16:04 swills 

security/suricata: multiple changes to previous update

* Rename SC to PYTHON to reflect the new state of the option
* Remove PRELUDE from defaults
* Add PYTHON to defaults
* Add RUST to defaults

PR:		231839
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)

 

01:31 swills 

security/suricata: update to 4.1

PR:		231839
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)

 

16:44 swills 

security/suricata: update to 4.0.6

PR:		233027
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)

 

16:24 swills 

security/suricata: bump libhtp req due to recent CVEs

PR:		230322
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)

 

15:04 garga 

Update security/suricata to 4.0.5

PR:		229904
Approved by:	maintainer
MFH:		2018Q3
Security:	CVE-2018-10242 CVE-2018-10244
Differential Revision:	https://reviews.freebsd.org/D16366

 

00:01 yuri 

security/suricata: Update 4.0.3 -> 4.0.4

Port changes:
* Change to DISTVERSION
* Removed HTP_PORT from defaultoptions
* Add NSS_CONFIGURE_OFF
* Add command silencing

I also noticed that it still links to libjansson when JSON=off.
This is because it auto-finds it.
Requested the upstream to add --disable-{option} flags:
https://redmine.openinfosecfoundation.org/issues/2473

PR:		226512
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer, original
version)
Submitted by:	Renato Botelho <garga@FreeBSD.org> (final version)
Approved by:	Franco Fichtner <franco@opnsense.org> (maintainer)

 

02:05 swills 

security/suricata: update to 4.0.3

PR:		224351
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)

 

15:50 mat 

Convert Python ports to FLAVORS.

  Ports using USE_PYTHON=distutils are now flavored.  They will
  automatically get flavors (py27, py34, py35, py36) depending on what
  versions they support.

  There is also a USE_PYTHON=flavors for ports that do not use distutils
  but need FLAVORS to be set.  A USE_PYTHON=noflavors can be set if
  using distutils but flavors are not wanted.

  A new USE_PYTHON=optsuffix that will add PYTHON_PKGNAMESUFFIX has been
  added to cope with Python ports that did not have the Python
  PKGNAMEPREFIX but are flavored.

  USES=python now also exports a PY_FLAVOR variable that contains the
  current python flavor.  It can be used in dependency lines when the
  port itself is not python flavored.  For example, deskutils/calibre.

  By default, all the flavors are generated.  To only generate flavors
  for the versions in PYTHON2_DEFAULT and PYTHON3_DEFAULT, define
  BUILD_DEFAULT_PYTHON_FLAVORS in your make.conf.

  In all the ports with Python dependencies, the *_DEPENDS entries MUST
  end with the flavor so that the framework knows which to build/use.
  This is done by appending '@${PY_FLAVOR}' after the origin (or
  @${FLAVOR} if in a Python module with Python flavors, as the content
  will be the same).  For example:

    RUN_DEPENDS= ${PYTHON_PKGNAMEPREFIX}six>0:devel/py-six@${PY_FLAVOR}

PR:		223071
Reviewed by:	portmgr, python
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D12464

 

19:12 zeising 

Update to 4.0.1

This is a bugfix release.
See https://suricata-ids.org/2017/10/18/suricata-4-0-1-available/ for
complete changelog.

PR:		223322
Submitted by:	Franco Fichtner
Approved by:	Franco Fichtner (maintainer)

 

18:55 zeising 

Fix suricata failing to start if there is a stale pid file laying around.
This can happen if suricata is ungracefully shut down.

PR:		223052, 223322
Submitted by:	Reshad Patuck, Franco Fichtner
Approved by:	Franco Fichtner (maintainer)
MFH:		2017Q4

 

08:15 joneum 

- security/suricata: Update from 3.2.3 to 4.0.0
- Changelog: https://suricata-ids.org/2017/07/27/suricata-4-0-released/

PR:		221286
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by:	miwi (mentor)
Differential Revision:	https://reviews.freebsd.org/D11908

 

14:50 joneum 

- security/suricata: Update from 3.2.2 to 3.2.3
- Changelog: https://suricata-ids.org/2017/07/13/suricata-3-2-3-available/

PR:		220758
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by:	miwi (mentor)
Differential Revision:	https://reviews.freebsd.org/D11639

 

05:58 koobs 

security/suricata: Bump PORTREVISION

Actually bump PORTREVISION mentioned but not committed in ports r446052

PR:	220757

 

16:46 garga 

Add new REDIS option (off by default) to security/suricata

Approved by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Obtained from:	https://github.com/pfsense/FreeBSD-ports/pull/363
Sponsored by:	Rubicon Communications, LLC (Netgate)
Differential Revision:	https://reviews.freebsd.org/D11139

 

15:06 ultima 

* Updated to 3.2.2
* Depends on libhtp 0.5.24 or greater
* Listen on multiple PCAP interfaces via RC script
* Dependencies added in the 3.2.1 update move to the PRELUDE option where they
belong

 - Support additional runmodes for unix-socket
 - make install-full can have race conditions on OSX
 - af-packet: faulty VLAN handling in tpacket-v3 mode
 - bad checksum 0xffff
 - ippair: xbit unset memory leak
 - file store: file log / file store mismatch with multiple files
 - app-layer: fix memleak on bad traffic
 - http body handling: failed assertion
 - ippair: pair is direction sensitive
 - defrag - overlap issue in linux policy
 - unix socket: race condition on start up

PR:		220026
Submitted by:	Franco Fichtner <franco@opnsense.org> (maintainer)
Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D11251

 

13:33 mat 

Update to 3.2.1.

Pass maintainership to submitter.

PR:		217143
Submitted by:	Franco Fichtner
Approved by:	maintainer timeout
Sponsored by:	Absolight

 

15:21 mat 

Use USES=pathfix where applicable.

PR:		213195
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D8093

 

02:30 koobs 

security/suricata: Update to 3.1.2

- Update PORTVERSION and distinfo checksum (3.1.2)
- Update pkg-plist


  https://github.com/inliniac/suricata/blob/suricata-3.1.2/ChangeLog

PR:		212815
Submitted by:	Franco Fichtner <franco opnsense org>

 

12:10 jbeich 

devel/nspr, security/nss: drop version from SONAME

No other downstream appends synthetic library version, and doing so
causes underlinking due to fragile build system (see below). Not to
mention being unable to swap out bundled libs from upstream builds.

  $ cc -lplds4 -L/usr/local/lib
  /usr/lib/crt1.o: In function `_start1':
  crt1_c.c:(.text+0xa6): undefined reference to `main'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_set_name_np'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_create'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_condattr_init'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_setschedparam'
  /usr/local/lib/libplds4.so: undefined reference to `pthread_getschedparam'

PR:		213144
Exp-run by:	antoine

 

19:42 amdmi3 

Most commonly used build systems support silent builds, when they
hide actual commands executed and only show short summary line (like
"CC foo.c"). CMake and ninja enable this by default, some autotools
using ports do as well. This is unacceptable because we need complete
build logs at any time, so we now switch to verbose build logs
unconditionally. Note that this change deliberately affects ALL
builds and not only package builds on cluster, because we need to
be sure that user experiencing failure can always provide informative
build log regardless of settings and without rerunning the build.

Change summary:

- Always do verbose builds for cmake, ninja and GNU configure (the
  latter includes check if --disable-silent-rules is actually supported
  by the configure script; there are isolated cases when it's not true)
- Remove CMAKE_VERBOSE, NINJA_VERBOSE and
  CONFIGURE_ARGS=--disable-silent-rules from all ports which set them
  for this is no longer needed
- Revert hacks for --disable-silent-rules support priorly committed
  to biology/ncbi-blast+ and net-p2p/mldonkey - no longer needed as well

Submitted by:	amdmi3
Reviewed by:	mat
Exp-run by:	antoine
Approved by:	portmgr (mat, antoine)
Differential Revision:	D7534

 

08:51 koobs 

security/suricata: Fix libpcap LIB_DEPENDS

Fix the PORTS_PCAP option LIB_DEPENDS entry ambiguously depending on
net/libpcap, which should be libpcap.so.1 so as not to be satisfied
with the pcap library provided by base. [1]

While I'm here:

- Explicitly BUILD_DEPEND on libhtp >= 0.5.20, as configure breaks when
  that minimum version is not available.

PR:		211578
Reported by:	marino [1]

 

14:21 koobs 

security/suricata: Update to 3.1.1

* Update PORTVERSION and distinfo checksum (3.1.1) [1]
* Update pkg-plist for shared library bump [2]
* Use postunexec instead of unexec in pkg-plist
* Group common OPTIONS_* entries
* Group *_TARGET entries


  https://github.com/inliniac/suricata/blob/suricata-3.1.1/ChangeLog

PR:		210490 [1][2]
Submitted by:	Stewart Morgan <stewart.morgan gmail com> [1]
Submitted by:	Franco Fichtner <franco opnsense org> [2]

 

14:25 mat 

Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight

 

14:58 tijl 

- Update security/gnutls to 3.4.10.
- Rename the LIBDANE option DANE because that's the name of the protocol
  supported by libgnutls-dane and gnutls-cli.  Also clarify the option
  description.
- Add an IDN option.
- libgnutls-openssl has been removed in 3.4.  Some ports used this library
  in their LIB_DEPENDS but no port actually required it.
- Some old API functions have been removed.  Ports that used these have been
  updated or patched to use the new API.
- Add a patch to print/cups to prevent overlinking of libgnutls.so.
- Bump PORTREVISION on dependent ports.

net-im/jabber: This port used the old API to give users fine grained
control over which crypto algorithms were used via a configuration file.
It's not immediately obvious how to port this to the new API so the port
always uses the defaults now.

www/hydra: Mark BROKEN.  This uses more removed calls than the other ports,
is said to be alpha quality and not fully functional and has been abandoned
10 years ago.

PR:		207768
Exp-run by:	antoine
Approved by:	portmgr (antoine)

 

10:53 tijl 

Install net/libnet headers and libraries back in the location where other
ports expect it.  The files were put in a different location to avoid a
conflict with net/libnet10 but this port has been removed a while ago now.

PR:		208122
Exp-run by:	antoine
Approved by:	portmgr (antoine)

 

07:58 koobs 

security/suricata: Add netmap IPS mode to pkg-message

PR:		206875
Submitted by:	 Franco Fichtner <franco opnsense org>

 

16:33 koobs 

security/suricata: Update to 3.0

- Switch from DISTVERSION to PORTVERSION
- Update PORTVERION and distinfo checksum (3.0)

Changes:

  * http://suricata-ids.org/2016/01/27/suricata-3-0-available/
  * https://redmine.openinfosecfoundation.org/versions/80

PR:		206690
Submitted by:	Franco Fichtner <franco opnsense org>

 

13:31 koobs 

security/suricata: Update to 3.0 RC3

- Update DISTVERSION and distinfo checksum (3.0RC3)
- Pet portlint (makepatch: patch UTC time)

Merry Christmas All! HO HO HO

PR:		205306
Submitted by:	Franco Fichtner <franco opnsense org>

 

05:42 koobs 

security/suricata: Add rules files, netmap startup support

- Install missing rules files [1]
- Add netmap support and simplify pid file naming [2]

PR:		204838 [1], 204834 [2]
Submitted by:	Bill Meeks <bmeeks8 bellsouth net> [1]
Submitted by:	Franco Fichtner <franco opnsense org> [2]

 

11:25 koobs 

security/suricata: Update to 3.0 RC1

- Update to 3.0 release candidate 1 (Welcome Netmap support!)
- Update pkg-plist accordingly
- Add NETMAP option (Enabled by default for packages)
- Sort OPTIONS_* alphabetically
- Enable verbose builds
- Remove patches (upstreamed)
- Update test target

 

11:40 garga 

Remove mirrors.mit.edu from MASTER_SITES, no 2.x tarball available there

Approved by:	koobs (maintainer)
Sponsored by:	Rubicon Communications (Netgate)

 

11:56 koobs 

security/suricata: Update to 2.0.9

- Update PORTVERSION and distinfo checksum (2.0.9)

Changes:

  https://github.com/inliniac/suricata/blob/suricata-2.0.9/ChangeLog

While I'm here,

- Standardize the length of pkg-message separators and add spaces
  between them and the text body. <idea> It would be cool if the ports
  framework could wrap these pkg-message's in standard formatting for
  all ports automagically</idea>

Requested by:	Martin Olsson (via email)

 

08:25 koobs 

security/suricata: Disable -march=native

Suricata currently builds with GCC -march=native by default.

This can create problems if, for example, packages of this port are
built on ATOM servers but installed on AMD processors. In these and
other cases where the build host is not equal to the target host,
suricata can generate an Illegal instruction and refuse
to start.

It is ultimately preferable to explicitly cross-build and/or optimize
compilation for target architectures and processors. See: PEP20.

PR:		203296
Submitted by:	Olivier Cochard <olivier cochard me>
Tested by:	Olivier Cochard <olivier cochard me>
MFH:		2015Q3

 

14:35 danfe 

Remove BROKEN on Tier-2 systems statements which no longer true at least
on PowerPC (verified for all of them) and some also on SPARC (whenever I
was able to test those on flame.freebsd.org) and even IA64 (which should
be OK to remove anyways, because it was never really supported system in
ports land and was officially killed in -CURRENT a while ago.

 

00:17 koobs 

security/suricata: Add PPPoE support

Backport upstream Pull Request #1416 [1] adding support for
LINKTYPE_NULL.

[1] https://github.com/inliniac/suricata/pull/1416
[2] https://redmine.openinfosecfoundation.org/issues/1445

Submitted by: Bill Meeks <bmeeks8 bellsouth net> (via gnn)

 

10:49 koobs 

security/suricata: Update to 2.0.8

- Update to 2.0.8

This release fixes a bug in the DER parser which is used to
decode SSL/TLS certificates and could crash Suricata [1]

Security: CVE-2015-0971
Security: fe910ed6-f88d-11e4-9ae3-0050562a4d7b

MFH:		2015Q2
Security:	CVE-2015-0971
Security:	fe910ed6-f88d-11e4-9ae3-0050562a4d7b

 

16:05 antoine 

- Add JSON to OPTIONS_DEFAULT to match default configuration where eve-log
  support is enabled
- Package threshold.config configuration file

PR:		197937
Approved by:	koobs (maintainer)

 

19:12 amdmi3 

- Add CPE info

Approved by:	portmgr blanket

 

10:47 koobs 

devel/libhtp, security/suricata: Use iconv:translit

Use translit for USES=iconv, fixing a build error on specific (10-STABLE r???)
versions of FreeBSD that dont contain a libiconv implementation with certain
features [1] in base.

PR:		196720 [1]
Reported by:	<trond.endrestol ximalas info>

 

07:12 koobs 

security/suricata: Update to 2.0.6, add lots of OPTIONS

- Update to 2.0.6
- Update pkg-plist
- Add LICENSE_FILE
- Add OPTIONS for:

  * LUA scripting support
  * LUAjit scripting support
  * Suricata socket client

- Fix a reverse logic bug for JSON option
- Suricata links to nspr as a dependent of nss, add it to LIB_DEPENDS
- Create LOGS_DIR post-install
- Add patch to fix upstream issue 1353 [1]

[1] https://redmine.openinfosecfoundation.org/issues/1353

PR:		196801
Submitted by:	cheffo freebsd-bg org (with changes)

 

15:11 koobs 

security/suricata: Update to 2.0.5, Add NSS support

- Update to 2.0.5
- Add NSS option for file checksum and fingerprint support [1]
- Add default rules files [1]
- Add USES=autoreconf, remove USE_AUTOTOOLS and friends
- Override PATHFIX_MAKEFILEIN
- Use the install-strip target
- Fix HTP_PORT_CONFLICT_OFF typo (CONFLICT*S*)
- USES=iconv when using the bundled HTP version
- Cleanup and fix OPTION descriptions
- Sort OPTIONS and helpers
- Use the existing NO_HTP_PORT variable in pkg-plist (OPTIONS_SUB), remove
  MHTP_PORT conditional accordingly

PR:		194953 [1]
Submitted by:	Bill Meeks <bmeeks8 bellsouth net> [1]

 

15:57 garga 

- Update suricata to 2.0.4 [1]
- Added JSON knob - this allows Suricata to be compiled with JSON output support
- Added GEOIP knob - this allows Suricata to support rules with geoip word
- Added HTP_PORT knob - this make the use of www/libhtp-suricata optional. E.g.
  user can choose between build-in and port version.
- Unbreak PLIST renaming sample files from -sample to .sample

PR:		193220 [1]
Submitted by:	cheffo [1]
Approved by:	maintainer timeout (> 2 months)
Security:	CVE-2014-6603

 

12:08 koobs 

security/suricata: Update to 2.0.3, Modernize

Now that libprelude is safe from EXPIRE and has been staged [1], and
devel/libhtp
now *actually* links against libiconv even though autoconf detection was fine
[2] ... Have fun!

- Update to 2.0.3
- Switch libhtp to the upstream version port (devel/libhtp)
- Use USES=libtool
- Use OPTIONS helpers and other OPTIONS_* goodies
- Sort USE(S)* section
- Deprecate USE_AUTOTOOLS (USES instead)
- Deprecate AUTOMAKE_ARGS, ACLOCAL_ARGS (no longer necessary)
- Update COMMENT
- Add m4 macro for checking compiler flags and add relevent
  check to configure.ac. Our GCC doesn't like
  -Wno-error=unused-result and upstreams configure bits arent as
  portable as they could be.

[1] http://svnweb.freebsd.org/changeset/ports/365562
[2] http://svnweb.freebsd.org/changeset/ports/364955

Requested by:	many

 

14:58 koobs 

security/libprelude: Take MAINTAINER'ship, STAGE & Modernize

- Take Maintainership
- Enable STAGE support
- Tweak MASTER_SITES https -> http (portlint)
- Add LICENSE and LICENSE_FILE
- Deprecate USE_AUTOTOOLS for libtool (-> USES)
- Sort USES and OPTIONS
- Use OPTIONS helpers as much as possible for now [1]
- Add --enable-static to CONFIGURE_ARGS to retain the static lib
- Assign and Use ETCDIR rather than hardcoding
- Use the install-strip install target
- Update pkg-plist, use @sample and other goodies

While I'm here, bump dependent ports since our SHLIB major version has
changed

[1] https://reviews.freebsd.org/D665

Approved by: portmgr (implicit, bump unstaged port)

 

08:44 bapt 

Fix some non default LIB_DEPENDS

With hat:	portmgr

 

15:38 tijl 

- Convert net/libnet to USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip

Approved by:	portmgr (implicit, bump unstaged port)

 

11:58 koobs 

security/suricata: Remove unsupported DAG (Endace Capture) OPTION

This OPTION is non-functional as it requires hardware support and libdag from
Endace, which is not available in, nor recommended to be built via the ports
tree.

This OPTION also incorrectly added CONFIGURE_ARGS without adding any
LIB_DEPENDS, which broke configure: during build when the option was enabled.

Reported by:	mat (via pkg-fallout, via IRC)

 

03:09 koobs 

security/suricata: Update to 1.4.6, Switch to libhtp-suricata, Un-BROKEN Clang.

- Update to 1.4.6
- Switch to the correct library in www/libhtp-suricata
- Take maintainership
- Enable STAGE support
- Remove uneccessary patches
- Configure: Add libhtp include and library location
- Configure: Add /var to --localstatedir
- Configure: Disable Python support explicitly
- QA: Remove BROKEN with clang
- QA: Update to new LIB_DEPENDS format
- QA: Use ETCDIR instead of custom path for CONFIG_DIR and RULES_DIR
- QA: Replace hardcoded strings with ${PORTNAME}
- QA: Add documentation and %%DOCSDIR%% to pkg-plist
- QA: Add TESTS option to include unit tests in binary
- QA: Add regression-test target (TMPDIR is not prefix safe)
- QA: Replace USE_GMAKE with USES=gmake
- QA: Remove automake from USE_AUTOTOOLS
- QA: Remove LICENSE_FILE for those listed in bsd.licenses.db.mk
- QA: Remove post-patch target
- QA: Sort USE/USES and combine LIB_DEPENDS
- QA: Clarify and tweak OPTIONS descriptions

Reviewed by:	wxs, mva, Johannes Meixner
Approved by:	wxs (maintainer)

 

22:55 bapt 

Add NO_STAGE all over the place in preparation for the staging support (cat:
security)

 

23:16 wxs 

Take this port under my wing.

 

14:05 zi 

- Back to the pool

 

14:20 bapt 

Finish converting the whole ports tree to USES=pkgconfig

 

21:13 dinoex 

- update libnet to 1.1.6
- build shared lib
- fix dependend ports when libnet.so.8 was linked in
- fix dependend ports when includes where missing

 

23:52 pawel 

Bump ports affected by security/libprelude update

 

19:11 mm 

Update PCRE to 8.32
Introduces the UTF-32 library pcre32
Bump PORTREVISION in dependent ports

 

05:52 zi 

- Update to 1.3.4

Feature safe:	yes

 

19:10 zi 

- Update to 1.3.3

Feature safe:	yes

 

11:42 zi 

- Update to 1.3.2

 

02:17 zi 

- Update to 1.3.1

 

02:07 zi 

- Add in workaround for compatibility with libhtp >= 0.3
- Bump PORTREVISION

 

05:40 bapt 

new devel/pkgconf added to replace devel/pkg-config. new version of pkg-config
are no more self hosting so we are stuck with 0.25 version while pkgconf provide
the same set of features as 0.27 and a compatible frontend. A symlink to
pkg-config has been added for convenience and compatibility

This also introduces a new macro to use pkgconf in your ports:
USE_PKGCONFIG

it can take the following arguments:
 - yes (meaning build only dep)
 - build (meaning build only dep)
 - run (meaning run only dep)
 - both (meaning run and build dep)

From now USE_GNOME= pkgconfig is deprecated in favour of USE_PKGCONFIG
The old gnome macro has been modified to use pkgconf but still the sameway: run
and build dep to avoid large breakage.

While here fix some ports relying on pkg-config but not specifying it, fix some
ports broken because testing wrong .pc files, and fix ports using pkg-config
--version to determine pkg-config version instead of
pkg-config --modversion pkg-config like recommanded by pkg-config

With Hat:	portmgr
Exp-runs by:	bapt (pointhat-west), beat (pointyhat)

11:18 zi 

- Mark BROKEN when compiling with clang

02:36 zi 

- Update to 1.3
- Convert to OptionsNG

20:38 ade 

Update autoconf to 2.69 and automake to 1.12

PR:             166836
Tested by:      Multiple -exp runs (pav)

14:27 zi 

- Update mirror URL on my ports

Feature safe:   yes

12:04 zi 

- Do not overwrite files from devel/libhtp [1]
- Do not overwrite customized config files [1]
- Optionally depend on libpcap from ports (off by default) [1]
- Detect and use gcc hardening options by default
- Cleanup language/whitespace
- Bump PORTREVISION

PR:             ports/164237 [1]
Submitted by:   Geoffroy Desvernay <dgeo@centrale-marseille.fr> [1]
Feature safe:   yes

14:05 zi 

- Update to 1.2.1 [1]
- Reset maintainership due to multiple maintainer timeouts
- Take maintainership

PR:             ports/164471 [1]
Submitted by:   Nikolay Denev <ndenev@gmail.com> [1]

12:45 mm 

Bump pcre library dependency due to 8.30 update

19:34 wxs 

- Update to 1.1.1.
- Use libhtp from ports instead of the bundled one.
- Remove check for 6.x.

PR:             ports/163603
Submitted by:   wxs@
Approved by:    eksffa@freebsdbrasil.com.br (maintiner timeout)

21:14 zi 

Add DAG Support
Fix build when using custom LOCALBASE/PREFIX
Pacify portlint(1)

PR:             ports/158147
Submitted by:   rpsfa@rit.edu (me)
Approved by:    maintainer timeout, tabthorpe (mentor)

00:29 wxs 

- Update to 1.0.3.
- Add LICENSE.

PR:             ports/157860
Submitted by:   Ryan Steinmetz <rpsfa@rit.edu>
Approved by:    Patrick Tracanelli <eksffa@freebsdbrasil.com.br> (maintainer)

07:34 ade 

Sync to new bsd.autotools.mk

11:52 ade 

Punt autoconf267->autoconf268

09:31 linimon 

Mark as broken on sparc64 (and, by implication, the other tier-2 archs).

Hat:            portmgr

18:35 ade 

Autotools update.   Read ports/UPDATING 20100915 for details.

Approved by:    portmgr (for Mk/bsd.port.mk part)
Tested by:      Multiple -exp runs

11:41 pav 

- Mark BROKEN on 6.X: does not configure

PR:             ports/150393 (based on)
Submitted by:   Patrick Tracanelli <eksffa@freebsdbrasil.com.br> (maintainer)

15:31 jmelo 

The Suricata Engine is an Open Source Next Generation Intrusion Detection and
Prevention Engine developed by the Open Information Security Foundation (OISF).

This engine is not intended to just replace or emulate the existing tools in
the industry, but will bring new ideas and technologies to the field.

OISF is part of and funded by the Department of Homeland Security's Directorate
for Science and Technology HOST program (Homeland Open Security Technology),
by the the Navy's Space and Naval Warfare Systems Command (SPAWAR), as well as
through the very generous support of the members of the OISF Consortium.

More information about the Consortium is available, as well as a list of our
current Consortium Members.

The Suricata Engine and the HTP Library are available to use under the GPLv2.

The HTP Library is an HTTP normalizer and parser written by Ivan Ristic of
Mod Security fame for the OISF. This integrates and provides very advanced
processing of HTTP streams for Suricata. The HTP library is required by the
engine but may also be used independently in a range of applications and tools.

WWW: http://openinfosecfoundation.org

PR:             ports/150191
Submitted by:   Patrick Tracanelli <eksffa@freebsdbrasil.com.br>