TCP/IP daemon wrapper package

5 files changed, 198 insertions, 0 deletions

diff --git a/security/tcp_wrapper/Makefile b/security/tcp_wrapper/Makefile
new file mode 100644
index 000000000000..741d1e28e544
--- /dev/null
+++ b/security/tcp_wrapper/Makefile
@@ -0,0 +1,23 @@
+# New ports collection makefile for:	tcp_wrapper
+# Version required:	6.3
+# Date created:		27 Oct 1994
+# Whom:			torstenb
+#
+# $Id$
+#
+
+DISTNAME=	tcp_wrappers_6.3
+MASTER_SITES=	ftp://ftp.win.tue.nl/pub/security/
+EXTRACT_CMD=	${.CURDIR}/scripts/extract.sh
+EXTRACT_ARGS=	${WRKSRC}
+EXTRACT_SUFX=	.shar.Z
+
+pre-install:
+	@mkdir -p ${PREFIX}/sbin
+	@mkdir -p ${PREFIX}/lib
+	@mkdir -p ${PREFIX}/etc
+	@mkdir -p ${PREFIX}/man/man3
+	@mkdir -p ${PREFIX}/man/man5
+	@mkdir -p ${PREFIX}/man/man8
+
+.include <bsd.port.mk>
diff --git a/security/tcp_wrapper/files/patch-aa b/security/tcp_wrapper/files/patch-aa
new file mode 100644
index 000000000000..e0e25145ad61
--- /dev/null
+++ b/security/tcp_wrapper/files/patch-aa
@@ -0,0 +1,149 @@
+*** Makefile.orig	Mon Oct 31 14:50:32 1994
+--- Makefile	Mon Oct 31 14:57:06 1994
+***************
+*** 1,5 ****
+--- 1,7 ----
+  # @(#) Makefile 1.12 94/03/23 16:51:32
+  
++ default: freebsd
++ 
+  what:
+  	@echo
+  	@echo "Usage: edit the REAL_DAEMON_DIR definition in the Makefile then:"
+***************
+*** 46,52 ****
+  #REAL_DAEMON_DIR=/usr/sbin
+  #
+  # BSD 4.4
+! #REAL_DAEMON_DIR=/usr/libexec
+  #
+  # HP-UX SCO
+  #REAL_DAEMON_DIR=/etc
+--- 48,54 ----
+  #REAL_DAEMON_DIR=/usr/sbin
+  #
+  # BSD 4.4
+! REAL_DAEMON_DIR=/usr/libexec
+  #
+  # HP-UX SCO
+  #REAL_DAEMON_DIR=/etc
+***************
+*** 120,126 ****
+  # Free bsd and linux by default have no NIS.
+  386bsd netbsd freebsd:
+  	@make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \
+! 	LIBS= RANLIB=ranlib ARFLAGS=rv AUX_OBJ= NETGROUP= TLI= all
+  
+  linux:
+  	@make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \
+--- 122,129 ----
+  # Free bsd and linux by default have no NIS.
+  386bsd netbsd freebsd:
+  	@make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \
+! 	LIBS= RANLIB=ranlib ARFLAGS=rv AUX_OBJ= NETGROUP= TLI= \
+! 	EXTRA_CFLAGS="-D_HAVE_PARAM_H" all
+  
+  linux:
+  	@make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \
+***************
+*** 318,324 ****
+  # instead of a long integer. Compile with -DINET_ADDR_BUG to work around
+  # this mutant behavour.
+  
+! BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS
+  #BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS -DINET_ADDR_BUG
+  
+  ##########################################################################
+--- 321,327 ----
+  # instead of a long integer. Compile with -DINET_ADDR_BUG to work around
+  # this mutant behavour.
+  
+! #BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS
+  #BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS -DINET_ADDR_BUG
+  
+  ##########################################################################
+***************
+*** 345,351 ****
+  # module, which also gives hints on how to add your own extensions.
+  # Uncomment the next definition to turn on the language extensions.
+  # 
+! #STYLE	= -DPROCESS_OPTIONS	# Enable language extensions.
+  
+  ################################################################
+  # Optional: Changing the default disposition of logfile records
+--- 348,354 ----
+  # module, which also gives hints on how to add your own extensions.
+  # Uncomment the next definition to turn on the language extensions.
+  # 
+! STYLE	= -DPROCESS_OPTIONS	# Enable language extensions.
+  
+  ################################################################
+  # Optional: Changing the default disposition of logfile records
+***************
+*** 368,374 ****
+  #
+  # The LOG_XXX names below are taken from the /usr/include/syslog.h file.
+  
+! FACILITY= LOG_MAIL	# LOG_MAIL is what most sendmail daemons use
+  
+  # The syslog priority at which successful connections are logged.
+  
+--- 371,377 ----
+  #
+  # The LOG_XXX names below are taken from the /usr/include/syslog.h file.
+  
+! FACILITY= LOG_AUTH	# LOG_MAIL is what most sendmail daemons use
+  
+  # The syslog priority at which successful connections are logged.
+  
+***************
+*** 445,451 ****
+  # look for access control information. Watch out for the quotes and
+  # backslashes when you make changes.
+  
+! TABLES	= -DHOSTS_DENY=\"/etc/hosts.deny\" -DHOSTS_ALLOW=\"/etc/hosts.allow\"
+  
+  ###########################################
+  # Optional: Turning off host NAME checking
+--- 448,454 ----
+  # look for access control information. Watch out for the quotes and
+  # backslashes when you make changes.
+  
+! TABLES	= -DHOSTS_DENY=\"${PREFIX}/etc/hosts.deny\" -DHOSTS_ALLOW=\"${PREFIX}/etc/hosts.allow\"
+  
+  ###########################################
+  # Optional: Turning off host NAME checking
+***************
+*** 463,469 ****
+  # daemon wrappers will use only the host address, but your daemons may
+  # still use the host name.
+  
+! PARANOID= -DPARANOID
+  
+  #############################################
+  # Optional: Turning on host ADDRESS checking
+--- 466,472 ----
+  # daemon wrappers will use only the host address, but your daemons may
+  # still use the host name.
+  
+! #PARANOID= -DPARANOID
+  
+  #############################################
+  # Optional: Turning on host ADDRESS checking
+***************
+*** 522,527 ****
+--- 525,538 ----
+  LIB	= libwrap.a
+  
+  all other: config-check tcpd try try-from safe_finger
++ 
++ install:
++ 	install -c libwrap.a ${PREFIX}/lib/libwrap.a
++ 	install -c tcpd ${PREFIX}/sbin/tcpd
++ 	install -c hosts_access.3 ${PREFIX}/man/man3/hosts_access.3
++ 	install -c hosts_access.5 ${PREFIX}/man/man5/hosts_access.5
++ 	install -c hosts_options.5 ${PREFIX}/man/man5/hosts_options.5
++ 	install -c tcpd.8 ${PREFIX}/man/man8/tcpd.8
+  
+  config-check:
+  	@set +e; test -n "$(REAL_DAEMON_DIR)" || { make; exit 1; }
diff --git a/security/tcp_wrapper/pkg-comment b/security/tcp_wrapper/pkg-comment
new file mode 100644
index 000000000000..ff7ae397dbb1
--- /dev/null
+++ b/security/tcp_wrapper/pkg-comment
@@ -0,0 +1 @@
+tcp-wrapper, TCP/IP daemon wrapper package, version 6.3
diff --git a/security/tcp_wrapper/pkg-descr b/security/tcp_wrapper/pkg-descr
new file mode 100644
index 000000000000..7afb891c523d
--- /dev/null
+++ b/security/tcp_wrapper/pkg-descr
@@ -0,0 +1,18 @@
+This is the 6.3 version of the TCP/IP daemon wrapper package.
+
+With this package you can monitor and filter incoming requests for the
+SYSTAT, FINGER, FTP, TELNET, RLOGIN, RSH, EXEC, TFTP, TALK, and other
+network services.
+
+The package provides tiny daemon wrapper programs that can be installed
+without any changes to existing software or to existing configuration
+files.  The wrappers report the name of the remote host and of the
+requested service; the wrappers do not exchange information with the
+remote client process, and impose no overhead on the actual
+communication between the client and server applications.
+
+Optional features are: access control to restrict what systems can
+connect to your network daemons; remote user name lookups with the RFC
+931 protocol; additional protection against hosts that pretend to have
+someone elses host name; additional protection against hosts that
+pretend to have someone elses host address.
diff --git a/security/tcp_wrapper/pkg-plist b/security/tcp_wrapper/pkg-plist
new file mode 100644
index 000000000000..376a4b39ade4
--- /dev/null
+++ b/security/tcp_wrapper/pkg-plist
@@ -0,0 +1,7 @@
+@cwd /usr/local
+sbin/tcpd
+lib/libwrap.a
+man/man3/hosts_access.3
+man/man5/hosts_access.5
+man/man5/hosts_options.5
+man/man8/tcpd.8