non port: security/shibboleth2-sp/Makefile |
Number of commits found: 43 |
Wednesday, 18 Apr 2018
|
13:57 jbeich
devel/boost-*: update to 1.67.0
Changes: http://www.boost.org/users/history/version_1_67_0.html
PR: 227427
Exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D15030
|
Friday, 30 Mar 2018
|
18:21 ohauer
- unbreak INDEX building
=> USES s/=/:/
|
15:15 brnrd
security/shibboleth-sp: Chase Mk/Uses/apache.mk migration
PR: 226958
With hat: apache
Submitted by: David Sieborger <drs-freebsd sieborger nom za>
|
Thursday, 18 Jan 2018
|
04:11 jbeich
devel/boost-*: update to 1.66.0
Changes: http://www.boost.org/users/history/version_1_66_0.html
PR: 223922
Exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D13279
|
Wednesday, 15 Nov 2017
|
17:21 girgen
Shibboleth Service Provider Security Advisory [15 November 2017]
An updated version of the Shibboleth Service Provider software
is available which corrects a critical security issue in the
"Dynamic" metadata provider plugin.
Deployers making use of the affected feature should apply the
relevant update at the soonest possible moment.
Security: b4b7ec7d-ca27-11e7-a12d-6cc21735f730
|
Saturday, 7 Oct 2017
|
18:27 brnrd
security/shibboleth-sp: Fix wrongly placed USE_APACHE=
PR: 222411
Approved by: maintainter timeout
Differential Revision: https://reviews.freebsd.org/D12308
|
Monday, 25 Sep 2017
|
00:08 jbeich
devel/boost-*: update to 1.65.1
Changes: http://www.boost.org/users/history/version_1_65_1.html
PR: 218835
Approved by: maintainer timeout (1.65.1: 2 weeks; 1.65.0: 1 month)
Tested by: jhibbits (on powerpc64, earlier version)
Exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D11582
|
00:05 jbeich
devel/boost-*: enable C++11 features
PR: 218835
Obtained from: https://github.com/DragonFlyBSD/DeltaPorts/pull/690
Approved by: maintainer timeout (2 months)
Exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D11582
|
Saturday, 2 Sep 2017
|
14:23 sunpoet
Update to 3.2.0
Changes: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10510&version=12314395
|
Tuesday, 2 May 2017
|
06:48 jbeich
devel/boost-*: update to 1.64.0
Changes: http://www.boost.org/users/history/version_1_64_0.html
PR: 218835
Approved by: office (bapt)
Exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D10472
|
Thursday, 2 Feb 2017
|
16:34 girgen
Add options for fastcgi and memcached and make odbc and apache optional.
Fastcgi allows simple use with NGINX. Memcached is similar to ODBC, in that it
offers another option for more persistent session storage than in-memory.
|
Friday, 6 Jan 2017
|
08:45 jbeich
devel/boost-*: update to 1.63.0
Changes: http://www.boost.org/users/history/version_1_63_0.html
PR: 215598
Exp-run by: antoine
Approved by: office (bapt)
MFH: 2017Q1
|
Wednesday, 23 Nov 2016
|
12:45 jbeich
devel/boost-*: update to 1.62.0
- Enable `long double` C99 math usage
- Switch 9.x back to building with GCC
Changes: http://www.boost.org/users/history/
PR: 199601
Submitted by: Chen Xu, bapt, amdmi3, truckman (based on)
Reviewed by: rakuco (kde) (earlier version)
Exp-run by: antoine (3 tries), truckman (consumers only, earlier versions)
Approved by: bapt (office)
|
Sunday, 11 Sep 2016
|
21:52 girgen
Upgrade shibboleth-sp 2.6 and its tool chain
|
Friday, 1 Apr 2016
|
21:47 mat
Missed two occurences of ${PORTSDIR}/.
With hat: portmgr
Sponsored by: Absolight
|
14:25 mat
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.
With hat: portmgr
Sponsored by: Absolight
|
Sunday, 28 Feb 2016
|
18:55 girgen
Update xerces-c3 and shibboleth to latest versions
The update in xerces fixes a buffer overflow security problem that exposes the
possibility of a denial of service attack, and could conceivably result in
remote code execution.
Users of Shibboleth or any other service usingi the xerces-c3 xml library are
recommended to upgrade promptly.
URL: http://xerces.apache.org/xerces-c/secadv/CVE-2016-0729.txt
Security: CVE-2016-0729
|
Monday, 17 Aug 2015
|
14:20 mat
Remove UNIQUENAME and LATEST_LINK.
UNIQUENAME was never unique, it was only used by USE_LDCONFIG and now,
we won't have conflicts there.
Use PKGBASE instead of LATEST_LINK in PKGLATESTFILE, the *only* consumer
is pkg-devel, and it works just fine without LATEST_LINK as pkg-devel
has the correct PKGNAME anyway.
Now that UNIQUENAME is gone, OPTIONSFILE is too. (it's been called
OPTIONS_FILE now.)
Reviewed by: antoine, bapt
Exp-run by: antoine
Sponsored by: Absolight
Differential Revision: https://reviews.freebsd.org/D3336
|
Friday, 24 Jul 2015
|
10:54 girgen
The new shibboleth will refuse to accept -u when it was
already su:ed to that user. Trust shibboleth to change user.
|
Thursday, 23 Jul 2015
|
13:21 girgen
Shibboleth SP software crashes on well-formed but invalid XML.
The Service Provider software contains a code path with an uncaught
exception that can be triggered by an unauthenticated attacker by
supplying well-formed but schema-invalid XML in the form of SAML
metadata or SAML protocol messages. The result is a crash and so
causes a denial of service.
You must rebuild opensaml and shibboleth with xmltooling-1.5.5 or later.
The easiest way to do so is to update the whole chain including
shibboleth-2.5.5 an opensaml2.5.5.
URL: http://shibboleth.net/community/advisories/secadv_20150721.txt
Security: CVE-2015-2684
|
Friday, 22 May 2015
|
22:24 girgen
Update Shibboleth and opensaml to latest version.
|
Tuesday, 1 Jul 2014
|
14:27 girgen
into the fire... last commit didnt't really help, it has to be part of SUB_LIST
as well
|
Monday, 30 Jun 2014
|
14:13 girgen
Spelling error, WWWGROUP is really WWWGRP
PR: 191118
|
Thursday, 8 May 2014
|
01:35 girgen
Update Shibboleth to 2.5.3, a bug fix release.
Change the cache directory back to the built-in default, /var/cache, and
force mode 755 on that directory. (see r258664 in head why this is a good
thing).
Add odbc support as suggested in ports/189410.
|
Friday, 20 Sep 2013
|
22:55 bapt
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
|
Wednesday, 14 Aug 2013
|
22:35 ak
- Remove MAKE_JOBS_SAFE variable
Approved by: portmgr (bdrewery)
|
Monday, 29 Jul 2013
|
14:49 girgen
Move /var/cache/shibboleth to /var/db/shibboleth, since /var/cache has mode 750
and cannot be read by the www user. According to hier(7):
db/ misc. automatically generated system-specific database files
so /var/db seems like the best choice
|
Tuesday, 18 Jun 2013
|
15:15 girgen
Security update for apache-xml-security-c.
Dependant ports, especially shibboleth2-sp, opensaml2, xmltooling
and log4shib should all be updated.
Security: CVE-2013-2156
|
Sunday, 9 Jun 2013
|
14:41 girgen
Add build dependency on boost for shibboleth and opensaml.
PR: ports/179431
|
Wednesday, 5 Jun 2013
|
09:02 girgen
Don't remove /var/*/shibboleth with rm -rf, so we don't "pull out the carpet
from underneath" a running shibd. Hence allow updating while the old shibd is
still running.
|
Tuesday, 4 Jun 2013
|
17:29 girgen
Update Shibboleth-sp and its tool chain to 2.5.1.
Note that from 2.5, shibd is run as the user shibd. The port tries to fix the
key file ownership but if you have changed the file name of the key from the
default sp-key.pem, make sure you chown your key file(s) to user shibd.
Also, take maintainership of the entire tool chain (approved by all previous
maintainers).
Incorporates the ideas suggested by Craig Leres [177668], making sure that the
ssl key is not added to the package.
PR: 177668, 178694
|
Sunday, 28 Apr 2013
|
21:02 bapt
Convert security to new options framework
|
Saturday, 18 Aug 2012
|
14:29 ohauer
- remove www/apache20 and devel/apr0
- s/USE_APACHE= 20+/USE_APACHE= 22+/
- unify s/YES/yes/
- cleanup APACHE_VERSION <= 22 usage
- add entry to MOVED
with hat apache@
|
Friday, 1 Jun 2012
|
15:02 swills
- Fix permissions on /var/run/shibboleth
|
Thursday, 28 Jul 2011
|
11:55 swills
- Update to 2.4.3
- Update home page while here
- Take maintainership while here
PR: ports/159195
Approved by: linimon
|
Monday, 27 Jun 2011
|
02:57 swills
- Update to latest versions
PR: ports/157822
Submited by: Palle Girgensohn <girgen@FreeBSD.org>
Approved by: maintainer timeout
|
Friday, 15 Apr 2011
|
20:47 swills
- Don't overwrite/remove config files on package installation/uninstall
- Obey shibboleth_sp_flags, shibboleth_sp_program and shibboleth_sp_pidfile
PR: ports/155876
Submitted by: Craig Leres <leres at ee.lbl.gov>
Approved by: maintainer timeout
|
Saturday, 4 Dec 2010
|
07:34 ade
Sync to new bsd.autotools.mk
|
Saturday, 16 Oct 2010
|
11:52 ade
Punt autoconf267->autoconf268
|
Tuesday, 5 Oct 2010
|
19:57 ade
Round one migration of ports from automake{19,110} to automake111
|
Wednesday, 15 Sep 2010
|
18:35 ade
Autotools update. Read ports/UPDATING 20100915 for details.
Approved by: portmgr (for Mk/bsd.port.mk part)
Tested by: Multiple -exp runs
|
Tuesday, 26 Jan 2010
|
02:35 wxs
- Update to 2.3.1.
PR: ports/136034
Submitted by: Steve Wills <steve@mouf.net>
Approved by: janos.mohacsi@bsd.hu (maintainer timeout)
|
Tuesday, 21 Jul 2009
|
03:58 pgollucci
- forced commit to note repo copy
security/shibboleth-sp -> security/shibboleth2-sp
Repocopy by: marcus
|
Number of commits found: 43 |