| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
| |
for new installations.
Submitted by: wollman
|
| |
|
|
|
|
|
| |
by USE_MIT_TARBALL. Users can still fetch manually from MIT by
setting USE_MIT_TARBALL=YES.
Suggested by: wollman
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- MITKRB5-SA-2003-005:
Buffer overrun and underrun in principal name handling
- MITKRB5-SA-2003-004:
Cryptographic weaknesses in Kerberos v4 protocol; KDC and realm
compromise possible.
- MITKRB5-SA-2003-003:
Faulty length checks in xdrmem_getbytes may allow kadmind DoS.
- Additional patches from RedHat.
Approved by: kris (wearing his portmgr hat)
Obtained from: MIT Website and Nalin Dahyabhai <nalin@redhat.com>
|
| |
|
|
|
|
|
| |
Requiem mors pacem pkg-comment,
And be calm ports tree.
E Nomini Patri, E Fili, E Spiritu Sancti.
|
| |
|
|
| |
Approved by: kris (implicitly)
|
| |
|
|
|
| |
Note: Since crypto-publish.org does not yet have krb5-1.2.7 up on their
website, fetch from their site has been temporarily disabled.
|
| |
|
|
|
|
|
|
| |
is better studied
o Turn PORTCOMMENT variable in Makefile back into pkg-comment files
Approved by: kris (portmgr hat),
portmgr, re (silence)
|
| | |
|
| |
|
|
| |
Submitted by: Craig Boston <craig@olyun.gank.org>
|
| |
|
|
| |
PR: 44446
|
| |
|
|
|
|
|
| |
KDC host).
Obtained from: Tom Yu <tlyu@mit.edu> on kerberos-announce mailing list,
MIT krb5 Security Advisory 2002-002
|
| |
|
|
|
|
|
| |
patch reimplements code to fetch MIT Kerberos from their site when
USA_RESIDENT=NO.
Approved by: kris
|
| |
|
|
|
| |
Note: Since crypto-publish.org does not yet have krb5-1.2.6 up on their
website, fetch from their site has been temporarily disabled.
|
| |
|
|
|
| |
Noticed by: nectar
Pointy hat to: cy
|
| |
|
|
|
| |
<URL:http://online.securityfocus.com/archive/1/285308>
<URL:http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20823>
|
| |
|
|
|
| |
PR: 39936
Submitted by: Matthew West <mwest@uct.ac.za>
|
| |
|
|
|
|
|
|
| |
ENOENT. Obtained from /cvs/krbdev/krb5/src/kdc/kdc_preauth.c,v rev 5.31
in MIT KRB5 tree (fix etype info; wrong termination condition used in
get_etype_info).
Obtained from: Sam Hartman <hartmans@mit.edu>
|
| | |
|
| |
|
|
|
|
|
| |
up on their website again, reimplementation of the Makefile patch that
fetched the the tarball from their site for users outside of the US
(originally in Makefile rev 1.29). USA_RESIDENT=YES still supports
manual fetching from web.mit.edu.
|
| | |
|
| |
|
|
| |
Reported by: bento
|
| |
|
|
|
|
|
|
|
|
| |
that contains the distribution itself, in a tar.gz file, and a signature
certificate, contained in a detached .tar.gz.asc file. Prior to this
patch, users installing MIT KRB5 had to extract the tarball into
/usr/ports/distfiles, then proceed with the installation. This caused
confusion among those installing the port. This patch addresses the
problem by extracting the .tar.gz file from the tarball, then unpacking
the .tar.gz file before continuing with the build.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
now makes use of login.conf and login.access. This is performed by
using FreeBSD login(1) instead of MIT KRB5 login.krb5(8).
The MIT KRB5 login.krb5(8) can still be used by specifying "-L" in
the klogind and telnetd arguments in inetd.conf. This is documented
in a new file called README.FreeBSD.
Reviewed by: nectar
|
| |
|
|
|
|
|
|
|
|
| |
<msa@dinosauricon.com> provided the original patches.
= For users outside of the US, point to www.crypto-publish.org for the
distfiles. It was Chris Knight <chris@aims.com.au>'s idea.
Submitted by: Cy.Schubert@uumail.gov.bc.ca (MAINTAINER)
PR: ports/29865
|
| | |
|
| |
|
|
| |
Submitted by: Cy Schubert <Cy.Schubert@uumail.gov.bc.ca>
|
| |
|
|
| |
Update telnetd vulnerability fixes from FreeBSD.
|
| |
|
|
| |
Submitted by: Cy Schubert <Cy.Schubert@uumail.gov.bc.ca>
|
| |
|
|
| |
Submitted by: Cy Schubert <Cy.Schubert@uumail.gov.bc.ca>
|
| | |
|
| |
|
|
|
|
|
|
| |
``Buffer overflows exist in the FTP daemon included with MIT krb5.''
See <URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf.txt> and
<URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf_122_patch.txt>.
Obtained from: MIT Kerberos mailing list
|
| |
|
|
|
|
|
|
| |
``Buffer overflows exist in the FTP daemon included with MIT krb5.''
See <URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf.txt> and
<URL:http://web.mit.edu/kerberos/www/advisories/ftpbuf_122_patch.txt>.
Obtained from: MIT Kerberos mailing list
|
| | |
|
| |
|
|
| |
Reminded by: kris
|
| |
|
|
|
|
|
|
| |
from <paths.h> (if available) like login.krb5 does. As a result,
on FreeBSD 4.2 these two programs end up using different paths
for the nologin file (which is /var/run/nologin on FreeBSD).
Submitted by: <djm@test.pubnix.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
The MIT Kerberos Team announces the availibility of MIT Kerberos 5
Release 1.2.1. This is primarily a bugfix release. Changes include:
* A bug in the gssapi library that prevented kadmin clients from
working has been fixed. For some reason this was not caught during
beta testing.
* login.c now correctly sets the default ccache name.
* A memory leak in conv_princ.c has been fixed.
|
| |
|
|
| |
1.2-beta4.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
previous commit message to bsd.port.mk, which said INSTALL_SHLIBS. Boo.)
Line up the rhs of variable assignments nicely. Remove a couple of extra
whitespaces while I'm here.
Suggested by: sobomax
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
TGT).
Obtained from: MIT Kerberos GNATS PR krb5-appl/762, 763
|
| | |
|
| |
|
|
|
| |
Prompted by PR: 13476, 13477
Submitted by: KATO Tsuguru
|
| | |
|
| |
|
|
|
|
| |
mv -> ${MV}
rm -> ${RM}
tr -> ${TR}
|
