tcl/tk.
Sguil also relies on other open source software
in order to function properly.

The client requires gpg, iwidgets and other tcl packages and may
also use wireshark, festival and tls depending on your selection
of options.  Run "make config" in the port to see what options
are available.

Sguil currently functions as an analysis interface and has
no snort sensor or rule management capabilities.

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:             ports/105496
Submitted by:   Paul Schmehl <pauls at utdallas.edu>

13:55 laszlof 

New Port: security/osslsigncode

Platform-independent tool for Authenticode signing of EXE/CAB files - uses
OpenSSL and libcurl. It also supports timestamping.

PR:     ports/105353
Submitted By:   Nick Barkas <snb@threerings.net>
Approved By:    flz (mentor)

02:43 alepulver 

Sguil is an open source tool to implement Network
Security Monitoring (NSM).  NSM is the collection,
analysis, and escalation of indications and warnings
to detect and respond to intrusions.  NSM tools are
used more for network audit and specialized
applications than traditional alert-centric "intrusion
detection" systems.

Want to learn more about Network Security Monitoring
(NSM)? Then check out Richard Bejtlich's recently
released book, The Tao of Network Security Monitoring:
Beyond Intrusion Detection. An excerpt reads:

"Network security monitoring (NSM) equips security
staff to deal with the inevitable consequences of too
few resources and too many responsibilities. NSM collects
the data needed to generate better assessment, detection,
and response processes--resulting in decreased impact from
unauthorized activities."

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:             ports/104227
Submitted by:   Paul Schmehl <pauls at utdallas.edu>

09:10 mezz 

Simple commandline wrapper around gpg that makes it store its passphrase
in gnome-keyring.  It is a direct competitor to (the unmaintained)
quintuple-agent.

Submitted by:   ahze
Approved by:    portmgr (kris and marcus)

19:04 bsam 

Sguil (pronounced "sgweel") is a graphical interface to snort
(www.snort.org), an open source intrusion detection system.
The actual interface and GUI server are written in tcl/tk
(www.tcl.tk). Sguil also relies on other open source software
in order to function properly.

The sensor list includes security/barnyard, security/snort,
security/sancp, tcpdump (a part of the OS) and devel/tcltls as
well as lang/tcl84 and lang/tclX.  Care has been taken to ensure
that everything you need to build a working sguil operation is
in the FreeBSD ports system or part of the OS already.

Sguil currently functions as an analysis interface and has
no snort sensor or rule management capabilities.

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:             ports/95018
Submitted by:   Paul Schmehl <pauls at utdallas.edu>

12:32 rafan 

Add p5-openxpki-deployment 0.9.543, perl based enterprise class
trustcenter software for PKI.

PR:             ports/103949
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

12:31 rafan 

Add p5-openxpki-i18n 0.9.538, perl based trustcenter software for PKI:
i18n tools.

PR:             ports/103948
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

12:31 rafan 

Add p5-openxpki-client-soap-lite 0.9.421, SOAP-Lite toolkit for
openxpki.

PR:             ports/103947
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

12:30 rafan 

Add p5-openxpki-client-scep 0.9.421, client for SCEP requests to
openxpki server.

PR:             ports/103946
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

12:30 rafan 

Add p5-openxpki-client-html-mason 0.9.546, web interface for local
openxpki daemon.

PR:             ports/103945
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

12:29 rafan 

Add p5-openxpki-client-cli 0.9.459, command line interface for local
openxpki daemon.

PR:             ports/103944
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

12:29 rafan 

Add p5-openxpki-client 0.9.450, perl based trustcenter software for PKI:
base class for actual clients.

PR:             ports/103943
Submitted by:   Sergei Vyshenski <svysh at cryptocom.ru>

04:58 clsung 

Add p5-Crypt-GCrypt 1.15, perl interface to the GNU Cryptographic
library.

PR:             ports/103767
Submitted by:   TAKAHASHI Kaoru <kaoru at kaisei.org>

00:05 alepulver 

The Metasploit Project

This is the Metasploit Project. The goal is to provide useful
information to people who perform penetration testing, IDS signature
development, and exploit research. This site was created to fill the
gaps in the information publicly available on various exploitation
techniques and to create a useful resource for exploit developers. The
tools and information on this site are provided for legal penetration
testing and research purposes only.

This port is an in-development version of the upcoming Metasploit Framework.
It is based on Ruby instead of perl, and has a different license.

WWW: http://www.metasploit.org

PR:             ports/101280
Submitted by:   Yonatan <onatan at gmail.com>

15:36 sat 

- Separate sinfp into library (p5-Net-SinFP) and binary+db (sinfp)
- Use latest db snapshot

07:30 miwi 

PBNJ is a network suite to monitor changes that occur on a network
over time. It does this by checking for changes on the target
machine(s), which includes the details about the services running on
them as well as the service state. PBNJ parses the data from a scan
and stores it in a database. PBNJ uses Nmap to perform scans.

WWW: http://www.sf.net/projects/pbnj

PR:             ports/100904
Submitted by:   Joshua D. Abraham <jabra(at)ccs.neu.edu>

10:26 clsung 

Add blocksshd 0.8, protects computers from SSH brute force attacks.

PR:             ports/102367
Submitted by:   Gea-Suan Lin <gslin at gslin.org>

21:19 miwi 

Fwipe is a secure file erasing program. fwipe0, which actually erases
your files, is immune to filenames containing spaces, carriage returns,
dashes, or any other special characters. You can use it in place of rm
in cron jobs, together with "find ... -print0". The output of fwipe0 is
specially designed to be parsed easily by machine, so it can be embedded
in other applications which need secure file erasure.

WWW: http://jeenyus.net/~budney/linux/software/fwipe.html

PR:             ports/103488
Submitted by:   David Thiel <lx(at)redundancy.redundancy.org>

20:18 sat 

Add port security/shttpscanner:

Simple HTTP Scanner is a creation made for web site pen testing. You can
check for directories and files on the remote web server and get some
server information like the webserver running.

WWW: http://sourceforge.net/projects/shttpscanner/
Author: Paisterist <paisterist@users.sourceforge.net>

21:40 acm 

- Remove security/fpc-md5. It was renamed to security/fpc-hash

Approved by:    garga (mentor, implicit)

21:09 acm 

- New port:

05:23 novel 

TLS Lite is a free python library that implements SSL 3.0, TLS 1.0, and TLS
1.1. TLS Lite supports non-traditional authentication methods such as SRP,
shared keys, and cryptoIDs in addition to X.509 certificates. TLS Lite is pure
Python, however it can access OpenSSL, cryptlib, pycrypto, and GMPY for faster
crypto operations. TLS Lite integrates with httplib, xmlrpclib, poplib,
imaplib, smtplib, SocketServer, asyncore, and Twisted.

WWW: http://trevp.net/tlslite/

PR:             ports/102923
Submitted by:   Alexander Botero-Lowry <alex at foxybanana.com>

08:02 ale 

Suhosin is an advanced protection system for PHP installations.
It was designed to protect servers and users from known and
unknown flaws in PHP applications and the PHP core.
Suhosin comes in two independent parts, that can be used
separately or in combination. The first part is a small patch
against the PHP core, that implements a few low-level
protections against bufferoverflows or format string
vulnerabilities and the second part is a powerful PHP extension
that implements all the other protections.

Suhosin is binary compatible to normal PHP installation,
which means it is compatible to 3rd party binary extension
like ZendOptimizer.

WWW: http://www.suhosin.org/

23:31 kris 

Remove expired ports

18:34 pav 

The pam_abl provides auto blacklisting of hosts and users
responsible for repeated failed authentication attempts.

WWW: http://www.hexten.net/pam_abl/

PR:             ports/100635
Submitted by:   Petr Rehor <prehor@gmail.com>

19:47 novel 

GnuTLS is a portable ANSI C based library which implements the TLS 1.0 and
SSL 3.0 protocols. The library does not include any patented algorithms and
is available under the GNU Lesser GPL license.

Important features of the GnuTLS library include:
- Thread safety
- Support for both TLS 1.0 and SSL 3.0 protocols
- Support for both X.509 and OpenPGP certificates
- Support for basic parsing and verification of certificates
- Support for SRP for TLS authentication
- Support for TLS Extension mechanism
- Support for TLS Compression Methods

Additionaly GnuTLS provides an emulation API for the widely used
OpenSSL library, to ease integration with existing applications.

WWW:    http://www.gnutls.org/

13:13 rafan 

Add mosref 2.0.b3, a secure remote execution framework using a compact
Scheme-influenced VM.

PR:             ports/102238
Submitted by:   Piet Delport

07:46 sat 

Add port security/sinfp:

SinFP is a new approach to OS fingerprinting, which bypasses
limitations that nmap has.

Nmap approaches to fingerprinting as shown to be efficient for years.
Nowadays, with the omni-presence of stateful filtering devices,
PAT/NAT configurations and emerging packet normalization technologies,
its approach to OS fingerprinting is becoming to be obsolete.

SinFP uses the aforementioned limitations as a basis for tests to be
obsolutely avoided in used frames to identify accurately the remote
operating system. That is, it only requires one open TCP port, sends
only fully standard TCP packets, and limits the number of tests to 2
or 3 (with only 1 test giving the OS reliably in most cases).

WWW: http://www.gomor.org/sinfp

12:09 itetcu 

VNCcrack is a fast offline password cracker for VNC passwords.
By sniffing a VNC challenge-response sequence off the network
(typically when VNC is used without a decent cryptographic
wrapper like SSH or SSL), you can recover the password fairly
easily and quickly by letting VNCcrack pound on it.

WWW: http://www.randombit.net/projects/vnccrack/

PR:             ports/102279
Submitted by:   Pankov Pavel <pankov_p at mail.ru>

15:15 shaun 

Finish adding security/openvpn-devel after repocopy.

08:27 rafan 

Add bruteblock 0.0.4, software for blocking bruteforce attacks with
ipfw.

PR:             ports/101254
Submitted by:   Dmitry Marakasov <amdmi3 at mail.ru>

02:57 acm 

- Remove security/linux-krb5-libs, it was integrated to linux_base-fc4.

Approved by:    garga (mentor)

15:47 clsung 

- ruby-crypt is a pure-ruby implementation of a number of popular
  encryption algorithms.

03:51 clsung 

Add p5-PerlCryptLib 1.03, perl interface to Peter Guttman cryptlib API.

PR:             ports/101658
Submitted by:   Gea-Suan Lin <gslin at gslin.org>

16:25 itetcu 

This library implements Blowfish, DES, and Triple-DES.

Author: Gerd Stolpmann
WWW:    http://www.ocaml-programming.de/packages/

PR:             ports/101213
Submitted by:   Stanislav Sedov <ssedov at mbsd.msk.ru>

15:03 acm 

- New port: security/linux-krb5-libs

Kerberos V5 is an authentication system developed at MIT.

(Linux version)

WWW: http://web.mit.edu/kerberos/

- New port: security/linux-openssl

The OpenSSL Project is a collaborative effort to develop a robust,
commercial-grade, full-featured, and Open Source toolkit implementing
the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security
(TLS v1) protocols with full-strength cryptography world-wide. The
project is managed by a worldwide community of volunteers that use
the Internet to communicate, plan, and develop the OpenSSL tookit
and its related documentation.

OpenSSL is based on the excellent SSLeay library developed by Eric
A. Young and Tim J. Hudson. The OpenSSL toolkit is licensed under
an Apache-style licence, which basically means that you are free
to get and use it for commercial and non-commercial purposes subject
to some simple license conditions.

(Linux version)

WWW: http://www.openssl.org/

Approved by:    garga (mentor)

17:22 rafan 

Add p5-Crypt-OICQ, cryptographic algorithm used by OICQ protocol.
This is for chinese/oicq.

13:42 clsung 

Add pecl-tcpwrap 1.0, a PECL extension which provides tcpwrappers
binding.

PR:             ports/101136
Submitted by:   chinsan <chinsan.tw at gmail.com>

13:06 rafan 

Add httprint 301, web server fingerprinting tool.

PR:             ports/101004
Submitted by:   Yonatan <onatan at gmail.com>

11:12 acm 

New port: security/gpass

The GNOME Password Manager - GPass for short - is a simple
application, written for the GNOME 2 desktop, that lets you manage a
collection of passwords.  The password collection is stored in an
encrypted file, protected by a master-password.

GPass is released under the GNU GPL2 licence.

Features:

    * Clean and easy-to-use user interface.
    * Quick-search facility.
    * Username and password may easily be copied to the clipboard.
    * Encryption is done using the OpenSSL cryptographics library.
    * The built-in password generator helps you generate secure passwords.
    * You can launch a website and the associated username/passwords
      direct from GPass

Author: Kouji TAKAO <kouji -at- netlab.jp>
WWW:    http://projects.netlab.jp/gpass/

PR:             ports/100845
Submitted by:   ports_at_c0decafe.net <ports at c0decafe.net>
Approved by:    garga (mentor)

18:15 rafan 

Add isnprober 1.02, penTest tool for TCP Initial Sequence Numbers
research.

PR:             ports/101005
Submitted by:   Yonatan <onatan at gmail.com>

08:07 clsung 

Add courieruserinfo 1.1.2, user account information retrieval utility.

PR:             ports/100900
Submitted by:   Andrew St. Jean <andrew at arda.homeunix.net>

09:56 miwi 

Add trans-proxy-tor,  transparent proxy used to redirect TCP
connections into Tor.

trans-proxy-tor is a transparent proxy
that uses PF to redirect TCP connections
through Tor (http://tor.eff.org/).

Programs that aren't aware of Tor
will use it without their knowledge,
and their traffic no longer leaves the
system unencrypted.

PR:             ports/99034
Submitted by:   Fabian Keil <fk at fabiankeil.de>

09:47 miwi 

Add dns-proxy-tor, resolves DNS requests through Tor.

dns-proxy-tor is a DNS server that stops
DNS leaks with applications that don't support
or aren't configured to use socks4a or Tor's DNS
resolution.

WWW: http://http://p56soo2ibjkx23xo.onion/

PR:             ports/99033
Submitted by:   Fabian Keil <fk at fabiankeil.de>

01:21 clsung 

Add p5-Data-Entropy 0.000, entropy (randomness) management.

PR:             ports/100547
Submitted by:   Gea-Suan Lin <gslin at gslin.org>

15:45 erwin 

This is a pure perl implementation of the new AES Rijndael. You want
to use Crypt::Rijndael where available. This implementation is really
slow, but I am working on it.

WWW:    http://search.cpan.org/dist/Crypt-Rijndael_PP/

PR:             ports/100262
Submitted by:   Gea-Suan Lin <gslin at gslin.org>

18:03 shaun 

Add a port of "knock" - a flexible port-knocking server and client.

PR:             ports/94626
Submitted by:   shaun (me)
Approved by:    ahze (mentor, implicit)

15:41 garga 

This package provides an interface to the cracklib (libcrack) libraries that
come standard on most unix-like distributions. This allows you to check
passwords against dictionaries of words to ensure some minimal level of
password security.

From the cracklib README
CrackLib makes literally hundreds of tests to determine whether you've
chosen a bad password.

* It tries to generate words from your username and gecos entry to tries
to match them against what you've chosen.

* It checks for simplistic patterns.

* It then tries to reverse-engineer your password into a dictionary
word, and searches for it in your dictionary.

- after all that, it's PROBABLY a safe(-ish) password. 8-)

WWW: http://pecl.php.net/package/crack

PR:             ports/94244
Submitted by:   Bill Moran <wmoran at collaborativefusion.com>

19:21 novel 

Remove gnutls-devel since the development version of gnutls is not
active yet.

14:04 vd 

Remove expired leaf ports:
2006-07-01 emulators/linux_base-fc3
2006-06-15 misc/linux-opengroupware
2006-07-01 net/opengk
2006-07-01 security/p5-Crypt-OpenPGP
2006-07-01 textproc/sed_inplace
2006-07-01 textproc/xml4j
2006-07-01 x11-wm/aewm++

21:08 itetcu 

Kovpn is a really simple OpenVPN GUI for everyday use. It is a client only GUI,
meaning that you cannot administrate an OpenVPN server with it (Look for kvpnc
if you want such a program). You can use it to connect and disconnect without
needing to open a console. You can also input username and/or password that
might be needed.
In Short: It can do everything an end-user want's for his everyday work with
OpenVPN.

WWW: http://www.enlighter.de/

--Anderson S. Ferreira <anderson@cnpm.embrapa.br>

PR:             ports/95709
Submitted by:   anderson@cnpm.embrapa.br

12:52 erwin 

Add p5-openxpki 0.9.342, perl based enterprise class trastcenter
software for PKI.

PR:             ports/99317
Submitted by:   Sergei Vyshenski <svysh@cryptocom.ru>

05:00 aaron 

Adding port security/p5-Authen-PAAS, Perl Authentication & Authorization
Service

Approved by:    tobez (implicit)

11:51 flz 

Add OpenBSM 1.0a6, the Open Source Basic Security Module (BSM) Audit
Implementation.

17:04 ale 

Engine_pkcs11 is an implementation of an engine for OpenSSL.
It can be loaded using code, config file or command line and
will pass any function call by openssl to a PKCS#11 module.
Engine_pkcs11 is meant to be used with smart cards and software
for using smart cards in PKCS#11 format, such as OpenSC.

WWW:    http://www.opensc-project.org/engine_pkcs11/

Note: the port requires the OpenSSL installed from ports,
since dynamic engine loading is disabled in base system.
See PR bin/79570 for details.

17:00 ale 

Pam_p11 is a plugable authentication module (pam) package
for using crpytographic tokens such as smart cards and
usb crypto tokens for authentication.

Pam_p11 uses libp11 to access any PKCS#11 module.
It should be compatible with any implementation, but it
is primarely developed using OpenSC.

Pam_p11 implements two authentication modules:
 * pam_p11_openssh authenticates the user using his
   openssh ~/.ssh/authorized_keys file.
 * pam_p11_opensc authenticates the user using
   certificates found in ~/.eid/authorized_certificates.

Pam_p11 is very simple, it has no config file, no options
other than the PKCS#11 module file, does not know about
certificate chains, certificate authorities, revocation
lists or OCSP. Perfect for the small installation with no
frills.

WWW:    http://www.opensc-project.org/pam_p11/

16:58 ale 

Libp11 is a library implementing a small layer
on top of PKCS#11 API to make using PKCS#11
implementations easier.

WWW:    http://www.opensc-project.org/libp11/

09:44 erwin 

The NTLM (Windows NT LAN Manager) authentication scheme is the
authentication algorithm used by Microsoft.

NTLM authentication scheme is used in DCOM and HTTP environment. It is
used to authenticate DCE RPC packets in DCOM. It is also used to
authenticate HTTP packets to MS Web Proxy or MS Web Server.

Currently, it is the authentication scheme Internet Explorer chooses to
authenticate itself to proxies/web servers that supports NTLM.

WWW: http://search.cpan.org/dist/Authen-NTLM/

PR:             ports/98684
Submitted by:   James Thomason <james@divide.org>

08:49 clsung 

Add p5-Nmap-Parser 1.05, parse nmap scan data with perl.

PR:             ports/98576
Submitted by:   Joshua D. Abraham <jabra@ccs.neu.edu>

13:00 garga 

PAM module for TIS authsrv authentication

The pam_authsrv module provides TIS authsrv authentication to PAM-aware
applications. It has been tested under AIX 4.3.3 (using the Linux-PAM for
AIX patch) and 5.1, Solaris 8 and 9, RedHat Linux 7.2, and HP-UX 11.00.

The pam_authsrv source code is available from:

    ftp://ftp.feep.net/pub/software/PAM/pam_authsrv/pam_authsrv-1.0.2.tar.gz

Binaries of pam_authsrv are available as Encap packages for a variety of
platforms.

For further information, please see the enclosed README file.

WWW: http://www.feep.net/PAM/pam_authsrv/

PR:             ports/97157
Submitted by:   Jim Pirzyk <pirzyk@FreeBSD.org>

10:09 itetcu 

Translated manual pages for security/nmap.  Current list of
translations includes Spanish, French, Croatian, Japanese,
Polish, Portuguese, Romanian, Slovak and Chinese.

WWW: http://www.insecure.org/nmap/

PR:             ports/93598
Submitted by:   Daniel Roethlisberger <daniel@roe.ch>
Approved by:    lawrance (mentor, implicit)

21:33 jmelo 

- Remove this port, the version was included in base system.

Approved by:    mnag (mentor)

15:22 pav 

- Rename ports

  security/gnomekeyring -> security/gnome-keyring
  security/gnomekeyringmanager -> security/gnome-keyring-manager

14:26 johans 

Let's not forget to update Makefile when adding new port (reminded by flz)

Approved by:    flz (mentor)

20:05 aaron 

Adding port security/p5-Crypt-Dining, The Dining Cryptographers' ProtocoAdding
port security/p5-Crypt-Dining, The Dining Cryptographers' Protocoll

Approved by:    tobez (implicit)

18:04 sem 

A PAM module that allows you to require a special group or
user to access a service.

WWW: http://www.splitbrain.org/projects/pam_require/

PR:             ports/95187
Submitted by:   Chris Cowart <ccowart@rescomp.berkeley.edu>

18:20 aaron 

Adding port security/p5-Tree-Authz, a library implementing a Role-Based Access
Control authorization scheme.

Approved by:    tobez (implicit)

17:30 aaron 

Adding port security/p5-Authen-Simple-RADIUS, RADIUS extension for
security/p5-Authen-Simple.

Approved by:    tobez (implicit)

17:24 aaron 

Adding port security/p5-Authen-Simple-PAM, PAM extension for
security/p5-Authen-Simple.

Approved by:    tobez (implicit)

17:20 aaron 

Adding port security/p5-Authen-Simple-DBM, DBM extension for
security/p5-Authen-Simple.

Approved by:    tobez (implicit)

17:15 aaron 

Adding port security/p5-Authen-Simple-SMB, SMB extension for
security/p5-Authen-Simple.

Approved by:    tobez (implicit)

17:09 aaron 

Adding port security/p5-Authen-Simple-SSH, SSH protocol extension for
security/p5-Authen-Simple.

Approved by:    tobez (implicit)

11:50 garga 

PAM module for pseudouser authentication

PR:             ports/97159
Submitted by:   Jim Pirzyk <pirzyk@FreeBSD.org>