17:30 sunpoet 

Add pear-Auth_SASL2 0.2.0

Provides code to generate responses to common SASL mechanisms, including:
- Digest-MD5
- Cram-MD5
- Plain
- Anonymous
- Login (Pseudo mechanism)
- SCRAM

WWW: https://pear.php.net/package/Auth_SASL2

 

18:52 swills 

security/ossec-hids-server: update from 2.8.3 to 3.1.0

PR:		232794
Submitted by:	Dominik Lisiak <dominik.lisiak@bemsoft.pl> (maintainer)

 

09:01 decke 

Maltrail is a malicious traffic detection system, utilizing publicly
available (black)lists containing malicious and/or generally suspicious
trails, along with static trails compiled from various AV reports and
custom user defined lists, where trail can be anything from domain name
(e.g. zvpprsensinaix.com for Banjori malware),
URL (e.g. http://109.162.38.120/harsh02.exe for known malicious executable),
IP address (e.g. 185.130.5.231 for known attacker) or HTTP User-Agent header
value (e.g. sqlmap for automatic SQL injection and database takeover tool).
Also, it uses (optional) advanced heuristic mechanisms that can help in
discovery of unknown threats (e.g. new malware).

WWW: https://github.com/stamparm/maltrail

PR:		233074
Submitted by:	Michael Muenz <m.muenz@gmail.com>

 

15:09 arrowd 

Add security/linux-c6-audit-libs and security/linux-c6-pam ports.

Reviewed by:	mat, tcberner
Approved by:	tcberner (mentor)
Differential Revision:	https://reviews.freebsd.org/D17561

 

08:59 brnrd 

security/openssl-devel: Remove port

 - OpenSSL 1.1.1 is ABI compatible
 - Aligns with FreeBSD 12

Reviewed by:	bapt, rene
Differential Revision: https://reviews.freebsd.org/D17136

 

10:14 rene 

Remove expired ports:
2018-10-22 devel/hs-enumerator: Doesn't build with recent GHC version
2018-10-22 net-im/hs-haskell-xmpp: Doesn't build with recent GHC version
2018-10-22 security/hs-certificate: Doesn't build with recent GHC version
2018-10-22 textproc/hs-attoparsec-enumerator: Doesn't build with recent GHC
version
2018-10-22 textproc/hs-HaXml: Doesn't build with recent GHC version
2018-10-22 www/hs-happstack: Doesn't build with recent GHC version
2018-10-22 x11-toolkits/hs-wxc: Doesn't build with recent GHC version
2018-10-22 x11-toolkits/hs-wx: Doesn't build with recent GHC version
2018-10-22 archivers/hs-zlib-enum: Doesn't build with recent GHC version
2018-10-22 x11-toolkits/hs-wxcore: Doesn't build with recent GHC version
2018-10-22 devel/hs-TypeCompose: Doesn't build with recent GHC version
2018-10-22 devel/hs-PSQueue: Doesn't build with recent GHC version
2018-10-22 devel/hs-blaze-builder-enumerator: Doesn't build with recent GHC
version

 

13:51 0mp 

New port: security/py-bro-pkg: Bro NSM package manager

The Bro Package Manager makes it easy for Bro users to install
and manage third party scripts as well as plugins for Bro and
BroControl. The command-line tool is preconfigured scripts as
well as plugins for Bro and BroControl. The command-line tool
is preconfigured to download packages from the Bro package source,
a GitHub repository that has been setup such that any developer
can request their Bro package be included. See the README file
of that repository for information regarding the package submission
process. NOTE: It's left up to users to decide for themselves
via code review, GitHub comments/stars, or other metrics whether
any given package is trustworthy as there is no implied guarantees
that it's secure just because it's been accepted into the default
package source. See the package manager documentation for further
usage information, how-to guides, and walkthroughs. For offline
reading, it's also available in the doc/ directory of the
source code distribution.

WWW: https://github.com/bro/package-manager/

PR:		231739
Submitted by:	Shirkdog <mshirk@daemon-security.com>
Reviewed by:	Nathan <ndowens@yahoo.com>
Approved by:	krion (mentor)
Differential Revision:	https://reviews.freebsd.org/D17358

 

09:31 tz 

Connect all the PHP 7.3 ports

 

06:12 tobik 

New port: security/cargo-audit

Audit Cargo.lock for crates with security vulnerabilities reported
to the RustSec Advisory Database.

This is a PoC implementation of the closed RFC 1752:
https://github.com/rust-lang/rfcs/pull/1752

WWW: https://rustsec.org/

 

10:39 rene 

Remove expired ports:
2018-09-29 net/ntp-devel: Use net/ntp instead
2018-09-29 net/xrdp-devel: Use net/xrdp instead
2018-09-29 net/tigervnc-devel: Use net/tigervnc instead
2018-09-29 net/unison-devel: Use net/unison instead
2018-09-30 textproc/p5-IDNA-Punycode: Deprecated by upstream
2018-08-15 graphics/gnustep-slideshowkit: unknown license
2018-08-15 graphics/gnustep-slideshow: depends on expiring
graphics/gnustep-slideshowkit
2018-09-30 security/lockdown: Renders system unbootable
2018-09-30 devel/p5-Search-Binary: Deprecated by upstream, use
List::BinarySearch instead
2018-09-30 devel/p5-ExtUtils-Command: ExtUtils::Command has been re-incorporated
to ExtUtils-MakeMaker since 7.06, use devel/ExtUtils-MakeMaker instead
2018-09-30 editors/yui: Unmaintained upstream
2018-09-29 x11/tint-devel: Use x11/tint instead

 

18:54 rene 

OnionScan is a free and open source tool for investigating Onion Services
on the Tor network.

It has two primary goals:

	* Help to find and to fix operational privacy/security issues;
	* Support researchers and investigators to monitor .onion sites.

WWW: https://onionscan.org/

PR:		231508
Submitted by:	egypcio@googlemail.com

 

13:53 brnrd 

security/openssl111: Re-add OpenSSL 1.1.1 port

 - Don't break systems currently using openssl-devel
 - Both 1.1.0 and 1.1.1 are release versions
 - Too many ports currently fail to build with 1.1.x
   see https://wiki.freebsd.org/OpenSSL/1.1.1
 - Allow porters to test their ports with 1.1.1

PR:		230679
Reported by:	danfe, cy

 

13:19 brnrd 

security/Makefile: Unbreak index, remove openssl111

 

11:41 brnrd 

security/Makefile: Fix openssl-devel removal mistake

 

10:09 brnrd 

security/openssl111: Add new OpenSSL port

PR:             230679

 

20:26 sunpoet 

Add py-google-auth-httplib2 0.0.3

This library provides an httplib2 transport for google-auth.

WWW: https://github.com/GoogleCloudPlatform/google-auth-library-python-httplib2

 

20:26 sunpoet 

Add p5-Alt-Crypt-RSA-BigInt 0.06

This is a rework of Crypt::RSA to remove Math::Pari and instead base all
operations on Math::BigInt.

This is intended to be a plug-in replacement for Crypt::RSA, with no
user-visible changes to existing features.

Math::Pari is completely removed. This includes the two modules:
- Crypt::Primes => Math::Prime::Util
- Crypt::Random => Math::Prime::Util

All operations are now performed using Math::BigInt, and prefer the GMP and Pari
backends.

WWW: https://metacpan.org/release/Alt-Crypt-RSA-BigInt

 

17:44 jsm 

New port security/lxqt-openssh-askpass

PR: 229308
Approved by: swills (mentor)
Differential Revision: https://reviews.freebsd.org/D16952

 

18:08 jsm 

New port security/lxqt-sudo

PR: 229293
Approved by: swills (mentor)
Differential Revision: https://reviews.freebsd.org/D16944

 

05:15 tcberner 

Update KDE Applications to 18.08

Changelog: https://www.kde.org/announcements/announce-applications-18.08.0.php

 

13:42 0mp 

New port: security/kbfsd: Service daemon for the Keybase filesystem (KBFS)

Its aim is to ease the process of using KBFS on FreeBSD. It takes care of
the configuration the Keybase user would have to do manually otherwise.

Reviewed by:	mat
Approved by:	mat (mentor)
Differential Revision:	https://reviews.freebsd.org/D16821

 

12:06 rene 

Remove expired ports:
2018-08-20 net/openmq: Broken for more than 5 months
2018-08-20 net/coda6_server: Broken for more than 5 months
2018-08-20 net/ceph-devel: Broken for more than 5 months
2018-08-20 java/jgrapht: Broken for more than 5 months
2018-08-20 mail/mutt14: mutt 1.4.x has been out of support for 10+ years use
mail/mutt
2018-08-20 www/pydio: Broken for more than 5 months
2018-08-20 security/fastd-devel: Broken for more than 5 months
2018-08-20 security/fastd: Broken for more than 5 months
2018-08-20 devel/bhyve-vm-goagent: Broken for more than 5 months
2018-08-20 devel/cherivis-devel: Depends on broken and expiring cheritrace-devel
2018-08-20 devel/cheritrace-devel: Broken for more than 5 months
2018-08-20 devel/javolution: Broken for more than 5 months
2018-08-20 devel/bisoncpp: Depends on broken and expiring libbobcat
2018-08-20 databases/php5-pdo_cassandra: Broken for more than 5 months
2018-08-20 games/crafty-open-large: Broken for more than 5 months
2018-08-20 games/crafty-open-enormous: Broken for more than 5 months
2018-08-20 games/crafty-open-medium: Broken for more than 5 months
2018-08-20 math/jakarta-commons-math: Broken for more than 5 months
2018-08-20 math/hfst: Broken for more than 5 months
2018-08-20 math/octave-forge-communications: Broken for more than 5 months
2018-08-20 lang/v8-devel: Broken for more than 5 months
2018-08-20 sysutils/rubygem-fluentd010: Broken for more than 5 months

 

09:06 farrokhi 

New Port: security/n2n: Layer Two Peer-to-peer VPN

 

20:28 rene 

Remove expired ports:
2018-08-16 net/traceroute: Upstream gone
2018-08-15 net/e169-stats: unknown license
2018-08-15 net/l4ip: unknown license
2018-08-15 net/dhcprelay: unknown license
2018-08-15 emulators/m2000: unknown license
2018-08-15 textproc/ant-xinclude-task: unknown license
2018-08-15 textproc/bomstrip: unknown license
2018-08-15 x11-fonts/ecofont: unknown license
2018-08-15 mail/roundcube-groupvice: unknown license
2018-08-15 security/pft: unknown license
2018-08-15 devel/kickassembler: unknown license
2018-08-15 devel/gdbmods: unknown license
2018-08-15 devel/as31: unknown license
2018-08-15 databases/dbf2mysql: unknown license
2018-08-15 misc/xpns: unknown license
2018-08-15 misc/amfm: unknown license
2018-08-15 games/smashbattle: unknown license
2018-08-15 games/syobon: unknown license
2018-08-15 games/optimax: unknown license
2018-08-15 games/xgospel: unknown license
2018-08-15 biology/blat: unknown license
2018-08-15 x11-clocks/swisswatch: unknown license
2018-08-15 palm/ppmtoTbmp: unknown license
2018-08-15 dns/ghtool: unknown license
2018-08-15 x11-themes/beastie: unknown license
2018-08-15 converters/uudx: unknown license
2018-08-15 sysutils/areca-cli: unknown license

 

17:28 rene 

Remove expired port:
2018-08-12 security/keepassx: Use keepassx2 or keepassxc instead

 

06:47 yuri 

New port: security/theonionbox: Web interface to monitor Tor node operation

 

14:02 tijl 

Update Belgian eID middleware to 4.4.5.  Enable the viewer application
and the Firefox extension.  Rename the port from security/libbeid to
security/beid now that it's more than just a library.

 

23:47 yuri 

New port: security/vanguards-tor: Tor add-on to protect against guard discovery
and related attacks

Reported by:	Tor upstream notification

 

12:26 mat 

Regular sorting of categories Makefiles.

Sponsored by:	Absolight

 

13:24 girgen 

Update Shibboleth to 3.0.2

Also update the toolchain to latest versions. This includes a security fix for
apache-xml-security-c.

Releaseinfo:    https://wiki.shibboleth.net/confluence/display/SP3/ReleaseNotes
Security:       5786185a-9a43-11e8-b34b-6cc21735f730
Security:       https://shibboleth.net/community/advisories/secadv_20180803.txt

 

15:05 mfechner 

Delete security/rubygem-omniauth-shibboleth12, obsolete by gitlab-ce 11.1
update.

 

17:13 danilo 

- New port: security/aws-iam-authenticator

A tool to use AWS IAM credentials to authenticate to a Kubernetes cluster.

 

15:48 mfechner 

Copied port security/rubygem-doorkeeper and fix it to version 4.3.x which is
required by gitlab.

PR:		230306
Approved by:	mentors (implicit)

 

12:12 rene 

Remove expired ports:
2018-07-31 databases/rubygem-redis-namespace15: Obsoleted by update of
www/gitlab-ce. Please use databases/rubygem-redis-namespace instead.
2018-08-01 security/py-python-social-auth: Upstream Deprecated
2018-08-01 www/py-django-social-auth: no support for new django

 

11:54 rene 

Remove expired ports:
2018-07-31 net/rubygem-gitaly-proto096: Obsoleted by update of www/gitlab-ce.
Please use net/rubygem-gitaly-proto instead.
2018-07-31 security/tripwire12: unfetchable
2018-07-31 security/rubygem-rbnacl4: Obsoleted by update of www/gitlab-ce.
Please use security/rubygem-rbnacl instead.
2018-07-31 www/rubygem-gon61: Obsoleted by update of www/gitlab-ce. Please use
www/rubygem-gon instead.
2018-07-31 databases/pgpool-II-33: Will be deprecated by upstream, please switch
to newer pgpool versions
2018-07-31 devel/rubygem-grape-entity060: Obsoleted by update of www/gitlab-ce.
Please use devel/rubygem-grape-entity instead.
2018-07-31 net/rubygem-gitaly-proto099: Obsoleted by update of www/gitlab-ce.
Please use net/rubygem-gitaly-proto instead.
2018-07-31 net/rubygem-gitaly-proto095: Obsoleted by update of www/gitlab-ce.
Please use net/rubygem-gitaly-proto instead.
2018-07-31 net/rubygem-omniauth-github11: Obsoleted by update of www/gitlab-ce.
Please use net/rubygem-omniauth-github instead.
2018-07-31 net/rubygem-asset_sync220: Obsoleted by update of www/gitlab-ce.
Please use net/rubygem-asset_sync instead.
2018-07-31 www/rubygem-gollum-lib-gitlab: Obsoleted by update of www/gitlab-ce.
Please use www/rubygem-gitlab-gollum-lib instead.
2018-08-01 www/py-django-threaded-multihost: Project development unmaintained
2018-08-01 www/py-django-keyedcache: Project development abandoned
2018-08-01 www/py-django-signals-ahoy: Project development unmaintained

 

10:41 pi 

New port: security/kc24

Console based password storing application using an encrypted XML
document as its database.

WWW: https://github.com/levaidaniel/kc

Please read the UPDATING note!

PR:		222376
Submitted by:	Vidar Karlsen <vidar@karlsen.tech>, Daniel <leva@ecentrum.hu>
(maintainer and upstream-author)
Relnotes:	https://github.com/levaidaniel/kc/blob/35656e47a36e96440eb5cc9e4f8a856856831e9a/Changelog

 

02:54 miwi 

This is the OVH DNS Authenticator plugin for Certbot.

WWW: https://github.com/certbot/certbot

PR:		229746
Submitted by:	tremere@cainites.net
Sponsored by:	iXsystems Inc.

 

02:53 miwi 

This is the Sakura Cloud DNS Authenticator plugin for Certbot.

WWW: https://github.com/certbot/certbot

PR:		229746
Submitted by:	tremere@cainites.net
Sponsored by:	iXsystems Inc.

 

02:52 miwi 

This is the Gehirn Infrastructure Service DNS Authenticator plugin for Certbot.

WWW: https://github.com/certbot/certbot

PR:		229746
Submitted by:	tremere@cainites.net
Sponsored by:	iXsystems Inc.

 

02:51 miwi 

This is the Linode DNS Authenticator plugin for Certbot.

WWW: https://github.com/certbot/certbot

PR:		229746
Submitted by:	tremere@cainites.net
Sponsored by:	iXsystems Inc.

 

16:51 dvl 

A JOSE implementation in Python

The JavaScript Object Signing and Encryption (JOSE) technologies - JSON Web
Signature (JWS), JSON Web Encryption (JWE), JSON Web Key (JWK), and JSON Web
Algorithms (JWA) - collectively can be used to encrypt and/or sign content
using a variety of algorithms. While the full set of permutations is extremely
large, and might be daunting to some, it is expected that most applications
will only use a small set of algorithms to meet their needs.

 

03:19 yuri 

New port: security/klee: Symbolic virtual machine built on top of the LLVM

PR:		219150
Submitted by:	larca <itbot@list.ru>

 

13:26 garga 

New port: security/py-fteproxy

fteproxy provides transport-layer protection to resist keyword filtering,
censorship and discriminatory routing policies.

Its job is to relay datastreams, such as web browsing traffic,
by encoding streams as messages that match a user-specified regular expression.

WWW: https://fteproxy.org/

Submitted by:	Vinicius Zavam <egypcio@googlemail.com>
Differential Revision:	https://reviews.freebsd.org/D16244

 

15:20 rene 

Remove expired ports:
2018-06-30 net/rubygem-omniauth-twitter12: Obsoleted by update of www/gitlab.
Please use net/rubygem-omniauth-twitter instead.
2018-06-30 net/rubygem-gitaly-proto088: Obsoleted by update of www/gitlab.
Please use net/rubygem-gitaly-proto instead.
2018-06-30 net/rubygem-octokit46: Obsoleted by update of www/gitlab. Please use
net/rubygem-octokit instead.
2018-06-30 net/rubygem-fog-google0: Obsoleted by update of www/gitlab. Please
use net/rubygem-fog-google instead.
2018-06-30 net/rubygem-fog-aws1: Obsoleted by update of www/gitlab. Please use
net/rubygem-fog-aws instead.
2018-06-30 textproc/rubygem-asciidoctor-plantuml007: Obsoleted by update of
www/gitlab. Please use textproc/rubygem-asciidoctor-plantuml instead.
2018-03-19 graphics/mitsuba: Broken for more than 6 months
2018-05-31 mail/p5-Net-SMTP-SSL: Deprecated by upstream, use Net::SMTP instead
2018-06-30 www/rubygem-kubeclient22: Obsoleted by update of www/gitlab. Please
use www/rubygem-kubeclient instead.
2018-06-30 security/rubygem-doorkeeper42: Obsoleted by update of www/gitlab.
Please use security/rubygem-doorkeeper instead.
2018-06-30 security/rubygem-net-ssh41: Obsoleted by update of www/gitlab. Please
use security/rubygem-net-ssh instead.
2018-06-30 security/rubygem-omniauth-saml17: Obsoleted by update of www/gitlab.
Please use security/rubygem-omniauth-saml instead.
2018-06-30 security/rubygem-doorkeeper-openid_connect12: Obsoleted by update of
www/gitlab. Please use security/rubygem-doorkeeper-openid_connect instead.
2018-06-30 security/rubygem-attr_encrypted30: Obsoleted by update of www/gitlab.
Please use security/rubygem-attr_encrypted instead.
2018-06-30 security/rubygem-omniauth14: Obsoleted by update of www/gitlab.
Please use security/rubygem-omniauth instead.
2018-06-30 devel/rubygem-flipper011: Obsoleted by update of www/gitlab. Please
use devel/rubygem-flipper instead.
2018-06-30 devel/rubygem-ruby-prof016: Obsoleted by update of www/gitlab. Please
use devel/rubygem-ruby-prof instead.
2018-06-30 devel/rubygem-recursive-open-struct10: Obsoleted by update of
www/rubygem-kubeclient. Please use devel/rubygem-recursive-open-struct instead
2018-06-30 devel/rubygem-flipper-active_support_cache_store011: Obsoleted by
update of www/gitlab. Please use
devel/rubygem-flipper-active_support_cache_store instead.
2018-06-30 devel/rubygem-gettext_i18n_rails_js12: Obsoleted by update of
www/gitlab. Please use devel/rubygem-gettext_i18n_rails_js instead.
2018-02-02 devel/phpunit: No longer maintained upstream
2018-06-30 devel/rubygem-recursive-open-struct100: Obsoleted by update of
www/gitlab. Please use devel/rubygem-recursive-open-struct instead.
2018-06-30 databases/rubygem-flipper-active_record011: Obsoleted by update of
www/gitlab. Please use databases/rubygem-flipper-active_record instead.
2018-06-06 databases/mongodb34-rocks: Broken for more than 6 months
2018-07-01 math/freemat: Complex, unmaintained software with obsolete
dependencies

 

01:38 miwi 

Python-GSSAPI provides both low-level and high level wrappers around
the GSSAPI C libraries. While it focuses on the Kerberos mechanism, it
should also be usable with other GSSAPI mechanisms.

WWW: https://github.com/pythongssapi/python-gssapi

PR:		228523
Submitted by:	john@saltant.com

 

01:33 yuri 

New port: security/py-pycryptodomex: Slave port of security/py-pycryptodome

It installs the same package as security/py-pycryptodome but in a different
name space, Cryptodome instead of Crypto, and therefore can be installed
together with security/py-pycrypto if desired.

PR:		225217
Submitted by:	John W. O'Brien <john@saltant.com>

 

12:21 wg 

security/py-fido2

Provides library functionality for communicating with a FIDO device over USB
as well as verifying attestation and assertion signatures.

WWW: https://github.com/Yubico/python-fido2

 

11:14 antoine 

New port: security/py-certstream

Certstream-python is a library for interacting with the certstream network to
monitor an aggregated feed from a collection of Certificate Transparency Lists.

WWW: https://github.com/CaliDog/certstream-python

 

22:25 sunpoet 

Add rubygem-net-ssh4 4.2.0 (copied from rubygem-net-ssh)

- Add PORTSCOUT

 

22:24 sunpoet 

Add rubygem-ed25519 1.2.4

ed25519.rb is a Ruby binding to the Ed25519 elliptic curve public-key signature
system described in RFC 8032.

Two implementations are provided: a MRI C extension which uses the "ref10"
implementation from the SUPERCOP benchmark suite, and a pure Java version based
on str4d/ed25519-java.

Ed25519 is one of two notable algorithms implemented atop the Curve25519
elliptic curve. The x25519 gem is a related project of this one, and implements
the X25519 Diffie-Hellman key exchange algorithm on the Montgomery form of
Curve25519.

WWW: https://github.com/crypto-rb/ed25519

 

21:44 tcberner 

Update lang/ghc 8.4.2 and the hs-* ports the newer versions

* Update lang/ghc to 8.4.2
* Update the boostrap compiler to 8.4.1
* Update the many hs-* ports
* Bump the rest

Thanks a lot to arrowd for doing all the heavy lifting :)

PR:		227968
Exp-run by:	antoine
Submitted by:	arrowd
Differential Revision:	https://reviews.freebsd.org/D15005

 

17:20 antoine 

New port: security/py-rekall_lib

Support libraries for the Rekall framework.

WWW: http://www.rekall-forensic.com/

 

18:06 miwi 

Flask-SAML is an extension for the Flask web application micro framework
that implements Security Association Markup Language (SAML) authentication.

WWW: https://bitbucket.org/asecurityteam/flask_saml

PR:		225202
Submitted by:	John W. O'Brien <john@saltant.com>
Sponsored by:	iXsystems Inc.

 

08:39 meta 

net-im/rubygem-earthquake: Remove port

This port has been broken for years and no longer maintained by upstream.

Also, remove security/rubygem-jugyo_twtter_oauth. It is a fork of
twitter_oauth[1] and required only by net-im/rubygem-earthquake.

[1] https://rubygems.org/gems/twitter_oauth

Approved by:	hrs (mentor)
Differential Revision:	https://reviews.freebsd.org/D15441

 

15:59 miwi 

GSSAPI Negotiate HTTP authentication for Flask routes.

WWW: https://github.com/mkomitee/flask-kerberos

PR:		225199
Submitted by:	John W. O'Brien <john@saltant.com>
Sponsored by:	iXsystems Inc.

 

20:49 antoine 

- pywinrm is named pywinrm, not winrm
- pywinrm is not python3 ready

Reported by:	pkg-fallout

 

18:55 pi 

New port: security/py-winrm

Python library for Windows Remote Management (WinRM)

WWW: https://github.com/diyan/pywinrm

PR:		226450
Submitted by:	rozhuk.im@gmail.com

 

18:32 pi 

New port: security/py-requests-credssp

An authentication handler for using CredSSP with Python Requests.

WWW: https://github.com/jborean93/requests-credssp

PR:		226448
Submitted by:	rozhuk.im@gmail.com

 

12:38 pi 

New port: security/p5-Crypt-Perl

Cryptography in pure perl, needs no non-core XS dependencies.

WWW: http://search.cpan.org/dist/Crypt-Perl/

 

10:57 pi 

New port: security/p5-Bytes-Random-Secure-Tiny

A tiny Perl extension to generate cryptographically-secure random bytes.

It provides random bytes from a cryptographically secure random
number generator (ISAAC), seeded from strong entropy sources on a
wide variety of platforms. It does so without external dependencies
(except on Windows), and has a minimal but useful user interface
patterned after the module Bytes::Random::Secure.

WWW: http://search.cpan.org/dist/Bytes-Random-Secure-Tiny/

 

20:20 pi 

New port: security/p5-Crypt-X509-CRL

Crypt::X509::CRL is an object oriented X.509 certificate
revocation list parser with numerous methods for directly
extracting information from certificate revocation lists

WWW: http://search.cpan.org/dist/Crypt-X509-CRL/

PR:		228074
Submitted by:	Sergei Vyshenski <svysh.fbsd@gmail.com>

 

06:24 yuri 

New port: openvpn-auth-script/Makefile: Generic script-based deferred auth
plugin for OpenVPN

PR:		226492
Submitted by:	Phil DeMonaco <pdemon@gmail.com>

 

19:06 rene 

Remove expired ports:
2018-04-30 databases/rubygem-seed-fu236: Obsoleted by update of www/gitlab.
Please use databases/rubygem-seed-fu
2018-04-30 security/polarssl13: has reached end of life

 

17:15 krion 

gopass is a rewrite of the pass password manager in Go with the aim
of making it cross-platform and adding additional features.

PR:		227845
Submitted by:	Sascha Holzleiter <sascha@root-login.org>

 

20:29 tcberner 

Import the KDE Plasma5 ports

This is an import of the Plasma5 ports that we have had in the development
repository for quite some time now.

Please note:
 * Plasma5 cannot be installed at the same time as KDE SC4.
 * Qt5 assumes /etc/localtime to be a symlink to a tz file, not a regular file.
 * To start plasma5, it is recommended to use something like
       exec ck-launch-session startkde
 * Powermanagement and such is not working :-)

I would like to thank all the people that have helped test it in the past years.

Reviewed by:	adridg
Differential Revision:	https://reviews.freebsd.org/D15096

 

17:32 seanc 

Add new port: security/teleport

Gravitational Teleport ("Teleport") is a modern SSH server for remotely
accessing clusters of FreeBSD or Linux servers via SSH or HTTPS. It is
intended to be used instead of sshd. Teleport enables teams to easily
adopt the best SSH practices like:

- Integrated SSH credentials with your organization Google Apps identities or
  other OAuth identitiy providers.
- Teleport uses certificate-based access with automatic expiration time
- Enforcement of 2nd factor authentication
- Cluster introspection: every Teleport node becomes a part of a cluster
  and is visible on the Web UI
- Record and replay SSH sessions for knowledge sharing and auditing purposes
- Collaboratively troubleshoot issues through session sharing
- Connect to clusters located behind firewalls without direct Internet
  access via SSH bastions

Teleport is built on top of the high-quality Golang SSH implementation
and it is compatible with OpenSSH.

Initially submitted by:	staticwizard@hotmail.com in ports/219332

PR:		ports/219332
Approved by:	swills (mentor)
Reviewed by:	yuri, swills, pi
Differential Revision:	https://reviews.freebsd.org/D14576

 

23:58 sunpoet 

Add p5-Crypt-OpenSSL-Guess 0.01

Crypt::OpenSSL::Guess provides helpers to guess OpenSSL include path on any
platforms.

Often MacOS's homebrew OpenSSL cause a problem on installation due to include
path is not added. Some CPAN module provides to modify include path with
configure-args, but Carton or Module::CPANfile is not supported to pass
configure-args to each modules. Crypt::OpenSSL::* modules should use it on your
Makefile.PL.

This module resolves the include path by Net::SSLeay's workaround. Original code
is taken from inc/Module/Install/PRIVATE/Net/SSLeay.pm by Net::SSLeay.

WWW: http://search.cpan.org/dist/Crypt-OpenSSL-Guess/

 

20:56 jbeich 

security/py-zxcvbn-python: update to 4.4.25 and rename

Changes:	https://github.com/dwolfhub/zxcvbn-python/compare/v4.4.23...v4.4.25

 

19:39 tcberner 

New ports: security/kgpg, security/kleopatra, security/kwalletmanager

This is the current version of KDE Applications <foo>.
Note that users of KDE SC4 should stick with <foo>-kde4.

 

19:09 tcberner 

New ports: KDE Applications net/ and dependencies

* deskutils/grantleetheme
* deskutils/kdepim
* deskutils/kdepim-apps-libs
* deskutils/libkdepim
* net/akonadi-calendar
* net/akonadi-contacts
* net/akonadi-mime
* net/akonadi-notes
* net/akonadi-search
* net/calendarsupport
* net/eventviews
* net/incidenceeditor
* net/kalarmcal
* net/kblog
* net/kcalcore
* net/kcalutils
* net/kcontacts
* net/kdav
* net/kdenetwork-filesharing
* net/kget
* net/kidentitymanagement
* net/kimap
* net/kldap
* net/kmailtransport
* net/kmbox
* net/kmime
* net/kontactinterface
* net/kpimtextedit
* net/krdc
* net/krfb
* net/ksmtp
* net/ktnef
* net/libgravatar
* net/libkgapi
* net/libksieve
* net/mailcommon
* net/mailimporter
* net/messagelib
* net/pimcommon
* net/zeroconf-ioslave
* security/libkleo

This is the current version of KDE Applications <foo>.
Note that users of KDE SC4 should stick with <foo>-kde4.

This adds a slew of KDE Pim related ports and some of their dependencies.
Note, that KDE Pim has a history of working poorly on FreeBSD.

 

18:29 sunpoet 

Add rubygem-omniauth-jwt 0.0.2

JSON Web Token (JWT) is a simple way to send verified information between two
parties online. This can be useful as a mechanism for providing Single Sign-On
(SSO) to an application by allowing an authentication server to send a validated
claim and log the user in. This is how Zendesk does SSO, for example.

OmniAuth::JWT provides a clean, simple wrapper on top of JWT so that you can
easily implement this kind of SSO either between your own applications or allow
third parties to delegate authentication.

WWW: https://github.com/mbleigh/omniauth-jwt

 

04:52 yuri 

New port: security/py-netmiko: Multi-vendor library to simplify SSH connections
to network devices

PR:		227088
Submitted by:	Kai <freebsd_ports@k-worx.org>

 

03:32 yuri 

New port: security/py-scp: Scp module for paramiko

PR:		224423
Submitted by:	Sergey Akhmatov <sergey@akhmatov.ru>

 

21:29 mandree 

Reinstate support for GTK2 (rather than GTK3) as an OPTION.

While here, add a putty-gtk2 slave port and update _CONFLICTS.

Since the default package does not change, and pkg would handle conflicts
around attempted installation of the new -gtk2 package, omit the
PORTREVISION bump from Miroslav's original patch.

PR:		227200
Submitted by:	Miroslav Lachman

 

15:13 pi 

security/owasp-dependency-check: add missing security/Makefile entry

PR:		226206
Reported by:	antoine

 

15:38 sunpoet 

Remove expired security/rubygem-rpam2-3

 

14:19 feld 

kr enables SSH to authenticate with a key stored in a Krypton (iOS or
Android) mobile app. kr runs as an SSH agent, called krd. When a Krypton
private key operation is needed for authentication, krd routes this
request to the paired mobile phone, where the user decides whether to
allow the operation or not. The private key never leaves the phone.

WWW: https://krypt.co

 

23:20 dbaio 

Add security/setaudit: Tool to specify audit configurations on a process

With setaudit it is possible to specify audit configurations on a process
directly at the runtime.

All audit events are redirected to the auditd(8), an audit log management
daemon.

Example of enabling all exe related audit events performed by a command and its
child processes:

  # setaudit -m ex command

WWW: https://github.com/csjayp/setaudit

PR:		226627
Submitted by:	Mateusz Piotrowski <0mp@FreeBSD.org>

 

08:57 tz 

Resurrect security/rubygem-doorkeeper as security/rubygem-doorkeeper42

www/gitlab depends on the 4.2.x version and is currently broken without it

 

15:10 mfechner 

New ports required for gitlab update to 10.5.x.

Reviewed by:	tz (mentor)
Approved by:	tz (mentor)
Differential Revision:	https://reviews.freebsd.org/D14840

 

15:18 jrm 

Copy security/rubygem-rpam2 to security/rubygem-rpam2-3 to fix
security/rubygem-devise_pam_authenticatable2 build breakage

The only port requiring security/rubygem-rpam2,
security/rubygem-devise_pam_authenticatable2, requires rpam2 ~> 3.0 [1].
The prematre update of security/rubygem-rpam2 to version 4.0.0 broke the
build of security/rubygem-devise_pam_authenticatable2 [2].

[1] https://rubygems.org/gems/devise_pam_authenticatable2/versions/9.0.0
[2]
http://pkg.awarnach.mathstat.dal.ca/data/11amd64-default/2018-03-22_12h03m21s/logs/errors/rubygem-devise_pam_authenticatable2-9.0.0.log

Pointy-hat: sunpoet

 

13:13 bapt 

Python library and command line tool for configuring any YubiKey over all USB
transports.

WWW: https://developers.yubico.com/yubikey-manager/

 

00:57 jrm 

Add new Ruby Gem dependency ports for upcoming Mastodon v2.3.1

multimedia/rubygem-streamio-ffmpeg
WWW: http://github.com/streamio/streamio-ffmpeg

security/rubygem-devise_pam_authenticatable2
WWW: http://github.com/devkral/devise_pam_authenticatable2

security/rubygem-omniauth-cas
WWW: https://github.com/dlindahl/omniauth-cas

security/rubygem-rpam2
WWW: http://github.com/devkral/rpam2

 

18:21 tcberner 

Move security/qtkeychain-qt[45] to security/qtkeychain and create flavors

Reviewed by:	Gleb Popov <6yearold_gmail.com>
Approved by:	portmgr (mat)

 

08:39 yuri 

New port: security/py-ntlm-auth: Create NTLM authentication structures

Approved by:	tcberner (mentor, implicit)

 

15:56 jhale 

New port: security/py-python-nss

python-nss is a Python binding for NSS (Network Security Services)
and NSPR (Netscape Portable Runtime). NSS provides cryptography
services supporting SSL, TLS, PKI, PKIX, X509, PKCS*, etc. NSS is
an alternative to OpenSSL and used extensively by major software
projects. NSS is FIPS-140 certified.

NSS is built upon NSPR because NSPR provides an abstraction of
common operating system services, particularly in the areas of
networking and process management. Python also provides an abstraction
of common operating system services but because NSS and NSPR are
tightly bound, python-nss exposes elements of NSPR.

WWW:
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Python_binding_for_NSS

 

07:35 yuri 

security/obfsproxy: Unbreak; Rename to security/py-obfsproxy-tor

Port changes:
* Unbreak: removed unnecessary lines in setup.py that were failing
* Changed MASTER_SITES to CHEESESHOP
* Added PKGNAMEPREFIX as every python port should have
* Added PKGNAMESUFFIX=-tor to easily identify as being for Tor
* Added LICENSE_FILE
* Deleted pkg-plist
* Added USE_PYTHON=autoplist instead of pkg-plist
* Added USE_PYTHON=noflavors (an app)
* Added NO_ARCH
* Updated WWW

Approved by:	tcberner (mentor, implicit)
Approved by:	portmgr (port compliance, infrastructure)

 

15:04 sunpoet 

Add rubygem-aes_key_wrap 1.0.1

AESKeyWrap is a Ruby implementation of AES Key Wrap (RFC 3394, a.k.a. NIST Key
Wrap).

WWW: https://github.com/tomdalling/aes_key_wrap

 

13:01 wg 

security/py-asyncssh: Python asnycio SSH protocol library

AsyncSSH is a Python package which provides an asynchronous client
and server implementation of the SSHv2 protocol on top of
the Python asyncio framework. It requires Python 3.4 or later
and the Python cryptography library for some cryptographic functions.

WWW: https://github.com/ronf/asyncssh

Submitted by:	Bartosz Prokop

 

19:03 tcberner 

Give the KDE SC4 applications ports a -kde4 suffix

In order to make room for the up-to-date version of the KDE Desktop and its
applications move the KDE Application ports based on Qt4.

PR:		225992
Exp-run by:	antoine
Reviewed by:	rakuco, adridg
Differential Revision:	https://reviews.freebsd.org/D14413

 

14:31 mat 

Add py-certbot-dns-route53, Route53 DNS Authenticator for py-certbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-rfc2136, RFC 2136 DNS Authenticator for py-certbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-nsone, NS1 DNS Authenticator for py-certbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-luadns, LuaDNS Authenticator plugin for py-certbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-google, Google Cloud DNS Authenticator for py-certbot

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-dnsmadeeasy, DNS Made Easy DNS Authenticator for py-certbot

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-dnsimple, DNSimple DNS Authenticator for py-certbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-digitalocean, DigitalOcean DNS Authenticator plugin for
py-cerbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-cloudxns, CloudXNS DNS Authenticator plugin for py-certbot.

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262

 

14:30 mat 

Add py-certbot-dns-cloudflare, Cloudflare DNS Authenticator plugin for Certbot

Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D14262