| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Notes:
svn path=/head/; revision=372514
|
| |
|
|
|
|
|
| |
Approved by: portmgr blanket
Notes:
svn path=/head/; revision=360563
|
| |
|
|
| |
Notes:
svn path=/head/; revision=347597
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Use USE_GNOME= ltverhack to correct the library version number
to what the author intended. This effectively rolls the version
number backwards, but should prevent future unneccesary version
bumps.
- Support staging
- Use options helpers
- Use new LIB_DEPENDS syntax
- Bump PORTREVISION on dependent ports
Notes:
svn path=/head/; revision=331057
|
| |
|
|
|
|
|
| |
security)
Notes:
svn path=/head/; revision=327769
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
- Update to 2.5.1 [1]
- Add LICENSE (GPLv2) [1]
- Convert lib depends to new format
PR: ports/181642
Submitted by: Kozlov Sergey <kozlov.sergey.404 gmail.com>
Approved by: maintainer (timeout)
Notes:
svn path=/head/; revision=327144
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
- Package links to gpgme, make it LIB_DEPENDS also turn off
linking to it when GPGME=off
- Add empty line between description and WWW line,
remove extraneous whitespace on EOL in pkg-descr
PR: ports/174732 [1]
Submitted by: Sean Greven <sean.greven@gmail.com> (maintainer)
Notes:
svn path=/head/; revision=313158
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This new version includes a migration from Perl to C and support for
ipfw and pf.
While here, trim the Makefile headers.
PR: ports/171951
Submitted by: Sean Greven <sean.greven@gmail.com> (maintainer)
Feature safe: yes
Notes:
svn path=/head/; revision=307863
|
| |
|
|
| |
Notes:
svn path=/head/; revision=301519
|
| |
|
|
|
|
|
| |
Approved by: portmgr@ (bapt@)
Notes:
svn path=/head/; revision=300264
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
ports use BUILD_DEPENDS:= ${RUN_DEPENDS}. This patch fixes ports that are
currently broken. This is a temporary measure until we organically stop using
:= or someone(s) spend a lot of time changing all the ports over.
Explicit duplication > := > = and this just moves ports one step to the left
Approved by: portmgr
Notes:
svn path=/head/; revision=289563
|
| |
|
|
| |
Notes:
svn path=/head/; revision=276991
|
| |
|
|
|
|
|
|
| |
Requested by: kwm
Pointyhat to: glarkin
Notes:
svn path=/head/; revision=266393
|
| |
|
|
| |
Notes:
svn path=/head/; revision=214780
|
|
|
Single Packet Authorization (SPA).
fwknop stands for the "FireWall KNock OPerator", and
implements an authorization scheme called Single Packet
Authorization (SPA). This method of authorization is based
around a default-drop packet filter (fwknop supports both
iptables on Linux systems and ipfw on FreeBSD and Mac OS X
systems) and libpcap.
SPA requires only a single encrypted packet in order to
communicate various pieces of information including desired
access through an iptables policy and/or complete commands
to execute on the target system. By using iptables to
maintain a "default drop" stance, the main application of
this program is to protect services such as OpenSSH with
an additional layer of security in order to make the
exploitation of vulnerabilities (both 0-day and unpatched
code) much more difficult. With fwknop deployed, anyone
using nmap to look for sshd can't even tell that it is
listening; it makes no difference if they have a 0-day
exploit or not. The authorization server passively monitors
authorization packets via libcap and hence there is no
"server" to which to connect in the traditional sense.
Access to a protected service is only granted after a valid
encrypted and non-replayed packet is monitored from an
fwknop client (see the following network diagram; the SSH
session can only take place after the SPA packet is monitored):
PR: ports/118229
Submitted by: Sean Greven <sean.greven@gmail.com>
Notes:
svn path=/head/; revision=214737
|
