notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)

Why was the website so slow for so long?

The cause of the slowdown was a change to the ZFS dataset. In conjunction with the database server, very little caching was being done. This combination resulted in increased disk I/O as the system churned through the database. Details in the blog post which outlines the various things which changed. Many graphs.

Port details
suricata High Performance Network IDS, IPS and Security Monitoring engine
5.0.2 security on this many watch lists=11 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port 5.0.1Version of this port present on the latest quarterly branch.
Maintainer: franco@opnsense.org search for ports maintained by this maintainer
Port Added: 2010-09-01 15:32:48
Last Update: 2020-02-17 18:45:02
SVN Revision: 526386
License: GPLv2
Description:
SVNWeb : Homepage
pkg-plist: as obtained via: make generate-plist
Expand this list (163 items)
  1. @ldconfig
  2. /usr/local/share/licenses/suricata-5.0.2/catalog.mk
  3. /usr/local/share/licenses/suricata-5.0.2/LICENSE
  4. /usr/local/share/licenses/suricata-5.0.2/GPLv2
  5. bin/suricata
  6. bin/suricata-update
  7. bin/suricatactl
  8. bin/suricatasc
  9. include/htp/bstr.h
  10. include/htp/bstr_builder.h
  11. include/htp/htp.h
  12. include/htp/htp_base64.h
  13. include/htp/htp_config.h
  14. include/htp/htp_connection_parser.h
  15. include/htp/htp_core.h
  16. include/htp/htp_decompressors.h
  17. include/htp/htp_hooks.h
  18. include/htp/htp_list.h
  19. include/htp/htp_multipart.h
  20. include/htp/htp_table.h
  21. include/htp/htp_transaction.h
  22. include/htp/htp_urlencoded.h
  23. include/htp/htp_utf8_decoder.h
  24. include/htp/htp_version.h
  25. include/htp/lzma/7zTypes.h
  26. include/htp/lzma/LzmaDec.h
  27. lib/libhtp.a
  28. lib/libhtp.so
  29. lib/libhtp.so.2
  30. lib/libhtp.so.2.0.0
  31. libdata/pkgconfig/htp.pc
  32. man/man1/suricata.1.gz
  33. share/doc/suricata/AUTHORS
  34. share/doc/suricata/Basic_Setup.txt
  35. share/doc/suricata/GITGUIDE
  36. share/doc/suricata/INSTALL
  37. share/doc/suricata/INSTALL.PF_RING
  38. share/doc/suricata/INSTALL.WINDOWS
  39. share/doc/suricata/NEWS
  40. share/doc/suricata/README
  41. share/doc/suricata/Setting_up_IPSinline_for_Linux.txt
  42. share/doc/suricata/TODO
  43. share/doc/suricata/Third_Party_Installation_Guides.txt
  44. lib/python3.7/site-packages/suricata-5.0.2-py3.7.egg-info
  45. lib/python3.7/site-packages/suricata/__init__.py
  46. lib/python3.7/site-packages/suricata/__init__.pyc
  47. lib/python3.7/site-packages/suricata/config/__init__.py
  48. lib/python3.7/site-packages/suricata/config/__init__.pyc
  49. lib/python3.7/site-packages/suricata/config/defaults.py
  50. lib/python3.7/site-packages/suricata/config/defaults.pyc
  51. lib/python3.7/site-packages/suricata/ctl/__init__.py
  52. lib/python3.7/site-packages/suricata/ctl/__init__.pyc
  53. lib/python3.7/site-packages/suricata/ctl/filestore.py
  54. lib/python3.7/site-packages/suricata/ctl/filestore.pyc
  55. lib/python3.7/site-packages/suricata/ctl/loghandler.py
  56. lib/python3.7/site-packages/suricata/ctl/loghandler.pyc
  57. lib/python3.7/site-packages/suricata/ctl/main.py
  58. lib/python3.7/site-packages/suricata/ctl/main.pyc
  59. lib/python3.7/site-packages/suricata/ctl/test_filestore.py
  60. lib/python3.7/site-packages/suricata/ctl/test_filestore.pyc
  61. lib/python3.7/site-packages/suricata/sc/__init__.py
  62. lib/python3.7/site-packages/suricata/sc/__init__.pyc
  63. lib/python3.7/site-packages/suricata/sc/specs.py
  64. lib/python3.7/site-packages/suricata/sc/specs.pyc
  65. lib/python3.7/site-packages/suricata/sc/suricatasc.py
  66. lib/python3.7/site-packages/suricata/sc/suricatasc.pyc
  67. lib/python3.7/site-packages/suricata/update/__init__.py
  68. lib/python3.7/site-packages/suricata/update/__init__.pyc
  69. lib/python3.7/site-packages/suricata/update/commands/__init__.py
  70. lib/python3.7/site-packages/suricata/update/commands/__init__.pyc
  71. lib/python3.7/site-packages/suricata/update/commands/addsource.py
  72. lib/python3.7/site-packages/suricata/update/commands/addsource.pyc
  73. lib/python3.7/site-packages/suricata/update/commands/checkversions.py
  74. lib/python3.7/site-packages/suricata/update/commands/checkversions.pyc
  75. lib/python3.7/site-packages/suricata/update/commands/disablesource.py
  76. lib/python3.7/site-packages/suricata/update/commands/disablesource.pyc
  77. lib/python3.7/site-packages/suricata/update/commands/enablesource.py
  78. lib/python3.7/site-packages/suricata/update/commands/enablesource.pyc
  79. lib/python3.7/site-packages/suricata/update/commands/listenabledsources.py
  80. lib/python3.7/site-packages/suricata/update/commands/listenabledsources.pyc
  81. lib/python3.7/site-packages/suricata/update/commands/listsources.py
  82. lib/python3.7/site-packages/suricata/update/commands/listsources.pyc
  83. lib/python3.7/site-packages/suricata/update/commands/removesource.py
  84. lib/python3.7/site-packages/suricata/update/commands/removesource.pyc
  85. lib/python3.7/site-packages/suricata/update/commands/updatesources.py
  86. lib/python3.7/site-packages/suricata/update/commands/updatesources.pyc
  87. lib/python3.7/site-packages/suricata/update/compat/__init__.py
  88. lib/python3.7/site-packages/suricata/update/compat/__init__.pyc
  89. lib/python3.7/site-packages/suricata/update/compat/argparse/__init__.py
  90. lib/python3.7/site-packages/suricata/update/compat/argparse/__init__.pyc
  91. lib/python3.7/site-packages/suricata/update/compat/argparse/argparse.py
  92. lib/python3.7/site-packages/suricata/update/compat/argparse/argparse.pyc
  93. lib/python3.7/site-packages/suricata/update/compat/ordereddict.py
  94. lib/python3.7/site-packages/suricata/update/compat/ordereddict.pyc
  95. lib/python3.7/site-packages/suricata/update/config.py
  96. lib/python3.7/site-packages/suricata/update/config.pyc
  97. lib/python3.7/site-packages/suricata/update/configs/__init__.py
  98. lib/python3.7/site-packages/suricata/update/configs/__init__.pyc
  99. lib/python3.7/site-packages/suricata/update/configs/disable.conf
  100. lib/python3.7/site-packages/suricata/update/configs/drop.conf
  101. lib/python3.7/site-packages/suricata/update/configs/enable.conf
  102. lib/python3.7/site-packages/suricata/update/configs/modify.conf
  103. lib/python3.7/site-packages/suricata/update/configs/threshold.in
  104. lib/python3.7/site-packages/suricata/update/configs/update.yaml
  105. lib/python3.7/site-packages/suricata/update/data/__init__.py
  106. lib/python3.7/site-packages/suricata/update/data/__init__.pyc
  107. lib/python3.7/site-packages/suricata/update/data/index.py
  108. lib/python3.7/site-packages/suricata/update/data/index.pyc
  109. lib/python3.7/site-packages/suricata/update/data/update.py
  110. lib/python3.7/site-packages/suricata/update/data/update.pyc
  111. lib/python3.7/site-packages/suricata/update/engine.py
  112. lib/python3.7/site-packages/suricata/update/engine.pyc
  113. lib/python3.7/site-packages/suricata/update/exceptions.py
  114. lib/python3.7/site-packages/suricata/update/exceptions.pyc
  115. lib/python3.7/site-packages/suricata/update/extract.py
  116. lib/python3.7/site-packages/suricata/update/extract.pyc
  117. lib/python3.7/site-packages/suricata/update/loghandler.py
  118. lib/python3.7/site-packages/suricata/update/loghandler.pyc
  119. lib/python3.7/site-packages/suricata/update/main.py
  120. lib/python3.7/site-packages/suricata/update/main.pyc
  121. lib/python3.7/site-packages/suricata/update/maps.py
  122. lib/python3.7/site-packages/suricata/update/maps.pyc
  123. lib/python3.7/site-packages/suricata/update/net.py
  124. lib/python3.7/site-packages/suricata/update/net.pyc
  125. lib/python3.7/site-packages/suricata/update/notes.py
  126. lib/python3.7/site-packages/suricata/update/notes.pyc
  127. lib/python3.7/site-packages/suricata/update/rule.py
  128. lib/python3.7/site-packages/suricata/update/rule.pyc
  129. lib/python3.7/site-packages/suricata/update/sources.py
  130. lib/python3.7/site-packages/suricata/update/sources.pyc
  131. lib/python3.7/site-packages/suricata/update/util.py
  132. lib/python3.7/site-packages/suricata/update/util.pyc
  133. lib/python3.7/site-packages/suricata/update/version.py
  134. lib/python3.7/site-packages/suricata/update/version.pyc
  135. lib/python3.7/site-packages/suricata_update-1.1.1-py3.7.egg-info
  136. lib/python3.7/site-packages/suricatasc/__init__.py
  137. lib/python3.7/site-packages/suricatasc/__init__.pyc
  138. share/suricata/rules/app-layer-events.rules
  139. share/suricata/rules/decoder-events.rules
  140. share/suricata/rules/dhcp-events.rules
  141. share/suricata/rules/dnp3-events.rules
  142. share/suricata/rules/dns-events.rules
  143. share/suricata/rules/files.rules
  144. share/suricata/rules/http-events.rules
  145. share/suricata/rules/ipsec-events.rules
  146. share/suricata/rules/kerberos-events.rules
  147. share/suricata/rules/modbus-events.rules
  148. share/suricata/rules/nfs-events.rules
  149. share/suricata/rules/ntp-events.rules
  150. share/suricata/rules/smb-events.rules
  151. share/suricata/rules/smtp-events.rules
  152. share/suricata/rules/stream-events.rules
  153. share/suricata/rules/tls-events.rules
  154. @sample etc/suricata/classification.config.sample
  155. @sample etc/suricata/reference.config.sample
  156. @sample etc/suricata/suricata.yaml.sample
  157. @sample etc/suricata/threshold.config.sample
  158. @dir share/suricata
  159. @dir share/doc/suricata
  160. @dir etc/suricata
  161. @dir include/htp
  162. @dir(root,wheel,0700) /var/log/suricata
  163. @postunexec if [ -d %D/etc/suricata ]; then echo "==> If you are permanently removing this port, run ``rm -rf ${PKG_PREFIX}/etc/suricata`` to remove configuration files."; fi
Collapse this list.
Dependency lines:
  • suricata>0:security/suricata
  • libhtp.so:security/suricata
Conflicts:
CONFLICTS_INSTALL:
  • libhtp
  • suricata5
Conflicts Matches:
There are no Conflicts Matches for this port. This is usually an error.
To install the port: cd /usr/ports/security/suricata/ && make install clean
To add the package: pkg install suricata
PKGNAME: suricata
Flavors: there is no flavor information for this port.
distinfo:

Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. rustc : lang/rust
  2. py37-yaml>0 : devel/py-yaml@py37
  3. gmake : devel/gmake
  4. pkgconf>=1.3.0_1 : devel/pkgconf
  5. python3.7 : lang/python37
  6. autoconf>=2.69 : devel/autoconf
  7. automake>=1.16.1 : devel/automake
  8. libtoolize : devel/libtool
Runtime dependencies:
  1. py37-yaml>0 : devel/py-yaml@py37
  2. python3.7 : lang/python37
Library dependencies:
  1. libpcre.so : devel/pcre
  2. libnet.so : net/libnet
  3. liblz4.so : archivers/liblz4
  4. libyaml.so : textproc/libyaml
  5. libjansson.so : devel/jansson
  6. libiconv.so : converters/libiconv
There are no ports dependent upon this port

Configuration Options

USES:

Master Sites:
  1. https://www.openinfosecfoundation.org/download/

Number of commits found: 106 (showing only 100 on this page)

1 | 2  »  

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
17 Feb 2020 18:45:02
Original commit files touched by this commit  5.0.2
Revision:526386
yuri search for other commits by this committer
security/suricata: Update 5.0.1 -> 5.0.2

PR:		244186
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
MFH:		2020Q1 (bugfixes)
30 Jan 2020 20:00:07
Original commit files touched by this commit  5.0.1_1
Revision:524658
tobik search for other commits by this committer
lang/rust: Update to 1.41.0

- Force rebuild all consumers to catch regressions early
- Switch to cross-compiled (from amd64) bootstraps for all
  architectures generated with the incoming lang/rust-bootstrap
- Update cargo-c to 0.5.2 to unbreak librav1e build
- Make use of regular MAKE_ENV/TEST_ENV in lang/rust
- Turn on RUST_BACKTRACE in lang/rust and USES=cargo to hopefully
  produce more useful failure logs when something panics during
  builds

Changes:	https://blog.rust-lang.org/2020/01/30/Rust-1.41.0.html
Tested by:	mikael, tobik
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D23385
25 Dec 2019 13:30:21
Original commit files touched by this commit  5.0.1
Revision:520857
amdmi3 search for other commits by this committer
- Update to 5.0.1

PR:		242658
Submitted by:	franco@opnsense.org (maintainer)
19 Dec 2019 16:14:49
Original commit files touched by this commit  5.0.0_2
Revision:520446
tobik search for other commits by this committer
lang/rust: Update to 1.40.0

- Force rebuild all consumers to catch regressions early

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/12/19/Rust-1.40.0.html
Tested by:	mikael.urankar@gmail.com, tobik
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D22843
07 Nov 2019 18:07:20
Original commit files touched by this commit  5.0.0_1
Revision:516995
tobik search for other commits by this committer
lang/rust: Update to 1.39.0

- Force rebuild all consumers to catch regressions early
- Partially apply D20792 in preparation for PPC_ABI support
- Add LibreSSL 3.0.x support [1]

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/11/07/Rust-1.39.0.html
PR:		241411 [1]
Tested by:	mikael.urankar@gmail.com, tobik
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D22240
02 Nov 2019 13:25:00
Original commit files touched by this commit  5.0.0
Revision:516319
tcberner search for other commits by this committer
security/suricata: update to 5.0.0

PR:		241452
Submitted by:	Franco Fichtner <franco@opnsense.org>  (maintainer)
27 Sep 2019 11:44:19
Original commit files touched by this commit  4.1.5_1
Revision:513025
garga search for other commits by this committer
security/suricata: Restore GEOIP option

GeoIP option works with libmaxminddb since 4.1.5.  Add GEOIP option back.

PR:		240835
Approved by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by:	Rubicon Communications, LLC (Netgate)
27 Sep 2019 09:35:21
Original commit files touched by this commit  4.1.5_1
Revision:513013
tobik search for other commits by this committer
lang/rust: Update to 1.38.0

- Force rebuild all consumers to catch regressions early

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/09/26/Rust-1.38.0.html
Tested by:	jbeich, mikael.urankar@gmail.com, tobik
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D21778
25 Sep 2019 22:09:02
Original commit files touched by this commit  4.1.5
Revision:512858
garga search for other commits by this committer
security/suricata: Update to 4.1.5

PR:		240793
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
MFH:		2019Q3
Security:	CVE-2019-16410 CVE-2019-16411
Sponsored by:	Rubicon Communications, LLC (Netgate)
15 Aug 2019 14:30:16
Original commit files touched by this commit  4.1.4_4
Revision:508994
tobik search for other commits by this committer
lang/rust: Update to 1.37.0

- Force rebuild all consumers to catch regressions early

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/08/15/Rust-1.37.0.html
Tested by:	jbeich, tobik, greg@unrelenting.technology (aarch64)
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D21247
14 Aug 2019 12:16:13
Original commit files touched by this commit  4.1.4_3
Revision:508909
mat search for other commits by this committer
Convert to UCL & cleanup pkg-message (categories s)
04 Jul 2019 14:41:57
Original commit files touched by this commit  4.1.4_3
Revision:505837
tobik search for other commits by this committer
lang/rust: Update to 1.36.0

- Force rebuild all consumers to catch regressions early

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/07/04/Rust-1.36.0.html
Tested by:	jbeich, mikael.urankar@gmail.com
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D20810
24 May 2019 03:25:12
Original commit files touched by this commit  4.1.4_2
Revision:502416
tobik search for other commits by this committer
lang/rust: Update to 1.35.0

- Force rebuild all consumers to catch regressions early

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/05/23/Rust-1.35.0.html
Reviewed by:	jbeich
Tested by:	pkubaj (powerpc64), mikael.urankar@gmail.com (aarch64)
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D20332
15 May 2019 03:12:15
Original commit files touched by this commit  4.1.4_1
Revision:501679
tobik search for other commits by this committer
lang/rust: Update to 1.34.2

- While here add patches from [1] for LibreSSL 2.9.1 support

[1] https://github.com/sfackler/rust-openssl/pull/1097

Changes:	https://blog.rust-lang.org/2019/05/13/Security-advisory.html
Changes:	https://blog.rust-lang.org/2019/05/14/Rust-1.34.2.html
PR:		237495 [1]
Security:	37528379-76a8-11e9-a4fd-00012e582166
03 May 2019 08:40:08
Original commit files touched by this commit  4.1.4
Revision:500707
joneum search for other commits by this committer
Update to 4.1.4

Changelog: https://suricata-ids.org/2019/04/30/suricata-4-1-4-released/

PR:		237684
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by:	Netzkommune GmbH
11 Apr 2019 19:39:28
Original commit files touched by this commit  4.1.3_2
Revision:498677 This port version is marked as vulnerable.
tobik search for other commits by this committer
lang/rust: Update to 1.34.0

- Update devel/racer to latest version that can build with 1.34.0
- Drop no longer needed patch from textproc/ripgrep
- Force rebuild all consumers to catch regressions early

Thanks to Mikael Urankar for providing updated bootstraps for
aarch64, armv6, armv7, powerpc64.

Changes:	https://blog.rust-lang.org/2019/04/11/Rust-1.34.0.html
Reviewed by:	jbeich
With hat:	rust
Differential Revision:	https://reviews.freebsd.org/D19850
10 Apr 2019 06:18:32
Original commit files touched by this commit  4.1.3_1
Revision:498530 This port version is marked as vulnerable.
antoine search for other commits by this committer
Bump a few PORTREVISIONs after r498529

With hat:	portmgr
08 Mar 2019 14:35:45
Original commit files touched by this commit  4.1.3
Revision:495041 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update security/suricata to 4.1.3 [1]
- Add support to python 3.x [2]

PR:		236385
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer) [1]
		garga [2]
Approved by:	Franco Fichtner <franco@opnsense.org> (maintainer) [2]
Obtained from:	pfSense [2]
Sponsored by:	Rubicon Communications, LLC (Netgate) [2]
28 Feb 2019 18:51:46
Original commit files touched by this commit  4.1.2_3
Revision:494176 This port version is marked as vulnerable.
jbeich search for other commits by this committer
lang/rust: update to 1.33.0

- www/firefox temporarily loses SIMD in charset conversion, see
  https://bugzilla.mozilla.org/show_bug.cgi?id=1521249
- Force rebuild all consumers to catch regressions early

Changes:	https://blog.rust-lang.org/2019/02/28/Rust-1.33.0.html
Tested by:	Mikael Urankar (aarch64, armv6, armv7, powerpc64), Piotr Kubaj
(powerpc64)
Approved by:	rust (tobik)
Differential Revision:	https://reviews.freebsd.org/D19354
17 Jan 2019 19:50:39
Original commit files touched by this commit  4.1.2_2
Revision:490600 This port version is marked as vulnerable.
jbeich search for other commits by this committer
lang/rust: update to 1.32.0

- devel/racer no longer needs to dowgrade rustc-ap-syntax
- Force rebuild all consumers to catch regressions early

Changes:	https://blog.rust-lang.org/2019/01/17/Rust-1.32.0.html
Approved by:	rust (tobik)
Differential Revision:	https://reviews.freebsd.org/D18858
13 Jan 2019 20:58:37
Original commit files touched by this commit  4.1.2_1
Revision:490211 This port version is marked as vulnerable.
adamw search for other commits by this committer
Remove GeoIP-related options. Where possible, replace GeoIP 1 defaults
with GeoIP 2.

Also, as suggested by zi, add an UPDATING note about this.
04 Jan 2019 04:00:40
Original commit files touched by this commit  4.1.2
Revision:489241 This port version is marked as vulnerable.
jbeich search for other commits by this committer
Allow overriding rust dependency

Add DEFAULT_VERSIONS+=rust=rust-nightly to make.conf(5) if you want to
build consumers using lang/rust-nightly.

Approved by:	rust (tobik)
MFH:		2019Q1 (avoid merge conflicts during www/firefox updates)
Differential Revision:	https://reviews.freebsd.org/D18634
01 Jan 2019 11:17:54
Original commit files touched by this commit  4.1.2
Revision:488865 This port version is marked as vulnerable.
joneum search for other commits by this committer
Update to 4.1.2

Changelog: https://suricata-ids.org/2018/12/21/suricata-4-1-2-released/

PR:		234271
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by:	Netzkommune GmbH
20 Dec 2018 06:37:02
Original commit files touched by this commit  4.1.1
Revision:487848 This port version is marked as vulnerable.
joneum search for other commits by this committer
Update to 4.1.1

Changelog: https://suricata-ids.org/2018/12/17/suricata-4-1-1-available/

PR:		234128
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by:	Netzkommune GmbH
10 Dec 2018 16:04:49
Original commit files touched by this commit  4.1.0_1
Revision:487180 This port version is marked as vulnerable.
swills search for other commits by this committer
security/suricata: multiple changes to previous update

* Rename SC to PYTHON to reflect the new state of the option
* Remove PRELUDE from defaults
* Add PYTHON to defaults
* Add RUST to defaults

PR:		231839
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
09 Dec 2018 20:18:31
Original commit files touched by this commit  4.1.0
Revision:487081 This port version is marked as vulnerable.
swills search for other commits by this committer
security/suricata: Fix plist with SC option on

PR:		231839
Reported by:	antoine
09 Dec 2018 01:31:31
Original commit files touched by this commit  4.1.0
Revision:487007 This port version is marked as vulnerable.
swills search for other commits by this committer
security/suricata: update to 4.1

PR:		231839
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
09 Nov 2018 16:44:57
Original commit files touched by this commit  4.0.6
Revision:484525 This port version is marked as vulnerable.
swills search for other commits by this committer
security/suricata: update to 4.0.6

PR:		233027
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
03 Aug 2018 16:24:36
Original commit files touched by this commit  4.0.5
Revision:476305 This port version is marked as vulnerable.
swills search for other commits by this committer
security/suricata: bump libhtp req due to recent CVEs

PR:		230322
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
23 Jul 2018 15:04:51
Original commit files touched by this commit  4.0.5
Revision:475180 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/suricata to 4.0.5

PR:		229904
Approved by:	maintainer
MFH:		2018Q3
Security:	CVE-2018-10242 CVE-2018-10244
Differential Revision:	https://reviews.freebsd.org/D16366
02 Apr 2018 00:01:14
Original commit files touched by this commit  4.0.4
Revision:466193 This port version is marked as vulnerable.
yuri search for other commits by this committer
security/suricata: Update 4.0.3 -> 4.0.4

Port changes:
* Change to DISTVERSION
* Removed HTP_PORT from defaultoptions
* Add NSS_CONFIGURE_OFF
* Add command silencing

I also noticed that it still links to libjansson when JSON=off.
This is because it auto-finds it.
Requested the upstream to add --disable-{option} flags:
https://redmine.openinfosecfoundation.org/issues/2473

PR:		226512
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer, original
version)
Submitted by:	Renato Botelho <garga@FreeBSD.org> (final version)
Approved by:	Franco Fichtner <franco@opnsense.org> (maintainer)
15 Dec 2017 02:05:57
Original commit files touched by this commit  4.0.3
Revision:456380 This port version is marked as vulnerable.
swills search for other commits by this committer
security/suricata: update to 4.0.3

PR:		224351
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
30 Nov 2017 15:50:34
Original commit files touched by this commit  4.0.1
Revision:455210  Sanity Test Failure This port version is marked as vulnerable.
mat search for other commits by this committer
Convert Python ports to FLAVORS.

  Ports using USE_PYTHON=distutils are now flavored.  They will
  automatically get flavors (py27, py34, py35, py36) depending on what
  versions they support.

  There is also a USE_PYTHON=flavors for ports that do not use distutils
  but need FLAVORS to be set.  A USE_PYTHON=noflavors can be set if
  using distutils but flavors are not wanted.

  A new USE_PYTHON=optsuffix that will add PYTHON_PKGNAMESUFFIX has been
  added to cope with Python ports that did not have the Python
  PKGNAMEPREFIX but are flavored.

  USES=python now also exports a PY_FLAVOR variable that contains the
(Only the first 15 lines of the commit message are shown above View all of this commit message)
21 Nov 2017 19:12:35
Original commit files touched by this commit  4.0.1
Revision:454651 This port version is marked as vulnerable.
zeising search for other commits by this committer
Update to 4.0.1

This is a bugfix release.
See https://suricata-ids.org/2017/10/18/suricata-4-0-1-available/ for
complete changelog.

PR:		223322
Submitted by:	Franco Fichtner
Approved by:	Franco Fichtner (maintainer)
21 Nov 2017 18:55:28
Original commit files touched by this commit  4.0.0_1
Revision:454649 This port version is marked as vulnerable.
zeising search for other commits by this committer
Fix suricata failing to start if there is a stale pid file laying around.
This can happen if suricata is ungracefully shut down.

PR:		223052, 223322
Submitted by:	Reshad Patuck, Franco Fichtner
Approved by:	Franco Fichtner (maintainer)
MFH:		2017Q4
09 Aug 2017 08:15:21
Original commit files touched by this commit  4.0.0
Revision:447598 This port version is marked as vulnerable.
joneum search for other commits by this committer
- security/suricata: Update from 3.2.3 to 4.0.0
- Changelog: https://suricata-ids.org/2017/07/27/suricata-4-0-released/

PR:		221286
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by:	miwi (mentor)
Differential Revision:	https://reviews.freebsd.org/D11908
22 Jul 2017 14:50:22
Original commit files touched by this commit  3.2.3
Revision:446403 This port version is marked as vulnerable.
joneum search for other commits by this committer
- security/suricata: Update from 3.2.2 to 3.2.3
- Changelog: https://suricata-ids.org/2017/07/13/suricata-3-2-3-available/

PR:		220758
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by:	miwi (mentor)
Differential Revision:	https://reviews.freebsd.org/D11639
17 Jul 2017 05:58:04
Original commit files touched by this commit  3.2.2_1
Revision:446053 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Bump PORTREVISION

Actually bump PORTREVISION mentioned but not committed in ports r446052

PR:	220757
13 Jul 2017 16:46:24
Original commit files touched by this commit  3.2.2
Revision:445663 This port version is marked as vulnerable.
garga search for other commits by this committer
Add new REDIS option (off by default) to security/suricata

Approved by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Obtained from:	https://github.com/pfsense/FreeBSD-ports/pull/363
Sponsored by:	Rubicon Communications, LLC (Netgate)
Differential Revision:	https://reviews.freebsd.org/D11139
18 Jun 2017 15:06:34
Original commit files touched by this commit  3.2.2
Revision:443829 This port version is marked as vulnerable.
ultima search for other commits by this committer
* Updated to 3.2.2
* Depends on libhtp 0.5.24 or greater
* Listen on multiple PCAP interfaces via RC script
* Dependencies added in the 3.2.1 update move to the PRELUDE option where they
belong

 - Support additional runmodes for unix-socket
 - make install-full can have race conditions on OSX
 - af-packet: faulty VLAN handling in tpacket-v3 mode
 - bad checksum 0xffff
 - ippair: xbit unset memory leak
 - file store: file log / file store mismatch with multiple files
 - app-layer: fix memleak on bad traffic
 - http body handling: failed assertion
 - ippair: pair is direction sensitive
 - defrag - overlap issue in linux policy
 - unix socket: race condition on start up

PR:		220026
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D11251
04 Mar 2017 13:33:25
Original commit files touched by this commit  3.2.1
Revision:435393 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 3.2.1.

Pass maintainership to submitter.

PR:		217143
Submitted by:	Franco Fichtner
Approved by:	maintainer timeout
Sponsored by:	Absolight
21 Oct 2016 15:21:13
Original commit files touched by this commit  3.1.2
Revision:424427 This port version is marked as vulnerable.
mat search for other commits by this committer
Use USES=pathfix where applicable.

PR:		213195
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D8093
20 Oct 2016 02:30:29
Original commit files touched by this commit  3.1.2
Revision:424303 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 3.1.2

- Update PORTVERSION and distinfo checksum (3.1.2)
- Update pkg-plist


  https://github.com/inliniac/suricata/blob/suricata-3.1.2/ChangeLog

PR:		212815
Submitted by:	Franco Fichtner <franco opnsense org>
09 Oct 2016 12:10:02
Original commit files touched by this commit  3.1.1_2
Revision:423591 This port version is marked as vulnerable.
jbeich search for other commits by this committer
devel/nspr, security/nss: drop version from SONAME

No other downstream appends synthetic library version, and doing so
causes underlinking due to fragile build system (see below). Not to
mention being unable to swap out bundled libs from upstream builds.

  $ cc -lplds4 -L/usr/local/lib
  /usr/lib/crt1.o: In function `_start1':
  crt1_c.c:(.text+0xa6): undefined reference to `main'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_set_name_np'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_create'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_condattr_init'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_setschedparam'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_getschedparam'

PR:		213144
Exp-run by:	antoine
09 Sep 2016 19:42:46
Original commit files touched by this commit  3.1.1_1
Revision:421635 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
Most commonly used build systems support silent builds, when they
hide actual commands executed and only show short summary line (like
"CC foo.c"). CMake and ninja enable this by default, some autotools
using ports do as well. This is unacceptable because we need complete
build logs at any time, so we now switch to verbose build logs
unconditionally. Note that this change deliberately affects ALL
builds and not only package builds on cluster, because we need to
be sure that user experiencing failure can always provide informative
build log regardless of settings and without rerunning the build.

Change summary:

- Always do verbose builds for cmake, ninja and GNU configure (the
  latter includes check if --disable-silent-rules is actually supported
  by the configure script; there are isolated cases when it's not true)
(Only the first 15 lines of the commit message are shown above View all of this commit message)
06 Aug 2016 08:51:43
Original commit files touched by this commit  3.1.1_1
Revision:419735 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Fix libpcap LIB_DEPENDS

Fix the PORTS_PCAP option LIB_DEPENDS entry ambiguously depending on
net/libpcap, which should be libpcap.so.1 so as not to be satisfied
with the pcap library provided by base. [1]

While I'm here:

- Explicitly BUILD_DEPEND on libhtp >= 0.5.20, as configure breaks when
  that minimum version is not available.

PR:		211578
Reported by:	marino [1]
01 Aug 2016 05:12:48
Original commit files touched by this commit  3.1.1
Revision:419424 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Fix plist with HTP_PORT option disabled

Update pkg-plist entry for shared library version missed due to not testing
with HTP_PORT disabled.

Pointyhat:	koobs

PR:		210490
Reported by:	Franco Fichtner <franco opnsense org>
31 Jul 2016 14:21:35
Original commit files touched by this commit  3.1.1
Revision:419381 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 3.1.1

* Update PORTVERSION and distinfo checksum (3.1.1) [1]
* Update pkg-plist for shared library bump [2]
* Use postunexec instead of unexec in pkg-plist
* Group common OPTIONS_* entries
* Group *_TARGET entries


  https://github.com/inliniac/suricata/blob/suricata-3.1.1/ChangeLog

PR:		210490 [1][2]
Submitted by:	Stewart Morgan <stewart.morgan gmail com> [1]
Submitted by:	Franco Fichtner <franco opnsense org> [2]
01 Apr 2016 14:25:18
Original commit files touched by this commit  3.0_2
Revision:412349 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
27 Mar 2016 14:58:00
Original commit files touched by this commit  3.0_2
Revision:411990 This port version is marked as vulnerable.
tijl search for other commits by this committer
- Update security/gnutls to 3.4.10.
- Rename the LIBDANE option DANE because that's the name of the protocol
  supported by libgnutls-dane and gnutls-cli.  Also clarify the option
  description.
- Add an IDN option.
- libgnutls-openssl has been removed in 3.4.  Some ports used this library
  in their LIB_DEPENDS but no port actually required it.
- Some old API functions have been removed.  Ports that used these have been
  updated or patched to use the new API.
- Add a patch to print/cups to prevent overlinking of libgnutls.so.
- Bump PORTREVISION on dependent ports.

net-im/jabber: This port used the old API to give users fine grained
control over which crypto algorithms were used via a configuration file.
It's not immediately obvious how to port this to the new API so the port
always uses the defaults now.

www/hydra: Mark BROKEN.  This uses more removed calls than the other ports,
is said to be alpha quality and not fully functional and has been abandoned
10 years ago.

PR:		207768
Exp-run by:	antoine
Approved by:	portmgr (antoine)
20 Mar 2016 10:53:09
Original commit files touched by this commit  3.0_1
Revision:411432 This port version is marked as vulnerable.
tijl search for other commits by this committer
Install net/libnet headers and libraries back in the location where other
ports expect it.  The files were put in a different location to avoid a
conflict with net/libnet10 but this port has been removed a while ago now.

PR:		208122
Exp-run by:	antoine
Approved by:	portmgr (antoine)
04 Feb 2016 07:58:46
Original commit files touched by this commit  3.0_1
Revision:408015 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Add netmap IPS mode to pkg-message

PR:		206875
Submitted by:	 Franco Fichtner <franco opnsense org>
02 Feb 2016 16:33:12
Original commit files touched by this commit  3.0
Revision:407829 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 3.0

- Switch from DISTVERSION to PORTVERSION
- Update PORTVERION and distinfo checksum (3.0)

Changes:

  * http://suricata-ids.org/2016/01/27/suricata-3-0-available/
  * https://redmine.openinfosecfoundation.org/versions/80

PR:		206690
Submitted by:	Franco Fichtner <franco opnsense org>
24 Dec 2015 13:31:53
Original commit files touched by this commit  3.0.r3
Revision:404358 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 3.0 RC3

- Update DISTVERSION and distinfo checksum (3.0RC3)
- Pet portlint (makepatch: patch UTC time)

Merry Christmas All! HO HO HO

PR:		205306
Submitted by:	Franco Fichtner <franco opnsense org>
04 Dec 2015 05:42:17
Original commit files touched by this commit  3.0.r1
Revision:402907 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Add rules files, netmap startup support

- Install missing rules files [1]
- Add netmap support and simplify pid file naming [2]

PR:		204838 [1], 204834 [2]
Submitted by:	Bill Meeks <bmeeks8 bellsouth net> [1]
Submitted by:	Franco Fichtner <franco opnsense org> [2]
26 Nov 2015 11:25:42
Original commit files touched by this commit  3.0.r1
Revision:402436 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 3.0 RC1

- Update to 3.0 release candidate 1 (Welcome Netmap support!)
- Update pkg-plist accordingly
- Add NETMAP option (Enabled by default for packages)
- Sort OPTIONS_* alphabetically
- Enable verbose builds
- Remove patches (upstreamed)
- Update test target
23 Nov 2015 11:40:24
Original commit files touched by this commit  2.0.9
Revision:402273 This port version is marked as vulnerable.
garga search for other commits by this committer
Remove mirrors.mit.edu from MASTER_SITES, no 2.x tarball available there

Approved by:	koobs (maintainer)
Sponsored by:	Rubicon Communications (Netgate)
22 Oct 2015 11:56:31
Original commit files touched by this commit  2.0.9
Revision:399967 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 2.0.9

- Update PORTVERSION and distinfo checksum (2.0.9)

Changes:

  https://github.com/inliniac/suricata/blob/suricata-2.0.9/ChangeLog

While I'm here,

- Standardize the length of pkg-message separators and add spaces
  between them and the text body. <idea> It would be cool if the ports
  framework could wrap these pkg-message's in standard formatting for
  all ports automagically</idea>

Requested by:	Martin Olsson (via email)
28 Sep 2015 08:25:45
Original commit files touched by this commit  2.0.8_2
Revision:398101 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Disable -march=native

Suricata currently builds with GCC -march=native by default.

This can create problems if, for example, packages of this port are
built on ATOM servers but installed on AMD processors. In these and
other cases where the build host is not equal to the target host,
suricata can generate an Illegal instruction and refuse
to start.

It is ultimately preferable to explicitly cross-build and/or optimize
compilation for target architectures and processors. See: PEP20.

PR:		203296
Submitted by:	Olivier Cochard <olivier cochard me>
Tested by:	Olivier Cochard <olivier cochard me>
MFH:		2015Q3
20 Sep 2015 14:35:58
Original commit files touched by this commit  2.0.8_1
Revision:397374 This port version is marked as vulnerable.
danfe search for other commits by this committer
Remove BROKEN on Tier-2 systems statements which no longer true at least
on PowerPC (verified for all of them) and some also on SPARC (whenever I
was able to test those on flame.freebsd.org) and even IA64 (which should
be OK to remove anyways, because it was never really supported system in
ports land and was officially killed in -CURRENT a while ago.
13 May 2015 00:17:57
Original commit files touched by this commit  2.0.8_1
Revision:386186 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Add PPPoE support

Backport upstream Pull Request #1416 [1] adding support for
LINKTYPE_NULL.

[1] https://github.com/inliniac/suricata/pull/1416
[2] https://redmine.openinfosecfoundation.org/issues/1445

Submitted by: Bill Meeks <bmeeks8 bellsouth net> (via gnn)
12 May 2015 10:49:23
Original commit files touched by this commit  2.0.8
Revision:386134 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 2.0.8

- Update to 2.0.8

This release fixes a bug in the DER parser which is used to
decode SSL/TLS certificates and could crash Suricata [1]

Security: CVE-2015-0971
Security: fe910ed6-f88d-11e4-9ae3-0050562a4d7b

MFH:		2015Q2
Security:	CVE-2015-0971
Security:	fe910ed6-f88d-11e4-9ae3-0050562a4d7b
27 Apr 2015 16:05:52
Original commit files touched by this commit  2.0.6_1
Revision:384861 This port version is marked as vulnerable.
antoine search for other commits by this committer
- Add JSON to OPTIONS_DEFAULT to match default configuration where eve-log
  support is enabled
- Package threshold.config configuration file

PR:		197937
Approved by:	koobs (maintainer)
15 Apr 2015 19:12:19
Original commit files touched by this commit  2.0.6
Revision:384068 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add CPE info

Approved by:	portmgr blanket
27 Jan 2015 10:47:49
Original commit files touched by this commit  2.0.6
Revision:377991 This port version is marked as vulnerable.
koobs search for other commits by this committer
devel/libhtp, security/suricata: Use iconv:translit

Use translit for USES=iconv, fixing a build error on specific (10-STABLE r???)
versions of FreeBSD that dont contain a libiconv implementation with certain
features [1] in base.

PR:		196720 [1]
Reported by:	<trond.endrestol ximalas info>
18 Jan 2015 07:12:37
Original commit files touched by this commit  2.0.6
Revision:377282 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 2.0.6, add lots of OPTIONS

- Update to 2.0.6
- Update pkg-plist
- Add LICENSE_FILE
- Add OPTIONS for:

  * LUA scripting support
  * LUAjit scripting support
  * Suricata socket client

- Fix a reverse logic bug for JSON option
- Suricata links to nspr as a dependent of nss, add it to LIB_DEPENDS
- Create LOGS_DIR post-install
- Add patch to fix upstream issue 1353 [1]

[1] https://redmine.openinfosecfoundation.org/issues/1353

PR:		196801
Submitted by:	cheffo freebsd-bg org (with changes)
22 Dec 2014 15:11:55
Original commit files touched by this commit  2.0.5
Revision:375243 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 2.0.5, Add NSS support

- Update to 2.0.5
- Add NSS option for file checksum and fingerprint support [1]
- Add default rules files [1]
- Add USES=autoreconf, remove USE_AUTOTOOLS and friends
- Override PATHFIX_MAKEFILEIN
- Use the install-strip target
- Fix HTP_PORT_CONFLICT_OFF typo (CONFLICT*S*)
- USES=iconv when using the bundled HTP version
- Cleanup and fix OPTION descriptions
- Sort OPTIONS and helpers
- Use the existing NO_HTP_PORT variable in pkg-plist (OPTIONS_SUB), remove
  MHTP_PORT conditional accordingly

PR:		194953 [1]
Submitted by:	Bill Meeks <bmeeks8 bellsouth net> [1]
11 Nov 2014 15:57:53
Original commit files touched by this commit  2.0.4
Revision:372453 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update suricata to 2.0.4 [1]
- Added JSON knob - this allows Suricata to be compiled with JSON output support
- Added GEOIP knob - this allows Suricata to support rules with geoip word
- Added HTP_PORT knob - this make the use of www/libhtp-suricata optional. E.g.
  user can choose between build-in and port version.
- Unbreak PLIST renaming sample files from -sample to .sample

PR:		193220 [1]
Submitted by:	cheffo [1]
Approved by:	maintainer timeout (> 2 months)
Security:	CVE-2014-6603
31 Oct 2014 15:40:38
Original commit files touched by this commit  2.0.3
Revision:371859 This port version is marked as vulnerable.
bapt search for other commits by this committer
Simplify plist by using @sample and @dir
23 Aug 2014 12:08:16
Original commit files touched by this commit  2.0.3
Revision:365723 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 2.0.3, Modernize

Now that libprelude is safe from EXPIRE and has been staged [1], and
devel/libhtp
now *actually* links against libiconv even though autoconf detection was fine
[2] ... Have fun!

- Update to 2.0.3
- Switch libhtp to the upstream version port (devel/libhtp)
- Use USES=libtool
- Use OPTIONS helpers and other OPTIONS_* goodies
- Sort USE(S)* section
- Deprecate USE_AUTOTOOLS (USES instead)
- Deprecate AUTOMAKE_ARGS, ACLOCAL_ARGS (no longer necessary)
- Update COMMENT
- Add m4 macro for checking compiler flags and add relevent
  check to configure.ac. Our GCC doesn't like
  -Wno-error=unused-result and upstreams configure bits arent as
  portable as they could be.

[1] http://svnweb.freebsd.org/changeset/ports/365562
[2] http://svnweb.freebsd.org/changeset/ports/364955

Requested by:	many
21 Aug 2014 14:58:55
Original commit files touched by this commit  1.4.6_3
Revision:365562 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/libprelude: Take MAINTAINER'ship, STAGE & Modernize

- Take Maintainership
- Enable STAGE support
- Tweak MASTER_SITES https -> http (portlint)
- Add LICENSE and LICENSE_FILE
- Deprecate USE_AUTOTOOLS for libtool (-> USES)
- Sort USES and OPTIONS
- Use OPTIONS helpers as much as possible for now [1]
- Add --enable-static to CONFIGURE_ARGS to retain the static lib
- Assign and Use ETCDIR rather than hardcoding
- Use the install-strip install target
- Update pkg-plist, use @sample and other goodies

While I'm here, bump dependent ports since our SHLIB major version has
changed

[1] https://reviews.freebsd.org/D665

Approved by: portmgr (implicit, bump unstaged port)
16 Jul 2014 08:44:05
Original commit files touched by this commit  1.4.6_2
Revision:362053 This port version is marked as vulnerable.
bapt search for other commits by this committer
Fix some non default LIB_DEPENDS

With hat:	portmgr
14 Jul 2014 15:38:39
Original commit files touched by this commit  1.4.6_2
Revision:361791  Sanity Test Failure This port version is marked as vulnerable.
tijl search for other commits by this committer
- Convert net/libnet to USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip

Approved by:	portmgr (implicit, bump unstaged port)
05 Dec 2013 11:58:23
Original commit files touched by this commit  1.4.6_1
Revision:335661 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Remove unsupported DAG (Endace Capture) OPTION

This OPTION is non-functional as it requires hardware support and libdag from
Endace, which is not available in, nor recommended to be built via the ports
tree.

This OPTION also incorrectly added CONFIGURE_ARGS without adding any
LIB_DEPENDS, which broke configure: during build when the option was enabled.

Reported by:	mat (via pkg-fallout, via IRC)
17 Nov 2013 03:09:13
Original commit files touched by this commit  1.4.6
Revision:334051 This port version is marked as vulnerable.
koobs search for other commits by this committer
security/suricata: Update to 1.4.6, Switch to libhtp-suricata, Un-BROKEN Clang.

- Update to 1.4.6
- Switch to the correct library in www/libhtp-suricata
- Take maintainership
- Enable STAGE support
- Remove uneccessary patches
- Configure: Add libhtp include and library location
- Configure: Add /var to --localstatedir
- Configure: Disable Python support explicitly
- QA: Remove BROKEN with clang
- QA: Update to new LIB_DEPENDS format
- QA: Use ETCDIR instead of custom path for CONFIG_DIR and RULES_DIR
- QA: Replace hardcoded strings with ${PORTNAME}
- QA: Add documentation and %%DOCSDIR%% to pkg-plist
(Only the first 15 lines of the commit message are shown above View all of this commit message)
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.3.4_3
Revision:327769 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
30 Apr 2013 23:16:21
Original commit files touched by this commit  1.3.4_3
Revision:316970 This port version is marked as vulnerable.
wxs search for other commits by this committer
Take this port under my wing.
28 Apr 2013 14:05:44
Original commit files touched by this commit  1.3.4_3
Revision:316727 This port version is marked as vulnerable.
zi search for other commits by this committer
- Back to the pool
23 Apr 2013 14:20:28
Original commit files touched by this commit  1.3.4_3
Revision:316355 This port version is marked as vulnerable.
bapt search for other commits by this committer
Finish converting the whole ports tree to USES=pkgconfig
18 Feb 2013 21:13:02
Original commit files touched by this commit  1.3.4_3
Revision:312526 This port version is marked as vulnerable.
dinoex search for other commits by this committer
- update libnet to 1.1.6
- build shared lib
- fix dependend ports when libnet.so.8 was linked in
- fix dependend ports when includes where missing
15 Dec 2012 23:52:36
Original commit files touched by this commit  1.3.4_2
Revision:308972 This port version is marked as vulnerable.
pawel search for other commits by this committer
Bump ports affected by security/libprelude update
10 Dec 2012 19:11:12
Original commit files touched by this commit  1.3.4_1
Revision:308630  Sanity Test Failure This port version is marked as vulnerable.
mm search for other commits by this committer
Update PCRE to 8.32
Introduces the UTF-32 library pcre32
Bump PORTREVISION in dependent ports
18 Nov 2012 05:52:08
Original commit files touched by this commit  1.3.4
Revision:307528 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 1.3.4

Feature safe:	yes
02 Nov 2012 19:10:30
Original commit files touched by this commit  1.3.3
Revision:306882 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 1.3.3

Feature safe:	yes
10 Oct 2012 11:42:05
Original commit files touched by this commit  1.3.2
Revision:305642 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 1.3.2
06 Sep 2012 02:17:33
Original commit files touched by this commit  1.3.1
Revision:303732 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 1.3.1
06 Sep 2012 02:07:35
Original commit files touched by this commit  1.3_1
Revision:303731 This port version is marked as vulnerable.
zi search for other commits by this committer
- Add in workaround for compatibility with libhtp >= 0.3
- Bump PORTREVISION
26 Jul 2012 05:40:24
Original commit files touched by this commit  1.3
 This port version is marked as vulnerable.
bapt search for other commits by this committer
new devel/pkgconf added to replace devel/pkg-config. new version of pkg-config
are no more self hosting so we are stuck with 0.25 version while pkgconf provide
the same set of features as 0.27 and a compatible frontend. A symlink to
pkg-config has been added for convenience and compatibility

This also introduces a new macro to use pkgconf in your ports:
USE_PKGCONFIG

it can take the following arguments:
 - yes (meaning build only dep)
 - build (meaning build only dep)
 - run (meaning run only dep)
 - both (meaning run and build dep)

From now USE_GNOME= pkgconfig is deprecated in favour of USE_PKGCONFIG
The old gnome macro has been modified to use pkgconf but still the sameway: run
and build dep to avoid large breakage.

While here fix some ports relying on pkg-config but not specifying it, fix some
ports broken because testing wrong .pc files, and fix ports using pkg-config
--version to determine pkg-config version instead of
pkg-config --modversion pkg-config like recommanded by pkg-config

With Hat:	portmgr
Exp-runs by:	bapt (pointhat-west), beat (pointyhat)
16 Jul 2012 11:18:35
Original commit files touched by this commit  1.3
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Mark BROKEN when compiling with clang
11 Jul 2012 02:36:53
Original commit files touched by this commit  1.3
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 1.3
- Convert to OptionsNG
11 May 2012 20:38:09
Original commit files touched by this commit  1.2.1_1
 This port version is marked as vulnerable.
ade search for other commits by this committer
Update autoconf to 2.69 and automake to 1.12

PR:             166836
Tested by:      Multiple -exp runs (pav)
23 Mar 2012 14:27:51
Original commit files touched by this commit  1.2.1_1
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update mirror URL on my ports

Feature safe:   yes
13 Mar 2012 12:04:26
Original commit files touched by this commit  1.2.1_1
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Do not overwrite files from devel/libhtp [1]
- Do not overwrite customized config files [1]
- Optionally depend on libpcap from ports (off by default) [1]
- Detect and use gcc hardening options by default
- Cleanup language/whitespace
- Bump PORTREVISION

PR:             ports/164237 [1]
Submitted by:   Geoffroy Desvernay <dgeo@centrale-marseille.fr> [1]
Feature safe:   yes
23 Feb 2012 14:05:49
Original commit files touched by this commit  1.2.1
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 1.2.1 [1]
- Reset maintainership due to multiple maintainer timeouts
- Take maintainership

PR:             ports/164471 [1]
Submitted by:   Nikolay Denev <ndenev@gmail.com> [1]
14 Feb 2012 12:45:35
Original commit files touched by this commit  1.1.1_1
 This port version is marked as vulnerable.
mm search for other commits by this committer
Bump pcre library dependency due to 8.30 update
14 Jan 2012 08:57:23
Original commit files touched by this commit  1.1.1
 This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
10 Jan 2012 19:34:02
Original commit files touched by this commit  1.1.1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.1.1.
- Use libhtp from ports instead of the bundled one.
- Remove check for 6.x.

PR:             ports/163603
Submitted by:   wxs@
Approved by:    eksffa@freebsdbrasil.com.br (maintiner timeout)
08 Jan 2012 07:01:25
Original commit files touched by this commit  1.0.3
 This port version is marked as vulnerable.
eadler search for other commits by this committer
Repeated words are are hard to to find sometimes.

Approved by:    portmgr (itetcu)
19 Jul 2011 21:14:31
Original commit files touched by this commit  1.0.3
 This port version is marked as vulnerable.
zi search for other commits by this committer
Add DAG Support
Fix build when using custom LOCALBASE/PREFIX
Pacify portlint(1)

PR:             ports/158147
Submitted by:   rpsfa@rit.edu (me)
Approved by:    maintainer timeout, tabthorpe (mentor)
22 Jun 2011 00:29:16
Original commit files touched by this commit  1.0.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.0.3.
- Add LICENSE.

PR:             ports/157860
Submitted by:   Ryan Steinmetz <rpsfa@rit.edu>
Approved by:    Patrick Tracanelli <eksffa@freebsdbrasil.com.br> (maintainer)

Number of commits found: 106 (showing only 100 on this page)

1 | 2  »  

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
weechatFeb 21
webkit2-gtk3Feb 19
dovecotFeb 13
gitlab-ceFeb 13
grub2-bhyveFeb 12
libexifFeb 11
linux-flashplayerFeb 11
nginxFeb 09
nginx-develFeb 09
ksh93Feb 07
ksh93-develFeb 07
clamavFeb 05
py-django111Feb 04
py-django22Feb 04
py-django30Feb 04

8 vulnerabilities affecting 50 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last updated:
2020-02-23 08:59:33


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 38438
Broken 645
Deprecated 418
Ignore 916
Forbidden 3
Restricted 150
No CDROM 72
Vulnerable 23
Expired 4
Set to expire 390
Interactive 0
new 24 hours 3
new 48 hours13
new 7 days25
new fortnight53
new month314

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2020 Dan Langille. All rights reserved.