| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
Submitted by: mi
Notes:
svn path=/head/; revision=456313
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
After testing every pecl-* port with PHP 5.6, 7.0, 7.1 and 7.2
i set the IGNORE_WITH_PHP accordingly to the fallout.
PR: 222165
Reported by: brnd
Approved by: portmgr (blanket)
Differential Revision: https://reviews.freebsd.org/D13476
Notes:
svn path=/head/; revision=456296
|
|
|
|
|
|
|
| |
Security: https://vuxml.FreeBSD.org/freebsd/e72a8864-e0bc-11e7-b627-d43d7e971a1b.html
Notes:
svn path=/head/; revision=456287
|
|
|
|
|
|
|
|
| |
Requested by: Roger Marquis
Hat: FreeBSD Security Team
Notes:
svn path=/head/; revision=456278
|
|
|
|
|
|
|
| |
Changes: http://search.cpan.org/dist/POE-Filter-SSL/Changes
Notes:
svn path=/head/; revision=456251
|
|
|
|
|
|
|
| |
- Fix typo
Notes:
svn path=/head/; revision=456232
|
|
|
|
| |
Notes:
svn path=/head/; revision=456231
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Here are some key features of Snort 3:
Support multiple packet processing threads
Use a shared configuration and attribute table
Use a simple, scriptable configuration
Make key components pluggable
Autodetect services for portless configuration
Support sticky buffers in rules
Autogenerate reference documentation
Provide better cross platform support
Facilitate component testing
Additional features on the roadmap include:
Use a shared network map
Support pipelining of packet processing
Support hardware offload and data plane integration
Support proxy mode
Windows support
WWW: http://www.snort.org/
Notes:
svn path=/head/; revision=456230
|
|
|
|
| |
Notes:
svn path=/head/; revision=456221
|
|
|
|
| |
Notes:
svn path=/head/; revision=456209
|
|
|
|
|
|
|
| |
Changelog: https://github.com/nextcloud/twofactor_totp/releases/tag/1.4.0
Notes:
svn path=/head/; revision=456204
|
|
|
|
|
|
|
|
| |
PR: 224179
Reported by: jbeich@FreeBSD.org
Notes:
svn path=/head/; revision=456169
|
|
|
|
|
|
|
|
| |
PR: 224267
Submitted by: Dani <i.dani@outlook.com>
Notes:
svn path=/head/; revision=456166
|
|
|
|
|
|
|
| |
- Add some explicit FLAVOR to dependencies where needed
Notes:
svn path=/head/; revision=456126
|
|
|
|
|
|
|
|
|
|
|
|
| |
Also add pkg-config file
PR: 224190 222344
Submitted by: Christopher Hall (maintainer)
Reported by: xxjack12xx@gmail.com
Approved by: maintainer
Notes:
svn path=/head/; revision=456119
|
|
|
|
| |
Notes:
svn path=/head/; revision=456105
|
|
|
|
|
|
|
|
|
| |
- Bump PORTREVISION for shlib change
Changes: https://github.com/google/protobuf/releases
Notes:
svn path=/head/; revision=456058
|
|
|
|
| |
Notes:
svn path=/head/; revision=456043
|
|
|
|
|
|
|
| |
Security: 301a01b7-d50e-11e7-ac58-b499baebfeaf
Notes:
svn path=/head/; revision=456041
|
|
|
|
| |
Notes:
svn path=/head/; revision=456036
|
|
|
|
|
|
|
| |
Changes: http://search.cpan.org/dist/Digest-SHA3/Changes
Notes:
svn path=/head/; revision=455982
|
|
|
|
|
|
|
|
| |
PR: 224155
Submitted by: Shawn Webb <shawn.webb@hardenedbsd.org> (maintainer) (inspired by)
Notes:
svn path=/head/; revision=455925
|
|
|
|
|
|
|
| |
Approved by: portmgr (tier-2 blanket)
Notes:
svn path=/head/; revision=455924
|
|
|
|
|
|
|
| |
- Add some explicit FLAVOR to dependencies where needed
Notes:
svn path=/head/; revision=455913
|
|
|
|
|
|
|
|
|
| |
including references to security advisories.
It uses pkg audit and Vuxml database as is used for packages but this script
checks base system.
Notes:
svn path=/head/; revision=455902
|
|
|
|
| |
Notes:
svn path=/head/; revision=455901
|
|
|
|
| |
Notes:
svn path=/head/; revision=455890
|
|
|
|
|
|
|
|
|
| |
- add explicit FLAVOR to dependencies (useful when using
DEFAULT_VERSIONS=python=3.x)
- fix shebang
Notes:
svn path=/head/; revision=455856
|
|
|
|
| |
Notes:
svn path=/head/; revision=455850
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
rulesets
for U2F devices
- Drop pkg-message.in because u2f-devd port provides it
- Bump PORTREVISION
libu2f-host installs /usr/local/etc/devd/u2f.conf.sample, but it only works
on /dev/usb/*, doesn't touch /dev/uhid*.
One of the requirements is that /dev/uhid* files should be readable/writable
to the user who runs chromium.
Notes:
svn path=/head/; revision=455848
|
|
|
|
|
|
|
|
|
|
|
| |
Automatic device permission handling for Universal 2nd Factor (U2F) USB
authentication tokens.
PR: 224199
Submitted by: Greg V <greg@unrelenting.technology>
Notes:
svn path=/head/; revision=455847
|
|
|
|
| |
Notes:
svn path=/head/; revision=455825
|
|
|
|
| |
Notes:
svn path=/head/; revision=455822
|
|
|
|
|
|
|
|
| |
PR: 223777
Submitted by: romain
Notes:
svn path=/head/; revision=455799
|
|
|
|
|
|
|
|
|
|
| |
switch to DISTVERSION
Approved by: tcberner (mentor)
Differential Revision: https://reviews.freebsd.org/D13399
Notes:
svn path=/head/; revision=455798
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Common:
- Update PORTVERSION and distinfo checksum (0.20.0)
- Regenerate patch
Changelog: https://github.com/certbot/certbot/blob/master/CHANGELOG.md#0200---2017-12-06
Reviewed by: koobs (maintainer)
Approved by: koobs (maintainer, py-certbot)
Differential Revision: https://reviews.freebsd.org/D13410
Notes:
svn path=/head/; revision=455779
|
|
|
|
| |
Notes:
svn path=/head/; revision=455750
|
|
|
|
|
|
|
|
|
|
|
| |
- Remove patch now included upstream
- Include post-release patch for clang build error
MFH: 2017Q4
Security: 3bb451fc-db64-11e7-ac58-b499baebfeaf
Notes:
svn path=/head/; revision=455706
|
|
|
|
| |
Notes:
svn path=/head/; revision=455705
|
|
|
|
| |
Notes:
svn path=/head/; revision=455673
|
|
|
|
| |
Notes:
svn path=/head/; revision=455672
|
|
|
|
| |
Notes:
svn path=/head/; revision=455671
|
|
|
|
| |
Notes:
svn path=/head/; revision=455670
|
|
|
|
| |
Notes:
svn path=/head/; revision=455669
|
|
|
|
|
|
|
|
|
| |
Hitch properly handles SIGHUP
MFH: 2017Q4
Notes:
svn path=/head/; revision=455660
|
|
|
|
|
|
|
| |
Reported by: Boris Samorodov <bsam@passap.ru>
Notes:
svn path=/head/; revision=455653
|
|
|
|
|
|
|
| |
Reported by: adamw
Notes:
svn path=/head/; revision=455649
|
|
|
|
|
|
|
| |
release of 1.16 (+ grace period to end of month).
Notes:
svn path=/head/; revision=455635
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
KRB5 1.16 releases.
Major changes in 1.16 (2017-12-05)
==================================
Administrator experience:
* The KDC can match PKINIT client certificates against the
"pkinit_cert_match" string attribute on the client principal entry,
using the same syntax as the existing "pkinit_cert_match" profile
option.
* The ktutil addent command supports the "-k 0" option to ignore the
key version, and the "-s" option to use a non-default salt string.
* kpropd supports a --pid-file option to write a pid file at startup,
when it is run in standalone mode.
* The "encrypted_challenge_indicator" realm option can be used to
attach an authentication indicator to tickets obtained using FAST
encrypted challenge pre-authentication.
* Localization support can be disabled at build time with the
--disable-nls configure option.
Developer experience:
* The kdcpolicy pluggable interface allows modules control whether
tickets are issued by the KDC.
* The kadm5_auth pluggable interface allows modules to control whether
kadmind grants access to a kadmin request.
* The certauth pluggable interface allows modules to control which
PKINIT client certificates can authenticate to which client
principals.
* KDB modules can use the client and KDC interface IP addresses to
determine whether to allow an AS request.
* GSS applications can query the bit strength of a krb5 GSS context
using the GSS_C_SEC_CONTEXT_SASL_SSF OID with
gss_inquire_sec_context_by_oid().
* GSS applications can query the impersonator name of a krb5 GSS
credential using the GSS_KRB5_GET_CRED_IMPERSONATOR OID with
gss_inquire_cred_by_oid().
* kdcpreauth modules can query the KDC for the canonicalized requested
client principal name, or match a principal name against the
requested client principal name with canonicalization.
Protocol evolution:
* The client library will continue to try pre-authentication
mechanisms after most failure conditions.
* The KDC will issue trivially renewable tickets (where the renewable
lifetime is equal to or less than the ticket lifetime) if requested
by the client, to be friendlier to scripts.
* The client library will use a random nonce for TGS requests instead
of the current system time.
* For the RC4 string-to-key or PAC operations, UTF-16 is supported
(previously only UCS-2 was supported).
* When matching PKINIT client certificates, UPN SANs will be matched
correctly as UPNs, with canonicalization.
User experience:
* Dates after the year 2038 are accepted (provided that the platform
time facilities support them), through the year 2106.
* Automatic credential cache selection based on the client realm will
take into account the fallback realm and the service hostname.
* Referral and alternate cross-realm TGTs will not be cached, avoiding
some scenarios where they can be added to the credential cache
multiple times.
* A German translation has been added.
Notes:
svn path=/head/; revision=455634
|
|
|
|
| |
Notes:
svn path=/head/; revision=455631
|