diff options
Diffstat (limited to 'security')
212 files changed, 0 insertions, 7466 deletions
diff --git a/security/calife-devel/Makefile b/security/calife-devel/Makefile deleted file mode 100644 index a8902e79443e..000000000000 --- a/security/calife-devel/Makefile +++ /dev/null @@ -1,21 +0,0 @@ -# New ports collection makefile for: calife -# Date created: 13 Jun 2000 -# Whom: Thomas Quinot <thomas@cuivre.fr.eu.org> -# -# $FreeBSD$ -# - -PORTNAME= calife -PORTVERSION= 2.8.4d -CATEGORIES= security -MASTER_SITES= ftp://postfix.eu.org/pub/calife/ - -MAINTAINER= thomas@FreeBSD.org - -GNU_CONFIGURE= yes -CONFIGURE_ARGS= "--with-etcdir=$(PREFIX)/etc" - -MAN1= calife.1 -MAN5= calife.auth.5 - -.include <bsd.port.mk> diff --git a/security/calife-devel/distinfo b/security/calife-devel/distinfo deleted file mode 100644 index df991bbea87e..000000000000 --- a/security/calife-devel/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (calife-2.8.4d.tar.gz) = 02d05f4f0ab6c7974f246f90c4e94182 diff --git a/security/calife-devel/pkg-comment b/security/calife-devel/pkg-comment deleted file mode 100644 index e77274450e6f..000000000000 --- a/security/calife-devel/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -A lightweight alternative to sudo diff --git a/security/calife-devel/pkg-descr b/security/calife-devel/pkg-descr deleted file mode 100644 index 923a2f444531..000000000000 --- a/security/calife-devel/pkg-descr +++ /dev/null @@ -1,9 +0,0 @@ -Calife is a lightweight replacement to Sudo: it allows -users listed in a particular file, $(PREFIX)/etc/calife.auth, -to endorse the identity of any other user after entering their -own password. - -WWW: http://mutt.frmug.org/calife/ - --- -Thomas Quinot -- <thomas@cuivre.fr.eu.org> diff --git a/security/calife-devel/pkg-plist b/security/calife-devel/pkg-plist deleted file mode 100644 index a81fa6a224ab..000000000000 --- a/security/calife-devel/pkg-plist +++ /dev/null @@ -1,2 +0,0 @@ -bin/calife -etc/calife.auth-dist diff --git a/security/fwbuilder-devel/Makefile b/security/fwbuilder-devel/Makefile deleted file mode 100644 index 8c5680b89bb3..000000000000 --- a/security/fwbuilder-devel/Makefile +++ /dev/null @@ -1,35 +0,0 @@ -# New ports collection makefile for: fwbuilder -# Date Created: 3 Feb 2001 -# Whom: Roman Shterenzon <roman@xpert.com> -# -# $FreeBSD$ -# - -PORTNAME= fwbuilder -PORTVERSION= 0.8.7 -PORTREVISION= 1 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} -MASTER_SITE_SUBDIR= ${PORTNAME} - -MAINTAINER= ports@FreeBSD.org - -LIB_DEPENDS= gtkmm.2:${PORTSDIR}/x11-toolkits/gtk-- - -USE_GMAKE= yes -USE_X_PREFIX= yes -USE_LIBTOOL= yes -USE_GNOMELIBS= yes -WITHOUT_ESOUND= yes -CONFIGURE_ARGS+= --with-iconsdir=${X11BASE}/share/gnome/fwbuilder/pixmaps/ --with-templatedir=${X11BASE}/share/gnome/fwbuilder - -post-extract: - @${PERL} -pi -e "s/lc_r/pthread/" ${WRKSRC}/configure ;\ - ${PERL} -pi -e "s|/usr/bin|${LOCALBASE}/bin|" ${WRKSRC}/etc/fwbuilder_prefs.xml.in -.for i in compiler-framework/Makefile.in gui/gnome-wrappers/Makefile.in \ - gui/Makefile.in ipchains/Makefile.in ipfilter/Makefile.in \ - iptables/Makefile.in - @${PERL} -pi -e "s|^CFLAGS\s+=\s+-Wall\s+-g|CFLAGS = \@CFLAGS@ -Wall|" ${WRKSRC}/src/$i -.endfor - -.include <bsd.port.mk> diff --git a/security/fwbuilder-devel/distinfo b/security/fwbuilder-devel/distinfo deleted file mode 100644 index 7e90b4806cb2..000000000000 --- a/security/fwbuilder-devel/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (fwbuilder-0.8.7.tar.gz) = 3fb13778a5b998bf31b789d410587221 diff --git a/security/fwbuilder-devel/files/patch-aa b/security/fwbuilder-devel/files/patch-aa deleted file mode 100644 index 8416f7694d3f..000000000000 --- a/security/fwbuilder-devel/files/patch-aa +++ /dev/null @@ -1,23 +0,0 @@ ---- src/compiler-framework/Makefile.in.orig Sat Feb 3 23:11:36 2001 -+++ src/compiler-framework/Makefile.in Sat Feb 3 23:11:57 2001 -@@ -11,7 +11,7 @@ - - CC= @CC@ - INSTALL = @INSTALL@ --INSTALL_PROGRAM=@INSTALL_PROGRAM@ -+INSTALL_DATA=@INSTALL_DATA@ - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - - XML_CFLAGS = @XML_CFLAGS@ -@@ -45,9 +45,9 @@ - - install: $(FWLIB) $(HEADERS) - $(mkinstalldirs) $(libdir) -- $(INSTALL_PROGRAM) $(FWLIB) $(libdir) -+ $(INSTALL_DATA) $(FWLIB) $(libdir) - $(mkinstalldirs) $(includedir) -- $(INSTALL_PROGRAM) $(HEADERS) $(includedir) -+ $(INSTALL_DATA) $(HEADERS) $(includedir) - - - uninstall: diff --git a/security/fwbuilder-devel/files/patch-ab b/security/fwbuilder-devel/files/patch-ab deleted file mode 100644 index baadcf884946..000000000000 --- a/security/fwbuilder-devel/files/patch-ab +++ /dev/null @@ -1,20 +0,0 @@ ---- examples/Makefile.in.orig Sat Feb 3 23:01:10 2001 -+++ examples/Makefile.in Sat Feb 3 23:01:36 2001 -@@ -13,7 +13,7 @@ - examplesdir = $(docdir) - - INSTALL = @INSTALL@ --INSTALL_PROGRAM=@INSTALL_PROGRAM@ -+INSTALL_DATA=@INSTALL_DATA@ - - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - -@@ -24,7 +24,7 @@ - - install: - $(mkinstalldirs) $(examplesdir) -- $(INSTALL_PROGRAM) -m 0644 $(EXAMPLES) $(examplesdir) -+ $(INSTALL_DATA) $(EXAMPLES) $(examplesdir) - - uninstall: - list='$(EXAMPLES)'; for file in $$list; do \ diff --git a/security/fwbuilder-devel/files/patch-ac b/security/fwbuilder-devel/files/patch-ac deleted file mode 100644 index 91181f8d26e1..000000000000 --- a/security/fwbuilder-devel/files/patch-ac +++ /dev/null @@ -1,20 +0,0 @@ ---- doc/Makefile.in.orig Sat Feb 3 23:04:02 2001 -+++ doc/Makefile.in Sat Feb 3 23:03:24 2001 -@@ -12,7 +12,7 @@ - docdir = @DOCDIR@/fwbuilder - - INSTALL = @INSTALL@ --INSTALL_PROGRAM=@INSTALL_PROGRAM@ -+INSTALL_DATA=@INSTALL_DATA@ - - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - -@@ -33,7 +33,7 @@ - - install: - $(mkinstalldirs) $(docdir) -- $(INSTALL_PROGRAM) -m 0644 $(DOCS) $(docdir) -+ $(INSTALL_DATA) $(DOCS) $(docdir) - - uninstall: - list='$(DOCS)'; for file in $$list; do \ diff --git a/security/fwbuilder-devel/files/patch-ad b/security/fwbuilder-devel/files/patch-ad deleted file mode 100644 index 4fefde3c0957..000000000000 --- a/security/fwbuilder-devel/files/patch-ad +++ /dev/null @@ -1,24 +0,0 @@ ---- etc/Makefile.in.orig Sat Feb 3 23:10:14 2001 -+++ etc/Makefile.in Sat Feb 3 23:10:40 2001 -@@ -11,7 +11,7 @@ - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - - INSTALL = @INSTALL@ --INSTALL_PROGRAM = @INSTALL_PROGRAM@ -+INSTALL_DATA = @INSTALL_DATA@ - - all: fwbuilder_prefs.xml - -@@ -27,9 +27,9 @@ - - install: objects_init.xml fwbuilder_prefs.xml - $(mkinstalldirs) $(datadir) -- $(INSTALL_PROGRAM) objects_init.xml $(datadir) -- $(INSTALL_PROGRAM) fwbuilder_prefs.xml $(datadir) -- $(INSTALL_PROGRAM) fwbuilder.dtd $(datadir) -+ $(INSTALL_DATA) objects_init.xml $(datadir) -+ $(INSTALL_DATA) fwbuilder_prefs.xml $(datadir) -+ $(INSTALL_DATA) fwbuilder.dtd $(datadir) - - uninstall: - rm -f $(datadir)/objects_init.xml diff --git a/security/fwbuilder-devel/files/patch-ae b/security/fwbuilder-devel/files/patch-ae deleted file mode 100644 index 990955c205ca..000000000000 --- a/security/fwbuilder-devel/files/patch-ae +++ /dev/null @@ -1,11 +0,0 @@ ---- src/gui/Makefile.in.orig Wed Mar 21 01:56:07 2001 -+++ src/gui/Makefile.in Wed Mar 21 01:58:19 2001 -@@ -9,7 +9,7 @@ - exec_prefix = @exec_prefix@ - bindir = @bindir@ - sbindir = @sbindir@ --iconsdir = $(prefix)/share/pixmaps/fwbuilder -+iconsdir = @datadir@/fwbuilder/pixmaps - - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - diff --git a/security/fwbuilder-devel/pkg-comment b/security/fwbuilder-devel/pkg-comment deleted file mode 100644 index 59a15672ff03..000000000000 --- a/security/fwbuilder-devel/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Firewall Builder GUI for IPFilter diff --git a/security/fwbuilder-devel/pkg-descr b/security/fwbuilder-devel/pkg-descr deleted file mode 100644 index e6968c1ca2bb..000000000000 --- a/security/fwbuilder-devel/pkg-descr +++ /dev/null @@ -1,20 +0,0 @@ -Firewall Builder consists of object-oriented GUI and set of policy compilers -for various firewall platforms. In Firewall Builder, firewall policy is a set -of rules, each rule consists of abstract objects which represent real network -objects and services (hosts, routers, firewalls, networks, protocols). -Firewall Builder helps user maintain database of objects and allows policy -editing using simple drag-and-drop operations. - -Preferences and objects databases are stored in XML format. -GUI and policy compilers are completely independent. Support for a new firewall -platform can be added to GUI without any changes done to the program, although -new policy compiler must be written. This provides for consistent abstract -model and the same GUI for different firewall platforms. Currently three most -popular free firewalls are supported: ipchains, iptables and ipfilter. -Because of this, Firewall Builder can be used to manage firewalls built on -variety of platforms including, but not limited to, Linux running ipchains or -iptables and FreeBSD or Solaris running ipfilter. - -WWW: http://www.crocodile.org/~vadim/fwbuilder/ - -Roman Shterenzon <roman@xpert.com> diff --git a/security/fwbuilder-devel/pkg-plist b/security/fwbuilder-devel/pkg-plist deleted file mode 100644 index 421602f42d3f..000000000000 --- a/security/fwbuilder-devel/pkg-plist +++ /dev/null @@ -1,53 +0,0 @@ -bin/fwb_ipchains -bin/fwb_ipfilter -bin/fwb_iptables -bin/fwbuilder -include/fwcompiler.h -lib/libfwcompiler.a -share/doc/fwbuilder/AUTHORS -share/doc/fwbuilder/COPYING -share/doc/fwbuilder/ChangeLog -share/doc/fwbuilder/Credits -share/doc/fwbuilder/FAQ -share/doc/fwbuilder/NEWS -share/doc/fwbuilder/README.compiler-framework -share/doc/fwbuilder/README.examples -share/doc/fwbuilder/README.gui -share/doc/fwbuilder/README.ipchains -share/doc/fwbuilder/README.ipfilter -share/doc/fwbuilder/Requirements -share/doc/fwbuilder/objects.xml -share/gnome/fwbuilder/fwbuilder.dtd -share/gnome/fwbuilder/fwbuilder_prefs.xml -share/gnome/fwbuilder/objects_init.xml -share/gnome/fwbuilder/pixmaps/accept.png -share/gnome/fwbuilder/pixmaps/blank.xpm -share/gnome/fwbuilder/pixmaps/check.xpm -share/gnome/fwbuilder/pixmaps/clock.png -share/gnome/fwbuilder/pixmaps/deny.png -share/gnome/fwbuilder/pixmaps/drag_object.xpm -share/gnome/fwbuilder/pixmaps/error.png -share/gnome/fwbuilder/pixmaps/firewall.png -share/gnome/fwbuilder/pixmaps/firewall_64.png -share/gnome/fwbuilder/pixmaps/folder.png -share/gnome/fwbuilder/pixmaps/folder_64.png -share/gnome/fwbuilder/pixmaps/generic.xpm -share/gnome/fwbuilder/pixmaps/host.png -share/gnome/fwbuilder/pixmaps/host_64.png -share/gnome/fwbuilder/pixmaps/icmp.xpm -share/gnome/fwbuilder/pixmaps/interface.xpm -share/gnome/fwbuilder/pixmaps/ip.xpm -share/gnome/fwbuilder/pixmaps/log.png -share/gnome/fwbuilder/pixmaps/neg.xpm -share/gnome/fwbuilder/pixmaps/net.png -share/gnome/fwbuilder/pixmaps/net_64.png -share/gnome/fwbuilder/pixmaps/question.png -share/gnome/fwbuilder/pixmaps/ref.xpm -share/gnome/fwbuilder/pixmaps/reject.png -share/gnome/fwbuilder/pixmaps/tcp.xpm -share/gnome/fwbuilder/pixmaps/udp.xpm -share/gnome/fwbuilder/pixmaps/uncheck.xpm -share/gnome/fwbuilder/pixmaps/warning.xpm -@dirrm share/doc/fwbuilder -@dirrm share/gnome/fwbuilder/pixmaps -@dirrm share/gnome/fwbuilder diff --git a/security/fwbuilder2/Makefile b/security/fwbuilder2/Makefile deleted file mode 100644 index 8c5680b89bb3..000000000000 --- a/security/fwbuilder2/Makefile +++ /dev/null @@ -1,35 +0,0 @@ -# New ports collection makefile for: fwbuilder -# Date Created: 3 Feb 2001 -# Whom: Roman Shterenzon <roman@xpert.com> -# -# $FreeBSD$ -# - -PORTNAME= fwbuilder -PORTVERSION= 0.8.7 -PORTREVISION= 1 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} -MASTER_SITE_SUBDIR= ${PORTNAME} - -MAINTAINER= ports@FreeBSD.org - -LIB_DEPENDS= gtkmm.2:${PORTSDIR}/x11-toolkits/gtk-- - -USE_GMAKE= yes -USE_X_PREFIX= yes -USE_LIBTOOL= yes -USE_GNOMELIBS= yes -WITHOUT_ESOUND= yes -CONFIGURE_ARGS+= --with-iconsdir=${X11BASE}/share/gnome/fwbuilder/pixmaps/ --with-templatedir=${X11BASE}/share/gnome/fwbuilder - -post-extract: - @${PERL} -pi -e "s/lc_r/pthread/" ${WRKSRC}/configure ;\ - ${PERL} -pi -e "s|/usr/bin|${LOCALBASE}/bin|" ${WRKSRC}/etc/fwbuilder_prefs.xml.in -.for i in compiler-framework/Makefile.in gui/gnome-wrappers/Makefile.in \ - gui/Makefile.in ipchains/Makefile.in ipfilter/Makefile.in \ - iptables/Makefile.in - @${PERL} -pi -e "s|^CFLAGS\s+=\s+-Wall\s+-g|CFLAGS = \@CFLAGS@ -Wall|" ${WRKSRC}/src/$i -.endfor - -.include <bsd.port.mk> diff --git a/security/fwbuilder2/distinfo b/security/fwbuilder2/distinfo deleted file mode 100644 index 7e90b4806cb2..000000000000 --- a/security/fwbuilder2/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (fwbuilder-0.8.7.tar.gz) = 3fb13778a5b998bf31b789d410587221 diff --git a/security/fwbuilder2/files/patch-aa b/security/fwbuilder2/files/patch-aa deleted file mode 100644 index 8416f7694d3f..000000000000 --- a/security/fwbuilder2/files/patch-aa +++ /dev/null @@ -1,23 +0,0 @@ ---- src/compiler-framework/Makefile.in.orig Sat Feb 3 23:11:36 2001 -+++ src/compiler-framework/Makefile.in Sat Feb 3 23:11:57 2001 -@@ -11,7 +11,7 @@ - - CC= @CC@ - INSTALL = @INSTALL@ --INSTALL_PROGRAM=@INSTALL_PROGRAM@ -+INSTALL_DATA=@INSTALL_DATA@ - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - - XML_CFLAGS = @XML_CFLAGS@ -@@ -45,9 +45,9 @@ - - install: $(FWLIB) $(HEADERS) - $(mkinstalldirs) $(libdir) -- $(INSTALL_PROGRAM) $(FWLIB) $(libdir) -+ $(INSTALL_DATA) $(FWLIB) $(libdir) - $(mkinstalldirs) $(includedir) -- $(INSTALL_PROGRAM) $(HEADERS) $(includedir) -+ $(INSTALL_DATA) $(HEADERS) $(includedir) - - - uninstall: diff --git a/security/fwbuilder2/files/patch-ab b/security/fwbuilder2/files/patch-ab deleted file mode 100644 index baadcf884946..000000000000 --- a/security/fwbuilder2/files/patch-ab +++ /dev/null @@ -1,20 +0,0 @@ ---- examples/Makefile.in.orig Sat Feb 3 23:01:10 2001 -+++ examples/Makefile.in Sat Feb 3 23:01:36 2001 -@@ -13,7 +13,7 @@ - examplesdir = $(docdir) - - INSTALL = @INSTALL@ --INSTALL_PROGRAM=@INSTALL_PROGRAM@ -+INSTALL_DATA=@INSTALL_DATA@ - - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - -@@ -24,7 +24,7 @@ - - install: - $(mkinstalldirs) $(examplesdir) -- $(INSTALL_PROGRAM) -m 0644 $(EXAMPLES) $(examplesdir) -+ $(INSTALL_DATA) $(EXAMPLES) $(examplesdir) - - uninstall: - list='$(EXAMPLES)'; for file in $$list; do \ diff --git a/security/fwbuilder2/files/patch-ac b/security/fwbuilder2/files/patch-ac deleted file mode 100644 index 91181f8d26e1..000000000000 --- a/security/fwbuilder2/files/patch-ac +++ /dev/null @@ -1,20 +0,0 @@ ---- doc/Makefile.in.orig Sat Feb 3 23:04:02 2001 -+++ doc/Makefile.in Sat Feb 3 23:03:24 2001 -@@ -12,7 +12,7 @@ - docdir = @DOCDIR@/fwbuilder - - INSTALL = @INSTALL@ --INSTALL_PROGRAM=@INSTALL_PROGRAM@ -+INSTALL_DATA=@INSTALL_DATA@ - - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - -@@ -33,7 +33,7 @@ - - install: - $(mkinstalldirs) $(docdir) -- $(INSTALL_PROGRAM) -m 0644 $(DOCS) $(docdir) -+ $(INSTALL_DATA) $(DOCS) $(docdir) - - uninstall: - list='$(DOCS)'; for file in $$list; do \ diff --git a/security/fwbuilder2/files/patch-ad b/security/fwbuilder2/files/patch-ad deleted file mode 100644 index 4fefde3c0957..000000000000 --- a/security/fwbuilder2/files/patch-ad +++ /dev/null @@ -1,24 +0,0 @@ ---- etc/Makefile.in.orig Sat Feb 3 23:10:14 2001 -+++ etc/Makefile.in Sat Feb 3 23:10:40 2001 -@@ -11,7 +11,7 @@ - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - - INSTALL = @INSTALL@ --INSTALL_PROGRAM = @INSTALL_PROGRAM@ -+INSTALL_DATA = @INSTALL_DATA@ - - all: fwbuilder_prefs.xml - -@@ -27,9 +27,9 @@ - - install: objects_init.xml fwbuilder_prefs.xml - $(mkinstalldirs) $(datadir) -- $(INSTALL_PROGRAM) objects_init.xml $(datadir) -- $(INSTALL_PROGRAM) fwbuilder_prefs.xml $(datadir) -- $(INSTALL_PROGRAM) fwbuilder.dtd $(datadir) -+ $(INSTALL_DATA) objects_init.xml $(datadir) -+ $(INSTALL_DATA) fwbuilder_prefs.xml $(datadir) -+ $(INSTALL_DATA) fwbuilder.dtd $(datadir) - - uninstall: - rm -f $(datadir)/objects_init.xml diff --git a/security/fwbuilder2/files/patch-ae b/security/fwbuilder2/files/patch-ae deleted file mode 100644 index 990955c205ca..000000000000 --- a/security/fwbuilder2/files/patch-ae +++ /dev/null @@ -1,11 +0,0 @@ ---- src/gui/Makefile.in.orig Wed Mar 21 01:56:07 2001 -+++ src/gui/Makefile.in Wed Mar 21 01:58:19 2001 -@@ -9,7 +9,7 @@ - exec_prefix = @exec_prefix@ - bindir = @bindir@ - sbindir = @sbindir@ --iconsdir = $(prefix)/share/pixmaps/fwbuilder -+iconsdir = @datadir@/fwbuilder/pixmaps - - mkinstalldirs = $(SHELL) $(top_srcdir)/mkinstalldirs - diff --git a/security/fwbuilder2/pkg-comment b/security/fwbuilder2/pkg-comment deleted file mode 100644 index 59a15672ff03..000000000000 --- a/security/fwbuilder2/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Firewall Builder GUI for IPFilter diff --git a/security/fwbuilder2/pkg-descr b/security/fwbuilder2/pkg-descr deleted file mode 100644 index e6968c1ca2bb..000000000000 --- a/security/fwbuilder2/pkg-descr +++ /dev/null @@ -1,20 +0,0 @@ -Firewall Builder consists of object-oriented GUI and set of policy compilers -for various firewall platforms. In Firewall Builder, firewall policy is a set -of rules, each rule consists of abstract objects which represent real network -objects and services (hosts, routers, firewalls, networks, protocols). -Firewall Builder helps user maintain database of objects and allows policy -editing using simple drag-and-drop operations. - -Preferences and objects databases are stored in XML format. -GUI and policy compilers are completely independent. Support for a new firewall -platform can be added to GUI without any changes done to the program, although -new policy compiler must be written. This provides for consistent abstract -model and the same GUI for different firewall platforms. Currently three most -popular free firewalls are supported: ipchains, iptables and ipfilter. -Because of this, Firewall Builder can be used to manage firewalls built on -variety of platforms including, but not limited to, Linux running ipchains or -iptables and FreeBSD or Solaris running ipfilter. - -WWW: http://www.crocodile.org/~vadim/fwbuilder/ - -Roman Shterenzon <roman@xpert.com> diff --git a/security/fwbuilder2/pkg-plist b/security/fwbuilder2/pkg-plist deleted file mode 100644 index 421602f42d3f..000000000000 --- a/security/fwbuilder2/pkg-plist +++ /dev/null @@ -1,53 +0,0 @@ -bin/fwb_ipchains -bin/fwb_ipfilter -bin/fwb_iptables -bin/fwbuilder -include/fwcompiler.h -lib/libfwcompiler.a -share/doc/fwbuilder/AUTHORS -share/doc/fwbuilder/COPYING -share/doc/fwbuilder/ChangeLog -share/doc/fwbuilder/Credits -share/doc/fwbuilder/FAQ -share/doc/fwbuilder/NEWS -share/doc/fwbuilder/README.compiler-framework -share/doc/fwbuilder/README.examples -share/doc/fwbuilder/README.gui -share/doc/fwbuilder/README.ipchains -share/doc/fwbuilder/README.ipfilter -share/doc/fwbuilder/Requirements -share/doc/fwbuilder/objects.xml -share/gnome/fwbuilder/fwbuilder.dtd -share/gnome/fwbuilder/fwbuilder_prefs.xml -share/gnome/fwbuilder/objects_init.xml -share/gnome/fwbuilder/pixmaps/accept.png -share/gnome/fwbuilder/pixmaps/blank.xpm -share/gnome/fwbuilder/pixmaps/check.xpm -share/gnome/fwbuilder/pixmaps/clock.png -share/gnome/fwbuilder/pixmaps/deny.png -share/gnome/fwbuilder/pixmaps/drag_object.xpm -share/gnome/fwbuilder/pixmaps/error.png -share/gnome/fwbuilder/pixmaps/firewall.png -share/gnome/fwbuilder/pixmaps/firewall_64.png -share/gnome/fwbuilder/pixmaps/folder.png -share/gnome/fwbuilder/pixmaps/folder_64.png -share/gnome/fwbuilder/pixmaps/generic.xpm -share/gnome/fwbuilder/pixmaps/host.png -share/gnome/fwbuilder/pixmaps/host_64.png -share/gnome/fwbuilder/pixmaps/icmp.xpm -share/gnome/fwbuilder/pixmaps/interface.xpm -share/gnome/fwbuilder/pixmaps/ip.xpm -share/gnome/fwbuilder/pixmaps/log.png -share/gnome/fwbuilder/pixmaps/neg.xpm -share/gnome/fwbuilder/pixmaps/net.png -share/gnome/fwbuilder/pixmaps/net_64.png -share/gnome/fwbuilder/pixmaps/question.png -share/gnome/fwbuilder/pixmaps/ref.xpm -share/gnome/fwbuilder/pixmaps/reject.png -share/gnome/fwbuilder/pixmaps/tcp.xpm -share/gnome/fwbuilder/pixmaps/udp.xpm -share/gnome/fwbuilder/pixmaps/uncheck.xpm -share/gnome/fwbuilder/pixmaps/warning.xpm -@dirrm share/doc/fwbuilder -@dirrm share/gnome/fwbuilder/pixmaps -@dirrm share/gnome/fwbuilder diff --git a/security/gnupg1/Makefile b/security/gnupg1/Makefile deleted file mode 100644 index cccd46c46b15..000000000000 --- a/security/gnupg1/Makefile +++ /dev/null @@ -1,68 +0,0 @@ -# New ports collection makefile for: gnupg -# Date created: Sep 30, 1998 -# Whom: kuriyama@FreeBSD.org -# -# $FreeBSD$ -# - -PORTNAME= gnupg -PORTVERSION= 1.2.1 -CATEGORIES= security -MASTER_SITES= ftp://ftp.gnupg.org/gcrypt/%SUBDIR%/ \ - http://ftp.planetmirror.com/pub/gnupg/%SUBDIR%/ \ - http://sunsite.dk/pub/security/gcrypt/%SUBDIR%/ \ - ftp://pgp.iijlab.net/pub/%SUBDIR%/ \ - ${MASTER_SITE_RINGSERVER:S,%SUBDIR%,net/gnupg/&,} \ - ftp://ftp.demon.nl/pub/mirrors/gnupg/%SUBDIR%/ -MASTER_SITE_SUBDIR= gnupg -DISTFILES= ${DISTNAME}${EXTRACT_SUFX} ${DISTNAME}${EXTRACT_SUFX}.sig -EXTRACT_ONLY= ${DISTNAME}${EXTRACT_SUFX} - -MAINTAINER= kuriyama@FreeBSD.org - -LIB_DEPENDS= intl.4:${PORTSDIR}/devel/gettext - -USE_BZIP2= YES -USE_GMAKE= YES -GNU_CONFIGURE= YES -CONFIGURE_ARGS= --enable-tiger -CONFIGURE_TARGET= --build ${MACHINE_ARCH}-portbld-freebsd${OSREL} -.if ${MACHINE_CPU:Mi586} -MACHINE_ARCH= i586 -.endif -CFLAGS:= ${CFLAGS:S/-pipe//g} -MAN1= gpg.1 gpgv.1 -MAN7= gnupg.7 - -.include <bsd.port.pre.mk> - -.if defined(WITH_LIBICONV) || exists(${PREFIX}/lib/libiconv.so) -LIB_DEPENDS+= iconv.3:${PORTSDIR}/converters/libiconv -.endif -.if defined(WITH_LDAP) || exists(${PREFIX}/lib/libldap.so) -LIB_DEPENDS+= ldap.2:${PORTSDIR}/net/openldap2 -PLIST_SUB+= WITH_LDAP="" -.else -PLIST_SUB+= WITH_LDAP="@comment " -.endif - -post-install: -.if !defined(NOPORTDOCS) - ${MKDIR} ${PREFIX}/share/doc/gnupg -.for i in DETAILS FAQ HACKING OpenPGP - ${INSTALL_DATA} ${WRKSRC}/doc/${i} ${PREFIX}/share/doc/gnupg -.endfor -.for i in ABOUT-NLS AUTHORS BUGS COPYING INSTALL NEWS PROJECTS \ - README THANKS TODO VERSION - ${INSTALL_DATA} ${WRKSRC}/${i} ${PREFIX}/share/doc/gnupg -.endfor -.endif -.if defined(WITH_SUID_GPG) - ${CHMOD} u+s ${PREFIX}/bin/gpg -.endif - @${CAT} ${PKGMESSAGE} - -check: - (cd ${WRKSRC}; ${MAKE} check) - -.include <bsd.port.post.mk> diff --git a/security/gnupg1/distinfo b/security/gnupg1/distinfo deleted file mode 100644 index e523a986502b..000000000000 --- a/security/gnupg1/distinfo +++ /dev/null @@ -1,2 +0,0 @@ -MD5 (gnupg-1.2.1.tar.bz2) = e63add33e010b4224ba0841b21fe0bfe -MD5 (gnupg-1.2.1.tar.bz2.sig) = 549d47e242d0dfa1da9ac90e0af6f211 diff --git a/security/gnupg1/pkg-comment b/security/gnupg1/pkg-comment deleted file mode 100644 index 6848290e02ab..000000000000 --- a/security/gnupg1/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -The GNU Privacy Guard diff --git a/security/gnupg1/pkg-descr b/security/gnupg1/pkg-descr deleted file mode 100644 index 4ad9fb265d00..000000000000 --- a/security/gnupg1/pkg-descr +++ /dev/null @@ -1,9 +0,0 @@ -GnuPG is a complete and free replacement for PGP. - -Because it does not use the patented IDEA algorithm, it can be used -without any restrictions. GnuPG is an RFC2440 (OpenPGP) compliant -application. - -WWW: http://www.gnupg.org/ - -kuriyama@FreeBSD.org diff --git a/security/gnupg1/pkg-message b/security/gnupg1/pkg-message deleted file mode 100644 index 886f5a84287d..000000000000 --- a/security/gnupg1/pkg-message +++ /dev/null @@ -1,4 +0,0 @@ -************************************************************ -TIPS: - o Use rndcontrol(8) if you want more entropy. -************************************************************ diff --git a/security/gnupg1/pkg-plist b/security/gnupg1/pkg-plist deleted file mode 100644 index 487c778535e7..000000000000 --- a/security/gnupg1/pkg-plist +++ /dev/null @@ -1,79 +0,0 @@ -bin/gpg -bin/gpgsplit -bin/gpgv -%%WITH_LDAP%%libexec/gnupg/gpgkeys_ldap -libexec/gnupg/gpgkeys_mailto -info/gpg.info -info/gpgv.info -share/gnupg/FAQ -share/gnupg/faq.html -share/gnupg/options.skel -%%PORTDOCS%%share/doc/gnupg/README -%%PORTDOCS%%share/doc/gnupg/DETAILS -%%PORTDOCS%%share/doc/gnupg/FAQ -%%PORTDOCS%%share/doc/gnupg/HACKING -%%PORTDOCS%%share/doc/gnupg/OpenPGP -%%PORTDOCS%%share/doc/gnupg/ABOUT-NLS -%%PORTDOCS%%share/doc/gnupg/AUTHORS -%%PORTDOCS%%share/doc/gnupg/BUGS -%%PORTDOCS%%share/doc/gnupg/COPYING -%%PORTDOCS%%share/doc/gnupg/INSTALL -%%PORTDOCS%%share/doc/gnupg/NEWS -%%PORTDOCS%%share/doc/gnupg/PROJECTS -%%PORTDOCS%%share/doc/gnupg/THANKS -%%PORTDOCS%%share/doc/gnupg/TODO -%%PORTDOCS%%share/doc/gnupg/VERSION -share/locale/ca/LC_MESSAGES/gnupg.mo -share/locale/cs/LC_MESSAGES/gnupg.mo -share/locale/da/LC_MESSAGES/gnupg.mo -share/locale/de/LC_MESSAGES/gnupg.mo -share/locale/el/LC_MESSAGES/gnupg.mo -share/locale/eo/LC_MESSAGES/gnupg.mo -share/locale/es/LC_MESSAGES/gnupg.mo -share/locale/et/LC_MESSAGES/gnupg.mo -share/locale/fr/LC_MESSAGES/gnupg.mo -share/locale/gl/LC_MESSAGES/gnupg.mo -share/locale/id/LC_MESSAGES/gnupg.mo -share/locale/it/LC_MESSAGES/gnupg.mo -share/locale/ja/LC_MESSAGES/gnupg.mo -share/locale/nl/LC_MESSAGES/gnupg.mo -share/locale/pl/LC_MESSAGES/gnupg.mo -share/locale/pt/LC_MESSAGES/gnupg.mo -share/locale/pt_BR/LC_MESSAGES/gnupg.mo -share/locale/sv/LC_MESSAGES/gnupg.mo -share/locale/tr/LC_MESSAGES/gnupg.mo -@dirrm share/gnupg -@unexec rmdir %D/share/locale/da/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/da 2>/dev/null || true -@unexec rmdir %D/share/locale/de/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/de 2>/dev/null || true -@unexec rmdir %D/share/locale/et/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/et 2>/dev/null || true -@unexec rmdir %D/share/locale/es_ES/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/es_ES 2>/dev/null || true -@unexec rmdir %D/share/locale/eo/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/eo 2>/dev/null || true -@unexec rmdir %D/share/locale/fr/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/fr 2>/dev/null || true -@unexec rmdir %D/share/locale/id/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/id 2>/dev/null || true -@unexec rmdir %D/share/locale/it/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/it 2>/dev/null || true -@unexec rmdir %D/share/locale/ja/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/ja 2>/dev/null || true -@unexec rmdir %D/share/locale/nl/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/nl 2>/dev/null || true -@unexec rmdir %D/share/locale/pl/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/pl 2>/dev/null || true -@unexec rmdir %D/share/locale/pt_BR/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/pt_BR 2>/dev/null || true -@unexec rmdir %D/share/locale/pt_PT/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/pt_PT 2>/dev/null || true -@unexec rmdir %D/share/locale/ru/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/ru 2>/dev/null || true -@unexec rmdir %D/share/locale/sv/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/sv 2>/dev/null || true -@unexec rmdir %D/share/locale/tr/LC_MESSAGES 2>/dev/null || true -@unexec rmdir %D/share/locale/tr 2>/dev/null || true -@unexec rmdir %D/share/locale 2>/dev/null || true -@dirrm share/doc/gnupg diff --git a/security/gpgme03/Makefile b/security/gpgme03/Makefile deleted file mode 100644 index 43b5822802fe..000000000000 --- a/security/gpgme03/Makefile +++ /dev/null @@ -1,26 +0,0 @@ -# New ports collection makefile for: gpgme -# Date created: 15 June 2001 -# Whom: teramoto@comm.eng.osaka-u.ac.jp -# -# $FreeBSD$ -# - -PORTNAME= gpgme -PORTVERSION= 0.3.9 -CATEGORIES= security -MASTER_SITES= ftp://ftp.gnupg.org/gcrypt/alpha/gpgme/ - -MAINTAINER= markun@onohara.to - -BUILD_DEPENDS= gpg:${PORTSDIR}/security/gnupg - -USE_LIBTOOL= yes -CONFIGURE_ENV= MAKEINFO="makeinfo --no-split" -CONFIGURE_ARGS= --with-pth=no -USE_GMAKE= yes -INSTALLS_SHLIB= yes - -pre-configure: - @${RM} -r ${WRKSRC}/doc/gpgme.info* - -.include <bsd.port.mk> diff --git a/security/gpgme03/distinfo b/security/gpgme03/distinfo deleted file mode 100644 index 52f8803d4a3b..000000000000 --- a/security/gpgme03/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (gpgme-0.3.9.tar.gz) = aaca33f0357103653b2dec7e8bb3c930 diff --git a/security/gpgme03/files/patch-aa b/security/gpgme03/files/patch-aa deleted file mode 100644 index 6054e80ed3d4..000000000000 --- a/security/gpgme03/files/patch-aa +++ /dev/null @@ -1,11 +0,0 @@ ---- aclocal.m4.orig Mon Sep 17 04:25:38 2001 -+++ aclocal.m4 Wed Oct 3 01:50:51 2001 -@@ -213,7 +213,7 @@ - LIBTOOL_DEPS="$ac_aux_dir/ltmain.sh" - - # Always use our own libtool. --LIBTOOL='$(SHELL) $(top_builddir)/libtool' -+LIBTOOL='$(PORT_LIBTOOL)' - AC_SUBST(LIBTOOL)dnl - - # Prevent multiple expansion diff --git a/security/gpgme03/files/patch-tests::gpg::t-eventloop.c b/security/gpgme03/files/patch-tests::gpg::t-eventloop.c deleted file mode 100644 index d8149c9ef186..000000000000 --- a/security/gpgme03/files/patch-tests::gpg::t-eventloop.c +++ /dev/null @@ -1,10 +0,0 @@ ---- tests/gpg/t-eventloop.c.orig Fri Aug 30 17:22:54 2002 -+++ tests/gpg/t-eventloop.c Fri Aug 30 17:21:50 2002 -@@ -24,6 +24,7 @@ - #include <string.h> - #include <assert.h> - #include <errno.h> -+#include <sys/types.h> - #include <sys/select.h> - - #include <gpgme.h> diff --git a/security/gpgme03/pkg-comment b/security/gpgme03/pkg-comment deleted file mode 100644 index 71cad263dfb7..000000000000 --- a/security/gpgme03/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -A library to make access to GnuPG easier diff --git a/security/gpgme03/pkg-descr b/security/gpgme03/pkg-descr deleted file mode 100644 index 7e33993228c7..000000000000 --- a/security/gpgme03/pkg-descr +++ /dev/null @@ -1,6 +0,0 @@ -GPGME(GnuPG Make Easy) is a library designed to make access -to GnuPG easier for applications. - -WWW: http://www.gnupg.org/related_software/gpgme/ - -markun@onohara.to diff --git a/security/gpgme03/pkg-plist b/security/gpgme03/pkg-plist deleted file mode 100644 index 759c3aa288b8..000000000000 --- a/security/gpgme03/pkg-plist +++ /dev/null @@ -1,10 +0,0 @@ -bin/gpgme-config -include/gpgme.h -@unexec install-info --delete %D/info/gpgme.info %D/info/dir -info/gpgme.info -@exec install-info %D/info/gpgme.info %D/info/dir -lib/libgpgme.a -lib/libgpgme.la -lib/libgpgme.so -lib/libgpgme.so.9 -share/aclocal/gpgme.m4 diff --git a/security/hpn-ssh/Makefile b/security/hpn-ssh/Makefile deleted file mode 100644 index 096b45944305..000000000000 --- a/security/hpn-ssh/Makefile +++ /dev/null @@ -1,145 +0,0 @@ -# New ports collection makefile for: openssh -# Date created: 18 Mar 1999 -# Whom: dwcjr@inethouston.net -# -# $FreeBSD$ -# - -PORTNAME= openssh -PORTVERSION= 3.5p1 -CATEGORIES= security ipv6 -MASTER_SITES= ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/ \ - ftp://carroll.cac.psu.edu/pub/OpenBSD/OpenSSH/portable/ -PKGNAMESUFFIX?= -portable - -MAINTAINER= dinoex@FreeBSD.org - -MAN1= sftp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 scp.1 ssh.1 -MLINKS= ssh.1 slogin.1 -MAN5= ssh_config.5 sshd_config.5 -MAN8= sftp-server.8 sshd.8 ssh-keysign.8 - -CRYPTOLIBS= -L${OPENSSLLIB} -lcrypto -GNU_CONFIGURE= yes -CONFIGURE_ARGS+= --prefix=${PREFIX} --with-md5-passwords -PRECIOUS= ssh_config sshd_config \ - ssh_host_key ssh_host_key.pub \ - ssh_host_rsa_key ssh_host_rsa_key.pub \ - ssh_host_dsa_key ssh_host_dsa_key.pub -ETCOLD= ${PREFIX}/etc -ADDME+= auth2-pam-freebsd.c - -.if exists(/usr/include/security/pam_modules.h) -CONFIGURE_ARGS+= --with-pam -.endif - -.if exists(/usr/include/tcpd.h) -CONFIGURE_ARGS+= --with-tcp-wrappers -.endif - -.if !defined(ENABLE_SUID_SSH) -CONFIGURE_ARGS+= --disable-suid-ssh -.endif - -.if defined(OPENSSH_OVERWRITE_BASE) -USE_OPENSSL_BASE= yes -PKGNAMESUFFIX= -overwrite-base -PREFIX= /usr -MANPREFIX= ${PREFIX}/share -CONFIGURE_ARGS+= --mandir=${MANPREFIX}/man --localstatedir=/var -EMPTYDIR= /var/empty -ETCSSH= /etc/ssh -PLIST_SUB+= NOTBASE="@comment " -PLIST_SUB+= BASE="" -PKGMESSAGE= pkg-message.empty -.else -.if exists(/var/empty) -EMPTYDIR= /var/empty -.else -EMPTYDIR= ${PREFIX}/empty -.endif -ETCSSH= ${PREFIX}/etc/ssh -PLIST_SUB+= NOTBASE="" -PLIST_SUB+= BASE="@comment " -.endif -PLIST_SUB+= EMPTYDIR=${EMPTYDIR} -CONFIGURE_ARGS+= --sysconfdir=${ETCSSH} -CONFIGURE_ARGS+= --with-privsep-path=${EMPTYDIR} - -.if defined(BATCH) -EXTRA_PATCHES+= ${FILESDIR}/batch.patch -.endif - -post-extract: -.for i in ${ADDME} - @${CP} ${FILESDIR}/${i} ${WRKSRC}/ -.endfor - -.if defined(KRB5_HOME) && exists(${KRB5_HOME}) -BROKEN= patch conflicts with 3.5p1 -PKGNAMESUFFIX= -gssapi -GSSAPI_PATCH= ${PORTNAME}-3.4p1-gssapi-20020627.diff -GSSAPI_SITE= http://www.sxw.org.uk/computing/patches/ -MASTER_SITES+= ${GSSAPI_SITE} -DISTFILES= ${EXTRACT_ONLY} ${GSSAPI_PATCH} -EXTRACT_ONLY= ${PORTNAME}-${PORTVERSION}${EXTRACT_SUFX} -EXTRA_PATCHES+= ${FILESDIR}/servconf.c.patch -BUILD_DEPENDS= autoconf:${PORTSDIR}/devel/autoconf -# USE_AUTOCONF_VER= 252 # broken -CONFIGURE_ARGS+= --with-kerberos5=${KRB5_HOME} -AUTOCONF= autoconf -AUTOHEADER= autoheader - -post-patch: - @${ECHO_MSG} Applying extra patch for GSS-API key-exchange... - @${PATCH} ${PATCH_DIST_ARGS:S/-p0/-p1/} \ - < ${DISTDIR}/${GSSAPI_PATCH} - -pre-configure: - @${ECHO_MSG} !!!! Warning this option uses autoconf/autoheader !!! - (cd ${CONFIGURE_WRKSRC} && ${SETENV} ${AUTOCONF_ENV} ${AUTOCONF} \ - ${AUTOCONF_ARGS}) - (cd ${CONFIGURE_WRKSRC} && ${SETENV} ${AUTOCONF_ENV} ${AUTOHEADER}) -.endif - -post-configure: - ${SED} -e 's:__PREFIX__:${PREFIX}:g' \ - ${FILESDIR}/sshd.sh > ${WRKSRC}/sshd.sh - -pre-install: -.if defined(OPENSSH_OVERWRITE_BASE) - -${MKDIR} ${EMPTYDIR} -.else - -${MKDIR} ${PREFIX}/empty -.endif - if ! pw groupshow sshd; then pw groupadd sshd -g 22; fi - if ! pw usershow sshd; then pw useradd sshd -g sshd -u 22 \ - -h - -d ${EMPTYDIR} -s /nonexistent -c "sshd privilege separation"; fi - -@[ ! -d ${ETCSSH} ] && ${MKDIR} ${ETCSSH} -.for i in ${PRECIOUS} - -@[ -f ${ETCOLD}/${i} ] && [ ! -f ${ETCSSH}/${i} ] && \ - ${ECHO_MSG} ">> Linking ${ETCSSH}/${i} from old layout." && \ - ${LN} ${ETCOLD}/${i} ${ETCSSH}/${i} -.endfor - -post-install: -.if !defined(OPENSSH_OVERWRITE_BASE) - ${INSTALL_SCRIPT} ${WRKSRC}/sshd.sh ${PREFIX}/etc/rc.d/sshd.sh.sample -.endif - ${INSTALL_DATA} -c ${WRKSRC}/ssh_config.out ${ETCSSH}/ssh_config-dist - ${INSTALL_DATA} -c ${WRKSRC}/sshd_config.out ${ETCSSH}/sshd_config-dist -.if !defined(OPENSSH_OVERWRITE_BASE) - @${CAT} ${PKGMESSAGE} -.endif - -test: - (cd ${WRKSRC}/regress && ${SETENV} ${MAKE_ENV} \ - PATH=${PREFIX}/bin:${PREFIX}/sbin:${PATH} \ - ${MAKE} ${MAKE_FLAGS} ${MAKEFILE} ${MAKE_ARGS} ) - -.include <bsd.port.pre.mk> - -.include "${PORTSDIR}/security/openssl/Makefile.ssl" -CONFIGURE_ARGS+= --with-ssl-dir=${OPENSSLBASE} - -.include <bsd.port.post.mk> diff --git a/security/hpn-ssh/distinfo b/security/hpn-ssh/distinfo deleted file mode 100644 index 17bee19d09e1..000000000000 --- a/security/hpn-ssh/distinfo +++ /dev/null @@ -1,2 +0,0 @@ -MD5 (openssh-3.5p1.tar.gz) = 42bd78508d208b55843c84dd54dea848 -MD5 (openssh-3.4p1-gssapi-20020627.diff) = bd58f041a44538ab532efe261c904973 diff --git a/security/hpn-ssh/files/auth2-pam-freebsd.c b/security/hpn-ssh/files/auth2-pam-freebsd.c deleted file mode 100644 index 8840a61f93a7..000000000000 --- a/security/hpn-ssh/files/auth2-pam-freebsd.c +++ /dev/null @@ -1,336 +0,0 @@ -/*- - * Copyright (c) 2002 Networks Associates Technology, Inc. - * All rights reserved. - * - * This software was developed for the FreeBSD Project by ThinkSec AS and - * NAI Labs, the Security Research Division of Network Associates, Inc. - * under DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the - * DARPA CHATS research program. - * - * Redistribution and use in source and binary forms, with or without - * modification, are permitted provided that the following conditions - * are met: - * 1. Redistributions of source code must retain the above copyright - * notice, this list of conditions and the following disclaimer. - * 2. Redistributions in binary form must reproduce the above copyright - * notice, this list of conditions and the following disclaimer in the - * documentation and/or other materials provided with the distribution. - * 3. The name of the author may not be used to endorse or promote - * products derived from this software without specific prior written - * permission. - * - * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND - * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE - * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE - * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE - * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL - * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS - * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) - * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT - * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY - * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF - * SUCH DAMAGE. - */ - -#include "includes.h" -RCSID("$FreeBSD: /tmp/pcvs/ports/security/hpn-ssh/files/Attic/auth2-pam-freebsd.c,v 1.4 2002-10-17 04:40:20 dinoex Exp $"); - -#ifdef USE_PAM -#include <security/pam_appl.h> - -#include "auth.h" -#include "buffer.h" -#include "bufaux.h" -#include "log.h" -#include "monitor_wrap.h" -#include "msg.h" -#include "packet.h" -#include "ssh2.h" -#include "xmalloc.h" - -struct pam_ctxt { - char *pam_user; - pid_t pam_pid; - int pam_sock; - int pam_done; -}; - -static void pam_free_ctx(void *); - -/* - * Conversation function for child process. - */ -static int -pam_child_conv(int n, - const struct pam_message **msg, - struct pam_response **resp, - void *data) -{ - Buffer buffer; - struct pam_ctxt *ctxt; - int i; - - ctxt = data; - if (n <= 0 || n > PAM_MAX_NUM_MSG) - return (PAM_CONV_ERR); - *resp = xmalloc(n * sizeof **resp); - buffer_init(&buffer); - for (i = 0; i < n; ++i) { - resp[i]->resp_retcode = 0; - resp[i]->resp = NULL; - switch (msg[i]->msg_style) { - case PAM_PROMPT_ECHO_OFF: - buffer_put_cstring(&buffer, msg[i]->msg); - ssh_msg_send(ctxt->pam_sock, msg[i]->msg_style, &buffer); - ssh_msg_recv(ctxt->pam_sock, &buffer); - if (buffer_get_char(&buffer) != PAM_AUTHTOK) - goto fail; - resp[i]->resp = buffer_get_string(&buffer, NULL); - break; - case PAM_PROMPT_ECHO_ON: - buffer_put_cstring(&buffer, msg[i]->msg); - ssh_msg_send(ctxt->pam_sock, msg[i]->msg_style, &buffer); - ssh_msg_recv(ctxt->pam_sock, &buffer); - if (buffer_get_char(&buffer) != PAM_AUTHTOK) - goto fail; - resp[i]->resp = buffer_get_string(&buffer, NULL); - break; - case PAM_ERROR_MSG: - buffer_put_cstring(&buffer, msg[i]->msg); - ssh_msg_send(ctxt->pam_sock, msg[i]->msg_style, &buffer); - break; - case PAM_TEXT_INFO: - buffer_put_cstring(&buffer, msg[i]->msg); - ssh_msg_send(ctxt->pam_sock, msg[i]->msg_style, &buffer); - break; - default: - goto fail; - } - buffer_clear(&buffer); - } - buffer_free(&buffer); - return (PAM_SUCCESS); - fail: - while (i) - xfree(resp[--i]); - xfree(*resp); - *resp = NULL; - buffer_free(&buffer); - return (PAM_CONV_ERR); -} - -/* - * Child process. - */ -static void * -pam_child(struct pam_ctxt *ctxt) -{ - Buffer buffer; - struct pam_conv pam_conv; - pam_handle_t *pamh; - int pam_err; - - pam_conv.conv = pam_child_conv; - pam_conv.appdata_ptr = ctxt; - buffer_init(&buffer); - setproctitle("%s [pam]", ctxt->pam_user); - pam_err = pam_start("sshd", ctxt->pam_user, &pam_conv, &pamh); - if (pam_err != PAM_SUCCESS) - goto auth_fail; - pam_err = pam_authenticate(pamh, 0); - if (pam_err != PAM_SUCCESS) - goto auth_fail; - pam_err = pam_acct_mgmt(pamh, 0); - if (pam_err != PAM_SUCCESS) - goto auth_fail; - buffer_put_cstring(&buffer, "OK"); - ssh_msg_send(ctxt->pam_sock, PAM_SUCCESS, &buffer); - buffer_free(&buffer); - pam_end(pamh, pam_err); - exit(0); - auth_fail: - buffer_put_cstring(&buffer, pam_strerror(pamh, pam_err)); - ssh_msg_send(ctxt->pam_sock, PAM_AUTH_ERR, &buffer); - buffer_free(&buffer); - pam_end(pamh, pam_err); - exit(0); -} - -static void -pam_cleanup(void *ctxtp) -{ - struct pam_ctxt *ctxt = ctxtp; - int status; - - close(ctxt->pam_sock); - kill(ctxt->pam_pid, SIGHUP); - waitpid(ctxt->pam_pid, &status, 0); -} - -static void * -pam_init_ctx(Authctxt *authctxt) -{ - struct pam_ctxt *ctxt; - int socks[2]; - int i; - - ctxt = xmalloc(sizeof *ctxt); - ctxt->pam_user = xstrdup(authctxt->user); - ctxt->pam_done = 0; - if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, socks) == -1) { - error("%s: failed create sockets: %s", - __func__, strerror(errno)); - xfree(ctxt); - return (NULL); - } - if ((ctxt->pam_pid = fork()) == -1) { - error("%s: failed to fork auth-pam child: %s", - __func__, strerror(errno)); - close(socks[0]); - close(socks[1]); - xfree(ctxt); - return (NULL); - } - if (ctxt->pam_pid == 0) { - /* close everything except our end of the pipe */ - ctxt->pam_sock = socks[1]; - for (i = 3; i < getdtablesize(); ++i) - if (i != ctxt->pam_sock) - close(i); - pam_child(ctxt); - /* not reached */ - exit(1); - } - ctxt->pam_sock = socks[0]; - close(socks[1]); - fatal_add_cleanup(pam_cleanup, ctxt); - return (ctxt); -} - -static int -pam_query(void *ctx, char **name, char **info, - u_int *num, char ***prompts, u_int **echo_on) -{ - Buffer buffer; - struct pam_ctxt *ctxt = ctx; - size_t plen; - u_char type; - char *msg; - - buffer_init(&buffer); - *name = xstrdup(""); - *info = xstrdup(""); - *prompts = xmalloc(sizeof(char *)); - **prompts = NULL; - plen = 0; - *echo_on = xmalloc(sizeof(u_int)); - while (ssh_msg_recv(ctxt->pam_sock, &buffer) == 0) { - type = buffer_get_char(&buffer); - msg = buffer_get_string(&buffer, NULL); - switch (type) { - case PAM_PROMPT_ECHO_ON: - case PAM_PROMPT_ECHO_OFF: - *num = 1; - **prompts = xrealloc(**prompts, plen + strlen(msg) + 1); - plen += sprintf(**prompts + plen, "%s", msg); - **echo_on = (type == PAM_PROMPT_ECHO_ON); - xfree(msg); - return (0); - case PAM_ERROR_MSG: - case PAM_TEXT_INFO: - /* accumulate messages */ - **prompts = xrealloc(**prompts, plen + strlen(msg) + 1); - plen += sprintf(**prompts + plen, "%s", msg); - xfree(msg); - break; - case PAM_SUCCESS: - case PAM_AUTH_ERR: - if (**prompts != NULL) { - /* drain any accumulated messages */ -#if 0 /* not compatible with privsep */ - packet_start(SSH2_MSG_USERAUTH_BANNER); - packet_put_cstring(**prompts); - packet_put_cstring(""); - packet_send(); - packet_write_wait(); -#endif - xfree(**prompts); - **prompts = NULL; - } - if (type == PAM_SUCCESS) { - *num = 0; - **echo_on = 0; - ctxt->pam_done = 1; - xfree(msg); - return (0); - } - error("%s", msg); - default: - *num = 0; - **echo_on = 0; - xfree(msg); - ctxt->pam_done = -1; - return (-1); - } - } - return (-1); -} - -static int -pam_respond(void *ctx, u_int num, char **resp) -{ - Buffer buffer; - struct pam_ctxt *ctxt = ctx; - char *msg; - - debug2(__func__); - switch (ctxt->pam_done) { - case 1: - return (0); - case 0: - break; - default: - return (-1); - } - if (num != 1) { - error("expected one response, got %u", num); - return (-1); - } - buffer_init(&buffer); - buffer_put_cstring(&buffer, *resp); - ssh_msg_send(ctxt->pam_sock, PAM_AUTHTOK, &buffer); - buffer_free(&buffer); - return (1); -} - -static void -pam_free_ctx(void *ctxtp) -{ - struct pam_ctxt *ctxt = ctxtp; - int status; - - fatal_remove_cleanup(pam_cleanup, ctxt); - close(ctxt->pam_sock); - kill(ctxt->pam_pid, SIGHUP); - waitpid(ctxt->pam_pid, &status, 0); - xfree(ctxt->pam_user); - xfree(ctxt); -} - -KbdintDevice pam_device = { - "pam", - pam_init_ctx, - pam_query, - pam_respond, - pam_free_ctx -}; - -KbdintDevice mm_pam_device = { - "pam", - mm_pam_init_ctx, - mm_pam_query, - mm_pam_respond, - mm_pam_free_ctx -}; - -#endif /* USE_PAM */ diff --git a/security/hpn-ssh/files/batch.patch b/security/hpn-ssh/files/batch.patch deleted file mode 100644 index 1e99a5d92180..000000000000 --- a/security/hpn-ssh/files/batch.patch +++ /dev/null @@ -1,36 +0,0 @@ ---- Makefile.in.orig Sun Jul 14 19:02:21 2002 -+++ Makefile.in Sat Oct 26 05:49:23 2002 -@@ -198,7 +198,7 @@ - $(AUTORECONF) - (cd scard && $(MAKE) -f Makefile.in distprep) - --install: $(CONFIGFILES) $(MANPAGES) $(TARGETS) install-files host-key check-config -+install: $(CONFIGFILES) $(MANPAGES) $(TARGETS) install-files check-config - install-nokeys: $(CONFIGFILES) $(MANPAGES) $(TARGETS) install-files - - check-config: -@@ -251,24 +251,6 @@ - ln -s ./ssh.1 $(DESTDIR)$(mandir)/$(mansubdir)1/slogin.1 - if [ ! -d $(DESTDIR)$(sysconfdir) ]; then \ - $(srcdir)/mkinstalldirs $(DESTDIR)$(sysconfdir); \ -- fi -- @if [ ! -f $(DESTDIR)$(sysconfdir)/ssh_config ]; then \ -- $(INSTALL) -m 644 ssh_config.out $(DESTDIR)$(sysconfdir)/ssh_config; \ -- else \ -- echo "$(DESTDIR)$(sysconfdir)/ssh_config already exists, install will not overwrite"; \ -- fi -- @if [ ! -f $(DESTDIR)$(sysconfdir)/sshd_config ]; then \ -- $(INSTALL) -m 644 sshd_config.out $(DESTDIR)$(sysconfdir)/sshd_config; \ -- else \ -- echo "$(DESTDIR)$(sysconfdir)/sshd_config already exists, install will not overwrite"; \ -- fi -- @if [ -f ssh_prng_cmds -a ! -z "$(INSTALL_SSH_PRNG_CMDS)" ]; then \ -- $(PERL) $(srcdir)/fixprogs ssh_prng_cmds $(ENT); \ -- if [ ! -f $(DESTDIR)$(sysconfdir)/ssh_prng_cmds ] ; then \ -- $(INSTALL) -m 644 ssh_prng_cmds.out $(DESTDIR)$(sysconfdir)/ssh_prng_cmds; \ -- else \ -- echo "$(DESTDIR)$(sysconfdir)/ssh_prng_cmds already exists, install will not overwrite"; \ -- fi ; \ - fi - @if [ ! -f $(DESTDIR)$(sysconfdir)/moduli ]; then \ - if [ -f $(DESTDIR)$(sysconfdir)/primes ]; then \ diff --git a/security/hpn-ssh/files/patch-Makefile.in b/security/hpn-ssh/files/patch-Makefile.in deleted file mode 100644 index d354787aeee4..000000000000 --- a/security/hpn-ssh/files/patch-Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- Makefile.in.orig Wed Jun 26 01:45:42 2002 -+++ Makefile.in Mon Jul 22 07:24:41 2002 -@@ -70,6 +70,8 @@ - MANPAGES_IN = scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh.1 sshd.8 sftp-server.8 sftp.1 ssh-rand-helper.8 ssh-keysign.8 sshd_config.5 ssh_config.5 - MANTYPE = @MANTYPE@ - -+SSHDOBJS+= auth2-pam-freebsd.o -+ - CONFIGFILES=sshd_config.out ssh_config.out moduli.out - CONFIGFILES_IN=sshd_config ssh_config moduli - diff --git a/security/hpn-ssh/files/patch-auth.c b/security/hpn-ssh/files/patch-auth.c deleted file mode 100644 index e8f640a16936..000000000000 --- a/security/hpn-ssh/files/patch-auth.c +++ /dev/null @@ -1,29 +0,0 @@ ---- auth.c.orig Tue Mar 5 02:42:43 2002 -+++ auth.c Sun Mar 17 20:53:15 2002 -@@ -193,6 +193,17 @@ - } - #endif /* WITH_AIXAUTHENTICATE */ - -+#ifdef __FreeBSD__ -+ /* Fail if the account's expiration time has passed. */ -+ if (pw->pw_expire != 0) { -+ struct timeval tv; -+ -+ (void)gettimeofday(&tv, NULL); -+ if (tv.tv_sec >= pw->pw_expire) -+ return 0; -+ } -+#endif /* __FreeBSD__ */ -+ - /* We found no reason not to let this user try to log on... */ - return 1; - } -@@ -490,7 +480,7 @@ - if (pw == NULL || !allowed_user(pw)) - return (NULL); - #ifdef HAVE_LOGIN_CAP -- if ((lc = login_getclass(pw->pw_class)) == NULL) { -+ if ((lc = login_getpwclass(pw)) == NULL) { - debug("unable to get login class: %s", user); - return (NULL); - } diff --git a/security/hpn-ssh/files/patch-auth1.c b/security/hpn-ssh/files/patch-auth1.c deleted file mode 100644 index e8ecdbef3917..000000000000 --- a/security/hpn-ssh/files/patch-auth1.c +++ /dev/null @@ -1,64 +0,0 @@ ---- auth1.c.orig Fri Jun 21 08:21:11 2002 -+++ auth1.c Fri Jun 28 06:57:42 2002 -@@ -26,6 +26,7 @@ - #include "session.h" - #include "uidswap.h" - #include "monitor_wrap.h" -+#include "canohost.h" - - /* import */ - extern ServerOptions options; -@@ -75,6 +76,18 @@ - u_int ulen; - int type = 0; - struct passwd *pw = authctxt->pw; -+#ifdef HAVE_LOGIN_CAP -+ login_cap_t *lc; -+#endif -+#ifdef USE_PAM -+ struct inverted_pam_cookie *pam_cookie; -+#endif /* USE_PAM */ -+#if defined(HAVE_LOGIN_CAP) || defined(LOGIN_ACCESS) -+ const char *from_host, *from_ip; -+ -+ from_host = get_canonical_hostname(options.verify_reverse_mapping); -+ from_ip = get_remote_ipaddr(); -+#endif /* HAVE_LOGIN_CAP || LOGIN_ACCESS */ - - debug("Attempting authentication for %s%.100s.", - authctxt->valid ? "" : "illegal user ", authctxt->user); -@@ -282,6 +295,34 @@ - log("Unknown message during authentication: type %d", type); - break; - } -+ -+#ifdef HAVE_LOGIN_CAP -+ if (pw != NULL) { -+ lc = login_getpwclass(pw); -+ if (lc == NULL) -+ lc = login_getclassbyname(NULL, pw); -+ if (!auth_hostok(lc, from_host, from_ip)) { -+ log("Denied connection for %.200s from %.200s [%.200s].", -+ pw->pw_name, from_host, from_ip); -+ packet_disconnect("Sorry, you are not allowed to connect."); -+ } -+ if (!auth_timeok(lc, time(NULL))) { -+ log("LOGIN %.200s REFUSED (TIME) FROM %.200s", -+ pw->pw_name, from_host); -+ packet_disconnect("Logins not available right now."); -+ } -+ login_close(lc); -+ lc = NULL; -+ } -+#endif /* HAVE_LOGIN_CAP */ -+#ifdef LOGIN_ACCESS -+ if (pw != NULL && !login_access(pw->pw_name, from_host)) { -+ log("Denied connection for %.200s from %.200s [%.200s].", -+ pw->pw_name, from_host, from_ip); -+ packet_disconnect("Sorry, you are not allowed to connect."); -+ } -+#endif /* LOGIN_ACCESS */ -+ - #ifdef BSD_AUTH - if (authctxt->as) { - auth_close(authctxt->as); diff --git a/security/hpn-ssh/files/patch-auth2-chall.c b/security/hpn-ssh/files/patch-auth2-chall.c deleted file mode 100644 index 77b5778ac6af..000000000000 --- a/security/hpn-ssh/files/patch-auth2-chall.c +++ /dev/null @@ -1,48 +0,0 @@ ---- auth2-chall.c.orig Wed Jun 26 15:58:40 2002 -+++ auth2-chall.c Sun Jun 30 07:12:43 2002 -@@ -41,6 +42,9 @@ - #ifdef BSD_AUTH - extern KbdintDevice bsdauth_device; - #else -+#ifdef USE_PAM -+extern KbdintDevice pam_device; -+#endif - #ifdef SKEY - extern KbdintDevice skey_device; - #endif -@@ -50,6 +54,9 @@ - #ifdef BSD_AUTH - &bsdauth_device, - #else -+#ifdef USE_PAM -+ &pam_device, -+#endif - #ifdef SKEY - &skey_device, - #endif -@@ -323,15 +330,22 @@ - #ifdef BSD_AUTH - extern KbdintDevice mm_bsdauth_device; - #endif -+#ifdef USE_PAM -+ extern KbdintDevice mm_pam_device; -+#endif - #ifdef SKEY - extern KbdintDevice mm_skey_device; - #endif -- /* As long as SSHv1 has devices[0] hard coded this is fine */ -+ int n = 0; -+ - #ifdef BSD_AUTH -- devices[0] = &mm_bsdauth_device; -+ devices[n++] = &mm_bsdauth_device; - #else -+#ifdef USE_PAM -+ devices[n++] = &mm_pam_device; -+#endif - #ifdef SKEY -- devices[0] = &mm_skey_device; -+ devices[n++] = &mm_skey_device; - #endif - #endif - } diff --git a/security/hpn-ssh/files/patch-auth2.c b/security/hpn-ssh/files/patch-auth2.c deleted file mode 100644 index 8d999bf1bbd9..000000000000 --- a/security/hpn-ssh/files/patch-auth2.c +++ /dev/null @@ -1,68 +0,0 @@ ---- auth2.c.orig Fri Jun 21 08:21:11 2002 -+++ auth2.c Fri Jun 28 06:57:56 2002 -@@ -35,6 +35,7 @@ - #include "dispatch.h" - #include "pathnames.h" - #include "monitor_wrap.h" -+#include "canohost.h" - - /* import */ - extern ServerOptions options; -@@ -137,6 +138,15 @@ - Authmethod *m = NULL; - char *user, *service, *method, *style = NULL; - int authenticated = 0; -+#ifdef HAVE_LOGIN_CAP -+ login_cap_t *lc; -+#endif /* HAVE_LOGIN_CAP */ -+#if defined(HAVE_LOGIN_CAP) || defined(LOGIN_ACCESS) -+ const char *from_host, *from_ip; -+ -+ from_host = get_canonical_hostname(options.verify_reverse_mapping); -+ from_ip = get_remote_ipaddr(); -+#endif /* HAVE_LOGIN_CAP || LOGIN_ACCESS */ - - if (authctxt == NULL) - fatal("input_userauth_request: no authctxt"); -@@ -178,6 +188,41 @@ - "(%s,%s) -> (%s,%s)", - authctxt->user, authctxt->service, user, service); - } -+ -+#ifdef HAVE_LOGIN_CAP -+ if (authctxt->pw != NULL) { -+ lc = login_getpwclass(authctxt->pw); -+ if (lc == NULL) -+ lc = login_getclassbyname(NULL, authctxt->pw); -+ if (!auth_hostok(lc, from_host, from_ip)) { -+ log("Denied connection for %.200s from %.200s [%.200s].", -+ authctxt->pw->pw_name, from_host, from_ip); -+ packet_disconnect("Sorry, you are not allowed to connect."); -+ } -+ if (!auth_timeok(lc, time(NULL))) { -+ log("LOGIN %.200s REFUSED (TIME) FROM %.200s", -+ authctxt->pw->pw_name, from_host); -+ packet_disconnect("Logins not available right now."); -+ } -+ login_close(lc); -+ lc = NULL; -+ } -+#endif /* HAVE_LOGIN_CAP */ -+#ifdef LOGIN_ACCESS -+ if (authctxt->pw != NULL && -+ !login_access(authctxt->pw->pw_name, from_host)) { -+ log("Denied connection for %.200s from %.200s [%.200s].", -+ authctxt->pw->pw_name, from_host, from_ip); -+ packet_disconnect("Sorry, you are not allowed to connect."); -+ } -+#endif /* LOGIN_ACCESS */ -+#ifdef BSD_AUTH -+ if (authctxt->as) { -+ auth_close(authctxt->as); -+ authctxt->as = NULL; -+ } -+#endif -+ - /* reset state */ - auth2_challenge_stop(authctxt); - authctxt->postponed = 0; diff --git a/security/hpn-ssh/files/patch-clientloop.c b/security/hpn-ssh/files/patch-clientloop.c deleted file mode 100644 index 67fc4dcb4f6b..000000000000 --- a/security/hpn-ssh/files/patch-clientloop.c +++ /dev/null @@ -1,11 +0,0 @@ ---- clientloop.c.orig Fri Apr 20 09:17:51 2001 -+++ clientloop.c Sat May 26 15:18:51 2001 -@@ -1131,7 +1131,7 @@ - - if (strcmp(ctype, "forwarded-tcpip") == 0) { - c = client_request_forwarded_tcpip(ctype, rchan); -- } else if (strcmp(ctype, "x11") == 0) { -+ } else if (strcmp(ctype, "x11") == 0 && options.forward_x11) { - c = client_request_x11(ctype, rchan); - } else if (strcmp(ctype, "auth-agent@openssh.com") == 0) { - c = client_request_agent(ctype, rchan); diff --git a/security/hpn-ssh/files/patch-loginrec.c b/security/hpn-ssh/files/patch-loginrec.c deleted file mode 100644 index 37993edf2097..000000000000 --- a/security/hpn-ssh/files/patch-loginrec.c +++ /dev/null @@ -1,25 +0,0 @@ ---- loginrec.c.orig Thu Sep 26 02:38:49 2002 -+++ loginrec.c Mon Oct 21 06:51:34 2002 -@@ -172,6 +172,9 @@ - #ifdef HAVE_LIBUTIL_H - # include <libutil.h> - #endif -+#ifdef __FreeBSD__ -+#include <osreldate.h> -+#endif - - /** - ** prototypes for helper functions in this file -@@ -654,7 +657,12 @@ - /* Use strncpy because we don't necessarily want null termination */ - strncpy(ut->ut_name, li->username, MIN_SIZEOF(ut->ut_name, li->username)); - # ifdef HAVE_HOST_IN_UTMP -+# if defined(__FreeBSD__) && __FreeBSD_version <= 400000 - strncpy(ut->ut_host, li->hostname, MIN_SIZEOF(ut->ut_host, li->hostname)); -+# else -+ realhostname_sa(ut->ut_host, sizeof ut->ut_host, -+ &li->hostaddr.sa, li->hostaddr.sa.sa_len); -+# endif - # endif - # ifdef HAVE_ADDR_IN_UTMP - /* this is just a 32-bit IP address */ diff --git a/security/hpn-ssh/files/patch-monitor.c b/security/hpn-ssh/files/patch-monitor.c deleted file mode 100644 index cca169c55f02..000000000000 --- a/security/hpn-ssh/files/patch-monitor.c +++ /dev/null @@ -1,137 +0,0 @@ ---- monitor.c.orig Wed Jun 26 15:27:11 2002 -+++ monitor.c Mon Jul 15 21:33:45 2002 -@@ -118,6 +118,10 @@ - - #ifdef USE_PAM - int mm_answer_pam_start(int, Buffer *); -+int mm_answer_pam_init_ctx(int, Buffer *); -+int mm_answer_pam_query(int, Buffer *); -+int mm_answer_pam_respond(int, Buffer *); -+int mm_answer_pam_free_ctx(int, Buffer *); - #endif - - static Authctxt *authctxt; -@@ -156,6 +160,10 @@ - {MONITOR_REQ_AUTHPASSWORD, MON_AUTH, mm_answer_authpassword}, - #ifdef USE_PAM - {MONITOR_REQ_PAM_START, MON_ONCE, mm_answer_pam_start}, -+ {MONITOR_REQ_PAM_INIT_CTX, MON_ISAUTH, mm_answer_pam_init_ctx}, -+ {MONITOR_REQ_PAM_QUERY, MON_ISAUTH, mm_answer_pam_query}, -+ {MONITOR_REQ_PAM_RESPOND, MON_ISAUTH, mm_answer_pam_respond}, -+ {MONITOR_REQ_PAM_FREE_CTX, MON_ONCE|MON_AUTHDECIDE, mm_answer_pam_free_ctx}, - #endif - #ifdef BSD_AUTH - {MONITOR_REQ_BSDAUTHQUERY, MON_ISAUTH, mm_answer_bsdauthquery}, -@@ -198,6 +206,10 @@ - #endif - #ifdef USE_PAM - {MONITOR_REQ_PAM_START, MON_ONCE, mm_answer_pam_start}, -+ {MONITOR_REQ_PAM_INIT_CTX, MON_ISAUTH, mm_answer_pam_init_ctx}, -+ {MONITOR_REQ_PAM_QUERY, MON_ISAUTH, mm_answer_pam_query}, -+ {MONITOR_REQ_PAM_RESPOND, MON_ISAUTH, mm_answer_pam_respond}, -+ {MONITOR_REQ_PAM_FREE_CTX, MON_ONCE|MON_AUTHDECIDE, mm_answer_pam_free_ctx}, - #endif - {0, 0, NULL} - }; -@@ -732,6 +744,101 @@ - xfree(user); - - return (0); -+} -+ -+static void *pam_ctxt, *pam_authok; -+extern KbdintDevice pam_device; -+ -+int -+mm_answer_pam_init_ctx(int socket, Buffer *m) -+{ -+ -+ debug3("%s", __func__); -+ authctxt->user = buffer_get_string(m, NULL); -+ pam_ctxt = (pam_device.init_ctx)(authctxt); -+ pam_authok = NULL; -+ buffer_clear(m); -+ if (pam_ctxt != NULL) { -+ monitor_permit(mon_dispatch, MONITOR_REQ_PAM_FREE_CTX, 1); -+ buffer_put_int(m, 1); -+ } else { -+ buffer_put_int(m, 0); -+ } -+ mm_request_send(socket, MONITOR_ANS_PAM_INIT_CTX, m); -+ return (0); -+} -+ -+int -+mm_answer_pam_query(int socket, Buffer *m) -+{ -+ char *name, *info, **prompts; -+ u_int num, *echo_on; -+ int i, ret; -+ -+ debug3("%s", __func__); -+ pam_authok = NULL; -+ ret = (pam_device.query)(pam_ctxt, &name, &info, &num, &prompts, &echo_on); -+ if (num > 1 || name == NULL || info == NULL) -+ ret = -1; -+ buffer_clear(m); -+ buffer_put_int(m, ret); -+ buffer_put_cstring(m, name); -+ xfree(name); -+ buffer_put_cstring(m, info); -+ xfree(info); -+ buffer_put_int(m, num); -+ for (i = 0; i < num; ++i) { -+ buffer_put_cstring(m, prompts[i]); -+ xfree(prompts[i]); -+ buffer_put_int(m, echo_on[i]); -+ } -+ if (prompts != NULL) -+ xfree(prompts); -+ if (echo_on != NULL) -+ xfree(echo_on); -+ mm_request_send(socket, MONITOR_ANS_PAM_QUERY, m); -+ return (0); -+} -+ -+int -+mm_answer_pam_respond(int socket, Buffer *m) -+{ -+ char **resp; -+ u_int num; -+ int i, ret; -+ -+ debug3("%s", __func__); -+ pam_authok = NULL; -+ num = buffer_get_int(m); -+ if (num > 0) { -+ resp = xmalloc(num * sizeof(char *)); -+ for (i = 0; i < num; ++i) -+ resp[i] = buffer_get_string(m, NULL); -+ ret = (pam_device.respond)(pam_ctxt, num, resp); -+ for (i = 0; i < num; ++i) -+ xfree(resp[i]); -+ xfree(resp); -+ } else { -+ ret = (pam_device.respond)(pam_ctxt, num, NULL); -+ } -+ buffer_clear(m); -+ buffer_put_int(m, ret); -+ mm_request_send(socket, MONITOR_ANS_PAM_RESPOND, m); -+ auth_method = "keyboard-interactive/pam"; -+ if (ret == 0) -+ pam_authok = pam_ctxt; -+ return (0); -+} -+ -+int -+mm_answer_pam_free_ctx(int socket, Buffer *m) -+{ -+ -+ debug3("%s", __func__); -+ (pam_device.free_ctx)(pam_ctxt); -+ buffer_clear(m); -+ mm_request_send(socket, MONITOR_ANS_PAM_FREE_CTX, m); -+ return (pam_authok == pam_ctxt); - } - #endif - diff --git a/security/hpn-ssh/files/patch-monitor.h b/security/hpn-ssh/files/patch-monitor.h deleted file mode 100644 index 2c42831b40ab..000000000000 --- a/security/hpn-ssh/files/patch-monitor.h +++ /dev/null @@ -1,13 +0,0 @@ ---- monitor.h.orig Tue Jun 11 18:42:49 2002 -+++ monitor.h Sun Jun 30 07:13:09 2002 -@@ -50,6 +51,10 @@ - MONITOR_REQ_RSACHALLENGE, MONITOR_ANS_RSACHALLENGE, - MONITOR_REQ_RSARESPONSE, MONITOR_ANS_RSARESPONSE, - MONITOR_REQ_PAM_START, -+ MONITOR_REQ_PAM_INIT_CTX, MONITOR_ANS_PAM_INIT_CTX, -+ MONITOR_REQ_PAM_QUERY, MONITOR_ANS_PAM_QUERY, -+ MONITOR_REQ_PAM_RESPOND, MONITOR_ANS_PAM_RESPOND, -+ MONITOR_REQ_PAM_FREE_CTX, MONITOR_ANS_PAM_FREE_CTX, - MONITOR_REQ_TERM - }; - diff --git a/security/hpn-ssh/files/patch-monitor_wrap.c b/security/hpn-ssh/files/patch-monitor_wrap.c deleted file mode 100644 index 99ad633a6028..000000000000 --- a/security/hpn-ssh/files/patch-monitor_wrap.c +++ /dev/null @@ -1,107 +0,0 @@ ---- monitor_wrap.c.orig Fri Jun 21 02:43:43 2002 -+++ monitor_wrap.c Sun Jun 30 07:13:18 2002 -@@ -664,6 +665,88 @@ - - buffer_free(&m); - } -+ -+void * -+mm_pam_init_ctx(Authctxt *authctxt) -+{ -+ Buffer m; -+ int success; -+ -+ debug3("%s", __func__); -+ buffer_init(&m); -+ buffer_put_cstring(&m, authctxt->user); -+ mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_INIT_CTX, &m); -+ debug3("%s: waiting for MONITOR_ANS_PAM_INIT_CTX", __func__); -+ mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_INIT_CTX, &m); -+ success = buffer_get_int(&m); -+ if (success == 0) { -+ debug3("%s: pam_init_ctx failed", __func__); -+ buffer_free(&m); -+ return (NULL); -+ } -+ buffer_free(&m); -+ return (authctxt); -+} -+ -+int -+mm_pam_query(void *ctx, char **name, char **info, -+ u_int *num, char ***prompts, u_int **echo_on) -+{ -+ Buffer m; -+ int i, ret; -+ -+ debug3("%s", __func__); -+ buffer_init(&m); -+ mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_QUERY, &m); -+ debug3("%s: waiting for MONITOR_ANS_PAM_QUERY", __func__); -+ mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_QUERY, &m); -+ ret = buffer_get_int(&m); -+ debug3("%s: pam_query returned %d", __func__, ret); -+ *name = buffer_get_string(&m, NULL); -+ *info = buffer_get_string(&m, NULL); -+ *num = buffer_get_int(&m); -+ *prompts = xmalloc((*num + 1) * sizeof(char *)); -+ *echo_on = xmalloc((*num + 1) * sizeof(u_int)); -+ for (i = 0; i < *num; ++i) { -+ (*prompts)[i] = buffer_get_string(&m, NULL); -+ (*echo_on)[i] = buffer_get_int(&m); -+ } -+ buffer_free(&m); -+ return (ret); -+} -+ -+int -+mm_pam_respond(void *ctx, u_int num, char **resp) -+{ -+ Buffer m; -+ int i, ret; -+ -+ debug3("%s", __func__); -+ buffer_init(&m); -+ buffer_put_int(&m, num); -+ for (i = 0; i < num; ++i) -+ buffer_put_cstring(&m, resp[i]); -+ mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_RESPOND, &m); -+ debug3("%s: waiting for MONITOR_ANS_PAM_RESPOND", __func__); -+ mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_RESPOND, &m); -+ ret = buffer_get_int(&m); -+ debug3("%s: pam_respond returned %d", __func__, ret); -+ buffer_free(&m); -+ return (ret); -+} -+ -+void -+mm_pam_free_ctx(void *ctxtp) -+{ -+ Buffer m; -+ -+ debug3("%s", __func__); -+ buffer_init(&m); -+ mm_request_send(pmonitor->m_recvfd, MONITOR_REQ_PAM_FREE_CTX, &m); -+ debug3("%s: waiting for MONITOR_ANS_PAM_FREE_CTX", __func__); -+ mm_request_receive_expect(pmonitor->m_recvfd, MONITOR_ANS_PAM_FREE_CTX, &m); -+ buffer_free(&m); -+} - #endif /* USE_PAM */ - - /* Request process termination */ -@@ -767,6 +850,7 @@ - return ((authok == 0) ? -1 : 0); - } - -+#ifdef SKEY - int - mm_skey_query(void *ctx, char **name, char **infotxt, - u_int *numprompts, char ***prompts, u_int **echo_on) -@@ -829,6 +913,7 @@ - - return ((authok == 0) ? -1 : 0); - } -+#endif - - void - mm_ssh1_session_id(u_char session_id[16]) diff --git a/security/hpn-ssh/files/patch-monitor_wrap.h b/security/hpn-ssh/files/patch-monitor_wrap.h deleted file mode 100644 index e4495c7ba12e..000000000000 --- a/security/hpn-ssh/files/patch-monitor_wrap.h +++ /dev/null @@ -1,13 +0,0 @@ ---- monitor_wrap.h.orig Mon May 13 03:07:42 2002 -+++ monitor_wrap.h Sun Jun 30 07:13:18 2002 -@@ -57,6 +58,10 @@ - - #ifdef USE_PAM - void mm_start_pam(char *); -+void *mm_pam_init_ctx(struct Authctxt *); -+int mm_pam_query(void *, char **, char **, u_int *, char ***, u_int **); -+int mm_pam_respond(void *, u_int, char **); -+void mm_pam_free_ctx(void *); - #endif - - void mm_terminate(void); diff --git a/security/hpn-ssh/files/patch-session.c b/security/hpn-ssh/files/patch-session.c deleted file mode 100644 index 7ec065eab175..000000000000 --- a/security/hpn-ssh/files/patch-session.c +++ /dev/null @@ -1,334 +0,0 @@ ---- session.c.orig Thu Sep 26 02:38:50 2002 -+++ session.c Mon Oct 21 06:49:56 2002 -@@ -64,6 +64,11 @@ - #define is_winnt (GetVersion() < 0x80000000) - #endif - -+#ifdef __FreeBSD__ -+#include <syslog.h> -+#define _PATH_CHPASS "/usr/bin/passwd" -+#endif /* __FreeBSD__ */ -+ - /* func */ - - Session *session_new(void); -@@ -469,6 +474,13 @@ - log_init(__progname, options.log_level, options.log_facility, log_stderr); - - /* -+ * Using login and executing a specific "command" are mutually -+ * exclusive, so turn off use_login if there's a command. -+ */ -+ if (command != NULL) -+ options.use_login = 0; -+ -+ /* - * Create a new session and process group since the 4.4BSD - * setlogin() affects the entire process group. - */ -@@ -574,6 +586,9 @@ - { - int fdout, ptyfd, ttyfd, ptymaster; - pid_t pid; -+#if defined(USE_PAM) -+ const char *shorttty; -+#endif - - if (s == NULL) - fatal("do_exec_pty: no session"); -@@ -581,7 +596,16 @@ - ttyfd = s->ttyfd; - - #if defined(USE_PAM) -- do_pam_session(s->pw->pw_name, s->tty); -+ /* check if we have a pathname in the ttyname */ -+ shorttty = rindex( s->tty, '/' ); -+ if (shorttty != NULL ) { -+ /* use only the short filename to check */ -+ shorttty ++; -+ } else { -+ /* nothing found, use the whole name found */ -+ shorttty = s->tty; -+ } -+ do_pam_session(s->pw->pw_name, shorttty); - do_pam_setcred(1); - #endif - -@@ -591,6 +615,14 @@ - - /* Child. Reinitialize the log because the pid has changed. */ - log_init(__progname, options.log_level, options.log_facility, log_stderr); -+ -+ /* -+ * Using login and executing a specific "command" are mutually -+ * exclusive, so turn off use_login if there's a command. -+ */ -+ if (command != NULL) -+ options.use_login = 0; -+ - /* Close the master side of the pseudo tty. */ - close(ptyfd); - -@@ -724,6 +756,18 @@ - struct sockaddr_storage from; - struct passwd * pw = s->pw; - pid_t pid = getpid(); -+#ifdef HAVE_LOGIN_CAP -+ FILE *f; -+ char buf[256]; -+ char *fname; -+ const char *shorttty; -+#endif /* HAVE_LOGIN_CAP */ -+#ifdef __FreeBSD__ -+#define DEFAULT_WARN (2L * 7L * 86400L) /* Two weeks */ -+ char *newcommand; -+ struct timeval tv; -+ time_t warntime = DEFAULT_WARN; -+#endif /* __FreeBSD__ */ - - /* - * Get IP address of client. If the connection is not a socket, let -@@ -757,6 +801,72 @@ - } - #endif - -+#ifdef __FreeBSD__ -+ if (pw->pw_change || pw->pw_expire) -+ (void)gettimeofday(&tv, NULL); -+#ifdef HAVE_LOGIN_CAP -+ warntime = login_getcaptime(lc, "warnpassword", -+ DEFAULT_WARN, DEFAULT_WARN); -+#endif /* HAVE_LOGIN_CAP */ -+ /* -+ * If the password change time is set and has passed, give the -+ * user a password expiry notice and chance to change it. -+ */ -+ if (pw->pw_change != 0) { -+ if (tv.tv_sec >= pw->pw_change) { -+ (void)printf( -+ "Sorry -- your password has expired.\n"); -+ log("%s Password expired - forcing change", -+ pw->pw_name); -+ if (newcommand != NULL) -+ xfree(newcommand); -+ newcommand = xstrdup(_PATH_CHPASS); -+ } else if (pw->pw_change - tv.tv_sec < warntime && -+ !check_quietlogin(s, command)) -+ (void)printf( -+ "Warning: your password expires on %s", -+ ctime(&pw->pw_change)); -+ } -+ -+#ifndef USE_PAM -+ if (pw->pw_expire) { -+ if (tv.tv_sec >= pw->pw_expire) { -+ (void)printf( -+ "Sorry -- your account has expired.\n"); -+ log( -+ "LOGIN %.200s REFUSED (EXPIRED) FROM %.200s ON TTY %.200s", -+ pw->pw_name, get_remote_name_or_ip(utmp_len, -+ options.verify_reverse_mapping), s->tty); -+ exit(254); -+ } else if (pw->pw_expire - tv.tv_sec < warntime && -+ !check_quietlogin(s, command)) -+ (void)printf( -+ "Warning: your account expires on %s", -+ ctime(&pw->pw_expire)); -+ } -+#endif /* !USE_PAM */ -+#endif /* __FreeBSD__ */ -+ -+#ifdef HAVE_LOGIN_CAP -+ /* check if we have a pathname in the ttyname */ -+ shorttty = rindex( s->tty, '/' ); -+ if (shorttty != NULL ) { -+ /* use only the short filename to check */ -+ shorttty ++; -+ } else { -+ /* nothing found, use the whole name found */ -+ shorttty = s->tty; -+ } -+ if (!auth_ttyok(lc, shorttty)) { -+ (void)printf("Permission denied.\n"); -+ log( -+ "LOGIN %.200s REFUSED (TTY) FROM %.200s ON TTY %.200s", -+ pw->pw_name, get_remote_name_or_ip(utmp_len, -+ options.verify_reverse_mapping), s->tty); -+ exit(254); -+ } -+#endif /* HAVE_LOGIN_CAP */ -+ - if (check_quietlogin(s, command)) - return; - -@@ -770,7 +880,17 @@ - #endif /* WITH_AIXAUTHENTICATE */ - - #ifndef NO_SSH_LASTLOG -- if (options.print_lastlog && s->last_login_time != 0) { -+ /* -+ * If the user has logged in before, display the time of last -+ * login. However, don't display anything extra if a command -+ * has been specified (so that ssh can be used to execute -+ * commands on a remote machine without users knowing they -+ * are going to another machine). Login(1) will do this for -+ * us as well, so check if login(1) is used -+ */ -+ if (command == NULL && options.print_lastlog && -+ s->last_login_time != 0 && -+ !options.use_login) { - time_string = ctime(&s->last_login_time); - if (strchr(time_string, '\n')) - *strchr(time_string, '\n') = 0; -@@ -782,7 +902,30 @@ - } - #endif /* NO_SSH_LASTLOG */ - -- do_motd(); -+#ifdef HAVE_LOGIN_CAP -+ if (command == NULL && -+ !options.use_login) { -+ fname = login_getcapstr(lc, "copyright", NULL, NULL); -+ if (fname != NULL && (f = fopen(fname, "r")) != NULL) { -+ while (fgets(buf, sizeof(buf), f) != NULL) -+ fputs(buf, stdout); -+ fclose(f); -+ } else -+ (void)printf("%s\n\t%s %s\n", -+ "Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994", -+ "The Regents of the University of California. ", -+ "All rights reserved."); -+ } -+#endif /* HAVE_LOGIN_CAP */ -+ -+ /* -+ * Print /etc/motd unless a command was specified or printing -+ * it was disabled in server options or login(1) will be -+ * used. Note that some machines appear to print it in -+ * /etc/profile or similar. -+ */ -+ if (command == NULL && !options.use_login) -+ do_motd(); - } - - /* -@@ -798,9 +941,9 @@ - #ifdef HAVE_LOGIN_CAP - f = fopen(login_getcapstr(lc, "welcome", "/etc/motd", - "/etc/motd"), "r"); --#else -+#else /* !HAVE_LOGIN_CAP */ - f = fopen("/etc/motd", "r"); --#endif -+#endif /* HAVE_LOGIN_CAP */ - if (f) { - while (fgets(buf, sizeof(buf), f)) - fputs(buf, stdout); -@@ -827,10 +970,10 @@ - #ifdef HAVE_LOGIN_CAP - if (login_getcapbool(lc, "hushlogin", 0) || stat(buf, &st) >= 0) - return 1; --#else -+#else /* HAVE_LOGIN_CAP */ - if (stat(buf, &st) >= 0) - return 1; --#endif -+#endif /* HAVE_LOGIN_CAP */ - return 0; - } - -@@ -950,6 +1093,10 @@ - char buf[256]; - u_int i, envsize; - char **env; -+#ifdef HAVE_LOGIN_CAP -+ extern char **environ; -+ char **senv, **var; -+#endif /* HAVE_LOGIN_CAP */ - struct passwd *pw = s->pw; - - /* Initialize the environment. */ -@@ -957,6 +1104,9 @@ - env = xmalloc(envsize * sizeof(char *)); - env[0] = NULL; - -+ /* Moved up to resove confict with gsssapi patches */ -+ if (getenv("TZ")) -+ child_set_env(&env, &envsize, "TZ", getenv("TZ")); - #ifdef HAVE_CYGWIN - /* - * The Windows environment contains some setting which are -@@ -998,9 +1148,21 @@ - - /* Normal systems set SHELL by default. */ - child_set_env(&env, &envsize, "SHELL", shell); -+#ifdef HAVE_LOGIN_CAP -+ senv = environ; -+ environ = xmalloc(sizeof(char *)); -+ *environ = NULL; -+ if (setusercontext(lc, pw, pw->pw_uid, -+ LOGIN_SETENV|LOGIN_SETPATH) < 0) { -+ perror("unable to set user context enviroment"); -+ } -+ copy_environment(environ, &env, &envsize); -+ for (var = environ; *var != NULL; ++var) -+ xfree(*var); -+ xfree(environ); -+ environ = senv; -+#endif /* HAVE_LOGIN_CAP */ - } -- if (getenv("TZ")) -- child_set_env(&env, &envsize, "TZ", getenv("TZ")); - - /* Set custom environment options from RSA authentication. */ - if (!options.use_login) { -@@ -1208,7 +1370,7 @@ - setpgid(0, 0); - # endif - if (setusercontext(lc, pw, pw->pw_uid, -- (LOGIN_SETALL & ~LOGIN_SETPATH)) < 0) { -+ (LOGIN_SETALL & ~(LOGIN_SETENV|LOGIN_SETPATH))) < 0) { - perror("unable to set user context"); - exit(1); - } -@@ -1362,7 +1524,7 @@ - * initgroups, because at least on Solaris 2.3 it leaves file - * descriptors open. - */ -- for (i = 3; i < 64; i++) -+ for (i = 3; i < getdtablesize(); i++) - close(i); - - /* -@@ -1392,6 +1554,31 @@ - exit(1); - #endif - } -+ -+#ifdef __FreeBSD__ -+ if (!options.use_login) { -+ /* -+ * If the password change time is set and has passed, give the -+ * user a password expiry notice and chance to change it. -+ */ -+ if (pw->pw_change != 0) { -+ struct timeval tv; -+ -+ (void)gettimeofday(&tv, NULL); -+ if (tv.tv_sec >= pw->pw_change) { -+ (void)printf( -+ "Sorry -- your password has expired.\n"); -+ syslog(LOG_INFO, -+ "%s Password expired - forcing change", -+ pw->pw_name); -+ if (system("/usr/bin/passwd") != 0) { -+ perror("/usr/bin/passwd"); -+ exit(1); -+ } -+ } -+ } -+ } -+#endif /* __FreeBSD__ */ - - if (!options.use_login) - do_rc_files(s, shell); diff --git a/security/hpn-ssh/files/patch-sshd.c b/security/hpn-ssh/files/patch-sshd.c deleted file mode 100644 index 09665a42d7bd..000000000000 --- a/security/hpn-ssh/files/patch-sshd.c +++ /dev/null @@ -1,31 +0,0 @@ ---- sshd.c.orig Wed Jun 26 01:24:19 2002 -+++ sshd.c Thu Jul 25 06:32:37 2002 -@@ -53,6 +53,10 @@ - #include <prot.h> - #endif - -+#ifdef __FreeBSD__ -+#include <resolv.h> -+#endif -+ - #include "ssh.h" - #include "ssh1.h" - #include "ssh2.h" -@@ -1409,6 +1413,17 @@ - setsockopt(sock_in, SOL_SOCKET, SO_KEEPALIVE, &on, - sizeof(on)) < 0) - error("setsockopt SO_KEEPALIVE: %.100s", strerror(errno)); -+ -+#ifdef __FreeBSD__ -+ /* -+ * Initialize the resolver. This may not happen automatically -+ * before privsep chroot(). -+ */ -+ if ((_res.options & RES_INIT) == 0) { -+ debug("res_init()"); -+ res_init(); -+ } -+#endif - - /* - * Register our connection. This turns encryption off because we do diff --git a/security/hpn-ssh/files/patch-sshd_config b/security/hpn-ssh/files/patch-sshd_config deleted file mode 100644 index 3d84a8c64d0f..000000000000 --- a/security/hpn-ssh/files/patch-sshd_config +++ /dev/null @@ -1,18 +0,0 @@ ---- sshd_config.orig Fri Jun 21 03:11:36 2002 -+++ sshd_config Wed Jul 3 06:20:47 2002 -@@ -34,6 +34,7 @@ - - #LoginGraceTime 600 - #PermitRootLogin yes -+PermitRootLogin no - #StrictModes yes - - #RSAAuthentication yes -@@ -58,6 +59,7 @@ - - # Change to no to disable s/key passwords - #ChallengeResponseAuthentication yes -+ChallengeResponseAuthentication no - - # Kerberos options - #KerberosAuthentication no diff --git a/security/hpn-ssh/files/patch-sshpty.c b/security/hpn-ssh/files/patch-sshpty.c deleted file mode 100644 index 090be41de9ef..000000000000 --- a/security/hpn-ssh/files/patch-sshpty.c +++ /dev/null @@ -1,12 +0,0 @@ ---- sshpty.c.orig Wed Jun 26 01:21:42 2002 -+++ sshpty.c Fri Jun 28 07:09:38 2002 -@@ -30,6 +30,9 @@ - #ifdef HAVE_PTY_H - # include <pty.h> - #endif -+#ifdef HAVE_LIBUTIL_H -+#include <libutil.h> -+#endif - #if defined(HAVE_DEV_PTMX) && defined(HAVE_SYS_STROPTS_H) - # include <sys/stropts.h> - #endif diff --git a/security/hpn-ssh/files/patch-stderr-after-eof.sh b/security/hpn-ssh/files/patch-stderr-after-eof.sh deleted file mode 100644 index 38969b8d51a3..000000000000 --- a/security/hpn-ssh/files/patch-stderr-after-eof.sh +++ /dev/null @@ -1,11 +0,0 @@ ---- regress/stderr-after-eof.sh.orig Wed May 1 05:17:35 2002 -+++ regress/stderr-after-eof.sh Fri Jul 19 07:22:18 2002 -@@ -7,7 +7,7 @@ - DATA=${OBJ}/data - COPY=${OBJ}/copy - --MD5=md5sum -+MD5=md5 - - # setup data - rm -f ${DATA} ${COPY} diff --git a/security/hpn-ssh/files/servconf.c.patch b/security/hpn-ssh/files/servconf.c.patch deleted file mode 100644 index dde0a6947e60..000000000000 --- a/security/hpn-ssh/files/servconf.c.patch +++ /dev/null @@ -1,17 +0,0 @@ ---- servconf.c.orig Sat Mar 23 11:02:41 2002 -+++ servconf.c Sat Mar 23 11:07:39 2002 -@@ -17,12 +17,12 @@ - #endif - #if defined(KRB5) - #ifdef HEIMDAL --#include <krb.h> -+#include <krb5.h> - #else - /* Bodge - but then, so is using the kerberos IV KEYFILE to get a Kerberos V - * keytab */ --#define KEYFILE "/etc/krb5.keytab" - #endif -+#define KEYFILE "/etc/krb5.keytab" - #endif - #ifdef AFS - #include <kafs.h> diff --git a/security/hpn-ssh/files/sshd.sh b/security/hpn-ssh/files/sshd.sh deleted file mode 100644 index ba52de02fe7b..000000000000 --- a/security/hpn-ssh/files/sshd.sh +++ /dev/null @@ -1,24 +0,0 @@ -#!/bin/sh -case "$1" in -start) - __PREFIX__/sbin/sshd - echo -n ' sshd' - ;; -stop) - if [ -f /var/run/sshd.pid ]; then - kill -TERM `cat /var/run/sshd.pid` - rm -f /var/run/sshd.pid - echo -n ' sshd' - fi - ;; -restart) - if [ -f /var/run/sshd.pid ]; then - kill -HUP `cat /var/run/sshd.pid` - echo 'sshd restarted' - fi - ;; -*) - echo "Usage: ${0##*/}: { start | stop | restart }" 2>&1 - exit 65 - ;; -esac diff --git a/security/hpn-ssh/pkg-comment b/security/hpn-ssh/pkg-comment deleted file mode 100644 index d96c7bfa9b13..000000000000 --- a/security/hpn-ssh/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -The portable version of OpenBSD's OpenSSH diff --git a/security/hpn-ssh/pkg-descr b/security/hpn-ssh/pkg-descr deleted file mode 100644 index 99ac07bfd209..000000000000 --- a/security/hpn-ssh/pkg-descr +++ /dev/null @@ -1,15 +0,0 @@ -OpenBSD's OpenSSH portable version - -Normal OpenSSH development produces a very small, secure, and easy to maintain -version for the OpenBSD project. The OpenSSH Portability Team takes that pure -version and adds portability code so that OpenSSH can run on many other -operating systems (Unfortunately, in particular since OpenSSH does -authentication, it runs into a *lot* of differences between Unix operating -systems). - -The portable OpenSSH follows development of the official version, but releases -are not synchronized. Portable releases are marked with a 'p' (e.g. 3.1p1). -The official OpenBSD source will never use the 'p' suffix, but will instead -increment the version number when they hit 'stable spots' in their development. - -WWW: http://www.openssh.com/portable.html diff --git a/security/hpn-ssh/pkg-message b/security/hpn-ssh/pkg-message deleted file mode 100644 index b0908ddd4486..000000000000 --- a/security/hpn-ssh/pkg-message +++ /dev/null @@ -1,17 +0,0 @@ -To enable this port, please add sshd_program=/usr/local/sbin/sshd and make -sure sshd_enable is set to YES in your /etc/rc.conf - -You may also want to put NO_OPENSSH= true in your /etc/make.conf -and make sure your path is setup to /usr/local/bin before /usr/bin so that -you are running the port version of openssh and not the version that comes -with FreeBSD - -'PermitRootLogin no' is the new default for the OpenSSH port. -This now matches the PermitRootLogin configuration of OpenSSH in -the base system. Please be aware of this when upgrading your -OpenSSH port, and if truly necessary, re-enable remote root login -by readjusting this option in your sshd_config. - -Users are encouraged to create single-purpose users with ssh keys -and very narrowly defined sudo privileges instead of using root -for automated tasks. diff --git a/security/hpn-ssh/pkg-plist b/security/hpn-ssh/pkg-plist deleted file mode 100644 index a20e02c1426b..000000000000 --- a/security/hpn-ssh/pkg-plist +++ /dev/null @@ -1,38 +0,0 @@ -@comment slogin must be deleted first -bin/slogin -bin/scp -bin/sftp -bin/ssh -bin/ssh-add -bin/ssh-agent -bin/ssh-keygen -bin/ssh-keyscan -%%NOTBASE%%etc/rc.d/sshd.sh.sample -%%NOTBASE%%etc/ssh/moduli -%%NOTBASE%%@exec [ -f %D/etc/ssh_config ] && [ ! -f %D/etc/ssh/ssh_config ] && ln %D/etc/ssh_config %D/etc/ssh/ssh_config -%%NOTBASE%%@exec [ -f %D/etc/sshd_config ] && [ ! -f %D/etc/ssh/sshd_config ] && ln %D/etc/sshd_config %D/etc/ssh/sshd_config -%%NOTBASE%%@exec [ -f %D/etc/ssh_host_key ] && [ ! -f %D/etc/ssh/ssh_host_key ] && ln %D/etc/ssh_host_key %D/etc/ssh/ssh_host_key -%%NOTBASE%%@exec [ -f %D/etc/ssh_host_key.pub ] && [ ! -f %D/etc/ssh/ssh_host_key.pub ] && ln %D/etc/ssh_host_key.pub %D/etc/ssh/ssh_host_key.pub -%%NOTBASE%%@exec [ -f %D/etc/ssh_host_rsa_key ] && [ ! -f %D/etc/ssh/ssh_host_rsa_key ] && ln %D/etc/ssh_host_rsa_key %D/etc/ssh/ssh_host_rsa_key -%%NOTBASE%%@exec [ -f %D/etc/ssh_host_rsa_key.pub ] && [ ! -f %D/etc/ssh/ssh_host_rsa_key.pub ] && ln %D/etc/ssh_host_rsa_key.pub %D/etc/ssh/ssh_host_rsa_key.pub -%%NOTBASE%%@exec [ -f %D/etc/ssh_host_dsa_key ] && [ ! -f %D/etc/ssh/ssh_host_dsa_key ] && ln %D/etc/ssh_host_dsa_key %D/etc/ssh/ssh_host_dsa_key -%%NOTBASE%%@exec [ -f %D/etc/ssh_host_dsa_key.pub ] && [ ! -f %D/etc/ssh/ssh_host_dsa_key.pub ] && ln %D/etc/ssh_host_dsa_key.pub %D/etc/ssh/ssh_host_dsa_key.pub -%%NOTBASE%%@unexec if cmp -s %D/etc/ssh/ssh_config %D/etc/ssh/ssh_config-dist; then rm -f %D/etc/ssh/ssh_config; fi -%%NOTBASE%%@unexec if cmp -s %D/etc/ssh/sshd_config %D/etc/ssh/sshd_config-dist; then rm -f %D/etc/ssh/sshd_config; fi -%%NOTBASE%%etc/ssh/ssh_config-dist -%%NOTBASE%%etc/ssh/sshd_config-dist -%%NOTBASE%%@exec [ ! -f %D/etc/ssh/ssh_config ] && cp %D/etc/ssh/ssh_config-dist %D/etc/ssh/ssh_config -%%NOTBASE%%@exec [ ! -f %D/etc/ssh/sshd_config ] && cp %D/etc/ssh/sshd_config-dist %D/etc/ssh/sshd_config -%%NOTBASE%%@dirrm etc/ssh -sbin/sshd -share/Ssh.bin -libexec/sftp-server -libexec/ssh-keysign -%%NOTBASE%%@exec if [ ! -f %D/etc/ssh/ssh_host_key ]; then echo ">> Generating a secret RSA1 host key."; %D/bin/ssh-keygen -t rsa1 -N "" -f %D/etc/ssh/ssh_host_key; fi -%%NOTBASE%%@exec if [ ! -f %D/etc/ssh/ssh_host_rsa_key ]; then echo ">> Generating a secret RSA host key."; %D/bin/ssh-keygen -t rsa -N "" -f %D/etc/ssh/ssh_host_rsa_key; fi -%%NOTBASE%%@exec if [ ! -f %D/etc/ssh/ssh_host_dsa_key ]; then echo ">> Generating a secret DSA host key."; %D/bin/ssh-keygen -t dsa -N "" -f %D/etc/ssh/ssh_host_dsa_key; fi -%%NOTBASE%%@exec mkdir -p %D/empty -%%NOTBASE%%@dirrm empty -%%BASE%%@exec mkdir -p %%EMPTYDIR%% -@exec if ! pw groupshow sshd 2>/dev/null; then pw groupadd sshd -g 22; fi -@exec if ! pw usershow sshd 2>/dev/null; then pw useradd sshd -g sshd -u 22 -h - -d %%EMPTYDIR%% -s /nonexistent -c "sshd privilege separation"; fi diff --git a/security/kgpg-kde4/Makefile b/security/kgpg-kde4/Makefile deleted file mode 100644 index 1725a3ae4156..000000000000 --- a/security/kgpg-kde4/Makefile +++ /dev/null @@ -1,45 +0,0 @@ -# New ports collection makefile for: kdeutils3 -# Date created: 3 November 2001 -# Whom: will@cvs.kde.org -# -# $FreeBSD$ -# - -PORTNAME= kdeutils -PORTVERSION= ${KDE_VERSION} -PORTREVISION= 1 -CATEGORIES?= misc kde -MASTER_SITES= ${MASTER_SITE_KDE} -MASTER_SITE_SUBDIR= stable/${PORTVERSION}/src -DIST_SUBDIR= KDE - -MAINTAINER?= kde@FreeBSD.org - -USE_KDELIBS_VER=3 -USE_BZIP2= yes -INSTALLS_SHLIB= yes -GNU_CONFIGURE= yes -USE_GMAKE= yes -MAN1= efax.1 efix.1 fax.1 - -.include "${.CURDIR}/../../x11/kde3/Makefile.kde" - -#klaptop doesn't like alpha because alpha doesn't support apm -.if ${MACHINE_ARCH} == "alpha" -DO_NOT_COMPILE+=klaptopdaemon -PLIST_SUB+= ALPHA_NA="@comment " -.else -PLIST_SUB+= ALPHA_NA="" -.endif -# kfloppy is a mostly broken, non-standard, linux-centric pain... -.if !defined(WITH_KFLOPPY) -DO_NOT_COMPILE+=kfloppy -PLIST_SUB+= KFLOPPY="@comment " -.else -PLIST_SUB+= KFLOPPY="" -.endif -.if defined(DO_NOT_COMPILE) -CONFIGURE_ENV+= DO_NOT_COMPILE="${DO_NOT_COMPILE}" -.endif - -.include <bsd.port.mk> diff --git a/security/kgpg-kde4/distinfo b/security/kgpg-kde4/distinfo deleted file mode 100644 index cba41d522370..000000000000 --- a/security/kgpg-kde4/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (KDE/kdeutils-3.0.4.tar.bz2) = e34ccb00b25f04f0a27474fa17d68e77 diff --git a/security/kgpg-kde4/pkg-comment b/security/kgpg-kde4/pkg-comment deleted file mode 100644 index 186230f9287d..000000000000 --- a/security/kgpg-kde4/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Utilities for the KDE integrated X11 desktop diff --git a/security/kgpg-kde4/pkg-descr b/security/kgpg-kde4/pkg-descr deleted file mode 100644 index 90ae45773bea..000000000000 --- a/security/kgpg-kde4/pkg-descr +++ /dev/null @@ -1 +0,0 @@ -KDE provides an integrated X11 based environment, much like CDE. diff --git a/security/kgpg-kde4/pkg-plist b/security/kgpg-kde4/pkg-plist deleted file mode 100644 index 689c255fca05..000000000000 --- a/security/kgpg-kde4/pkg-plist +++ /dev/null @@ -1,283 +0,0 @@ -bin/ark -bin/efax -bin/efix -bin/fax -bin/kcalc -bin/kcharselect -bin/kdepasswd -bin/kdessh -bin/kdf -bin/kedit -bin/khexedit -bin/kjots -bin/klaptopdaemon -bin/kljettool -bin/klpq -bin/klprfax -bin/klprfax_filter -bin/klprfax_lpd -bin/ktimer -bin/kwikdisk -include/kmultiformlistbox.h -include/kmultiformlistboxentry.h -include/kmultiformlistboxfactory.h -include/kwidgetstreamer.h -lib/kcalc.la -lib/kcalc.so -lib/kde3/kcharselectapplet.la -lib/kde3/kcharselectapplet.so -lib/kde3/kcharselectapplet.so.1 -lib/kde3/kcm_kdf.la -lib/kde3/kcm_kdf.so -lib/kde3/kcm_laptop.la -lib/kde3/kcm_laptop.so -lib/kde3/libkregexpeditorgui.la -lib/kde3/libkregexpeditorgui.so -lib/kedit.la -lib/kedit.so -lib/klaptopdaemon.la -lib/klaptopdaemon.so -lib/libark.la -lib/libark.so -lib/libark.so.1 -share/applnk/Editors/KEdit.desktop -share/applnk/Settings/Information/kcmdf.desktop -share/applnk/Settings/Information/pcmcia.desktop -share/applnk/Settings/PowerControl/battery.desktop -share/applnk/Settings/PowerControl/bwarning.desktop -share/applnk/Settings/PowerControl/cwarning.desktop -share/applnk/Settings/PowerControl/power.desktop -share/applnk/System/kdf.desktop -share/applnk/System/kwikdisk.desktop -share/applnk/Utilities/KCharSelect.desktop -share/applnk/Utilities/KLJetTool.desktop -share/applnk/Utilities/KLpq.desktop -share/applnk/Utilities/Kjots.desktop -share/applnk/Utilities/ark.desktop -share/applnk/Utilities/kcalc.desktop -share/applnk/Utilities/kdepasswd.desktop -share/applnk/Utilities/khexedit.desktop -share/applnk/Utilities/klprfax.desktop -share/applnk/Utilities/ktimer.desktop -share/apps/ark/ark_part.rc -share/apps/ark/arkui.rc -share/apps/ark/icons/hicolor/22x22/actions/ark_adddir.png -share/apps/ark/icons/hicolor/22x22/actions/ark_addfile.png -share/apps/ark/icons/hicolor/22x22/actions/ark_delete.png -share/apps/ark/icons/hicolor/22x22/actions/ark_extract.png -share/apps/ark/icons/hicolor/22x22/actions/ark_help.png -share/apps/ark/icons/hicolor/22x22/actions/ark_new.png -share/apps/ark/icons/hicolor/22x22/actions/ark_open.png -share/apps/ark/icons/hicolor/22x22/actions/ark_options.png -share/apps/ark/icons/hicolor/22x22/actions/ark_selectall.png -share/apps/ark/icons/hicolor/22x22/actions/ark_view.png -share/apps/kdf/pics/delete.png -share/apps/kdf/pics/tick.png -share/apps/kedit/keditui.rc -share/apps/khexedit/toolbar/hexdrag.png -share/apps/khexedit/toolbar/hexmask.png -share/apps/khexedit/toolbar/hexwrite.png -share/apps/kicker/applets/kcharselectapplet.desktop -share/apps/kjots/pics/filedel.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/laptop_charge.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/laptop_nobattery.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/laptop_nocharge.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/power.png -share/apps/klaptopdaemon/icons/hicolor/32x32/actions/power.png -share/apps/kljettool/pics/kljetlogo.png -share/apps/konqueror/servicemenus/arkservicemenu.desktop -share/apps/kregexpeditor/pics/altn.png -share/apps/kregexpeditor/pics/anychar.png -share/apps/kregexpeditor/pics/begline.png -share/apps/kregexpeditor/pics/characters.png -share/apps/kregexpeditor/pics/compound.png -share/apps/kregexpeditor/pics/endline.png -share/apps/kregexpeditor/pics/error.png -share/apps/kregexpeditor/pics/neglookahead.png -share/apps/kregexpeditor/pics/nonwordboundary.png -share/apps/kregexpeditor/pics/poslookahead.png -share/apps/kregexpeditor/pics/repeat.png -share/apps/kregexpeditor/pics/select.png -share/apps/kregexpeditor/pics/text.png -share/apps/kregexpeditor/pics/wordboundary.png -share/apps/kregexpeditor/predefined/general/anything.regexp -share/apps/kregexpeditor/predefined/general/spaces.regexp -share/doc/HTML/en/KRegExpEditor/altn.png -share/doc/HTML/en/KRegExpEditor/altntool.png -share/doc/HTML/en/KRegExpEditor/anychar.png -share/doc/HTML/en/KRegExpEditor/anychartool.png -share/doc/HTML/en/KRegExpEditor/begline.png -share/doc/HTML/en/KRegExpEditor/boundarytools.png -share/doc/HTML/en/KRegExpEditor/characters.png -share/doc/HTML/en/KRegExpEditor/charactertool.png -share/doc/HTML/en/KRegExpEditor/common -share/doc/HTML/en/KRegExpEditor/compound.png -share/doc/HTML/en/KRegExpEditor/compoundtool.png -share/doc/HTML/en/KRegExpEditor/endline.png -share/doc/HTML/en/KRegExpEditor/index.cache.bz2 -share/doc/HTML/en/KRegExpEditor/index.docbook -share/doc/HTML/en/KRegExpEditor/linestartendtool.png -share/doc/HTML/en/KRegExpEditor/lookaheadtools.png -share/doc/HTML/en/KRegExpEditor/neglookahead.png -share/doc/HTML/en/KRegExpEditor/nonwordboundary.png -share/doc/HTML/en/KRegExpEditor/poslookahead.png -share/doc/HTML/en/KRegExpEditor/repeat.png -share/doc/HTML/en/KRegExpEditor/repeattool.png -share/doc/HTML/en/KRegExpEditor/select.png -share/doc/HTML/en/KRegExpEditor/text.png -share/doc/HTML/en/KRegExpEditor/texttool.png -share/doc/HTML/en/KRegExpEditor/theEditor.png -share/doc/HTML/en/KRegExpEditor/wordboundary.png -share/doc/HTML/en/ark/common -share/doc/HTML/en/ark/index.cache.bz2 -share/doc/HTML/en/ark/index.docbook -share/doc/HTML/en/kab/common -share/doc/HTML/en/kab/index.cache.bz2 -share/doc/HTML/en/kab/index.docbook -share/doc/HTML/en/kab/kab-edit.png -share/doc/HTML/en/kab/kab-using.png -share/doc/HTML/en/kcalc/common -share/doc/HTML/en/kcalc/index.cache.bz2 -share/doc/HTML/en/kcalc/index.docbook -share/doc/HTML/en/kcalc/kcalc_on_Aix.txt -share/doc/HTML/en/kcalc/kcalc_on_OSF.txt -share/doc/HTML/en/kdf/common -share/doc/HTML/en/kdf/index.cache.bz2 -share/doc/HTML/en/kdf/index.docbook -share/doc/HTML/en/kdf/kdf.png -share/doc/HTML/en/kdf/kdf_config.png -share/doc/HTML/en/kedit/common -share/doc/HTML/en/kedit/index.cache.bz2 -share/doc/HTML/en/kedit/index.docbook -share/doc/HTML/en/kfloppy/common -share/doc/HTML/en/kfloppy/index.cache.bz2 -share/doc/HTML/en/kfloppy/index.docbook -share/doc/HTML/en/khexedit/common -share/doc/HTML/en/khexedit/index.cache.bz2 -share/doc/HTML/en/khexedit/index.docbook -share/doc/HTML/en/khexedit/khexedit1.png -share/doc/HTML/en/kjots/common -share/doc/HTML/en/kjots/index.cache.bz2 -share/doc/HTML/en/kjots/index.docbook -share/doc/HTML/en/kljettool/README -share/doc/HTML/en/kljettool/common -share/doc/HTML/en/kljettool/djcdoscommands.txt -share/doc/HTML/en/kljettool/filter -share/doc/HTML/en/kljettool/hp690c.zip -share/doc/HTML/en/kljettool/index.cache.bz2 -share/doc/HTML/en/kljettool/index.docbook -share/doc/HTML/en/kljettool/magic -share/doc/HTML/en/kljettool/screenshot.png -share/doc/HTML/en/klpq/common -share/doc/HTML/en/klpq/index.cache.bz2 -share/doc/HTML/en/klpq/index.docbook -share/doc/HTML/en/klprfax/common -share/doc/HTML/en/klprfax/index.cache.bz2 -share/doc/HTML/en/klprfax/index.docbook -share/icons/hicolor/16x16/apps/ark.png -share/icons/hicolor/16x16/apps/kcalc.png -share/icons/hicolor/16x16/apps/kcharselect.png -share/icons/hicolor/16x16/apps/kcmdf.png -share/icons/hicolor/16x16/apps/kdf.png -share/icons/hicolor/16x16/apps/kedit.png -share/icons/hicolor/16x16/apps/khexedit.png -share/icons/hicolor/16x16/apps/kjots.png -share/icons/hicolor/16x16/apps/klaptopdaemon.png -share/icons/hicolor/16x16/apps/kljettool.png -share/icons/hicolor/16x16/apps/klpq.png -share/icons/hicolor/16x16/apps/klprfax.png -share/icons/hicolor/16x16/apps/kwikdisk.png -share/icons/hicolor/16x16/apps/laptop_battery.png -share/icons/hicolor/16x16/apps/laptop_pcmcia.png -share/icons/hicolor/32x32/apps/ark.png -share/icons/hicolor/32x32/apps/kcalc.png -share/icons/hicolor/32x32/apps/kcmdf.png -share/icons/hicolor/32x32/apps/kdf.png -share/icons/hicolor/32x32/apps/kedit.png -share/icons/hicolor/32x32/apps/khexedit.png -share/icons/hicolor/32x32/apps/kjots.png -share/icons/hicolor/32x32/apps/kljettool.png -share/icons/hicolor/32x32/apps/klpq.png -share/icons/hicolor/32x32/apps/klprfax.png -share/icons/hicolor/32x32/apps/kwikdisk.png -share/icons/hicolor/32x32/apps/laptop_battery.png -share/icons/hicolor/32x32/apps/laptop_pcmcia.png -share/icons/hicolor/48x48/apps/ark.png -share/icons/hicolor/48x48/apps/kcalc.png -share/icons/hicolor/48x48/apps/kcharselect.png -share/icons/hicolor/48x48/apps/kedit.png -share/icons/hicolor/48x48/apps/khexedit.png -share/icons/hicolor/48x48/apps/kjots.png -share/icons/hicolor/48x48/apps/kljettool.png -share/icons/hicolor/48x48/apps/klpq.png -share/icons/hicolor/48x48/apps/laptop_battery.png -share/icons/hicolor/48x48/apps/laptop_pcmcia.png -share/icons/locolor/16x16/apps/klprfax.png -share/icons/locolor/32x32/apps/klprfax.png -share/services/arkpart.desktop -share/services/klaptopdaemon.desktop -share/services/kregexpeditorgui.desktop -@exec /bin/mkdir -p %D/share/apps/kcalc/pics -@dirrm share/icons/locolor/32x32/apps -@dirrm share/icons/locolor/32x32 -@dirrm share/icons/locolor/16x16/apps -@dirrm share/icons/locolor/16x16 -@dirrm share/icons/locolor -@dirrm share/icons/hicolor/48x48/apps -@dirrm share/icons/hicolor/48x48 -@dirrm share/icons/hicolor/32x32/apps -@dirrm share/icons/hicolor/32x32 -@dirrm share/icons/hicolor/16x16/apps -@dirrm share/icons/hicolor/16x16 -@dirrm share/icons/hicolor -@dirrm share/doc/HTML/en/klprfax -@dirrm share/doc/HTML/en/klpq -@dirrm share/doc/HTML/en/kljettool -@dirrm share/doc/HTML/en/kjots -@dirrm share/doc/HTML/en/khexedit -@dirrm share/doc/HTML/en/kfloppy -@dirrm share/doc/HTML/en/kedit -@dirrm share/doc/HTML/en/kdf -@dirrm share/doc/HTML/en/kcalc -@dirrm share/doc/HTML/en/kab -@dirrm share/doc/HTML/en/ark -@dirrm share/doc/HTML/en/KRegExpEditor -@dirrm share/doc/HTML/en -@dirrm share/doc/HTML -@dirrm share/apps/kregexpeditor/predefined/general -@dirrm share/apps/kregexpeditor/predefined -@dirrm share/apps/kregexpeditor/pics -@dirrm share/apps/kregexpeditor -@dirrm share/apps/konqueror/servicemenus -@dirrm share/apps/konqueror -@dirrm share/apps/kljettool/pics -@dirrm share/apps/kljettool -@dirrm share/apps/klaptopdaemon/icons/hicolor/32x32/actions -@dirrm share/apps/klaptopdaemon/icons/hicolor/32x32 -@dirrm share/apps/klaptopdaemon/icons/hicolor/16x16/actions -@dirrm share/apps/klaptopdaemon/icons/hicolor/16x16 -@dirrm share/apps/klaptopdaemon/icons/hicolor -@dirrm share/apps/klaptopdaemon/icons -@dirrm share/apps/klaptopdaemon -@dirrm share/apps/kjots/pics -@dirrm share/apps/kjots -@dirrm share/apps/kicker/applets -@dirrm share/apps/kicker -@dirrm share/apps/khexedit/toolbar -@dirrm share/apps/khexedit -@dirrm share/apps/kedit -@dirrm share/apps/kdf/pics -@dirrm share/apps/kdf -@dirrm share/apps/kcalc/pics -@dirrm share/apps/kcalc -@dirrm share/apps/ark/icons/hicolor/22x22/actions -@dirrm share/apps/ark/icons/hicolor/22x22 -@dirrm share/apps/ark/icons/hicolor -@dirrm share/apps/ark/icons -@dirrm share/apps/ark -@dirrm share/applnk/Utilities -@dirrm share/applnk/System -@dirrm share/applnk/Settings/PowerControl -@dirrm share/applnk/Settings/Information -@dirrm share/applnk/Settings -@dirrm share/applnk/Editors diff --git a/security/krb5-16/Makefile b/security/krb5-16/Makefile deleted file mode 100644 index da604fe2954f..000000000000 --- a/security/krb5-16/Makefile +++ /dev/null @@ -1,149 +0,0 @@ -# Ports collection Makefile for: MIT Kerberos V -# Date created: 6/5/1998 -# Whom: nectar@FreeBSD.org -# -# $FreeBSD$ -# - -PORTNAME= krb5 -PORTVERSION= 1.2.7 -CATEGORIES= security -.if defined(USA_RESIDENT) && ${USA_RESIDENT} == "NO" -# XXX crypto-publish.org does not at this time have the krb5-1.2.7 tarball. -# Use manual download until crypto-publish.org posts a copy of krb5-1.2.7 -# on their website. -# MASTER_SITES= http://www.crypto-publish.org/dist/mit-kerberos5/ -# EXTRACT_SUFX= .tar.gz -MASTER_SITES= # manual download -EXTRACT_SUFX= .tar -.else -MASTER_SITES= # manual download -EXTRACT_SUFX= .tar -.endif - -MAINTAINER= cy@FreeBSD.org - -BUILD_DEPENDS= gm4:${PORTSDIR}/devel/m4 - -KERBEROSV_URL= http://web.mit.edu/network/kerberos-form.html -USE_GMAKE= yes -INSTALLS_SHLIB= yes -GNU_CONFIGURE= yes -CONFIGURE_ARGS?= --enable-shared --with-ccopts="${CFLAGS}" -CONFIGURE_ENV= INSTALL="${INSTALL}" YACC=/usr/bin/yacc -MAKE_ARGS= INSTALL="${INSTALL}" -KRB5_KRB4_COMPAT?= YES - -.if !defined(KRB5_KRB4_COMPAT) || ${KRB5_KRB4_COMPAT} == "NO" -CONFIGURE_ARGS+= --without-krb4 -PLIST_SUB+= KRB4="@comment " -.else -PLIST_SUB+= KRB4="" -.endif - -.if defined(KRB5_HOME) -PREFIX= ${KRB5_HOME} -.endif - -RESTRICTED= "Crypto; export-controlled" -# Set USA_RESIDENT appropriately in /etc/make.conf if you like - -INFO_FILES= krb425.info krb5-admin.info krb5-admin.info-1 \ - krb5-admin.info-2 krb5-admin.info-3 krb5-install.info \ - krb5-install.info-1 krb5-install.info-2 krb5-user.info - -MAN1= krb5-send-pr.1 kpasswd.1 v5passwd.1 klist.1 kinit.1 \ - kdestroy.1 ksu.1 sclient.1 rsh.1 rcp.1 rlogin.1 \ - ftp.1 telnet.1 kerberos.1 kvno.1 -.if defined(KRB5_KRB4_COMPAT) && ${KRB5_KRB4_COMPAT} != "NO" -MAN1+= v4rcp.1 -.endif -MAN5= kdc.conf.5 krb5.conf.5 .k5login.5 -MAN8= krb5kdc.8 kadmin.8 kadmin.local.8 kdb5_util.8 \ - ktutil.8 kadmind.8 kprop.8 kpropd.8 sserver.8 \ - kshd.8 klogind.8 login.krb5.8 ftpd.8 telnetd.8 - -WRKSRC= ${WRKDIR}/${DISTNAME}/src - -WANT_HTML?= YES -HTML_DOC_DIR= ${WRKDIR}/${DISTNAME}/doc -HTML_DOCS= admin.html install_foot.html user-guide.html \ - admin_foot.html install_toc.html user-guide_foot.html \ - admin_toc.html krb425.html user-guide_toc.html \ - install.html krb425_toc.html - -.if !defined(USA_RESIDENT) || ${USA_RESIDENT} == "YES" -do-fetch: - @if [ ! -f ${DISTDIR}/${DISTNAME}${EXTRACT_SUFX} ]; then \ - ${ECHO} ""; \ - ${ECHO} ">> Kerberos V contains encryption software and is"; \ - ${ECHO} " export restricted. If you are not a USA resident,";\ - ${ECHO} " then you cannot obtain the Kerberos V sources from";\ - ${ECHO} " within the United States."; \ - ${ECHO} ""; \ - ${ECHO} ">> The Kerberos V sources must be fetched manually."; \ - ${ECHO} " Please visit ${KERBEROSV_URL}"; \ - ${ECHO} " to download ${DISTNAME}${EXTRACT_SUFX} and place"; \ - ${ECHO} " it in ${DISTDIR}. Then run make again."; \ - ${FALSE}; \ - fi - -post-extract: - @${TAR} -C ${WRKDIR} -xzf ${WRKDIR}/${DISTNAME}.tar.gz - @${RM} ${WRKDIR}/${DISTNAME}.tar.gz ${WRKDIR}/${DISTNAME}.tar.gz.asc -.if !defined(EXTRACT_PRESERVE_OWNERSHIP) - @if [ `id -u` = 0 ]; then \ - ${CHMOD} -R ug-s,go-w ${WRKDIR}/${DISTNAME}; \ - ${CHOWN} -R 0:0 ${WRKDIR}/${DISTNAME}; \ - fi -.endif -.endif - -pre-build: -.if !defined(KRB5_KRB4_COMPAT) - @${ECHO} "------------------------------------------------------" - @${ECHO} "Set KRB5_KRB4_COMPAT=NO if you do not want to build " - @${ECHO} "the KerberosIV compatibility libraries. " - @${ECHO} "------------------------------------------------------" -.endif - -post-build: - @(cd ${WRKSRC}/../doc && \ - ${MAKE} ${INFO_FILES}) - -.include <bsd.port.pre.mk> - -post-install: -# html documentation -.if defined(WANT_HTML) && ${WANT_HTML} == "YES" - @${MKDIR} ${PREFIX}/share/doc/krb5 -.for html in ${HTML_DOCS} - ${INSTALL_MAN} ${HTML_DOC_DIR}/${html} ${PREFIX}/share/doc/krb5 -.endfor -.endif -# handle info files -.for info in ${INFO_FILES} - ${INSTALL_MAN} ${WRKSRC}/../doc/${info} ${PREFIX}/info/${info} -.endfor -.for info in ${INFO_FILES:M*.info} - install-info ${PREFIX}/info/${info} ${PREFIX}/info/dir -.endfor -# fixup packing list (no libs without version numbers in aout case) -.if ${PORTOBJFORMAT} == "aout" - ${ECHO_MSG} "Fixing packing list for a.out" - ${MV} ${TMPPLIST} ${TMPPLIST}.new - ${GREP} -v '\.so$$' ${TMPPLIST}.new > ${TMPPLIST} - ${RM} ${TMPPLIST}.new -.endif - @${SED} "s%\${PREFIX}%${PREFIX}%" ${FILESDIR}/README.FreeBSD > ${PREFIX}/share/doc/krb5/README.FreeBSD - @${CHMOD} 444 ${PREFIX}/share/doc/krb5/README.FreeBSD - @${ECHO} "------------------------------------------------------" - @${ECHO} "This port of MIT Kerberos 5 includes remote login " - @${ECHO} "daemons (telnetd and klogind). These daemons default " - @${ECHO} "to using the system login program (/usr/bin/login). " - @${ECHO} "Please see the file " - @${ECHO} "${PREFIX}/share/doc/krb5/README.FreeBSD" - @${ECHO} "for more information. " - @${ECHO} "------------------------------------------------------" - -.include <bsd.port.post.mk> diff --git a/security/krb5-16/distinfo b/security/krb5-16/distinfo deleted file mode 100644 index ebef31db7744..000000000000 --- a/security/krb5-16/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (krb5-1.2.7.tar) = c09755f5fb9bc30d93050bd89ef0562b diff --git a/security/krb5-16/files/README.FreeBSD b/security/krb5-16/files/README.FreeBSD deleted file mode 100644 index e888e689eb04..000000000000 --- a/security/krb5-16/files/README.FreeBSD +++ /dev/null @@ -1,32 +0,0 @@ -The MIT KRB5 port provides its own login program at -${PREFIX}/sbin/login.krb5. However, login.krb5 does not make use of -the FreeBSD login.conf and login.access files that provide a means of -setting up and controlling sessions under FreeBSD. To overcome this, -the MIT KRB5 port uses the FreeBSD /usr/bin/login program to provide -interactive login password authentication instead of the login.krb5 -program provided by MIT KRB5. The FreeBSD /usr/bin/login program does -not have support for Kerberos V password authentication, -e.g. authentication at the console. The pam_krb5 port must be used to -provide Kerberos V password authentication. - -For more information about pam_krb5, please see pam(8) and pam_krb5(8). - -If you wish to use login.krb5 that is provided by the MIT KRB5 port, -the arguments "-L ${PREFIX}/sbin/login.krb5" must be -specified as arguments to klogind and KRB5 telnetd, e.g. - -klogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -L ${PREFIX}/sbin/login.krb5 -eklogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -e -L ${PREFIX}/sbin/login.krb5 -telnet stream tcp nowait root ${PREFIX}/sbin/telnetd telnetd -a none -L ${PREFIX}/sbin/login.krb5 - -Additionally, if you wish to use the MIT KRB5 provided login.krb5 instead -of the FreeBSD provided /usr/bin/login for local tty logins, -"lo=${PREFIX}/sbin/login.krb5" must be specified in /etc/gettytab, e.g., - -default:\ - :cb:ce:ck:lc:fd#1000:im=\r\n%s/%m (%h) (%t)\r\n\r\n:sp#1200:\ - :if=/etc/issue:\ - :lo=${PREFIX}/sbin/login.krb5: - -It is recommended that the FreeBSD /usr/bin/login be used with the -pam_krb5 port instead of the MIT KRB5 provided login.krb5. diff --git a/security/krb5-16/files/patch-ac b/security/krb5-16/files/patch-ac deleted file mode 100644 index 8bca5437d964..000000000000 --- a/security/krb5-16/files/patch-ac +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/admin.texinfo Fri Feb 6 21:40:56 1998 -+++ admin.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb5-admin.info - @settitle Kerberos V5 System Administrator's Guide -+@dircategory Kerberos V5 -+@direntry -+* Admin Guide: (krb5-admin). Kerberos V5 System Admin's Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-16/files/patch-ad b/security/krb5-16/files/patch-ad deleted file mode 100644 index c8b6d3e99e91..000000000000 --- a/security/krb5-16/files/patch-ad +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/user-guide.texinfo Fri Feb 6 21:40:58 1998 -+++ user-guide.texinfo Fri Jun 19 15:13:45 1998 -@@ -3,6 +3,10 @@ - @c guide - @setfilename krb5-user.info - @settitle Kerberos V5 UNIX User's Guide -+@dircategory Kerberos V5 -+@direntry -+* User's Guide: (krb5-user). Kerberos V5 UNIX User's Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-16/files/patch-ae b/security/krb5-16/files/patch-ae deleted file mode 100644 index f5643b5aa04f..000000000000 --- a/security/krb5-16/files/patch-ae +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/install.texinfo Fri Feb 6 21:40:56 1998 -+++ install.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb5-install.info - @settitle Kerberos V5 Installation Guide -+@dircategory Kerberos V5 -+@direntry -+* Installation Guide: (krb5-install). Kerberos V5 Installation Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-16/files/patch-af b/security/krb5-16/files/patch-af deleted file mode 100644 index e054b18bbef5..000000000000 --- a/security/krb5-16/files/patch-af +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/krb425.texinfo Fri Feb 6 21:40:57 1998 -+++ krb425.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb425.info - @settitle Upgrading to Kerberos V5 from Kerberos V4 -+@dircategory Kerberos V5 -+@direntry -+* Upgrading from V4 to V5: (krb425). Upgrading from Kerberos V4 to V5 -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-16/files/patch-ai b/security/krb5-16/files/patch-ai deleted file mode 100644 index f5b733194344..000000000000 --- a/security/krb5-16/files/patch-ai +++ /dev/null @@ -1,28 +0,0 @@ ---- appl/gssftp/ftpd/ftpd.c.orig Wed Jan 9 14:26:51 2002 -+++ appl/gssftp/ftpd/ftpd.c Thu Jan 10 19:00:13 2002 -@@ -487,7 +487,13 @@ - #ifndef LOG_DAEMON - #define LOG_DAEMON 0 - #endif -- openlog("ftpd", LOG_PID | LOG_NDELAY, LOG_DAEMON); -+ -+#ifndef LOG_FTP -+#define FACILITY LOG_DAEMON -+#else -+#define FACILITY LOG_FTP -+#endif -+ openlog("ftpd", LOG_PID | LOG_NDELAY, FACILITY); - - addrlen = sizeof (his_addr); - if (getpeername(0, (struct sockaddr *)&his_addr, &addrlen) < 0) { -@@ -2312,6 +2318,10 @@ - if ((length = krb_mk_safe((u_char *)&cksum, out_buf, sizeof(cksum), - &kdata.session,&ctrl_addr, &his_addr)) == -1) { - secure_error("ADAT: krb_mk_safe failed"); -+ return(0); -+ } -+ if (length >= (FTP_BUFSIZ - sizeof("ADAT=")) / 4 * 3) { -+ secure_error("ADAT: reply too long"); - return(0); - } - if (length >= (FTP_BUFSIZ - sizeof("ADAT=")) / 4 * 3) { diff --git a/security/krb5-16/files/patch-aj b/security/krb5-16/files/patch-aj deleted file mode 100644 index c3bb8dfd6960..000000000000 --- a/security/krb5-16/files/patch-aj +++ /dev/null @@ -1,19 +0,0 @@ -*** appl/gssftp/ftpd/logwtmp.c.ORIG Fri Feb 6 19:41:25 1998 ---- appl/gssftp/ftpd/logwtmp.c Tue Jun 30 19:46:01 1998 -*************** -*** 66,72 **** - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMPFILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); ---- 66,72 ---- - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); diff --git a/security/krb5-16/files/patch-appl::bsd::Makefile.in b/security/krb5-16/files/patch-appl::bsd::Makefile.in deleted file mode 100644 index 603c399a287f..000000000000 --- a/security/krb5-16/files/patch-appl::bsd::Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- appl/bsd/Makefile.in.orig Wed Feb 28 14:06:43 2001 -+++ appl/bsd/Makefile.in Mon Dec 31 21:52:45 2001 -@@ -28,7 +28,7 @@ - -DUCB_RSH=\"$(UCB_RSH)\" -DUCB_RCP=\"$(UCB_RCP)\" - - DEFINES = $(RSH) $(BSD) $(RPROGS) \ -- -DLOGIN_PROGRAM=\"$(SERVER_BINDIR)/login.krb5\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" -+ -DLOGIN_PROGRAM=\"/usr/bin/login\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" - - all:: rsh rcp rlogin kshd klogind login.krb5 $(V4RCP) - diff --git a/security/krb5-16/files/patch-appl::bsd::klogind.M b/security/krb5-16/files/patch-appl::bsd::klogind.M deleted file mode 100644 index 1523c3d593df..000000000000 --- a/security/krb5-16/files/patch-appl::bsd::klogind.M +++ /dev/null @@ -1,34 +0,0 @@ ---- appl/bsd/klogind.M.orig Wed Feb 28 14:06:43 2001 -+++ appl/bsd/klogind.M Mon Dec 31 21:22:27 2001 -@@ -14,6 +14,7 @@ - ] - [ - [ \fB\-w\fP[\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]] ] -+[\fB\-L\fP \fIloginpath\fP] - .SH DESCRIPTION - .I Klogind - is the server for the -@@ -107,6 +108,10 @@ - Beta5 (May 1995)--present bogus checksums that prevent Kerberos - authentication from succeeding in the default mode. - -+.IP \fB\-L\ loginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. -+ - - .PP - If the -@@ -157,12 +162,6 @@ - - .IP \fB\-M\ realm\fP - Set the Kerberos realm to use. -- --.IP \fB\-L\ login\fP --Set the login program to use. This option only has an effect if --DO_NOT_USE_K_LOGIN was not defined when --.I klogind --was compiled. - .SH DIAGNOSTICS - All diagnostic messages are returned on the connection - associated with the diff --git a/security/krb5-16/files/patch-appl::telnet::telnetd::Makefile.in b/security/krb5-16/files/patch-appl::telnet::telnetd::Makefile.in deleted file mode 100644 index cb5a0e26d49d..000000000000 --- a/security/krb5-16/files/patch-appl::telnet::telnetd::Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- appl/telnet/telnetd/Makefile.in.orig Wed Feb 28 14:06:51 2001 -+++ appl/telnet/telnetd/Makefile.in Mon Dec 31 21:51:19 2001 -@@ -24,7 +24,7 @@ - # @(#)Makefile.generic 5.5 (Berkeley) 3/1/91 - # - --AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=KRB5_PATH_LOGIN -+AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=\"/usr/bin/login\" - OTHERDEFS=-DKLUDGELINEMODE -DDIAGNOSTICS -DENV_HACK -DOLD_ENVIRON - LOCALINCLUDES=-I.. -I$(srcdir)/.. - DEFINES = $(AUTH_DEF) $(OTHERDEFS) diff --git a/security/krb5-16/files/patch-appl::telnet::telnetd::telnetd.8 b/security/krb5-16/files/patch-appl::telnet::telnetd::telnetd.8 deleted file mode 100644 index 951ee0d5692a..000000000000 --- a/security/krb5-16/files/patch-appl::telnet::telnetd::telnetd.8 +++ /dev/null @@ -1,22 +0,0 @@ ---- appl/telnet/telnetd/telnetd.8.orig Wed Feb 28 14:06:51 2001 -+++ appl/telnet/telnetd/telnetd.8 Mon Dec 31 21:16:55 2001 -@@ -43,7 +43,7 @@ - [\fB\-k\fP] [\fB\-n\fP] [\fB\-r\fP\fIlowpty-highpty\fP] [\fB\-s\fP] - [\fB\-S\fP \fItos\fP] [\fB\-U\fP] [\fB\-X\fP \fIauthtype\fP] - [\fB\-w\fP [\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]]] --[\fB\-debug\fP [\fIport\fP]] -+[\fB\-debug\fP] [\fB\-L\fP \fIloginpath\fP] [\fIport\fP] - .SH DESCRIPTION - The - .B telnetd -@@ -221,6 +221,10 @@ - in response to a - .SM DO TIMING-MARK) - for kludge linemode support. -+.TP -+\fB\-L\fP \fIloginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. - .TP - .B \-l - Specifies line mode. Tries to force clients to use line-at-a-time diff --git a/security/krb5-16/files/patch-appl::telnet::telnetd::utility.c b/security/krb5-16/files/patch-appl::telnet::telnetd::utility.c deleted file mode 100644 index 8bb656dc0673..000000000000 --- a/security/krb5-16/files/patch-appl::telnet::telnetd::utility.c +++ /dev/null @@ -1,38 +0,0 @@ ---- appl/telnet/telnetd/utility.c.orig Wed Jan 9 14:26:59 2002 -+++ appl/telnet/telnetd/utility.c Fri Jan 11 13:10:33 2002 -@@ -408,18 +408,25 @@ - int - netwrite(const char *buf, size_t len) - { -- size_t remain; -+ int remaining, copied; -+ -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ while (len > 0) { -+ /* Free up enough space if the room is too low*/ -+ if ((len > BUFSIZ ? BUFSIZ : len) > remaining) { -+ netflush(); -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ } - -- remain = sizeof(netobuf) - (nfrontp - netobuf); -- if (remain < len) { -- netflush(); -- remain = sizeof(netobuf) - (nfrontp - netobuf); -+ /* Copy out as much as will fit */ -+ copied = remaining > len ? len : remaining; -+ memmove(nfrontp, buf, copied); -+ nfrontp += copied; -+ len -= copied; -+ remaining -= copied; -+ buf += copied; - } -- if (remain < len) -- return 0; -- memcpy(nfrontp, buf, len); -- nfrontp += len; -- return len; -+ return copied; - } - - /* diff --git a/security/krb5-16/files/patch-as b/security/krb5-16/files/patch-as deleted file mode 100644 index 0b26c449fe11..000000000000 --- a/security/krb5-16/files/patch-as +++ /dev/null @@ -1,199 +0,0 @@ ---- clients/ksu/main.c.orig Wed Feb 28 14:06:55 2001 -+++ clients/ksu/main.c Thu Sep 6 16:21:46 2001 -@@ -31,6 +31,10 @@ - #include <sys/wait.h> - #include <signal.h> - -+#ifdef LOGIN_CAP -+#include <login_cap.h> -+#endif -+ - /* globals */ - char * prog_name; - int auth_debug =0; -@@ -60,7 +64,7 @@ - ill specified arguments to commands */ - - void usage (){ -- fprintf(stderr, "Usage: %s [target user] [-n principal] [-c source cachename] [-C target cachename] [-k] [-D] [-r time] [-pf] [-l lifetime] [-zZ] [-q] [-e command [args... ] ] [-a [args... ] ]\n", prog_name); -+ fprintf(stderr, "Usage: %s [target user] [-m] [-n principal] [-c source cachename] [-C target cachename] [-k] [-D] [-r time] [-pf] [-l lifetime] [-zZ] [-q] [-e command [args... ] ] [-a [args... ] ]\n", prog_name); - } - - /* for Ultrix and friends ... */ -@@ -76,6 +80,7 @@ - int argc; - char ** argv; - { -+int asme = 0; - int hp =0; - int some_rest_copy = 0; - int all_rest_copy = 0; -@@ -90,6 +95,7 @@ - char * cc_target_tag = NULL; - char * target_user = NULL; - char * source_user; -+char * source_shell; - - krb5_ccache cc_source = NULL; - const char * cc_source_tag = NULL; -@@ -118,6 +124,11 @@ - char * dir_of_cc_target; - char * dir_of_cc_source; - -+#ifdef LOGIN_CAP -+login_cap_t *lc; -+int setwhat; -+#endif -+ - options.opt = KRB5_DEFAULT_OPTIONS; - options.lifetime = KRB5_DEFAULT_TKT_LIFE; - options.rlife =0; -@@ -181,7 +192,7 @@ - com_err (prog_name, errno, "while setting euid to source user"); - exit (1); - } -- while(!done && ((option = getopt(pargc, pargv,"n:c:r:a:zZDfpkql:e:")) != -1)){ -+ while(!done && ((option = getopt(pargc, pargv,"n:c:r:a:zZDfpkmql:e:")) != -1)){ - switch (option) { - case 'r': - options.opt |= KDC_OPT_RENEWABLE; -@@ -227,6 +238,9 @@ - errflg++; - } - break; -+ case 'm': -+ asme = 1; -+ break; - case 'n': - if ((retval = krb5_parse_name(ksu_context, optarg, &client))){ - com_err(prog_name, retval, "when parsing name %s", optarg); -@@ -341,6 +355,7 @@ - - /* allocate space and copy the usernamane there */ - source_user = xstrdup(pwd->pw_name); -+ source_shell = xstrdup(pwd->pw_shell); - source_uid = pwd->pw_uid; - source_gid = pwd->pw_gid; - -@@ -668,43 +683,64 @@ - /* get the shell of the user, this will be the shell used by su */ - target_pwd = getpwnam(target_user); - -- if (target_pwd->pw_shell) -- shell = xstrdup(target_pwd->pw_shell); -- else { -- shell = _DEF_CSH; /* default is cshell */ -- } -+ if (asme) { -+ if (source_shell && *source_shell) { -+ shell = strdup(source_shell); -+ } else { -+ shell = _DEF_CSH; -+ } -+ } else { -+ if (target_pwd->pw_shell) -+ shell = strdup(target_pwd->pw_shell); -+ else { -+ shell = _DEF_CSH; /* default is cshell */ -+ } -+ } - - #ifdef HAVE_GETUSERSHELL - - /* insist that the target login uses a standard shell (root is omited) */ - -- if (!standard_shell(target_pwd->pw_shell) && source_uid) { -- fprintf(stderr, "ksu: permission denied (shell).\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -+ if (asme) { -+ if (!standard_shell(pwd->pw_shell) && source_uid) { -+ fprintf(stderr, "ksu: permission denied (shell).\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } else { -+ if (!standard_shell(target_pwd->pw_shell) && source_uid) { -+ fprintf(stderr, "ksu: permission denied (shell).\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } - } - #endif /* HAVE_GETUSERSHELL */ - -- if (target_pwd->pw_uid){ -- -- if(set_env_var("USER", target_pwd->pw_name)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -- } -+ if (!asme) { -+ if (target_pwd->pw_uid){ -+ if (set_env_var("USER", target_pwd->pw_name)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } - -- if(set_env_var( "HOME", target_pwd->pw_dir)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -+ if (set_env_var( "HOME", target_pwd->pw_dir)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } - -- if(set_env_var( "SHELL", shell)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -+ if (set_env_var( "SHELL", shell)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } -+ -+#ifdef LOGIN_CAP -+ lc = login_getpwclass(pwd); -+#endif - - /* set the cc env name to target */ - -@@ -714,7 +750,18 @@ - sweep_up(ksu_context, cc_target); - exit(1); - } -- -+#ifdef LOGIN_CAP -+ setwhat = LOGIN_SETUSER|LOGIN_SETGROUP|LOGIN_SETRESOURCES|LOGIN_SETPRIORITY; -+ setwhat |= LOGIN_SETPATH|LOGIN_SETUMASK|LOGIN_SETENV; -+ /* -+ * Don't touch resource/priority settings if -m has been -+ * used or -l and -c hasn't, and we're not su'ing to root. -+ */ -+ if (target_pwd->pw_uid) -+ setwhat &= ~(LOGIN_SETPRIORITY|LOGIN_SETRESOURCES); -+ if (setusercontext(lc, target_pwd, target_pwd->pw_uid, setwhat) < 0) -+ err(1, "setusercontext"); -+#else - /* set permissions */ - if (setgid(target_pwd->pw_gid) < 0) { - perror("ksu: setgid"); -@@ -754,7 +801,8 @@ - perror("ksu: setuid"); - sweep_up(ksu_context, cc_target); - exit(1); -- } -+ } -+#endif - - if (access( cc_target_tag_tmp, R_OK | W_OK )){ - com_err(prog_name, errno, diff --git a/security/krb5-16/files/patch-at b/security/krb5-16/files/patch-at deleted file mode 100644 index ef9ea4856f7a..000000000000 --- a/security/krb5-16/files/patch-at +++ /dev/null @@ -1,14 +0,0 @@ -*** include/sys/syslog.h.ORIG Fri Feb 6 19:42:12 1998 ---- include/sys/syslog.h Tue Jun 30 19:46:02 1998 -*************** -*** 34,39 **** ---- 34,42 ---- - #define LOG_LPR (6<<3) /* line printer subsystem */ - #define LOG_NEWS (7<<3) /* network news subsystem */ - #define LOG_UUCP (8<<3) /* UUCP subsystem */ -+ #if (defined(BSD) && (BSD >= 199306)) -+ #define LOG_FTP (11<<3) /* ftp daemon */ -+ #endif - /* other codes through 15 reserved for system use */ - #define LOG_LOCAL0 (16<<3) /* reserved for local use */ - #define LOG_LOCAL1 (17<<3) /* reserved for local use */ diff --git a/security/krb5-16/files/patch-av b/security/krb5-16/files/patch-av deleted file mode 100644 index 8363b8bb1e2d..000000000000 --- a/security/krb5-16/files/patch-av +++ /dev/null @@ -1,15 +0,0 @@ -*** clients/ksu/Makefile.in.ORIG Sun Aug 2 16:51:18 1998 ---- clients/ksu/Makefile.in Sun Aug 2 16:53:48 1998 -*************** -*** 3,7 **** - mydir=ksu - BUILDTOP=$(REL)$(U)$(S)$(U) -! DEFINES = -DGET_TGT_VIA_PASSWD -DPRINC_LOOK_AHEAD -DCMD_PATH='"/bin /local/bin"' - CFLAGS = $(CCOPTS) $(DEFINES) $(DEFS) $(LOCALINCLUDE) - ---- 3,7 ---- - mydir=ksu - BUILDTOP=$(REL)$(U)$(S)$(U) -! DEFINES = -DGET_TGT_VIA_PASSWD -DPRINC_LOOK_AHEAD -DCMD_PATH='"/usr/bin /bin /usr/sbin /sbin"' - CFLAGS = $(CCOPTS) $(DEFINES) $(DEFS) $(LOCALINCLUDE) - diff --git a/security/krb5-16/files/patch-ax b/security/krb5-16/files/patch-ax deleted file mode 100644 index 58cfe89d9294..000000000000 --- a/security/krb5-16/files/patch-ax +++ /dev/null @@ -1,11 +0,0 @@ ---- ../doc/Makefile.orig Wed Jan 20 21:57:45 1999 -+++ ../doc/Makefile Wed Jan 20 21:59:19 1999 -@@ -1,7 +1,7 @@ - SRCDIR=../src - DVI=texi2dvi - DVIPS=dvips -o "$@" --INFO=makeinfo -+INFO=makeinfo --no-validate - HTML=texi2html - RM=rm -f - TAR=tar -chvf diff --git a/security/krb5-16/files/patch-ay b/security/krb5-16/files/patch-ay deleted file mode 100644 index 54c041e205f1..000000000000 --- a/security/krb5-16/files/patch-ay +++ /dev/null @@ -1,50 +0,0 @@ ---- util/pty/getpty.c.orig Wed Jan 9 14:28:37 2002 -+++ util/pty/getpty.c Thu Jan 10 21:30:40 2002 -@@ -24,13 +24,26 @@ - #include "libpty.h" - #include "pty-int.h" - -+#ifdef __FreeBSD__ -+#define PTYCHARS1 "pqrsPQRS" -+#define PTYCHARS2 "0123456789abcdefghijklmnopqrstuv" -+#endif -+ -+#ifndef PTYCHARS1 -+#define PTYCHARS1 "pqrstuvwxyzPQRST" -+#endif -+ -+#ifndef PTYCHARS2 -+#define PTYCHARS2 "0123456789abcdef" -+#endif -+ - long - ptyint_getpty_ext(int *fd, char *slave, int slavelength, int do_grantpt) - { -+ int ptynum; -+ char *cp1, *cp2; - #if !defined(HAVE__GETPTY) && !defined(HAVE_OPENPTY) -- char *cp; - char *p; -- int i,ptynum; - struct stat stb; - char slavebuf[1024]; - #endif -@@ -115,14 +128,14 @@ - strncpy(slave, slavebuf, slavelength); - return 0; - } else { -- for (cp = "pqrstuvwxyzPQRST";*cp; cp++) { -+ for (cp1 = PTYCHARS1; *cp1 != '\0'; cp1++) { - sprintf(slavebuf,"/dev/ptyXX"); -- slavebuf[sizeof("/dev/pty") - 1] = *cp; -+ slavebuf[sizeof("/dev/pty") - 1] = *cp1; - slavebuf[sizeof("/dev/ptyp") - 1] = '0'; - if (stat(slavebuf, &stb) < 0) - break; -- for (i = 0; i < 16; i++) { -- slavebuf[sizeof("/dev/ptyp") - 1] = "0123456789abcdef"[i]; -+ for (cp2 = PTYCHARS2; *cp2 != '\0'; cp2++) { -+ slavebuf[sizeof("/dev/ptyp") - 1] = *cp2; - *fd = open(slavebuf, O_RDWR); - if (*fd < 0) continue; - diff --git a/security/krb5-16/files/patch-ba b/security/krb5-16/files/patch-ba deleted file mode 100644 index 60d70466eff3..000000000000 --- a/security/krb5-16/files/patch-ba +++ /dev/null @@ -1,81 +0,0 @@ ---- appl/bsd/login.c.ORIG Wed Oct 13 12:55:47 1999 -+++ appl/bsd/login.c Wed Oct 13 12:56:29 1999 -@@ -1303,19 +1304,6 @@ - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - } - -- /* Policy: If local password is good, user is good. -- We really can't trust the Kerberos password, -- because somebody on the net could spoof the -- Kerberos server (not easy, but possible). -- Some sites might want to use it anyways, in -- which case they should change this line -- to: -- if (kpass_ok) -- */ -- -- if (lpass_ok) -- break; -- - if (got_v5_tickets) { - if (retval = krb5_verify_init_creds(kcontext, &my_creds, NULL, - NULL, &xtra_creds, -@@ -1338,6 +1326,9 @@ - } - #endif /* KRB4_GET_TICKETS */ - -+ if (lpass_ok) -+ break; -+ - bad_login: - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - -@@ -1640,20 +1631,28 @@ - /* set up credential cache -- obeying KRB5_ENV_CCNAME - set earlier */ - /* (KRB5_ENV_CCNAME == "KRB5CCNAME" via osconf.h) */ -- if (retval = krb5_cc_default(kcontext, &ccache)) { -+ retval = krb5_cc_default(kcontext, &ccache); -+ if (retval) - com_err(argv[0], retval, "while getting default ccache"); -- } else if (retval = krb5_cc_initialize(kcontext, ccache, me)) { -- com_err(argv[0], retval, "when initializing cache"); -- } else if (retval = krb5_cc_store_cred(kcontext, ccache, &my_creds)) { -- com_err(argv[0], retval, "while storing credentials"); -- } else if (xtra_creds && -- (retval = krb5_cc_copy_creds(kcontext, xtra_creds, -- ccache))) { -- com_err(argv[0], retval, "while storing credentials"); -+ else { -+ retval = krb5_cc_initialize(kcontext, ccache, me); -+ if (retval) -+ com_err(argv[0], retval, "when initializing cache"); -+ else { -+ retval = krb5_cc_store_cred(kcontext, ccache, &my_creds); -+ if (retval) -+ com_err(argv[0], retval, "while storing credentials"); -+ else { -+ if (xtra_creds) { -+ retval = krb5_cc_copy_creds(kcontext, xtra_creds, -+ ccache); -+ if (retval) -+ com_err(argv[0], retval, "while storing credentials"); -+ krb5_cc_destroy(kcontext, xtra_creds); -+ } -+ } -+ } - } -- -- if (xtra_creds) -- krb5_cc_destroy(kcontext, xtra_creds); - } else if (forwarded_v5_tickets && rewrite_ccache) { - if ((retval = krb5_cc_initialize (kcontext, ccache, me))) { - syslog(LOG_ERR, -@@ -1727,6 +1727,7 @@ - - if (ccname) - setenv("KRB5CCNAME", ccname, 1); -+ krb5_cc_set_default_name(kcontext, ccname); - - setenv("HOME", pwd->pw_dir, 1); - setenv("PATH", LPATH, 1); diff --git a/security/krb5-16/files/patch-bb b/security/krb5-16/files/patch-bb deleted file mode 100644 index 6545ae682c53..000000000000 --- a/security/krb5-16/files/patch-bb +++ /dev/null @@ -1,10 +0,0 @@ ---- appl/telnet/telnet/Makefile.in.orig Sat Dec 18 10:47:05 1999 -+++ appl/telnet/telnet/Makefile.in Sat Dec 18 10:47:13 1999 -@@ -58,7 +58,6 @@ - $(INSTALL_DATA) $(srcdir)/$$f.1 \ - ${DESTDIR}$(CLIENT_MANDIR)/`echo $$f|sed '$(transform)'`.1; \ - done -- $(INSTALL_DATA) $(srcdir)/tmac.doc ${DESTDIR}$(CLIENT_MANDIR)/tmac.doc - - authenc.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) - commands.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) diff --git a/security/krb5-16/pkg-comment b/security/krb5-16/pkg-comment deleted file mode 100644 index 339cc4cd5571..000000000000 --- a/security/krb5-16/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -An authentication system developed at MIT, successor to Kerberos IV diff --git a/security/krb5-16/pkg-descr b/security/krb5-16/pkg-descr deleted file mode 100644 index 376a48c52faf..000000000000 --- a/security/krb5-16/pkg-descr +++ /dev/null @@ -1,24 +0,0 @@ -Kerberos V5 is an authentication system developed at MIT. -WWW: http://web.mit.edu/kerberos/www/ - -Abridged from the User Guide: - Under Kerberos, a client sends a request for a ticket to the - Key Distribution Center (KDC). The KDC creates a ticket-granting - ticket (TGT) for the client, encrypts it using the client's - password as the key, and sends the encrypted TGT back to the - client. The client then attempts to decrypt the TGT, using - its password. If the client successfully decrypts the TGT, it - keeps the decrypted TGT, which indicates proof of the client's - identity. The TGT permits the client to obtain additional tickets, - which give permission for specific services. - Since Kerberos negotiates authenticated, and optionally encrypted, - communications between two points anywhere on the internet, it - provides a layer of security that is not dependent on which side of a - firewall either client is on. - The Kerberos V5 package is designed to be easy to use. Most of the - commands are nearly identical to UNIX network programs you are already - used to. Kerberos V5 is a single-sign-on system, which means that you - have to type your password only once per session, and Kerberos does - the authenticating and encrypting transparently. - -Jacques Vidrine <n@nectar.com> diff --git a/security/krb5-16/pkg-plist b/security/krb5-16/pkg-plist deleted file mode 100644 index f6494e183d94..000000000000 --- a/security/krb5-16/pkg-plist +++ /dev/null @@ -1,125 +0,0 @@ -@unexec install-info --delete %D/info/krb425.info %D/info/dir -@unexec install-info --delete %D/info/krb5-admin.info %D/info/dir -@unexec install-info --delete %D/info/krb5-install.info %D/info/dir -@unexec install-info --delete %D/info/krb5-user.info %D/info/dir -bin/ftp -bin/gss-client -bin/kdestroy -bin/kinit -bin/klist -bin/kpasswd -bin/krb5-config -%%KRB4%%bin/krb524init -bin/ksu -bin/kvno -bin/rcp -bin/rlogin -bin/rsh -bin/sclient -bin/sim_client -bin/telnet -bin/uuclient -%%KRB4%%bin/v4rcp -bin/v5passwd -include/com_err.h -include/gssapi/gssapi.h -include/gssapi/gssapi_generic.h -include/gssapi/gssapi_krb5.h -include/kerberosIV/des.h -include/kerberosIV/kadm.h -include/kerberosIV/krb.h -include/kerberosIV/krb_err.h -include/kerberosIV/mit-copyright.h -include/krb5.h -include/libpty.h -include/mit-sipb-copyright.h -include/port-sockets.h -include/profile.h -info/krb425.info -info/krb5-admin.info -info/krb5-admin.info-1 -info/krb5-admin.info-2 -info/krb5-admin.info-3 -info/krb5-install.info -info/krb5-install.info-1 -info/krb5-install.info-2 -info/krb5-user.info -lib/libcom_err.a -lib/libcom_err.so -lib/libcom_err.so.3 -lib/libdes425.a -lib/libdes425.so -lib/libdes425.so.3 -lib/libdyn.a -lib/libdyn.so -lib/libdyn.so.1 -lib/libgssapi_krb5.a -lib/libgssapi_krb5.so -lib/libgssapi_krb5.so.2 -lib/libgssrpc.a -lib/libgssrpc.so -lib/libgssrpc.so.3 -lib/libk5crypto.a -lib/libk5crypto.so -lib/libk5crypto.so.3 -lib/libkadm5clnt.a -lib/libkadm5clnt.so -lib/libkadm5clnt.so.5 -lib/libkadm5srv.a -lib/libkadm5srv.so -lib/libkadm5srv.so.5 -lib/libkdb5.a -lib/libkdb5.so -lib/libkdb5.so.3 -%%KRB4%%lib/libkrb4.a -%%KRB4%%lib/libkrb4.so -%%KRB4%%lib/libkrb4.so.2 -lib/libkrb5.a -lib/libkrb5.so -lib/libkrb5.so.3 -%%KRB4%%lib/libkrb524.a -lib/libpty.a -lib/libpty.so -lib/libpty.so.1 -lib/libss.a -sbin/ftpd -sbin/gss-server -sbin/kadmin -sbin/kadmin.local -sbin/kadmind -%%KRB4%%sbin/kadmind4 -sbin/kdb5_util -sbin/klogind -sbin/kprop -sbin/kpropd -sbin/krb5-send-pr -%%KRB4%%sbin/krb524d -sbin/krb5kdc -sbin/kshd -sbin/ktutil -sbin/login.krb5 -sbin/sim_server -sbin/sserver -sbin/telnetd -sbin/uuserver -sbin/v5passwdd -share/doc/krb5/README.FreeBSD -share/doc/krb5/admin.html -share/doc/krb5/admin_foot.html -share/doc/krb5/admin_toc.html -share/doc/krb5/install.html -share/doc/krb5/install_foot.html -share/doc/krb5/install_toc.html -share/doc/krb5/krb425.html -share/doc/krb5/krb425_toc.html -share/doc/krb5/user-guide.html -share/doc/krb5/user-guide_foot.html -share/doc/krb5/user-guide_toc.html -share/gnats/mit -@dirrm include/gssapi -@dirrm include/kerberosIV -@dirrm share/doc/krb5 -@exec install-info %D/info/krb425.info %D/info/dir -@exec install-info %D/info/krb5-admin.info %D/info/dir -@exec install-info %D/info/krb5-install.info %D/info/dir -@exec install-info %D/info/krb5-user.info %D/info/dir diff --git a/security/krb5-17/Makefile b/security/krb5-17/Makefile deleted file mode 100644 index da604fe2954f..000000000000 --- a/security/krb5-17/Makefile +++ /dev/null @@ -1,149 +0,0 @@ -# Ports collection Makefile for: MIT Kerberos V -# Date created: 6/5/1998 -# Whom: nectar@FreeBSD.org -# -# $FreeBSD$ -# - -PORTNAME= krb5 -PORTVERSION= 1.2.7 -CATEGORIES= security -.if defined(USA_RESIDENT) && ${USA_RESIDENT} == "NO" -# XXX crypto-publish.org does not at this time have the krb5-1.2.7 tarball. -# Use manual download until crypto-publish.org posts a copy of krb5-1.2.7 -# on their website. -# MASTER_SITES= http://www.crypto-publish.org/dist/mit-kerberos5/ -# EXTRACT_SUFX= .tar.gz -MASTER_SITES= # manual download -EXTRACT_SUFX= .tar -.else -MASTER_SITES= # manual download -EXTRACT_SUFX= .tar -.endif - -MAINTAINER= cy@FreeBSD.org - -BUILD_DEPENDS= gm4:${PORTSDIR}/devel/m4 - -KERBEROSV_URL= http://web.mit.edu/network/kerberos-form.html -USE_GMAKE= yes -INSTALLS_SHLIB= yes -GNU_CONFIGURE= yes -CONFIGURE_ARGS?= --enable-shared --with-ccopts="${CFLAGS}" -CONFIGURE_ENV= INSTALL="${INSTALL}" YACC=/usr/bin/yacc -MAKE_ARGS= INSTALL="${INSTALL}" -KRB5_KRB4_COMPAT?= YES - -.if !defined(KRB5_KRB4_COMPAT) || ${KRB5_KRB4_COMPAT} == "NO" -CONFIGURE_ARGS+= --without-krb4 -PLIST_SUB+= KRB4="@comment " -.else -PLIST_SUB+= KRB4="" -.endif - -.if defined(KRB5_HOME) -PREFIX= ${KRB5_HOME} -.endif - -RESTRICTED= "Crypto; export-controlled" -# Set USA_RESIDENT appropriately in /etc/make.conf if you like - -INFO_FILES= krb425.info krb5-admin.info krb5-admin.info-1 \ - krb5-admin.info-2 krb5-admin.info-3 krb5-install.info \ - krb5-install.info-1 krb5-install.info-2 krb5-user.info - -MAN1= krb5-send-pr.1 kpasswd.1 v5passwd.1 klist.1 kinit.1 \ - kdestroy.1 ksu.1 sclient.1 rsh.1 rcp.1 rlogin.1 \ - ftp.1 telnet.1 kerberos.1 kvno.1 -.if defined(KRB5_KRB4_COMPAT) && ${KRB5_KRB4_COMPAT} != "NO" -MAN1+= v4rcp.1 -.endif -MAN5= kdc.conf.5 krb5.conf.5 .k5login.5 -MAN8= krb5kdc.8 kadmin.8 kadmin.local.8 kdb5_util.8 \ - ktutil.8 kadmind.8 kprop.8 kpropd.8 sserver.8 \ - kshd.8 klogind.8 login.krb5.8 ftpd.8 telnetd.8 - -WRKSRC= ${WRKDIR}/${DISTNAME}/src - -WANT_HTML?= YES -HTML_DOC_DIR= ${WRKDIR}/${DISTNAME}/doc -HTML_DOCS= admin.html install_foot.html user-guide.html \ - admin_foot.html install_toc.html user-guide_foot.html \ - admin_toc.html krb425.html user-guide_toc.html \ - install.html krb425_toc.html - -.if !defined(USA_RESIDENT) || ${USA_RESIDENT} == "YES" -do-fetch: - @if [ ! -f ${DISTDIR}/${DISTNAME}${EXTRACT_SUFX} ]; then \ - ${ECHO} ""; \ - ${ECHO} ">> Kerberos V contains encryption software and is"; \ - ${ECHO} " export restricted. If you are not a USA resident,";\ - ${ECHO} " then you cannot obtain the Kerberos V sources from";\ - ${ECHO} " within the United States."; \ - ${ECHO} ""; \ - ${ECHO} ">> The Kerberos V sources must be fetched manually."; \ - ${ECHO} " Please visit ${KERBEROSV_URL}"; \ - ${ECHO} " to download ${DISTNAME}${EXTRACT_SUFX} and place"; \ - ${ECHO} " it in ${DISTDIR}. Then run make again."; \ - ${FALSE}; \ - fi - -post-extract: - @${TAR} -C ${WRKDIR} -xzf ${WRKDIR}/${DISTNAME}.tar.gz - @${RM} ${WRKDIR}/${DISTNAME}.tar.gz ${WRKDIR}/${DISTNAME}.tar.gz.asc -.if !defined(EXTRACT_PRESERVE_OWNERSHIP) - @if [ `id -u` = 0 ]; then \ - ${CHMOD} -R ug-s,go-w ${WRKDIR}/${DISTNAME}; \ - ${CHOWN} -R 0:0 ${WRKDIR}/${DISTNAME}; \ - fi -.endif -.endif - -pre-build: -.if !defined(KRB5_KRB4_COMPAT) - @${ECHO} "------------------------------------------------------" - @${ECHO} "Set KRB5_KRB4_COMPAT=NO if you do not want to build " - @${ECHO} "the KerberosIV compatibility libraries. " - @${ECHO} "------------------------------------------------------" -.endif - -post-build: - @(cd ${WRKSRC}/../doc && \ - ${MAKE} ${INFO_FILES}) - -.include <bsd.port.pre.mk> - -post-install: -# html documentation -.if defined(WANT_HTML) && ${WANT_HTML} == "YES" - @${MKDIR} ${PREFIX}/share/doc/krb5 -.for html in ${HTML_DOCS} - ${INSTALL_MAN} ${HTML_DOC_DIR}/${html} ${PREFIX}/share/doc/krb5 -.endfor -.endif -# handle info files -.for info in ${INFO_FILES} - ${INSTALL_MAN} ${WRKSRC}/../doc/${info} ${PREFIX}/info/${info} -.endfor -.for info in ${INFO_FILES:M*.info} - install-info ${PREFIX}/info/${info} ${PREFIX}/info/dir -.endfor -# fixup packing list (no libs without version numbers in aout case) -.if ${PORTOBJFORMAT} == "aout" - ${ECHO_MSG} "Fixing packing list for a.out" - ${MV} ${TMPPLIST} ${TMPPLIST}.new - ${GREP} -v '\.so$$' ${TMPPLIST}.new > ${TMPPLIST} - ${RM} ${TMPPLIST}.new -.endif - @${SED} "s%\${PREFIX}%${PREFIX}%" ${FILESDIR}/README.FreeBSD > ${PREFIX}/share/doc/krb5/README.FreeBSD - @${CHMOD} 444 ${PREFIX}/share/doc/krb5/README.FreeBSD - @${ECHO} "------------------------------------------------------" - @${ECHO} "This port of MIT Kerberos 5 includes remote login " - @${ECHO} "daemons (telnetd and klogind). These daemons default " - @${ECHO} "to using the system login program (/usr/bin/login). " - @${ECHO} "Please see the file " - @${ECHO} "${PREFIX}/share/doc/krb5/README.FreeBSD" - @${ECHO} "for more information. " - @${ECHO} "------------------------------------------------------" - -.include <bsd.port.post.mk> diff --git a/security/krb5-17/distinfo b/security/krb5-17/distinfo deleted file mode 100644 index ebef31db7744..000000000000 --- a/security/krb5-17/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (krb5-1.2.7.tar) = c09755f5fb9bc30d93050bd89ef0562b diff --git a/security/krb5-17/files/README.FreeBSD b/security/krb5-17/files/README.FreeBSD deleted file mode 100644 index e888e689eb04..000000000000 --- a/security/krb5-17/files/README.FreeBSD +++ /dev/null @@ -1,32 +0,0 @@ -The MIT KRB5 port provides its own login program at -${PREFIX}/sbin/login.krb5. However, login.krb5 does not make use of -the FreeBSD login.conf and login.access files that provide a means of -setting up and controlling sessions under FreeBSD. To overcome this, -the MIT KRB5 port uses the FreeBSD /usr/bin/login program to provide -interactive login password authentication instead of the login.krb5 -program provided by MIT KRB5. The FreeBSD /usr/bin/login program does -not have support for Kerberos V password authentication, -e.g. authentication at the console. The pam_krb5 port must be used to -provide Kerberos V password authentication. - -For more information about pam_krb5, please see pam(8) and pam_krb5(8). - -If you wish to use login.krb5 that is provided by the MIT KRB5 port, -the arguments "-L ${PREFIX}/sbin/login.krb5" must be -specified as arguments to klogind and KRB5 telnetd, e.g. - -klogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -L ${PREFIX}/sbin/login.krb5 -eklogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -e -L ${PREFIX}/sbin/login.krb5 -telnet stream tcp nowait root ${PREFIX}/sbin/telnetd telnetd -a none -L ${PREFIX}/sbin/login.krb5 - -Additionally, if you wish to use the MIT KRB5 provided login.krb5 instead -of the FreeBSD provided /usr/bin/login for local tty logins, -"lo=${PREFIX}/sbin/login.krb5" must be specified in /etc/gettytab, e.g., - -default:\ - :cb:ce:ck:lc:fd#1000:im=\r\n%s/%m (%h) (%t)\r\n\r\n:sp#1200:\ - :if=/etc/issue:\ - :lo=${PREFIX}/sbin/login.krb5: - -It is recommended that the FreeBSD /usr/bin/login be used with the -pam_krb5 port instead of the MIT KRB5 provided login.krb5. diff --git a/security/krb5-17/files/patch-ac b/security/krb5-17/files/patch-ac deleted file mode 100644 index 8bca5437d964..000000000000 --- a/security/krb5-17/files/patch-ac +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/admin.texinfo Fri Feb 6 21:40:56 1998 -+++ admin.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb5-admin.info - @settitle Kerberos V5 System Administrator's Guide -+@dircategory Kerberos V5 -+@direntry -+* Admin Guide: (krb5-admin). Kerberos V5 System Admin's Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-17/files/patch-ad b/security/krb5-17/files/patch-ad deleted file mode 100644 index c8b6d3e99e91..000000000000 --- a/security/krb5-17/files/patch-ad +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/user-guide.texinfo Fri Feb 6 21:40:58 1998 -+++ user-guide.texinfo Fri Jun 19 15:13:45 1998 -@@ -3,6 +3,10 @@ - @c guide - @setfilename krb5-user.info - @settitle Kerberos V5 UNIX User's Guide -+@dircategory Kerberos V5 -+@direntry -+* User's Guide: (krb5-user). Kerberos V5 UNIX User's Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-17/files/patch-ae b/security/krb5-17/files/patch-ae deleted file mode 100644 index f5643b5aa04f..000000000000 --- a/security/krb5-17/files/patch-ae +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/install.texinfo Fri Feb 6 21:40:56 1998 -+++ install.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb5-install.info - @settitle Kerberos V5 Installation Guide -+@dircategory Kerberos V5 -+@direntry -+* Installation Guide: (krb5-install). Kerberos V5 Installation Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-17/files/patch-af b/security/krb5-17/files/patch-af deleted file mode 100644 index e054b18bbef5..000000000000 --- a/security/krb5-17/files/patch-af +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/krb425.texinfo Fri Feb 6 21:40:57 1998 -+++ krb425.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb425.info - @settitle Upgrading to Kerberos V5 from Kerberos V4 -+@dircategory Kerberos V5 -+@direntry -+* Upgrading from V4 to V5: (krb425). Upgrading from Kerberos V4 to V5 -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-17/files/patch-ai b/security/krb5-17/files/patch-ai deleted file mode 100644 index f5b733194344..000000000000 --- a/security/krb5-17/files/patch-ai +++ /dev/null @@ -1,28 +0,0 @@ ---- appl/gssftp/ftpd/ftpd.c.orig Wed Jan 9 14:26:51 2002 -+++ appl/gssftp/ftpd/ftpd.c Thu Jan 10 19:00:13 2002 -@@ -487,7 +487,13 @@ - #ifndef LOG_DAEMON - #define LOG_DAEMON 0 - #endif -- openlog("ftpd", LOG_PID | LOG_NDELAY, LOG_DAEMON); -+ -+#ifndef LOG_FTP -+#define FACILITY LOG_DAEMON -+#else -+#define FACILITY LOG_FTP -+#endif -+ openlog("ftpd", LOG_PID | LOG_NDELAY, FACILITY); - - addrlen = sizeof (his_addr); - if (getpeername(0, (struct sockaddr *)&his_addr, &addrlen) < 0) { -@@ -2312,6 +2318,10 @@ - if ((length = krb_mk_safe((u_char *)&cksum, out_buf, sizeof(cksum), - &kdata.session,&ctrl_addr, &his_addr)) == -1) { - secure_error("ADAT: krb_mk_safe failed"); -+ return(0); -+ } -+ if (length >= (FTP_BUFSIZ - sizeof("ADAT=")) / 4 * 3) { -+ secure_error("ADAT: reply too long"); - return(0); - } - if (length >= (FTP_BUFSIZ - sizeof("ADAT=")) / 4 * 3) { diff --git a/security/krb5-17/files/patch-aj b/security/krb5-17/files/patch-aj deleted file mode 100644 index c3bb8dfd6960..000000000000 --- a/security/krb5-17/files/patch-aj +++ /dev/null @@ -1,19 +0,0 @@ -*** appl/gssftp/ftpd/logwtmp.c.ORIG Fri Feb 6 19:41:25 1998 ---- appl/gssftp/ftpd/logwtmp.c Tue Jun 30 19:46:01 1998 -*************** -*** 66,72 **** - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMPFILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); ---- 66,72 ---- - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); diff --git a/security/krb5-17/files/patch-appl::bsd::Makefile.in b/security/krb5-17/files/patch-appl::bsd::Makefile.in deleted file mode 100644 index 603c399a287f..000000000000 --- a/security/krb5-17/files/patch-appl::bsd::Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- appl/bsd/Makefile.in.orig Wed Feb 28 14:06:43 2001 -+++ appl/bsd/Makefile.in Mon Dec 31 21:52:45 2001 -@@ -28,7 +28,7 @@ - -DUCB_RSH=\"$(UCB_RSH)\" -DUCB_RCP=\"$(UCB_RCP)\" - - DEFINES = $(RSH) $(BSD) $(RPROGS) \ -- -DLOGIN_PROGRAM=\"$(SERVER_BINDIR)/login.krb5\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" -+ -DLOGIN_PROGRAM=\"/usr/bin/login\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" - - all:: rsh rcp rlogin kshd klogind login.krb5 $(V4RCP) - diff --git a/security/krb5-17/files/patch-appl::bsd::klogind.M b/security/krb5-17/files/patch-appl::bsd::klogind.M deleted file mode 100644 index 1523c3d593df..000000000000 --- a/security/krb5-17/files/patch-appl::bsd::klogind.M +++ /dev/null @@ -1,34 +0,0 @@ ---- appl/bsd/klogind.M.orig Wed Feb 28 14:06:43 2001 -+++ appl/bsd/klogind.M Mon Dec 31 21:22:27 2001 -@@ -14,6 +14,7 @@ - ] - [ - [ \fB\-w\fP[\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]] ] -+[\fB\-L\fP \fIloginpath\fP] - .SH DESCRIPTION - .I Klogind - is the server for the -@@ -107,6 +108,10 @@ - Beta5 (May 1995)--present bogus checksums that prevent Kerberos - authentication from succeeding in the default mode. - -+.IP \fB\-L\ loginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. -+ - - .PP - If the -@@ -157,12 +162,6 @@ - - .IP \fB\-M\ realm\fP - Set the Kerberos realm to use. -- --.IP \fB\-L\ login\fP --Set the login program to use. This option only has an effect if --DO_NOT_USE_K_LOGIN was not defined when --.I klogind --was compiled. - .SH DIAGNOSTICS - All diagnostic messages are returned on the connection - associated with the diff --git a/security/krb5-17/files/patch-appl::telnet::telnetd::Makefile.in b/security/krb5-17/files/patch-appl::telnet::telnetd::Makefile.in deleted file mode 100644 index cb5a0e26d49d..000000000000 --- a/security/krb5-17/files/patch-appl::telnet::telnetd::Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- appl/telnet/telnetd/Makefile.in.orig Wed Feb 28 14:06:51 2001 -+++ appl/telnet/telnetd/Makefile.in Mon Dec 31 21:51:19 2001 -@@ -24,7 +24,7 @@ - # @(#)Makefile.generic 5.5 (Berkeley) 3/1/91 - # - --AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=KRB5_PATH_LOGIN -+AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=\"/usr/bin/login\" - OTHERDEFS=-DKLUDGELINEMODE -DDIAGNOSTICS -DENV_HACK -DOLD_ENVIRON - LOCALINCLUDES=-I.. -I$(srcdir)/.. - DEFINES = $(AUTH_DEF) $(OTHERDEFS) diff --git a/security/krb5-17/files/patch-appl::telnet::telnetd::telnetd.8 b/security/krb5-17/files/patch-appl::telnet::telnetd::telnetd.8 deleted file mode 100644 index 951ee0d5692a..000000000000 --- a/security/krb5-17/files/patch-appl::telnet::telnetd::telnetd.8 +++ /dev/null @@ -1,22 +0,0 @@ ---- appl/telnet/telnetd/telnetd.8.orig Wed Feb 28 14:06:51 2001 -+++ appl/telnet/telnetd/telnetd.8 Mon Dec 31 21:16:55 2001 -@@ -43,7 +43,7 @@ - [\fB\-k\fP] [\fB\-n\fP] [\fB\-r\fP\fIlowpty-highpty\fP] [\fB\-s\fP] - [\fB\-S\fP \fItos\fP] [\fB\-U\fP] [\fB\-X\fP \fIauthtype\fP] - [\fB\-w\fP [\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]]] --[\fB\-debug\fP [\fIport\fP]] -+[\fB\-debug\fP] [\fB\-L\fP \fIloginpath\fP] [\fIport\fP] - .SH DESCRIPTION - The - .B telnetd -@@ -221,6 +221,10 @@ - in response to a - .SM DO TIMING-MARK) - for kludge linemode support. -+.TP -+\fB\-L\fP \fIloginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. - .TP - .B \-l - Specifies line mode. Tries to force clients to use line-at-a-time diff --git a/security/krb5-17/files/patch-appl::telnet::telnetd::utility.c b/security/krb5-17/files/patch-appl::telnet::telnetd::utility.c deleted file mode 100644 index 8bb656dc0673..000000000000 --- a/security/krb5-17/files/patch-appl::telnet::telnetd::utility.c +++ /dev/null @@ -1,38 +0,0 @@ ---- appl/telnet/telnetd/utility.c.orig Wed Jan 9 14:26:59 2002 -+++ appl/telnet/telnetd/utility.c Fri Jan 11 13:10:33 2002 -@@ -408,18 +408,25 @@ - int - netwrite(const char *buf, size_t len) - { -- size_t remain; -+ int remaining, copied; -+ -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ while (len > 0) { -+ /* Free up enough space if the room is too low*/ -+ if ((len > BUFSIZ ? BUFSIZ : len) > remaining) { -+ netflush(); -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ } - -- remain = sizeof(netobuf) - (nfrontp - netobuf); -- if (remain < len) { -- netflush(); -- remain = sizeof(netobuf) - (nfrontp - netobuf); -+ /* Copy out as much as will fit */ -+ copied = remaining > len ? len : remaining; -+ memmove(nfrontp, buf, copied); -+ nfrontp += copied; -+ len -= copied; -+ remaining -= copied; -+ buf += copied; - } -- if (remain < len) -- return 0; -- memcpy(nfrontp, buf, len); -- nfrontp += len; -- return len; -+ return copied; - } - - /* diff --git a/security/krb5-17/files/patch-as b/security/krb5-17/files/patch-as deleted file mode 100644 index 0b26c449fe11..000000000000 --- a/security/krb5-17/files/patch-as +++ /dev/null @@ -1,199 +0,0 @@ ---- clients/ksu/main.c.orig Wed Feb 28 14:06:55 2001 -+++ clients/ksu/main.c Thu Sep 6 16:21:46 2001 -@@ -31,6 +31,10 @@ - #include <sys/wait.h> - #include <signal.h> - -+#ifdef LOGIN_CAP -+#include <login_cap.h> -+#endif -+ - /* globals */ - char * prog_name; - int auth_debug =0; -@@ -60,7 +64,7 @@ - ill specified arguments to commands */ - - void usage (){ -- fprintf(stderr, "Usage: %s [target user] [-n principal] [-c source cachename] [-C target cachename] [-k] [-D] [-r time] [-pf] [-l lifetime] [-zZ] [-q] [-e command [args... ] ] [-a [args... ] ]\n", prog_name); -+ fprintf(stderr, "Usage: %s [target user] [-m] [-n principal] [-c source cachename] [-C target cachename] [-k] [-D] [-r time] [-pf] [-l lifetime] [-zZ] [-q] [-e command [args... ] ] [-a [args... ] ]\n", prog_name); - } - - /* for Ultrix and friends ... */ -@@ -76,6 +80,7 @@ - int argc; - char ** argv; - { -+int asme = 0; - int hp =0; - int some_rest_copy = 0; - int all_rest_copy = 0; -@@ -90,6 +95,7 @@ - char * cc_target_tag = NULL; - char * target_user = NULL; - char * source_user; -+char * source_shell; - - krb5_ccache cc_source = NULL; - const char * cc_source_tag = NULL; -@@ -118,6 +124,11 @@ - char * dir_of_cc_target; - char * dir_of_cc_source; - -+#ifdef LOGIN_CAP -+login_cap_t *lc; -+int setwhat; -+#endif -+ - options.opt = KRB5_DEFAULT_OPTIONS; - options.lifetime = KRB5_DEFAULT_TKT_LIFE; - options.rlife =0; -@@ -181,7 +192,7 @@ - com_err (prog_name, errno, "while setting euid to source user"); - exit (1); - } -- while(!done && ((option = getopt(pargc, pargv,"n:c:r:a:zZDfpkql:e:")) != -1)){ -+ while(!done && ((option = getopt(pargc, pargv,"n:c:r:a:zZDfpkmql:e:")) != -1)){ - switch (option) { - case 'r': - options.opt |= KDC_OPT_RENEWABLE; -@@ -227,6 +238,9 @@ - errflg++; - } - break; -+ case 'm': -+ asme = 1; -+ break; - case 'n': - if ((retval = krb5_parse_name(ksu_context, optarg, &client))){ - com_err(prog_name, retval, "when parsing name %s", optarg); -@@ -341,6 +355,7 @@ - - /* allocate space and copy the usernamane there */ - source_user = xstrdup(pwd->pw_name); -+ source_shell = xstrdup(pwd->pw_shell); - source_uid = pwd->pw_uid; - source_gid = pwd->pw_gid; - -@@ -668,43 +683,64 @@ - /* get the shell of the user, this will be the shell used by su */ - target_pwd = getpwnam(target_user); - -- if (target_pwd->pw_shell) -- shell = xstrdup(target_pwd->pw_shell); -- else { -- shell = _DEF_CSH; /* default is cshell */ -- } -+ if (asme) { -+ if (source_shell && *source_shell) { -+ shell = strdup(source_shell); -+ } else { -+ shell = _DEF_CSH; -+ } -+ } else { -+ if (target_pwd->pw_shell) -+ shell = strdup(target_pwd->pw_shell); -+ else { -+ shell = _DEF_CSH; /* default is cshell */ -+ } -+ } - - #ifdef HAVE_GETUSERSHELL - - /* insist that the target login uses a standard shell (root is omited) */ - -- if (!standard_shell(target_pwd->pw_shell) && source_uid) { -- fprintf(stderr, "ksu: permission denied (shell).\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -+ if (asme) { -+ if (!standard_shell(pwd->pw_shell) && source_uid) { -+ fprintf(stderr, "ksu: permission denied (shell).\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } else { -+ if (!standard_shell(target_pwd->pw_shell) && source_uid) { -+ fprintf(stderr, "ksu: permission denied (shell).\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } - } - #endif /* HAVE_GETUSERSHELL */ - -- if (target_pwd->pw_uid){ -- -- if(set_env_var("USER", target_pwd->pw_name)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -- } -+ if (!asme) { -+ if (target_pwd->pw_uid){ -+ if (set_env_var("USER", target_pwd->pw_name)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } - -- if(set_env_var( "HOME", target_pwd->pw_dir)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -+ if (set_env_var( "HOME", target_pwd->pw_dir)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } - -- if(set_env_var( "SHELL", shell)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -+ if (set_env_var( "SHELL", shell)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } -+ -+#ifdef LOGIN_CAP -+ lc = login_getpwclass(pwd); -+#endif - - /* set the cc env name to target */ - -@@ -714,7 +750,18 @@ - sweep_up(ksu_context, cc_target); - exit(1); - } -- -+#ifdef LOGIN_CAP -+ setwhat = LOGIN_SETUSER|LOGIN_SETGROUP|LOGIN_SETRESOURCES|LOGIN_SETPRIORITY; -+ setwhat |= LOGIN_SETPATH|LOGIN_SETUMASK|LOGIN_SETENV; -+ /* -+ * Don't touch resource/priority settings if -m has been -+ * used or -l and -c hasn't, and we're not su'ing to root. -+ */ -+ if (target_pwd->pw_uid) -+ setwhat &= ~(LOGIN_SETPRIORITY|LOGIN_SETRESOURCES); -+ if (setusercontext(lc, target_pwd, target_pwd->pw_uid, setwhat) < 0) -+ err(1, "setusercontext"); -+#else - /* set permissions */ - if (setgid(target_pwd->pw_gid) < 0) { - perror("ksu: setgid"); -@@ -754,7 +801,8 @@ - perror("ksu: setuid"); - sweep_up(ksu_context, cc_target); - exit(1); -- } -+ } -+#endif - - if (access( cc_target_tag_tmp, R_OK | W_OK )){ - com_err(prog_name, errno, diff --git a/security/krb5-17/files/patch-at b/security/krb5-17/files/patch-at deleted file mode 100644 index ef9ea4856f7a..000000000000 --- a/security/krb5-17/files/patch-at +++ /dev/null @@ -1,14 +0,0 @@ -*** include/sys/syslog.h.ORIG Fri Feb 6 19:42:12 1998 ---- include/sys/syslog.h Tue Jun 30 19:46:02 1998 -*************** -*** 34,39 **** ---- 34,42 ---- - #define LOG_LPR (6<<3) /* line printer subsystem */ - #define LOG_NEWS (7<<3) /* network news subsystem */ - #define LOG_UUCP (8<<3) /* UUCP subsystem */ -+ #if (defined(BSD) && (BSD >= 199306)) -+ #define LOG_FTP (11<<3) /* ftp daemon */ -+ #endif - /* other codes through 15 reserved for system use */ - #define LOG_LOCAL0 (16<<3) /* reserved for local use */ - #define LOG_LOCAL1 (17<<3) /* reserved for local use */ diff --git a/security/krb5-17/files/patch-av b/security/krb5-17/files/patch-av deleted file mode 100644 index 8363b8bb1e2d..000000000000 --- a/security/krb5-17/files/patch-av +++ /dev/null @@ -1,15 +0,0 @@ -*** clients/ksu/Makefile.in.ORIG Sun Aug 2 16:51:18 1998 ---- clients/ksu/Makefile.in Sun Aug 2 16:53:48 1998 -*************** -*** 3,7 **** - mydir=ksu - BUILDTOP=$(REL)$(U)$(S)$(U) -! DEFINES = -DGET_TGT_VIA_PASSWD -DPRINC_LOOK_AHEAD -DCMD_PATH='"/bin /local/bin"' - CFLAGS = $(CCOPTS) $(DEFINES) $(DEFS) $(LOCALINCLUDE) - ---- 3,7 ---- - mydir=ksu - BUILDTOP=$(REL)$(U)$(S)$(U) -! DEFINES = -DGET_TGT_VIA_PASSWD -DPRINC_LOOK_AHEAD -DCMD_PATH='"/usr/bin /bin /usr/sbin /sbin"' - CFLAGS = $(CCOPTS) $(DEFINES) $(DEFS) $(LOCALINCLUDE) - diff --git a/security/krb5-17/files/patch-ax b/security/krb5-17/files/patch-ax deleted file mode 100644 index 58cfe89d9294..000000000000 --- a/security/krb5-17/files/patch-ax +++ /dev/null @@ -1,11 +0,0 @@ ---- ../doc/Makefile.orig Wed Jan 20 21:57:45 1999 -+++ ../doc/Makefile Wed Jan 20 21:59:19 1999 -@@ -1,7 +1,7 @@ - SRCDIR=../src - DVI=texi2dvi - DVIPS=dvips -o "$@" --INFO=makeinfo -+INFO=makeinfo --no-validate - HTML=texi2html - RM=rm -f - TAR=tar -chvf diff --git a/security/krb5-17/files/patch-ay b/security/krb5-17/files/patch-ay deleted file mode 100644 index 54c041e205f1..000000000000 --- a/security/krb5-17/files/patch-ay +++ /dev/null @@ -1,50 +0,0 @@ ---- util/pty/getpty.c.orig Wed Jan 9 14:28:37 2002 -+++ util/pty/getpty.c Thu Jan 10 21:30:40 2002 -@@ -24,13 +24,26 @@ - #include "libpty.h" - #include "pty-int.h" - -+#ifdef __FreeBSD__ -+#define PTYCHARS1 "pqrsPQRS" -+#define PTYCHARS2 "0123456789abcdefghijklmnopqrstuv" -+#endif -+ -+#ifndef PTYCHARS1 -+#define PTYCHARS1 "pqrstuvwxyzPQRST" -+#endif -+ -+#ifndef PTYCHARS2 -+#define PTYCHARS2 "0123456789abcdef" -+#endif -+ - long - ptyint_getpty_ext(int *fd, char *slave, int slavelength, int do_grantpt) - { -+ int ptynum; -+ char *cp1, *cp2; - #if !defined(HAVE__GETPTY) && !defined(HAVE_OPENPTY) -- char *cp; - char *p; -- int i,ptynum; - struct stat stb; - char slavebuf[1024]; - #endif -@@ -115,14 +128,14 @@ - strncpy(slave, slavebuf, slavelength); - return 0; - } else { -- for (cp = "pqrstuvwxyzPQRST";*cp; cp++) { -+ for (cp1 = PTYCHARS1; *cp1 != '\0'; cp1++) { - sprintf(slavebuf,"/dev/ptyXX"); -- slavebuf[sizeof("/dev/pty") - 1] = *cp; -+ slavebuf[sizeof("/dev/pty") - 1] = *cp1; - slavebuf[sizeof("/dev/ptyp") - 1] = '0'; - if (stat(slavebuf, &stb) < 0) - break; -- for (i = 0; i < 16; i++) { -- slavebuf[sizeof("/dev/ptyp") - 1] = "0123456789abcdef"[i]; -+ for (cp2 = PTYCHARS2; *cp2 != '\0'; cp2++) { -+ slavebuf[sizeof("/dev/ptyp") - 1] = *cp2; - *fd = open(slavebuf, O_RDWR); - if (*fd < 0) continue; - diff --git a/security/krb5-17/files/patch-ba b/security/krb5-17/files/patch-ba deleted file mode 100644 index 60d70466eff3..000000000000 --- a/security/krb5-17/files/patch-ba +++ /dev/null @@ -1,81 +0,0 @@ ---- appl/bsd/login.c.ORIG Wed Oct 13 12:55:47 1999 -+++ appl/bsd/login.c Wed Oct 13 12:56:29 1999 -@@ -1303,19 +1304,6 @@ - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - } - -- /* Policy: If local password is good, user is good. -- We really can't trust the Kerberos password, -- because somebody on the net could spoof the -- Kerberos server (not easy, but possible). -- Some sites might want to use it anyways, in -- which case they should change this line -- to: -- if (kpass_ok) -- */ -- -- if (lpass_ok) -- break; -- - if (got_v5_tickets) { - if (retval = krb5_verify_init_creds(kcontext, &my_creds, NULL, - NULL, &xtra_creds, -@@ -1338,6 +1326,9 @@ - } - #endif /* KRB4_GET_TICKETS */ - -+ if (lpass_ok) -+ break; -+ - bad_login: - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - -@@ -1640,20 +1631,28 @@ - /* set up credential cache -- obeying KRB5_ENV_CCNAME - set earlier */ - /* (KRB5_ENV_CCNAME == "KRB5CCNAME" via osconf.h) */ -- if (retval = krb5_cc_default(kcontext, &ccache)) { -+ retval = krb5_cc_default(kcontext, &ccache); -+ if (retval) - com_err(argv[0], retval, "while getting default ccache"); -- } else if (retval = krb5_cc_initialize(kcontext, ccache, me)) { -- com_err(argv[0], retval, "when initializing cache"); -- } else if (retval = krb5_cc_store_cred(kcontext, ccache, &my_creds)) { -- com_err(argv[0], retval, "while storing credentials"); -- } else if (xtra_creds && -- (retval = krb5_cc_copy_creds(kcontext, xtra_creds, -- ccache))) { -- com_err(argv[0], retval, "while storing credentials"); -+ else { -+ retval = krb5_cc_initialize(kcontext, ccache, me); -+ if (retval) -+ com_err(argv[0], retval, "when initializing cache"); -+ else { -+ retval = krb5_cc_store_cred(kcontext, ccache, &my_creds); -+ if (retval) -+ com_err(argv[0], retval, "while storing credentials"); -+ else { -+ if (xtra_creds) { -+ retval = krb5_cc_copy_creds(kcontext, xtra_creds, -+ ccache); -+ if (retval) -+ com_err(argv[0], retval, "while storing credentials"); -+ krb5_cc_destroy(kcontext, xtra_creds); -+ } -+ } -+ } - } -- -- if (xtra_creds) -- krb5_cc_destroy(kcontext, xtra_creds); - } else if (forwarded_v5_tickets && rewrite_ccache) { - if ((retval = krb5_cc_initialize (kcontext, ccache, me))) { - syslog(LOG_ERR, -@@ -1727,6 +1727,7 @@ - - if (ccname) - setenv("KRB5CCNAME", ccname, 1); -+ krb5_cc_set_default_name(kcontext, ccname); - - setenv("HOME", pwd->pw_dir, 1); - setenv("PATH", LPATH, 1); diff --git a/security/krb5-17/files/patch-bb b/security/krb5-17/files/patch-bb deleted file mode 100644 index 6545ae682c53..000000000000 --- a/security/krb5-17/files/patch-bb +++ /dev/null @@ -1,10 +0,0 @@ ---- appl/telnet/telnet/Makefile.in.orig Sat Dec 18 10:47:05 1999 -+++ appl/telnet/telnet/Makefile.in Sat Dec 18 10:47:13 1999 -@@ -58,7 +58,6 @@ - $(INSTALL_DATA) $(srcdir)/$$f.1 \ - ${DESTDIR}$(CLIENT_MANDIR)/`echo $$f|sed '$(transform)'`.1; \ - done -- $(INSTALL_DATA) $(srcdir)/tmac.doc ${DESTDIR}$(CLIENT_MANDIR)/tmac.doc - - authenc.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) - commands.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) diff --git a/security/krb5-17/pkg-comment b/security/krb5-17/pkg-comment deleted file mode 100644 index 339cc4cd5571..000000000000 --- a/security/krb5-17/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -An authentication system developed at MIT, successor to Kerberos IV diff --git a/security/krb5-17/pkg-descr b/security/krb5-17/pkg-descr deleted file mode 100644 index 376a48c52faf..000000000000 --- a/security/krb5-17/pkg-descr +++ /dev/null @@ -1,24 +0,0 @@ -Kerberos V5 is an authentication system developed at MIT. -WWW: http://web.mit.edu/kerberos/www/ - -Abridged from the User Guide: - Under Kerberos, a client sends a request for a ticket to the - Key Distribution Center (KDC). The KDC creates a ticket-granting - ticket (TGT) for the client, encrypts it using the client's - password as the key, and sends the encrypted TGT back to the - client. The client then attempts to decrypt the TGT, using - its password. If the client successfully decrypts the TGT, it - keeps the decrypted TGT, which indicates proof of the client's - identity. The TGT permits the client to obtain additional tickets, - which give permission for specific services. - Since Kerberos negotiates authenticated, and optionally encrypted, - communications between two points anywhere on the internet, it - provides a layer of security that is not dependent on which side of a - firewall either client is on. - The Kerberos V5 package is designed to be easy to use. Most of the - commands are nearly identical to UNIX network programs you are already - used to. Kerberos V5 is a single-sign-on system, which means that you - have to type your password only once per session, and Kerberos does - the authenticating and encrypting transparently. - -Jacques Vidrine <n@nectar.com> diff --git a/security/krb5-17/pkg-plist b/security/krb5-17/pkg-plist deleted file mode 100644 index f6494e183d94..000000000000 --- a/security/krb5-17/pkg-plist +++ /dev/null @@ -1,125 +0,0 @@ -@unexec install-info --delete %D/info/krb425.info %D/info/dir -@unexec install-info --delete %D/info/krb5-admin.info %D/info/dir -@unexec install-info --delete %D/info/krb5-install.info %D/info/dir -@unexec install-info --delete %D/info/krb5-user.info %D/info/dir -bin/ftp -bin/gss-client -bin/kdestroy -bin/kinit -bin/klist -bin/kpasswd -bin/krb5-config -%%KRB4%%bin/krb524init -bin/ksu -bin/kvno -bin/rcp -bin/rlogin -bin/rsh -bin/sclient -bin/sim_client -bin/telnet -bin/uuclient -%%KRB4%%bin/v4rcp -bin/v5passwd -include/com_err.h -include/gssapi/gssapi.h -include/gssapi/gssapi_generic.h -include/gssapi/gssapi_krb5.h -include/kerberosIV/des.h -include/kerberosIV/kadm.h -include/kerberosIV/krb.h -include/kerberosIV/krb_err.h -include/kerberosIV/mit-copyright.h -include/krb5.h -include/libpty.h -include/mit-sipb-copyright.h -include/port-sockets.h -include/profile.h -info/krb425.info -info/krb5-admin.info -info/krb5-admin.info-1 -info/krb5-admin.info-2 -info/krb5-admin.info-3 -info/krb5-install.info -info/krb5-install.info-1 -info/krb5-install.info-2 -info/krb5-user.info -lib/libcom_err.a -lib/libcom_err.so -lib/libcom_err.so.3 -lib/libdes425.a -lib/libdes425.so -lib/libdes425.so.3 -lib/libdyn.a -lib/libdyn.so -lib/libdyn.so.1 -lib/libgssapi_krb5.a -lib/libgssapi_krb5.so -lib/libgssapi_krb5.so.2 -lib/libgssrpc.a -lib/libgssrpc.so -lib/libgssrpc.so.3 -lib/libk5crypto.a -lib/libk5crypto.so -lib/libk5crypto.so.3 -lib/libkadm5clnt.a -lib/libkadm5clnt.so -lib/libkadm5clnt.so.5 -lib/libkadm5srv.a -lib/libkadm5srv.so -lib/libkadm5srv.so.5 -lib/libkdb5.a -lib/libkdb5.so -lib/libkdb5.so.3 -%%KRB4%%lib/libkrb4.a -%%KRB4%%lib/libkrb4.so -%%KRB4%%lib/libkrb4.so.2 -lib/libkrb5.a -lib/libkrb5.so -lib/libkrb5.so.3 -%%KRB4%%lib/libkrb524.a -lib/libpty.a -lib/libpty.so -lib/libpty.so.1 -lib/libss.a -sbin/ftpd -sbin/gss-server -sbin/kadmin -sbin/kadmin.local -sbin/kadmind -%%KRB4%%sbin/kadmind4 -sbin/kdb5_util -sbin/klogind -sbin/kprop -sbin/kpropd -sbin/krb5-send-pr -%%KRB4%%sbin/krb524d -sbin/krb5kdc -sbin/kshd -sbin/ktutil -sbin/login.krb5 -sbin/sim_server -sbin/sserver -sbin/telnetd -sbin/uuserver -sbin/v5passwdd -share/doc/krb5/README.FreeBSD -share/doc/krb5/admin.html -share/doc/krb5/admin_foot.html -share/doc/krb5/admin_toc.html -share/doc/krb5/install.html -share/doc/krb5/install_foot.html -share/doc/krb5/install_toc.html -share/doc/krb5/krb425.html -share/doc/krb5/krb425_toc.html -share/doc/krb5/user-guide.html -share/doc/krb5/user-guide_foot.html -share/doc/krb5/user-guide_toc.html -share/gnats/mit -@dirrm include/gssapi -@dirrm include/kerberosIV -@dirrm share/doc/krb5 -@exec install-info %D/info/krb425.info %D/info/dir -@exec install-info %D/info/krb5-admin.info %D/info/dir -@exec install-info %D/info/krb5-install.info %D/info/dir -@exec install-info %D/info/krb5-user.info %D/info/dir diff --git a/security/krb5-appl/Makefile b/security/krb5-appl/Makefile deleted file mode 100644 index da604fe2954f..000000000000 --- a/security/krb5-appl/Makefile +++ /dev/null @@ -1,149 +0,0 @@ -# Ports collection Makefile for: MIT Kerberos V -# Date created: 6/5/1998 -# Whom: nectar@FreeBSD.org -# -# $FreeBSD$ -# - -PORTNAME= krb5 -PORTVERSION= 1.2.7 -CATEGORIES= security -.if defined(USA_RESIDENT) && ${USA_RESIDENT} == "NO" -# XXX crypto-publish.org does not at this time have the krb5-1.2.7 tarball. -# Use manual download until crypto-publish.org posts a copy of krb5-1.2.7 -# on their website. -# MASTER_SITES= http://www.crypto-publish.org/dist/mit-kerberos5/ -# EXTRACT_SUFX= .tar.gz -MASTER_SITES= # manual download -EXTRACT_SUFX= .tar -.else -MASTER_SITES= # manual download -EXTRACT_SUFX= .tar -.endif - -MAINTAINER= cy@FreeBSD.org - -BUILD_DEPENDS= gm4:${PORTSDIR}/devel/m4 - -KERBEROSV_URL= http://web.mit.edu/network/kerberos-form.html -USE_GMAKE= yes -INSTALLS_SHLIB= yes -GNU_CONFIGURE= yes -CONFIGURE_ARGS?= --enable-shared --with-ccopts="${CFLAGS}" -CONFIGURE_ENV= INSTALL="${INSTALL}" YACC=/usr/bin/yacc -MAKE_ARGS= INSTALL="${INSTALL}" -KRB5_KRB4_COMPAT?= YES - -.if !defined(KRB5_KRB4_COMPAT) || ${KRB5_KRB4_COMPAT} == "NO" -CONFIGURE_ARGS+= --without-krb4 -PLIST_SUB+= KRB4="@comment " -.else -PLIST_SUB+= KRB4="" -.endif - -.if defined(KRB5_HOME) -PREFIX= ${KRB5_HOME} -.endif - -RESTRICTED= "Crypto; export-controlled" -# Set USA_RESIDENT appropriately in /etc/make.conf if you like - -INFO_FILES= krb425.info krb5-admin.info krb5-admin.info-1 \ - krb5-admin.info-2 krb5-admin.info-3 krb5-install.info \ - krb5-install.info-1 krb5-install.info-2 krb5-user.info - -MAN1= krb5-send-pr.1 kpasswd.1 v5passwd.1 klist.1 kinit.1 \ - kdestroy.1 ksu.1 sclient.1 rsh.1 rcp.1 rlogin.1 \ - ftp.1 telnet.1 kerberos.1 kvno.1 -.if defined(KRB5_KRB4_COMPAT) && ${KRB5_KRB4_COMPAT} != "NO" -MAN1+= v4rcp.1 -.endif -MAN5= kdc.conf.5 krb5.conf.5 .k5login.5 -MAN8= krb5kdc.8 kadmin.8 kadmin.local.8 kdb5_util.8 \ - ktutil.8 kadmind.8 kprop.8 kpropd.8 sserver.8 \ - kshd.8 klogind.8 login.krb5.8 ftpd.8 telnetd.8 - -WRKSRC= ${WRKDIR}/${DISTNAME}/src - -WANT_HTML?= YES -HTML_DOC_DIR= ${WRKDIR}/${DISTNAME}/doc -HTML_DOCS= admin.html install_foot.html user-guide.html \ - admin_foot.html install_toc.html user-guide_foot.html \ - admin_toc.html krb425.html user-guide_toc.html \ - install.html krb425_toc.html - -.if !defined(USA_RESIDENT) || ${USA_RESIDENT} == "YES" -do-fetch: - @if [ ! -f ${DISTDIR}/${DISTNAME}${EXTRACT_SUFX} ]; then \ - ${ECHO} ""; \ - ${ECHO} ">> Kerberos V contains encryption software and is"; \ - ${ECHO} " export restricted. If you are not a USA resident,";\ - ${ECHO} " then you cannot obtain the Kerberos V sources from";\ - ${ECHO} " within the United States."; \ - ${ECHO} ""; \ - ${ECHO} ">> The Kerberos V sources must be fetched manually."; \ - ${ECHO} " Please visit ${KERBEROSV_URL}"; \ - ${ECHO} " to download ${DISTNAME}${EXTRACT_SUFX} and place"; \ - ${ECHO} " it in ${DISTDIR}. Then run make again."; \ - ${FALSE}; \ - fi - -post-extract: - @${TAR} -C ${WRKDIR} -xzf ${WRKDIR}/${DISTNAME}.tar.gz - @${RM} ${WRKDIR}/${DISTNAME}.tar.gz ${WRKDIR}/${DISTNAME}.tar.gz.asc -.if !defined(EXTRACT_PRESERVE_OWNERSHIP) - @if [ `id -u` = 0 ]; then \ - ${CHMOD} -R ug-s,go-w ${WRKDIR}/${DISTNAME}; \ - ${CHOWN} -R 0:0 ${WRKDIR}/${DISTNAME}; \ - fi -.endif -.endif - -pre-build: -.if !defined(KRB5_KRB4_COMPAT) - @${ECHO} "------------------------------------------------------" - @${ECHO} "Set KRB5_KRB4_COMPAT=NO if you do not want to build " - @${ECHO} "the KerberosIV compatibility libraries. " - @${ECHO} "------------------------------------------------------" -.endif - -post-build: - @(cd ${WRKSRC}/../doc && \ - ${MAKE} ${INFO_FILES}) - -.include <bsd.port.pre.mk> - -post-install: -# html documentation -.if defined(WANT_HTML) && ${WANT_HTML} == "YES" - @${MKDIR} ${PREFIX}/share/doc/krb5 -.for html in ${HTML_DOCS} - ${INSTALL_MAN} ${HTML_DOC_DIR}/${html} ${PREFIX}/share/doc/krb5 -.endfor -.endif -# handle info files -.for info in ${INFO_FILES} - ${INSTALL_MAN} ${WRKSRC}/../doc/${info} ${PREFIX}/info/${info} -.endfor -.for info in ${INFO_FILES:M*.info} - install-info ${PREFIX}/info/${info} ${PREFIX}/info/dir -.endfor -# fixup packing list (no libs without version numbers in aout case) -.if ${PORTOBJFORMAT} == "aout" - ${ECHO_MSG} "Fixing packing list for a.out" - ${MV} ${TMPPLIST} ${TMPPLIST}.new - ${GREP} -v '\.so$$' ${TMPPLIST}.new > ${TMPPLIST} - ${RM} ${TMPPLIST}.new -.endif - @${SED} "s%\${PREFIX}%${PREFIX}%" ${FILESDIR}/README.FreeBSD > ${PREFIX}/share/doc/krb5/README.FreeBSD - @${CHMOD} 444 ${PREFIX}/share/doc/krb5/README.FreeBSD - @${ECHO} "------------------------------------------------------" - @${ECHO} "This port of MIT Kerberos 5 includes remote login " - @${ECHO} "daemons (telnetd and klogind). These daemons default " - @${ECHO} "to using the system login program (/usr/bin/login). " - @${ECHO} "Please see the file " - @${ECHO} "${PREFIX}/share/doc/krb5/README.FreeBSD" - @${ECHO} "for more information. " - @${ECHO} "------------------------------------------------------" - -.include <bsd.port.post.mk> diff --git a/security/krb5-appl/distinfo b/security/krb5-appl/distinfo deleted file mode 100644 index ebef31db7744..000000000000 --- a/security/krb5-appl/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (krb5-1.2.7.tar) = c09755f5fb9bc30d93050bd89ef0562b diff --git a/security/krb5-appl/files/README.FreeBSD b/security/krb5-appl/files/README.FreeBSD deleted file mode 100644 index e888e689eb04..000000000000 --- a/security/krb5-appl/files/README.FreeBSD +++ /dev/null @@ -1,32 +0,0 @@ -The MIT KRB5 port provides its own login program at -${PREFIX}/sbin/login.krb5. However, login.krb5 does not make use of -the FreeBSD login.conf and login.access files that provide a means of -setting up and controlling sessions under FreeBSD. To overcome this, -the MIT KRB5 port uses the FreeBSD /usr/bin/login program to provide -interactive login password authentication instead of the login.krb5 -program provided by MIT KRB5. The FreeBSD /usr/bin/login program does -not have support for Kerberos V password authentication, -e.g. authentication at the console. The pam_krb5 port must be used to -provide Kerberos V password authentication. - -For more information about pam_krb5, please see pam(8) and pam_krb5(8). - -If you wish to use login.krb5 that is provided by the MIT KRB5 port, -the arguments "-L ${PREFIX}/sbin/login.krb5" must be -specified as arguments to klogind and KRB5 telnetd, e.g. - -klogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -L ${PREFIX}/sbin/login.krb5 -eklogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -e -L ${PREFIX}/sbin/login.krb5 -telnet stream tcp nowait root ${PREFIX}/sbin/telnetd telnetd -a none -L ${PREFIX}/sbin/login.krb5 - -Additionally, if you wish to use the MIT KRB5 provided login.krb5 instead -of the FreeBSD provided /usr/bin/login for local tty logins, -"lo=${PREFIX}/sbin/login.krb5" must be specified in /etc/gettytab, e.g., - -default:\ - :cb:ce:ck:lc:fd#1000:im=\r\n%s/%m (%h) (%t)\r\n\r\n:sp#1200:\ - :if=/etc/issue:\ - :lo=${PREFIX}/sbin/login.krb5: - -It is recommended that the FreeBSD /usr/bin/login be used with the -pam_krb5 port instead of the MIT KRB5 provided login.krb5. diff --git a/security/krb5-appl/files/patch-ac b/security/krb5-appl/files/patch-ac deleted file mode 100644 index 8bca5437d964..000000000000 --- a/security/krb5-appl/files/patch-ac +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/admin.texinfo Fri Feb 6 21:40:56 1998 -+++ admin.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb5-admin.info - @settitle Kerberos V5 System Administrator's Guide -+@dircategory Kerberos V5 -+@direntry -+* Admin Guide: (krb5-admin). Kerberos V5 System Admin's Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-appl/files/patch-ad b/security/krb5-appl/files/patch-ad deleted file mode 100644 index c8b6d3e99e91..000000000000 --- a/security/krb5-appl/files/patch-ad +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/user-guide.texinfo Fri Feb 6 21:40:58 1998 -+++ user-guide.texinfo Fri Jun 19 15:13:45 1998 -@@ -3,6 +3,10 @@ - @c guide - @setfilename krb5-user.info - @settitle Kerberos V5 UNIX User's Guide -+@dircategory Kerberos V5 -+@direntry -+* User's Guide: (krb5-user). Kerberos V5 UNIX User's Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-appl/files/patch-ae b/security/krb5-appl/files/patch-ae deleted file mode 100644 index f5643b5aa04f..000000000000 --- a/security/krb5-appl/files/patch-ae +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/install.texinfo Fri Feb 6 21:40:56 1998 -+++ install.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb5-install.info - @settitle Kerberos V5 Installation Guide -+@dircategory Kerberos V5 -+@direntry -+* Installation Guide: (krb5-install). Kerberos V5 Installation Guide -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-appl/files/patch-af b/security/krb5-appl/files/patch-af deleted file mode 100644 index e054b18bbef5..000000000000 --- a/security/krb5-appl/files/patch-af +++ /dev/null @@ -1,13 +0,0 @@ ---- ../doc/krb425.texinfo Fri Feb 6 21:40:57 1998 -+++ krb425.texinfo Fri Jun 19 15:13:45 1998 -@@ -5,6 +5,10 @@ - @c guide - @setfilename krb425.info - @settitle Upgrading to Kerberos V5 from Kerberos V4 -+@dircategory Kerberos V5 -+@direntry -+* Upgrading from V4 to V5: (krb425). Upgrading from Kerberos V4 to V5 -+@end direntry - @setchapternewpage odd @c chapter begins on next odd page - @c @setchapternewpage on @c chapter begins on next page - @c @smallbook @c Format for 7" X 9.25" paper diff --git a/security/krb5-appl/files/patch-ai b/security/krb5-appl/files/patch-ai deleted file mode 100644 index f5b733194344..000000000000 --- a/security/krb5-appl/files/patch-ai +++ /dev/null @@ -1,28 +0,0 @@ ---- appl/gssftp/ftpd/ftpd.c.orig Wed Jan 9 14:26:51 2002 -+++ appl/gssftp/ftpd/ftpd.c Thu Jan 10 19:00:13 2002 -@@ -487,7 +487,13 @@ - #ifndef LOG_DAEMON - #define LOG_DAEMON 0 - #endif -- openlog("ftpd", LOG_PID | LOG_NDELAY, LOG_DAEMON); -+ -+#ifndef LOG_FTP -+#define FACILITY LOG_DAEMON -+#else -+#define FACILITY LOG_FTP -+#endif -+ openlog("ftpd", LOG_PID | LOG_NDELAY, FACILITY); - - addrlen = sizeof (his_addr); - if (getpeername(0, (struct sockaddr *)&his_addr, &addrlen) < 0) { -@@ -2312,6 +2318,10 @@ - if ((length = krb_mk_safe((u_char *)&cksum, out_buf, sizeof(cksum), - &kdata.session,&ctrl_addr, &his_addr)) == -1) { - secure_error("ADAT: krb_mk_safe failed"); -+ return(0); -+ } -+ if (length >= (FTP_BUFSIZ - sizeof("ADAT=")) / 4 * 3) { -+ secure_error("ADAT: reply too long"); - return(0); - } - if (length >= (FTP_BUFSIZ - sizeof("ADAT=")) / 4 * 3) { diff --git a/security/krb5-appl/files/patch-aj b/security/krb5-appl/files/patch-aj deleted file mode 100644 index c3bb8dfd6960..000000000000 --- a/security/krb5-appl/files/patch-aj +++ /dev/null @@ -1,19 +0,0 @@ -*** appl/gssftp/ftpd/logwtmp.c.ORIG Fri Feb 6 19:41:25 1998 ---- appl/gssftp/ftpd/logwtmp.c Tue Jun 30 19:46:01 1998 -*************** -*** 66,72 **** - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMPFILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); ---- 66,72 ---- - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); diff --git a/security/krb5-appl/files/patch-appl::bsd::Makefile.in b/security/krb5-appl/files/patch-appl::bsd::Makefile.in deleted file mode 100644 index 603c399a287f..000000000000 --- a/security/krb5-appl/files/patch-appl::bsd::Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- appl/bsd/Makefile.in.orig Wed Feb 28 14:06:43 2001 -+++ appl/bsd/Makefile.in Mon Dec 31 21:52:45 2001 -@@ -28,7 +28,7 @@ - -DUCB_RSH=\"$(UCB_RSH)\" -DUCB_RCP=\"$(UCB_RCP)\" - - DEFINES = $(RSH) $(BSD) $(RPROGS) \ -- -DLOGIN_PROGRAM=\"$(SERVER_BINDIR)/login.krb5\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" -+ -DLOGIN_PROGRAM=\"/usr/bin/login\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" - - all:: rsh rcp rlogin kshd klogind login.krb5 $(V4RCP) - diff --git a/security/krb5-appl/files/patch-appl::bsd::klogind.M b/security/krb5-appl/files/patch-appl::bsd::klogind.M deleted file mode 100644 index 1523c3d593df..000000000000 --- a/security/krb5-appl/files/patch-appl::bsd::klogind.M +++ /dev/null @@ -1,34 +0,0 @@ ---- appl/bsd/klogind.M.orig Wed Feb 28 14:06:43 2001 -+++ appl/bsd/klogind.M Mon Dec 31 21:22:27 2001 -@@ -14,6 +14,7 @@ - ] - [ - [ \fB\-w\fP[\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]] ] -+[\fB\-L\fP \fIloginpath\fP] - .SH DESCRIPTION - .I Klogind - is the server for the -@@ -107,6 +108,10 @@ - Beta5 (May 1995)--present bogus checksums that prevent Kerberos - authentication from succeeding in the default mode. - -+.IP \fB\-L\ loginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. -+ - - .PP - If the -@@ -157,12 +162,6 @@ - - .IP \fB\-M\ realm\fP - Set the Kerberos realm to use. -- --.IP \fB\-L\ login\fP --Set the login program to use. This option only has an effect if --DO_NOT_USE_K_LOGIN was not defined when --.I klogind --was compiled. - .SH DIAGNOSTICS - All diagnostic messages are returned on the connection - associated with the diff --git a/security/krb5-appl/files/patch-appl::telnet::telnetd::Makefile.in b/security/krb5-appl/files/patch-appl::telnet::telnetd::Makefile.in deleted file mode 100644 index cb5a0e26d49d..000000000000 --- a/security/krb5-appl/files/patch-appl::telnet::telnetd::Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- appl/telnet/telnetd/Makefile.in.orig Wed Feb 28 14:06:51 2001 -+++ appl/telnet/telnetd/Makefile.in Mon Dec 31 21:51:19 2001 -@@ -24,7 +24,7 @@ - # @(#)Makefile.generic 5.5 (Berkeley) 3/1/91 - # - --AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=KRB5_PATH_LOGIN -+AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=\"/usr/bin/login\" - OTHERDEFS=-DKLUDGELINEMODE -DDIAGNOSTICS -DENV_HACK -DOLD_ENVIRON - LOCALINCLUDES=-I.. -I$(srcdir)/.. - DEFINES = $(AUTH_DEF) $(OTHERDEFS) diff --git a/security/krb5-appl/files/patch-appl::telnet::telnetd::telnetd.8 b/security/krb5-appl/files/patch-appl::telnet::telnetd::telnetd.8 deleted file mode 100644 index 951ee0d5692a..000000000000 --- a/security/krb5-appl/files/patch-appl::telnet::telnetd::telnetd.8 +++ /dev/null @@ -1,22 +0,0 @@ ---- appl/telnet/telnetd/telnetd.8.orig Wed Feb 28 14:06:51 2001 -+++ appl/telnet/telnetd/telnetd.8 Mon Dec 31 21:16:55 2001 -@@ -43,7 +43,7 @@ - [\fB\-k\fP] [\fB\-n\fP] [\fB\-r\fP\fIlowpty-highpty\fP] [\fB\-s\fP] - [\fB\-S\fP \fItos\fP] [\fB\-U\fP] [\fB\-X\fP \fIauthtype\fP] - [\fB\-w\fP [\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]]] --[\fB\-debug\fP [\fIport\fP]] -+[\fB\-debug\fP] [\fB\-L\fP \fIloginpath\fP] [\fIport\fP] - .SH DESCRIPTION - The - .B telnetd -@@ -221,6 +221,10 @@ - in response to a - .SM DO TIMING-MARK) - for kludge linemode support. -+.TP -+\fB\-L\fP \fIloginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. - .TP - .B \-l - Specifies line mode. Tries to force clients to use line-at-a-time diff --git a/security/krb5-appl/files/patch-appl::telnet::telnetd::utility.c b/security/krb5-appl/files/patch-appl::telnet::telnetd::utility.c deleted file mode 100644 index 8bb656dc0673..000000000000 --- a/security/krb5-appl/files/patch-appl::telnet::telnetd::utility.c +++ /dev/null @@ -1,38 +0,0 @@ ---- appl/telnet/telnetd/utility.c.orig Wed Jan 9 14:26:59 2002 -+++ appl/telnet/telnetd/utility.c Fri Jan 11 13:10:33 2002 -@@ -408,18 +408,25 @@ - int - netwrite(const char *buf, size_t len) - { -- size_t remain; -+ int remaining, copied; -+ -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ while (len > 0) { -+ /* Free up enough space if the room is too low*/ -+ if ((len > BUFSIZ ? BUFSIZ : len) > remaining) { -+ netflush(); -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ } - -- remain = sizeof(netobuf) - (nfrontp - netobuf); -- if (remain < len) { -- netflush(); -- remain = sizeof(netobuf) - (nfrontp - netobuf); -+ /* Copy out as much as will fit */ -+ copied = remaining > len ? len : remaining; -+ memmove(nfrontp, buf, copied); -+ nfrontp += copied; -+ len -= copied; -+ remaining -= copied; -+ buf += copied; - } -- if (remain < len) -- return 0; -- memcpy(nfrontp, buf, len); -- nfrontp += len; -- return len; -+ return copied; - } - - /* diff --git a/security/krb5-appl/files/patch-as b/security/krb5-appl/files/patch-as deleted file mode 100644 index 0b26c449fe11..000000000000 --- a/security/krb5-appl/files/patch-as +++ /dev/null @@ -1,199 +0,0 @@ ---- clients/ksu/main.c.orig Wed Feb 28 14:06:55 2001 -+++ clients/ksu/main.c Thu Sep 6 16:21:46 2001 -@@ -31,6 +31,10 @@ - #include <sys/wait.h> - #include <signal.h> - -+#ifdef LOGIN_CAP -+#include <login_cap.h> -+#endif -+ - /* globals */ - char * prog_name; - int auth_debug =0; -@@ -60,7 +64,7 @@ - ill specified arguments to commands */ - - void usage (){ -- fprintf(stderr, "Usage: %s [target user] [-n principal] [-c source cachename] [-C target cachename] [-k] [-D] [-r time] [-pf] [-l lifetime] [-zZ] [-q] [-e command [args... ] ] [-a [args... ] ]\n", prog_name); -+ fprintf(stderr, "Usage: %s [target user] [-m] [-n principal] [-c source cachename] [-C target cachename] [-k] [-D] [-r time] [-pf] [-l lifetime] [-zZ] [-q] [-e command [args... ] ] [-a [args... ] ]\n", prog_name); - } - - /* for Ultrix and friends ... */ -@@ -76,6 +80,7 @@ - int argc; - char ** argv; - { -+int asme = 0; - int hp =0; - int some_rest_copy = 0; - int all_rest_copy = 0; -@@ -90,6 +95,7 @@ - char * cc_target_tag = NULL; - char * target_user = NULL; - char * source_user; -+char * source_shell; - - krb5_ccache cc_source = NULL; - const char * cc_source_tag = NULL; -@@ -118,6 +124,11 @@ - char * dir_of_cc_target; - char * dir_of_cc_source; - -+#ifdef LOGIN_CAP -+login_cap_t *lc; -+int setwhat; -+#endif -+ - options.opt = KRB5_DEFAULT_OPTIONS; - options.lifetime = KRB5_DEFAULT_TKT_LIFE; - options.rlife =0; -@@ -181,7 +192,7 @@ - com_err (prog_name, errno, "while setting euid to source user"); - exit (1); - } -- while(!done && ((option = getopt(pargc, pargv,"n:c:r:a:zZDfpkql:e:")) != -1)){ -+ while(!done && ((option = getopt(pargc, pargv,"n:c:r:a:zZDfpkmql:e:")) != -1)){ - switch (option) { - case 'r': - options.opt |= KDC_OPT_RENEWABLE; -@@ -227,6 +238,9 @@ - errflg++; - } - break; -+ case 'm': -+ asme = 1; -+ break; - case 'n': - if ((retval = krb5_parse_name(ksu_context, optarg, &client))){ - com_err(prog_name, retval, "when parsing name %s", optarg); -@@ -341,6 +355,7 @@ - - /* allocate space and copy the usernamane there */ - source_user = xstrdup(pwd->pw_name); -+ source_shell = xstrdup(pwd->pw_shell); - source_uid = pwd->pw_uid; - source_gid = pwd->pw_gid; - -@@ -668,43 +683,64 @@ - /* get the shell of the user, this will be the shell used by su */ - target_pwd = getpwnam(target_user); - -- if (target_pwd->pw_shell) -- shell = xstrdup(target_pwd->pw_shell); -- else { -- shell = _DEF_CSH; /* default is cshell */ -- } -+ if (asme) { -+ if (source_shell && *source_shell) { -+ shell = strdup(source_shell); -+ } else { -+ shell = _DEF_CSH; -+ } -+ } else { -+ if (target_pwd->pw_shell) -+ shell = strdup(target_pwd->pw_shell); -+ else { -+ shell = _DEF_CSH; /* default is cshell */ -+ } -+ } - - #ifdef HAVE_GETUSERSHELL - - /* insist that the target login uses a standard shell (root is omited) */ - -- if (!standard_shell(target_pwd->pw_shell) && source_uid) { -- fprintf(stderr, "ksu: permission denied (shell).\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -+ if (asme) { -+ if (!standard_shell(pwd->pw_shell) && source_uid) { -+ fprintf(stderr, "ksu: permission denied (shell).\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } else { -+ if (!standard_shell(target_pwd->pw_shell) && source_uid) { -+ fprintf(stderr, "ksu: permission denied (shell).\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } - } - #endif /* HAVE_GETUSERSHELL */ - -- if (target_pwd->pw_uid){ -- -- if(set_env_var("USER", target_pwd->pw_name)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -- } -+ if (!asme) { -+ if (target_pwd->pw_uid){ -+ if (set_env_var("USER", target_pwd->pw_name)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } - -- if(set_env_var( "HOME", target_pwd->pw_dir)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -+ if (set_env_var( "HOME", target_pwd->pw_dir)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } - -- if(set_env_var( "SHELL", shell)){ -- fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -- sweep_up(ksu_context, cc_target); -- exit(1); -- } -+ if (set_env_var( "SHELL", shell)){ -+ fprintf(stderr,"ksu: couldn't set environment variable USER\n"); -+ sweep_up(ksu_context, cc_target); -+ exit(1); -+ } -+ } -+ -+#ifdef LOGIN_CAP -+ lc = login_getpwclass(pwd); -+#endif - - /* set the cc env name to target */ - -@@ -714,7 +750,18 @@ - sweep_up(ksu_context, cc_target); - exit(1); - } -- -+#ifdef LOGIN_CAP -+ setwhat = LOGIN_SETUSER|LOGIN_SETGROUP|LOGIN_SETRESOURCES|LOGIN_SETPRIORITY; -+ setwhat |= LOGIN_SETPATH|LOGIN_SETUMASK|LOGIN_SETENV; -+ /* -+ * Don't touch resource/priority settings if -m has been -+ * used or -l and -c hasn't, and we're not su'ing to root. -+ */ -+ if (target_pwd->pw_uid) -+ setwhat &= ~(LOGIN_SETPRIORITY|LOGIN_SETRESOURCES); -+ if (setusercontext(lc, target_pwd, target_pwd->pw_uid, setwhat) < 0) -+ err(1, "setusercontext"); -+#else - /* set permissions */ - if (setgid(target_pwd->pw_gid) < 0) { - perror("ksu: setgid"); -@@ -754,7 +801,8 @@ - perror("ksu: setuid"); - sweep_up(ksu_context, cc_target); - exit(1); -- } -+ } -+#endif - - if (access( cc_target_tag_tmp, R_OK | W_OK )){ - com_err(prog_name, errno, diff --git a/security/krb5-appl/files/patch-at b/security/krb5-appl/files/patch-at deleted file mode 100644 index ef9ea4856f7a..000000000000 --- a/security/krb5-appl/files/patch-at +++ /dev/null @@ -1,14 +0,0 @@ -*** include/sys/syslog.h.ORIG Fri Feb 6 19:42:12 1998 ---- include/sys/syslog.h Tue Jun 30 19:46:02 1998 -*************** -*** 34,39 **** ---- 34,42 ---- - #define LOG_LPR (6<<3) /* line printer subsystem */ - #define LOG_NEWS (7<<3) /* network news subsystem */ - #define LOG_UUCP (8<<3) /* UUCP subsystem */ -+ #if (defined(BSD) && (BSD >= 199306)) -+ #define LOG_FTP (11<<3) /* ftp daemon */ -+ #endif - /* other codes through 15 reserved for system use */ - #define LOG_LOCAL0 (16<<3) /* reserved for local use */ - #define LOG_LOCAL1 (17<<3) /* reserved for local use */ diff --git a/security/krb5-appl/files/patch-av b/security/krb5-appl/files/patch-av deleted file mode 100644 index 8363b8bb1e2d..000000000000 --- a/security/krb5-appl/files/patch-av +++ /dev/null @@ -1,15 +0,0 @@ -*** clients/ksu/Makefile.in.ORIG Sun Aug 2 16:51:18 1998 ---- clients/ksu/Makefile.in Sun Aug 2 16:53:48 1998 -*************** -*** 3,7 **** - mydir=ksu - BUILDTOP=$(REL)$(U)$(S)$(U) -! DEFINES = -DGET_TGT_VIA_PASSWD -DPRINC_LOOK_AHEAD -DCMD_PATH='"/bin /local/bin"' - CFLAGS = $(CCOPTS) $(DEFINES) $(DEFS) $(LOCALINCLUDE) - ---- 3,7 ---- - mydir=ksu - BUILDTOP=$(REL)$(U)$(S)$(U) -! DEFINES = -DGET_TGT_VIA_PASSWD -DPRINC_LOOK_AHEAD -DCMD_PATH='"/usr/bin /bin /usr/sbin /sbin"' - CFLAGS = $(CCOPTS) $(DEFINES) $(DEFS) $(LOCALINCLUDE) - diff --git a/security/krb5-appl/files/patch-ax b/security/krb5-appl/files/patch-ax deleted file mode 100644 index 58cfe89d9294..000000000000 --- a/security/krb5-appl/files/patch-ax +++ /dev/null @@ -1,11 +0,0 @@ ---- ../doc/Makefile.orig Wed Jan 20 21:57:45 1999 -+++ ../doc/Makefile Wed Jan 20 21:59:19 1999 -@@ -1,7 +1,7 @@ - SRCDIR=../src - DVI=texi2dvi - DVIPS=dvips -o "$@" --INFO=makeinfo -+INFO=makeinfo --no-validate - HTML=texi2html - RM=rm -f - TAR=tar -chvf diff --git a/security/krb5-appl/files/patch-ay b/security/krb5-appl/files/patch-ay deleted file mode 100644 index 54c041e205f1..000000000000 --- a/security/krb5-appl/files/patch-ay +++ /dev/null @@ -1,50 +0,0 @@ ---- util/pty/getpty.c.orig Wed Jan 9 14:28:37 2002 -+++ util/pty/getpty.c Thu Jan 10 21:30:40 2002 -@@ -24,13 +24,26 @@ - #include "libpty.h" - #include "pty-int.h" - -+#ifdef __FreeBSD__ -+#define PTYCHARS1 "pqrsPQRS" -+#define PTYCHARS2 "0123456789abcdefghijklmnopqrstuv" -+#endif -+ -+#ifndef PTYCHARS1 -+#define PTYCHARS1 "pqrstuvwxyzPQRST" -+#endif -+ -+#ifndef PTYCHARS2 -+#define PTYCHARS2 "0123456789abcdef" -+#endif -+ - long - ptyint_getpty_ext(int *fd, char *slave, int slavelength, int do_grantpt) - { -+ int ptynum; -+ char *cp1, *cp2; - #if !defined(HAVE__GETPTY) && !defined(HAVE_OPENPTY) -- char *cp; - char *p; -- int i,ptynum; - struct stat stb; - char slavebuf[1024]; - #endif -@@ -115,14 +128,14 @@ - strncpy(slave, slavebuf, slavelength); - return 0; - } else { -- for (cp = "pqrstuvwxyzPQRST";*cp; cp++) { -+ for (cp1 = PTYCHARS1; *cp1 != '\0'; cp1++) { - sprintf(slavebuf,"/dev/ptyXX"); -- slavebuf[sizeof("/dev/pty") - 1] = *cp; -+ slavebuf[sizeof("/dev/pty") - 1] = *cp1; - slavebuf[sizeof("/dev/ptyp") - 1] = '0'; - if (stat(slavebuf, &stb) < 0) - break; -- for (i = 0; i < 16; i++) { -- slavebuf[sizeof("/dev/ptyp") - 1] = "0123456789abcdef"[i]; -+ for (cp2 = PTYCHARS2; *cp2 != '\0'; cp2++) { -+ slavebuf[sizeof("/dev/ptyp") - 1] = *cp2; - *fd = open(slavebuf, O_RDWR); - if (*fd < 0) continue; - diff --git a/security/krb5-appl/files/patch-ba b/security/krb5-appl/files/patch-ba deleted file mode 100644 index 60d70466eff3..000000000000 --- a/security/krb5-appl/files/patch-ba +++ /dev/null @@ -1,81 +0,0 @@ ---- appl/bsd/login.c.ORIG Wed Oct 13 12:55:47 1999 -+++ appl/bsd/login.c Wed Oct 13 12:56:29 1999 -@@ -1303,19 +1304,6 @@ - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - } - -- /* Policy: If local password is good, user is good. -- We really can't trust the Kerberos password, -- because somebody on the net could spoof the -- Kerberos server (not easy, but possible). -- Some sites might want to use it anyways, in -- which case they should change this line -- to: -- if (kpass_ok) -- */ -- -- if (lpass_ok) -- break; -- - if (got_v5_tickets) { - if (retval = krb5_verify_init_creds(kcontext, &my_creds, NULL, - NULL, &xtra_creds, -@@ -1338,6 +1326,9 @@ - } - #endif /* KRB4_GET_TICKETS */ - -+ if (lpass_ok) -+ break; -+ - bad_login: - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - -@@ -1640,20 +1631,28 @@ - /* set up credential cache -- obeying KRB5_ENV_CCNAME - set earlier */ - /* (KRB5_ENV_CCNAME == "KRB5CCNAME" via osconf.h) */ -- if (retval = krb5_cc_default(kcontext, &ccache)) { -+ retval = krb5_cc_default(kcontext, &ccache); -+ if (retval) - com_err(argv[0], retval, "while getting default ccache"); -- } else if (retval = krb5_cc_initialize(kcontext, ccache, me)) { -- com_err(argv[0], retval, "when initializing cache"); -- } else if (retval = krb5_cc_store_cred(kcontext, ccache, &my_creds)) { -- com_err(argv[0], retval, "while storing credentials"); -- } else if (xtra_creds && -- (retval = krb5_cc_copy_creds(kcontext, xtra_creds, -- ccache))) { -- com_err(argv[0], retval, "while storing credentials"); -+ else { -+ retval = krb5_cc_initialize(kcontext, ccache, me); -+ if (retval) -+ com_err(argv[0], retval, "when initializing cache"); -+ else { -+ retval = krb5_cc_store_cred(kcontext, ccache, &my_creds); -+ if (retval) -+ com_err(argv[0], retval, "while storing credentials"); -+ else { -+ if (xtra_creds) { -+ retval = krb5_cc_copy_creds(kcontext, xtra_creds, -+ ccache); -+ if (retval) -+ com_err(argv[0], retval, "while storing credentials"); -+ krb5_cc_destroy(kcontext, xtra_creds); -+ } -+ } -+ } - } -- -- if (xtra_creds) -- krb5_cc_destroy(kcontext, xtra_creds); - } else if (forwarded_v5_tickets && rewrite_ccache) { - if ((retval = krb5_cc_initialize (kcontext, ccache, me))) { - syslog(LOG_ERR, -@@ -1727,6 +1727,7 @@ - - if (ccname) - setenv("KRB5CCNAME", ccname, 1); -+ krb5_cc_set_default_name(kcontext, ccname); - - setenv("HOME", pwd->pw_dir, 1); - setenv("PATH", LPATH, 1); diff --git a/security/krb5-appl/files/patch-bb b/security/krb5-appl/files/patch-bb deleted file mode 100644 index 6545ae682c53..000000000000 --- a/security/krb5-appl/files/patch-bb +++ /dev/null @@ -1,10 +0,0 @@ ---- appl/telnet/telnet/Makefile.in.orig Sat Dec 18 10:47:05 1999 -+++ appl/telnet/telnet/Makefile.in Sat Dec 18 10:47:13 1999 -@@ -58,7 +58,6 @@ - $(INSTALL_DATA) $(srcdir)/$$f.1 \ - ${DESTDIR}$(CLIENT_MANDIR)/`echo $$f|sed '$(transform)'`.1; \ - done -- $(INSTALL_DATA) $(srcdir)/tmac.doc ${DESTDIR}$(CLIENT_MANDIR)/tmac.doc - - authenc.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) - commands.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) diff --git a/security/krb5-appl/pkg-comment b/security/krb5-appl/pkg-comment deleted file mode 100644 index 339cc4cd5571..000000000000 --- a/security/krb5-appl/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -An authentication system developed at MIT, successor to Kerberos IV diff --git a/security/krb5-appl/pkg-descr b/security/krb5-appl/pkg-descr deleted file mode 100644 index 376a48c52faf..000000000000 --- a/security/krb5-appl/pkg-descr +++ /dev/null @@ -1,24 +0,0 @@ -Kerberos V5 is an authentication system developed at MIT. -WWW: http://web.mit.edu/kerberos/www/ - -Abridged from the User Guide: - Under Kerberos, a client sends a request for a ticket to the - Key Distribution Center (KDC). The KDC creates a ticket-granting - ticket (TGT) for the client, encrypts it using the client's - password as the key, and sends the encrypted TGT back to the - client. The client then attempts to decrypt the TGT, using - its password. If the client successfully decrypts the TGT, it - keeps the decrypted TGT, which indicates proof of the client's - identity. The TGT permits the client to obtain additional tickets, - which give permission for specific services. - Since Kerberos negotiates authenticated, and optionally encrypted, - communications between two points anywhere on the internet, it - provides a layer of security that is not dependent on which side of a - firewall either client is on. - The Kerberos V5 package is designed to be easy to use. Most of the - commands are nearly identical to UNIX network programs you are already - used to. Kerberos V5 is a single-sign-on system, which means that you - have to type your password only once per session, and Kerberos does - the authenticating and encrypting transparently. - -Jacques Vidrine <n@nectar.com> diff --git a/security/krb5-appl/pkg-plist b/security/krb5-appl/pkg-plist deleted file mode 100644 index f6494e183d94..000000000000 --- a/security/krb5-appl/pkg-plist +++ /dev/null @@ -1,125 +0,0 @@ -@unexec install-info --delete %D/info/krb425.info %D/info/dir -@unexec install-info --delete %D/info/krb5-admin.info %D/info/dir -@unexec install-info --delete %D/info/krb5-install.info %D/info/dir -@unexec install-info --delete %D/info/krb5-user.info %D/info/dir -bin/ftp -bin/gss-client -bin/kdestroy -bin/kinit -bin/klist -bin/kpasswd -bin/krb5-config -%%KRB4%%bin/krb524init -bin/ksu -bin/kvno -bin/rcp -bin/rlogin -bin/rsh -bin/sclient -bin/sim_client -bin/telnet -bin/uuclient -%%KRB4%%bin/v4rcp -bin/v5passwd -include/com_err.h -include/gssapi/gssapi.h -include/gssapi/gssapi_generic.h -include/gssapi/gssapi_krb5.h -include/kerberosIV/des.h -include/kerberosIV/kadm.h -include/kerberosIV/krb.h -include/kerberosIV/krb_err.h -include/kerberosIV/mit-copyright.h -include/krb5.h -include/libpty.h -include/mit-sipb-copyright.h -include/port-sockets.h -include/profile.h -info/krb425.info -info/krb5-admin.info -info/krb5-admin.info-1 -info/krb5-admin.info-2 -info/krb5-admin.info-3 -info/krb5-install.info -info/krb5-install.info-1 -info/krb5-install.info-2 -info/krb5-user.info -lib/libcom_err.a -lib/libcom_err.so -lib/libcom_err.so.3 -lib/libdes425.a -lib/libdes425.so -lib/libdes425.so.3 -lib/libdyn.a -lib/libdyn.so -lib/libdyn.so.1 -lib/libgssapi_krb5.a -lib/libgssapi_krb5.so -lib/libgssapi_krb5.so.2 -lib/libgssrpc.a -lib/libgssrpc.so -lib/libgssrpc.so.3 -lib/libk5crypto.a -lib/libk5crypto.so -lib/libk5crypto.so.3 -lib/libkadm5clnt.a -lib/libkadm5clnt.so -lib/libkadm5clnt.so.5 -lib/libkadm5srv.a -lib/libkadm5srv.so -lib/libkadm5srv.so.5 -lib/libkdb5.a -lib/libkdb5.so -lib/libkdb5.so.3 -%%KRB4%%lib/libkrb4.a -%%KRB4%%lib/libkrb4.so -%%KRB4%%lib/libkrb4.so.2 -lib/libkrb5.a -lib/libkrb5.so -lib/libkrb5.so.3 -%%KRB4%%lib/libkrb524.a -lib/libpty.a -lib/libpty.so -lib/libpty.so.1 -lib/libss.a -sbin/ftpd -sbin/gss-server -sbin/kadmin -sbin/kadmin.local -sbin/kadmind -%%KRB4%%sbin/kadmind4 -sbin/kdb5_util -sbin/klogind -sbin/kprop -sbin/kpropd -sbin/krb5-send-pr -%%KRB4%%sbin/krb524d -sbin/krb5kdc -sbin/kshd -sbin/ktutil -sbin/login.krb5 -sbin/sim_server -sbin/sserver -sbin/telnetd -sbin/uuserver -sbin/v5passwdd -share/doc/krb5/README.FreeBSD -share/doc/krb5/admin.html -share/doc/krb5/admin_foot.html -share/doc/krb5/admin_toc.html -share/doc/krb5/install.html -share/doc/krb5/install_foot.html -share/doc/krb5/install_toc.html -share/doc/krb5/krb425.html -share/doc/krb5/krb425_toc.html -share/doc/krb5/user-guide.html -share/doc/krb5/user-guide_foot.html -share/doc/krb5/user-guide_toc.html -share/gnats/mit -@dirrm include/gssapi -@dirrm include/kerberosIV -@dirrm share/doc/krb5 -@exec install-info %D/info/krb425.info %D/info/dir -@exec install-info %D/info/krb5-admin.info %D/info/dir -@exec install-info %D/info/krb5-install.info %D/info/dir -@exec install-info %D/info/krb5-user.info %D/info/dir diff --git a/security/kwallet/Makefile b/security/kwallet/Makefile deleted file mode 100644 index 1725a3ae4156..000000000000 --- a/security/kwallet/Makefile +++ /dev/null @@ -1,45 +0,0 @@ -# New ports collection makefile for: kdeutils3 -# Date created: 3 November 2001 -# Whom: will@cvs.kde.org -# -# $FreeBSD$ -# - -PORTNAME= kdeutils -PORTVERSION= ${KDE_VERSION} -PORTREVISION= 1 -CATEGORIES?= misc kde -MASTER_SITES= ${MASTER_SITE_KDE} -MASTER_SITE_SUBDIR= stable/${PORTVERSION}/src -DIST_SUBDIR= KDE - -MAINTAINER?= kde@FreeBSD.org - -USE_KDELIBS_VER=3 -USE_BZIP2= yes -INSTALLS_SHLIB= yes -GNU_CONFIGURE= yes -USE_GMAKE= yes -MAN1= efax.1 efix.1 fax.1 - -.include "${.CURDIR}/../../x11/kde3/Makefile.kde" - -#klaptop doesn't like alpha because alpha doesn't support apm -.if ${MACHINE_ARCH} == "alpha" -DO_NOT_COMPILE+=klaptopdaemon -PLIST_SUB+= ALPHA_NA="@comment " -.else -PLIST_SUB+= ALPHA_NA="" -.endif -# kfloppy is a mostly broken, non-standard, linux-centric pain... -.if !defined(WITH_KFLOPPY) -DO_NOT_COMPILE+=kfloppy -PLIST_SUB+= KFLOPPY="@comment " -.else -PLIST_SUB+= KFLOPPY="" -.endif -.if defined(DO_NOT_COMPILE) -CONFIGURE_ENV+= DO_NOT_COMPILE="${DO_NOT_COMPILE}" -.endif - -.include <bsd.port.mk> diff --git a/security/kwallet/distinfo b/security/kwallet/distinfo deleted file mode 100644 index cba41d522370..000000000000 --- a/security/kwallet/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (KDE/kdeutils-3.0.4.tar.bz2) = e34ccb00b25f04f0a27474fa17d68e77 diff --git a/security/kwallet/pkg-comment b/security/kwallet/pkg-comment deleted file mode 100644 index 186230f9287d..000000000000 --- a/security/kwallet/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Utilities for the KDE integrated X11 desktop diff --git a/security/kwallet/pkg-descr b/security/kwallet/pkg-descr deleted file mode 100644 index 90ae45773bea..000000000000 --- a/security/kwallet/pkg-descr +++ /dev/null @@ -1 +0,0 @@ -KDE provides an integrated X11 based environment, much like CDE. diff --git a/security/kwallet/pkg-plist b/security/kwallet/pkg-plist deleted file mode 100644 index 689c255fca05..000000000000 --- a/security/kwallet/pkg-plist +++ /dev/null @@ -1,283 +0,0 @@ -bin/ark -bin/efax -bin/efix -bin/fax -bin/kcalc -bin/kcharselect -bin/kdepasswd -bin/kdessh -bin/kdf -bin/kedit -bin/khexedit -bin/kjots -bin/klaptopdaemon -bin/kljettool -bin/klpq -bin/klprfax -bin/klprfax_filter -bin/klprfax_lpd -bin/ktimer -bin/kwikdisk -include/kmultiformlistbox.h -include/kmultiformlistboxentry.h -include/kmultiformlistboxfactory.h -include/kwidgetstreamer.h -lib/kcalc.la -lib/kcalc.so -lib/kde3/kcharselectapplet.la -lib/kde3/kcharselectapplet.so -lib/kde3/kcharselectapplet.so.1 -lib/kde3/kcm_kdf.la -lib/kde3/kcm_kdf.so -lib/kde3/kcm_laptop.la -lib/kde3/kcm_laptop.so -lib/kde3/libkregexpeditorgui.la -lib/kde3/libkregexpeditorgui.so -lib/kedit.la -lib/kedit.so -lib/klaptopdaemon.la -lib/klaptopdaemon.so -lib/libark.la -lib/libark.so -lib/libark.so.1 -share/applnk/Editors/KEdit.desktop -share/applnk/Settings/Information/kcmdf.desktop -share/applnk/Settings/Information/pcmcia.desktop -share/applnk/Settings/PowerControl/battery.desktop -share/applnk/Settings/PowerControl/bwarning.desktop -share/applnk/Settings/PowerControl/cwarning.desktop -share/applnk/Settings/PowerControl/power.desktop -share/applnk/System/kdf.desktop -share/applnk/System/kwikdisk.desktop -share/applnk/Utilities/KCharSelect.desktop -share/applnk/Utilities/KLJetTool.desktop -share/applnk/Utilities/KLpq.desktop -share/applnk/Utilities/Kjots.desktop -share/applnk/Utilities/ark.desktop -share/applnk/Utilities/kcalc.desktop -share/applnk/Utilities/kdepasswd.desktop -share/applnk/Utilities/khexedit.desktop -share/applnk/Utilities/klprfax.desktop -share/applnk/Utilities/ktimer.desktop -share/apps/ark/ark_part.rc -share/apps/ark/arkui.rc -share/apps/ark/icons/hicolor/22x22/actions/ark_adddir.png -share/apps/ark/icons/hicolor/22x22/actions/ark_addfile.png -share/apps/ark/icons/hicolor/22x22/actions/ark_delete.png -share/apps/ark/icons/hicolor/22x22/actions/ark_extract.png -share/apps/ark/icons/hicolor/22x22/actions/ark_help.png -share/apps/ark/icons/hicolor/22x22/actions/ark_new.png -share/apps/ark/icons/hicolor/22x22/actions/ark_open.png -share/apps/ark/icons/hicolor/22x22/actions/ark_options.png -share/apps/ark/icons/hicolor/22x22/actions/ark_selectall.png -share/apps/ark/icons/hicolor/22x22/actions/ark_view.png -share/apps/kdf/pics/delete.png -share/apps/kdf/pics/tick.png -share/apps/kedit/keditui.rc -share/apps/khexedit/toolbar/hexdrag.png -share/apps/khexedit/toolbar/hexmask.png -share/apps/khexedit/toolbar/hexwrite.png -share/apps/kicker/applets/kcharselectapplet.desktop -share/apps/kjots/pics/filedel.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/laptop_charge.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/laptop_nobattery.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/laptop_nocharge.png -share/apps/klaptopdaemon/icons/hicolor/16x16/actions/power.png -share/apps/klaptopdaemon/icons/hicolor/32x32/actions/power.png -share/apps/kljettool/pics/kljetlogo.png -share/apps/konqueror/servicemenus/arkservicemenu.desktop -share/apps/kregexpeditor/pics/altn.png -share/apps/kregexpeditor/pics/anychar.png -share/apps/kregexpeditor/pics/begline.png -share/apps/kregexpeditor/pics/characters.png -share/apps/kregexpeditor/pics/compound.png -share/apps/kregexpeditor/pics/endline.png -share/apps/kregexpeditor/pics/error.png -share/apps/kregexpeditor/pics/neglookahead.png -share/apps/kregexpeditor/pics/nonwordboundary.png -share/apps/kregexpeditor/pics/poslookahead.png -share/apps/kregexpeditor/pics/repeat.png -share/apps/kregexpeditor/pics/select.png -share/apps/kregexpeditor/pics/text.png -share/apps/kregexpeditor/pics/wordboundary.png -share/apps/kregexpeditor/predefined/general/anything.regexp -share/apps/kregexpeditor/predefined/general/spaces.regexp -share/doc/HTML/en/KRegExpEditor/altn.png -share/doc/HTML/en/KRegExpEditor/altntool.png -share/doc/HTML/en/KRegExpEditor/anychar.png -share/doc/HTML/en/KRegExpEditor/anychartool.png -share/doc/HTML/en/KRegExpEditor/begline.png -share/doc/HTML/en/KRegExpEditor/boundarytools.png -share/doc/HTML/en/KRegExpEditor/characters.png -share/doc/HTML/en/KRegExpEditor/charactertool.png -share/doc/HTML/en/KRegExpEditor/common -share/doc/HTML/en/KRegExpEditor/compound.png -share/doc/HTML/en/KRegExpEditor/compoundtool.png -share/doc/HTML/en/KRegExpEditor/endline.png -share/doc/HTML/en/KRegExpEditor/index.cache.bz2 -share/doc/HTML/en/KRegExpEditor/index.docbook -share/doc/HTML/en/KRegExpEditor/linestartendtool.png -share/doc/HTML/en/KRegExpEditor/lookaheadtools.png -share/doc/HTML/en/KRegExpEditor/neglookahead.png -share/doc/HTML/en/KRegExpEditor/nonwordboundary.png -share/doc/HTML/en/KRegExpEditor/poslookahead.png -share/doc/HTML/en/KRegExpEditor/repeat.png -share/doc/HTML/en/KRegExpEditor/repeattool.png -share/doc/HTML/en/KRegExpEditor/select.png -share/doc/HTML/en/KRegExpEditor/text.png -share/doc/HTML/en/KRegExpEditor/texttool.png -share/doc/HTML/en/KRegExpEditor/theEditor.png -share/doc/HTML/en/KRegExpEditor/wordboundary.png -share/doc/HTML/en/ark/common -share/doc/HTML/en/ark/index.cache.bz2 -share/doc/HTML/en/ark/index.docbook -share/doc/HTML/en/kab/common -share/doc/HTML/en/kab/index.cache.bz2 -share/doc/HTML/en/kab/index.docbook -share/doc/HTML/en/kab/kab-edit.png -share/doc/HTML/en/kab/kab-using.png -share/doc/HTML/en/kcalc/common -share/doc/HTML/en/kcalc/index.cache.bz2 -share/doc/HTML/en/kcalc/index.docbook -share/doc/HTML/en/kcalc/kcalc_on_Aix.txt -share/doc/HTML/en/kcalc/kcalc_on_OSF.txt -share/doc/HTML/en/kdf/common -share/doc/HTML/en/kdf/index.cache.bz2 -share/doc/HTML/en/kdf/index.docbook -share/doc/HTML/en/kdf/kdf.png -share/doc/HTML/en/kdf/kdf_config.png -share/doc/HTML/en/kedit/common -share/doc/HTML/en/kedit/index.cache.bz2 -share/doc/HTML/en/kedit/index.docbook -share/doc/HTML/en/kfloppy/common -share/doc/HTML/en/kfloppy/index.cache.bz2 -share/doc/HTML/en/kfloppy/index.docbook -share/doc/HTML/en/khexedit/common -share/doc/HTML/en/khexedit/index.cache.bz2 -share/doc/HTML/en/khexedit/index.docbook -share/doc/HTML/en/khexedit/khexedit1.png -share/doc/HTML/en/kjots/common -share/doc/HTML/en/kjots/index.cache.bz2 -share/doc/HTML/en/kjots/index.docbook -share/doc/HTML/en/kljettool/README -share/doc/HTML/en/kljettool/common -share/doc/HTML/en/kljettool/djcdoscommands.txt -share/doc/HTML/en/kljettool/filter -share/doc/HTML/en/kljettool/hp690c.zip -share/doc/HTML/en/kljettool/index.cache.bz2 -share/doc/HTML/en/kljettool/index.docbook -share/doc/HTML/en/kljettool/magic -share/doc/HTML/en/kljettool/screenshot.png -share/doc/HTML/en/klpq/common -share/doc/HTML/en/klpq/index.cache.bz2 -share/doc/HTML/en/klpq/index.docbook -share/doc/HTML/en/klprfax/common -share/doc/HTML/en/klprfax/index.cache.bz2 -share/doc/HTML/en/klprfax/index.docbook -share/icons/hicolor/16x16/apps/ark.png -share/icons/hicolor/16x16/apps/kcalc.png -share/icons/hicolor/16x16/apps/kcharselect.png -share/icons/hicolor/16x16/apps/kcmdf.png -share/icons/hicolor/16x16/apps/kdf.png -share/icons/hicolor/16x16/apps/kedit.png -share/icons/hicolor/16x16/apps/khexedit.png -share/icons/hicolor/16x16/apps/kjots.png -share/icons/hicolor/16x16/apps/klaptopdaemon.png -share/icons/hicolor/16x16/apps/kljettool.png -share/icons/hicolor/16x16/apps/klpq.png -share/icons/hicolor/16x16/apps/klprfax.png -share/icons/hicolor/16x16/apps/kwikdisk.png -share/icons/hicolor/16x16/apps/laptop_battery.png -share/icons/hicolor/16x16/apps/laptop_pcmcia.png -share/icons/hicolor/32x32/apps/ark.png -share/icons/hicolor/32x32/apps/kcalc.png -share/icons/hicolor/32x32/apps/kcmdf.png -share/icons/hicolor/32x32/apps/kdf.png -share/icons/hicolor/32x32/apps/kedit.png -share/icons/hicolor/32x32/apps/khexedit.png -share/icons/hicolor/32x32/apps/kjots.png -share/icons/hicolor/32x32/apps/kljettool.png -share/icons/hicolor/32x32/apps/klpq.png -share/icons/hicolor/32x32/apps/klprfax.png -share/icons/hicolor/32x32/apps/kwikdisk.png -share/icons/hicolor/32x32/apps/laptop_battery.png -share/icons/hicolor/32x32/apps/laptop_pcmcia.png -share/icons/hicolor/48x48/apps/ark.png -share/icons/hicolor/48x48/apps/kcalc.png -share/icons/hicolor/48x48/apps/kcharselect.png -share/icons/hicolor/48x48/apps/kedit.png -share/icons/hicolor/48x48/apps/khexedit.png -share/icons/hicolor/48x48/apps/kjots.png -share/icons/hicolor/48x48/apps/kljettool.png -share/icons/hicolor/48x48/apps/klpq.png -share/icons/hicolor/48x48/apps/laptop_battery.png -share/icons/hicolor/48x48/apps/laptop_pcmcia.png -share/icons/locolor/16x16/apps/klprfax.png -share/icons/locolor/32x32/apps/klprfax.png -share/services/arkpart.desktop -share/services/klaptopdaemon.desktop -share/services/kregexpeditorgui.desktop -@exec /bin/mkdir -p %D/share/apps/kcalc/pics -@dirrm share/icons/locolor/32x32/apps -@dirrm share/icons/locolor/32x32 -@dirrm share/icons/locolor/16x16/apps -@dirrm share/icons/locolor/16x16 -@dirrm share/icons/locolor -@dirrm share/icons/hicolor/48x48/apps -@dirrm share/icons/hicolor/48x48 -@dirrm share/icons/hicolor/32x32/apps -@dirrm share/icons/hicolor/32x32 -@dirrm share/icons/hicolor/16x16/apps -@dirrm share/icons/hicolor/16x16 -@dirrm share/icons/hicolor -@dirrm share/doc/HTML/en/klprfax -@dirrm share/doc/HTML/en/klpq -@dirrm share/doc/HTML/en/kljettool -@dirrm share/doc/HTML/en/kjots -@dirrm share/doc/HTML/en/khexedit -@dirrm share/doc/HTML/en/kfloppy -@dirrm share/doc/HTML/en/kedit -@dirrm share/doc/HTML/en/kdf -@dirrm share/doc/HTML/en/kcalc -@dirrm share/doc/HTML/en/kab -@dirrm share/doc/HTML/en/ark -@dirrm share/doc/HTML/en/KRegExpEditor -@dirrm share/doc/HTML/en -@dirrm share/doc/HTML -@dirrm share/apps/kregexpeditor/predefined/general -@dirrm share/apps/kregexpeditor/predefined -@dirrm share/apps/kregexpeditor/pics -@dirrm share/apps/kregexpeditor -@dirrm share/apps/konqueror/servicemenus -@dirrm share/apps/konqueror -@dirrm share/apps/kljettool/pics -@dirrm share/apps/kljettool -@dirrm share/apps/klaptopdaemon/icons/hicolor/32x32/actions -@dirrm share/apps/klaptopdaemon/icons/hicolor/32x32 -@dirrm share/apps/klaptopdaemon/icons/hicolor/16x16/actions -@dirrm share/apps/klaptopdaemon/icons/hicolor/16x16 -@dirrm share/apps/klaptopdaemon/icons/hicolor -@dirrm share/apps/klaptopdaemon/icons -@dirrm share/apps/klaptopdaemon -@dirrm share/apps/kjots/pics -@dirrm share/apps/kjots -@dirrm share/apps/kicker/applets -@dirrm share/apps/kicker -@dirrm share/apps/khexedit/toolbar -@dirrm share/apps/khexedit -@dirrm share/apps/kedit -@dirrm share/apps/kdf/pics -@dirrm share/apps/kdf -@dirrm share/apps/kcalc/pics -@dirrm share/apps/kcalc -@dirrm share/apps/ark/icons/hicolor/22x22/actions -@dirrm share/apps/ark/icons/hicolor/22x22 -@dirrm share/apps/ark/icons/hicolor -@dirrm share/apps/ark/icons -@dirrm share/apps/ark -@dirrm share/applnk/Utilities -@dirrm share/applnk/System -@dirrm share/applnk/Settings/PowerControl -@dirrm share/applnk/Settings/Information -@dirrm share/applnk/Settings -@dirrm share/applnk/Editors diff --git a/security/libfwbuilder-devel/Makefile b/security/libfwbuilder-devel/Makefile deleted file mode 100644 index 2294e548d5c4..000000000000 --- a/security/libfwbuilder-devel/Makefile +++ /dev/null @@ -1,26 +0,0 @@ -# New ports collection makefile for: libfwbuilder -# Date Created: 27 May 2002 -# Whom: Sergey Lyubka <devnull@asitatech.ie> -# -# $FreeBSD$ - -PORTNAME= libfwbuilder -PORTVERSION= 0.10.7 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} -MASTER_SITE_SUBDIR= fwbuilder - -MAINTAINER= devnull@uptsoft.com - -LIB_DEPENDS= xml2.5:${PORTSDIR}/textproc/libxml2 \ - xslt.1:${PORTSDIR}/textproc/libxslt \ - sigc.1:${PORTSDIR}/devel/libsigc++ - -USE_GMAKE= yes -USE_LIBTOOL= yes -USE_GNOMENG= yes -USE_GNOME= gtk12 -INSTALLS_SHLIB= yes -PLIST_SUB+= PORTVERSION="${PORTVERSION}" - -.include <bsd.port.mk> diff --git a/security/libfwbuilder-devel/distinfo b/security/libfwbuilder-devel/distinfo deleted file mode 100644 index d7c38195dffb..000000000000 --- a/security/libfwbuilder-devel/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (libfwbuilder-0.10.7.tar.gz) = 12e0817e202b89464dedf634d23461f1 diff --git a/security/libfwbuilder-devel/pkg-comment b/security/libfwbuilder-devel/pkg-comment deleted file mode 100644 index af1c6d7e23a2..000000000000 --- a/security/libfwbuilder-devel/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Firewall Builder API diff --git a/security/libfwbuilder-devel/pkg-descr b/security/libfwbuilder-devel/pkg-descr deleted file mode 100644 index ebf7ea9de767..000000000000 --- a/security/libfwbuilder-devel/pkg-descr +++ /dev/null @@ -1,7 +0,0 @@ -This is the library is an API for Firewall Builder. -Firewall Builder consists of object-oriented GUI and set of policy compilers -for various firewall platforms. - -WWW: http://www.fwbuilder.org/ - -Sergey Lyubka <ioannvelikiy@yahoo.com> diff --git a/security/libfwbuilder-devel/pkg-plist b/security/libfwbuilder-devel/pkg-plist deleted file mode 100644 index 42b6ed167f2a..000000000000 --- a/security/libfwbuilder-devel/pkg-plist +++ /dev/null @@ -1,107 +0,0 @@ -include/fwbd/fwbd.h -include/fwcompiler/manifest.hh -include/fwcompiler/Compiler.hh -include/fwcompiler/PolicyCompiler.hh -include/fwcompiler/NATCompiler.hh -include/fwcompiler/OSConfigurator.hh -include/fwcompiler/RuleProcessor.hh -include/fwbuilder/libfwbuilder-config.h -include/fwbuilder/Constants.hh -include/fwbuilder/Tools.hh -include/fwbuilder/XMLTools.hh -include/fwbuilder/crypto.hh -include/fwbuilder/FWException.hh -include/fwbuilder/IPAddress.hh -include/fwbuilder/ThreadTools.hh -include/fwbuilder/dns.hh -include/fwbuilder/snmp.hh -include/fwbuilder/HostsFile.hh -include/fwbuilder/Logger.hh -include/fwbuilder/BackgroundOp.hh -include/fwbuilder/SyncQueue.hh -include/fwbuilder/Pool.hh -include/fwbuilder/FWObjectDatabase.hh -include/fwbuilder/FWReference.hh -include/fwbuilder/FWServiceReference.hh -include/fwbuilder/FWIntervalReference.hh -include/fwbuilder/FWObjectReference.hh -include/fwbuilder/FWObject.hh -include/fwbuilder/Address.hh -include/fwbuilder/Service.hh -include/fwbuilder/TCPService.hh -include/fwbuilder/UDPService.hh -include/fwbuilder/CustomService.hh -include/fwbuilder/IPService.hh -include/fwbuilder/ICMPService.hh -include/fwbuilder/Interval.hh -include/fwbuilder/Management.hh -include/fwbuilder/Host.hh -include/fwbuilder/Interface.hh -include/fwbuilder/InterfacePolicy.hh -include/fwbuilder/Group.hh -include/fwbuilder/Rule.hh -include/fwbuilder/RuleSet.hh -include/fwbuilder/RuleElement.hh -include/fwbuilder/FWOptions.hh -include/fwbuilder/Firewall.hh -include/fwbuilder/NAT.hh -include/fwbuilder/Policy.hh -include/fwbuilder/Network.hh -include/fwbuilder/AddressRange.hh -include/fwbuilder/ObjectGroup.hh -include/fwbuilder/ServiceGroup.hh -include/fwbuilder/IntervalGroup.hh -share/libfwbuilder/migration/0.8.7/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.0/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.1/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.2/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.3/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.4/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.5/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.0/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.1/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.2/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.3/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.4/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.5/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.6/FWObjectDatabase.xslt -share/libfwbuilder/fwbuilder.dtd -bin/libfwbuilder-config -lib/libfwbuilder.so.2 -lib/libfwbuilder.so -lib/libfwbuilder.la -lib/libfwbuilder.a -lib/libfwcompiler.so.2 -lib/libfwcompiler.so -lib/libfwcompiler.la -lib/libfwcompiler.a -lib/libfwbd.so.2 -lib/libfwbd.so -lib/libfwbd.la -lib/libfwbd.a -share/doc/libfwbuilder-%%PORTVERSION%%/AUTHORS -share/doc/libfwbuilder-%%PORTVERSION%%/COPYING -share/doc/libfwbuilder-%%PORTVERSION%%/ChangeLog -share/doc/libfwbuilder-%%PORTVERSION%%/Credits -share/doc/libfwbuilder-%%PORTVERSION%%/README -@dirrm include/fwbd -@dirrm include/fwbuilder -@dirrm include/fwcompiler -@dirrm share/libfwbuilder/migration/0.8.7 -@dirrm share/libfwbuilder/migration/0.9.0 -@dirrm share/libfwbuilder/migration/0.9.1 -@dirrm share/libfwbuilder/migration/0.9.2 -@dirrm share/libfwbuilder/migration/0.9.3 -@dirrm share/libfwbuilder/migration/0.9.4 -@dirrm share/libfwbuilder/migration/0.9.5 -@dirrm share/libfwbuilder/migration/0.10.0 -@dirrm share/libfwbuilder/migration/0.10.1 -@dirrm share/libfwbuilder/migration/0.10.2 -@dirrm share/libfwbuilder/migration/0.10.3 -@dirrm share/libfwbuilder/migration/0.10.4 -@dirrm share/libfwbuilder/migration/0.10.5 -@dirrm share/libfwbuilder/migration/0.10.6 -@dirrm share/libfwbuilder/migration -@dirrm share/libfwbuilder -@unexec rmdir %D/share/doc/libfwbuilder-%%PORTVERSION%%/classref > /dev/null 2>&1 || true -@dirrm share/doc/libfwbuilder-%%PORTVERSION%% diff --git a/security/libfwbuilder2/Makefile b/security/libfwbuilder2/Makefile deleted file mode 100644 index 2294e548d5c4..000000000000 --- a/security/libfwbuilder2/Makefile +++ /dev/null @@ -1,26 +0,0 @@ -# New ports collection makefile for: libfwbuilder -# Date Created: 27 May 2002 -# Whom: Sergey Lyubka <devnull@asitatech.ie> -# -# $FreeBSD$ - -PORTNAME= libfwbuilder -PORTVERSION= 0.10.7 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} -MASTER_SITE_SUBDIR= fwbuilder - -MAINTAINER= devnull@uptsoft.com - -LIB_DEPENDS= xml2.5:${PORTSDIR}/textproc/libxml2 \ - xslt.1:${PORTSDIR}/textproc/libxslt \ - sigc.1:${PORTSDIR}/devel/libsigc++ - -USE_GMAKE= yes -USE_LIBTOOL= yes -USE_GNOMENG= yes -USE_GNOME= gtk12 -INSTALLS_SHLIB= yes -PLIST_SUB+= PORTVERSION="${PORTVERSION}" - -.include <bsd.port.mk> diff --git a/security/libfwbuilder2/distinfo b/security/libfwbuilder2/distinfo deleted file mode 100644 index d7c38195dffb..000000000000 --- a/security/libfwbuilder2/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (libfwbuilder-0.10.7.tar.gz) = 12e0817e202b89464dedf634d23461f1 diff --git a/security/libfwbuilder2/pkg-comment b/security/libfwbuilder2/pkg-comment deleted file mode 100644 index af1c6d7e23a2..000000000000 --- a/security/libfwbuilder2/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Firewall Builder API diff --git a/security/libfwbuilder2/pkg-descr b/security/libfwbuilder2/pkg-descr deleted file mode 100644 index ebf7ea9de767..000000000000 --- a/security/libfwbuilder2/pkg-descr +++ /dev/null @@ -1,7 +0,0 @@ -This is the library is an API for Firewall Builder. -Firewall Builder consists of object-oriented GUI and set of policy compilers -for various firewall platforms. - -WWW: http://www.fwbuilder.org/ - -Sergey Lyubka <ioannvelikiy@yahoo.com> diff --git a/security/libfwbuilder2/pkg-plist b/security/libfwbuilder2/pkg-plist deleted file mode 100644 index 42b6ed167f2a..000000000000 --- a/security/libfwbuilder2/pkg-plist +++ /dev/null @@ -1,107 +0,0 @@ -include/fwbd/fwbd.h -include/fwcompiler/manifest.hh -include/fwcompiler/Compiler.hh -include/fwcompiler/PolicyCompiler.hh -include/fwcompiler/NATCompiler.hh -include/fwcompiler/OSConfigurator.hh -include/fwcompiler/RuleProcessor.hh -include/fwbuilder/libfwbuilder-config.h -include/fwbuilder/Constants.hh -include/fwbuilder/Tools.hh -include/fwbuilder/XMLTools.hh -include/fwbuilder/crypto.hh -include/fwbuilder/FWException.hh -include/fwbuilder/IPAddress.hh -include/fwbuilder/ThreadTools.hh -include/fwbuilder/dns.hh -include/fwbuilder/snmp.hh -include/fwbuilder/HostsFile.hh -include/fwbuilder/Logger.hh -include/fwbuilder/BackgroundOp.hh -include/fwbuilder/SyncQueue.hh -include/fwbuilder/Pool.hh -include/fwbuilder/FWObjectDatabase.hh -include/fwbuilder/FWReference.hh -include/fwbuilder/FWServiceReference.hh -include/fwbuilder/FWIntervalReference.hh -include/fwbuilder/FWObjectReference.hh -include/fwbuilder/FWObject.hh -include/fwbuilder/Address.hh -include/fwbuilder/Service.hh -include/fwbuilder/TCPService.hh -include/fwbuilder/UDPService.hh -include/fwbuilder/CustomService.hh -include/fwbuilder/IPService.hh -include/fwbuilder/ICMPService.hh -include/fwbuilder/Interval.hh -include/fwbuilder/Management.hh -include/fwbuilder/Host.hh -include/fwbuilder/Interface.hh -include/fwbuilder/InterfacePolicy.hh -include/fwbuilder/Group.hh -include/fwbuilder/Rule.hh -include/fwbuilder/RuleSet.hh -include/fwbuilder/RuleElement.hh -include/fwbuilder/FWOptions.hh -include/fwbuilder/Firewall.hh -include/fwbuilder/NAT.hh -include/fwbuilder/Policy.hh -include/fwbuilder/Network.hh -include/fwbuilder/AddressRange.hh -include/fwbuilder/ObjectGroup.hh -include/fwbuilder/ServiceGroup.hh -include/fwbuilder/IntervalGroup.hh -share/libfwbuilder/migration/0.8.7/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.0/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.1/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.2/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.3/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.4/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.9.5/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.0/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.1/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.2/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.3/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.4/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.5/FWObjectDatabase.xslt -share/libfwbuilder/migration/0.10.6/FWObjectDatabase.xslt -share/libfwbuilder/fwbuilder.dtd -bin/libfwbuilder-config -lib/libfwbuilder.so.2 -lib/libfwbuilder.so -lib/libfwbuilder.la -lib/libfwbuilder.a -lib/libfwcompiler.so.2 -lib/libfwcompiler.so -lib/libfwcompiler.la -lib/libfwcompiler.a -lib/libfwbd.so.2 -lib/libfwbd.so -lib/libfwbd.la -lib/libfwbd.a -share/doc/libfwbuilder-%%PORTVERSION%%/AUTHORS -share/doc/libfwbuilder-%%PORTVERSION%%/COPYING -share/doc/libfwbuilder-%%PORTVERSION%%/ChangeLog -share/doc/libfwbuilder-%%PORTVERSION%%/Credits -share/doc/libfwbuilder-%%PORTVERSION%%/README -@dirrm include/fwbd -@dirrm include/fwbuilder -@dirrm include/fwcompiler -@dirrm share/libfwbuilder/migration/0.8.7 -@dirrm share/libfwbuilder/migration/0.9.0 -@dirrm share/libfwbuilder/migration/0.9.1 -@dirrm share/libfwbuilder/migration/0.9.2 -@dirrm share/libfwbuilder/migration/0.9.3 -@dirrm share/libfwbuilder/migration/0.9.4 -@dirrm share/libfwbuilder/migration/0.9.5 -@dirrm share/libfwbuilder/migration/0.10.0 -@dirrm share/libfwbuilder/migration/0.10.1 -@dirrm share/libfwbuilder/migration/0.10.2 -@dirrm share/libfwbuilder/migration/0.10.3 -@dirrm share/libfwbuilder/migration/0.10.4 -@dirrm share/libfwbuilder/migration/0.10.5 -@dirrm share/libfwbuilder/migration/0.10.6 -@dirrm share/libfwbuilder/migration -@dirrm share/libfwbuilder -@unexec rmdir %D/share/doc/libfwbuilder-%%PORTVERSION%%/classref > /dev/null 2>&1 || true -@dirrm share/doc/libfwbuilder-%%PORTVERSION%% diff --git a/security/libgcrypt-devel/Makefile b/security/libgcrypt-devel/Makefile deleted file mode 100644 index 87016b9f8670..000000000000 --- a/security/libgcrypt-devel/Makefile +++ /dev/null @@ -1,35 +0,0 @@ -# New ports collection Makefile for: libgcrypt -# Date created: July 17 2002 -# Whom: Tilman Linneweh <tilman@arved.de> -# -# $FreeBSD$ - -PORTNAME= libgcrypt -PORTVERSION= 1.1.10 -CATEGORIES= security -MASTER_SITES= http://gd.tuwien.ac.at/privacy/gnupg/alpha/libgcrypt/ \ - ftp://ftp.gnupg.org/gcrypt/alpha/libgcrypt/ \ - http://ftp.hi.is/pub/mirrors/gnupg/alpha/libgcrypt/ \ - http://www.mirrors.wiretapped.net/security/cryptography/apps/pgp/GnuPG/alpha/libgcrypt/ \ - ${MASTER_SITE_RINGSERVER}/net/gnupg/alpha/libgcrypt/ \ - -MAINTAINER= freebsdports@arved.de - -BUILD_DEPENDS= autoconf:${PORTSDIR}/devel/autoconf - -USE_REINPLACE= yes -USE_PERL5= yes -USE_LIBTOOL= yes -CONFIGURE_ENV= MAKEINFO="makeinfo --no-split" -CONFIGURE_TARGET= --build=${ARCH}-portbld-freebsd${OSREL} -INSTALLS_SHLIB= yes - -post-patch: - @${REINPLACE_CMD} -e "s|%%PTHREAD_LIBS%%|${PTHREAD_LIBS}|" \ - ${WRKSRC}/scripts/ltmain.sh - -pre-configure: - @${RM} -f ${WRKSRC}/doc/gcrypt.info* - @cd ${WRKSRC}; ${LOCALBASE}/bin/autoconf - -.include <bsd.port.mk> diff --git a/security/libgcrypt-devel/distinfo b/security/libgcrypt-devel/distinfo deleted file mode 100644 index 8f123e1b31d8..000000000000 --- a/security/libgcrypt-devel/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (libgcrypt-1.1.10.tar.gz) = 3f0be8febbb6102b874f37f7a2812525 diff --git a/security/libgcrypt-devel/files/patch-aclocal.m4 b/security/libgcrypt-devel/files/patch-aclocal.m4 deleted file mode 100644 index 0b69ac6169f5..000000000000 --- a/security/libgcrypt-devel/files/patch-aclocal.m4 +++ /dev/null @@ -1,14 +0,0 @@ ---- aclocal.m4.orig Fri Sep 20 13:11:18 2002 -+++ aclocal.m4 Thu Oct 10 16:57:09 2002 -@@ -1701,9 +1701,10 @@ - - # This can be used to rebuild libtool when needed - LIBTOOL_DEPS="$ac_aux_dir/ltmain.sh" -+$ac_aux_dir/ltconfig $LIBTOOL_DEPS - - # Always use our own libtool. --LIBTOOL='$(SHELL) $(top_builddir)/libtool' -+LIBTOOL='$(SHELL) ${LOCALBASE}/bin/libtool' - AC_SUBST(LIBTOOL)dnl - - # Prevent multiple expansion diff --git a/security/libgcrypt-devel/files/patch-ltmain.sh b/security/libgcrypt-devel/files/patch-ltmain.sh deleted file mode 100644 index e99e2de7af48..000000000000 --- a/security/libgcrypt-devel/files/patch-ltmain.sh +++ /dev/null @@ -1,32 +0,0 @@ ---- scripts/ltmain.sh.orig Wed Jul 17 15:42:41 2002 -+++ scripts/ltmain.sh Wed Jul 17 15:47:36 2002 -@@ -1062,8 +1062,16 @@ - continue - ;; - -+ -pthread) -+ compile_command="$compile_command %%PTHREAD_LIBS%%" -+ finalize_command="$finalize_command %%PTHREAD_LIBS%%" -+ compiler_flags="$compiler_flags %%PTHREAD_LIBS%%" -+ continue; -+ ;; -+ - -module) - module=yes -+ build_old_libs=yes - continue - ;; - -@@ -4247,10 +4255,12 @@ - fi - - # Install the pseudo-library for information purposes. -+ if /usr/bin/false; then - name=`$echo "X$file" | $Xsed -e 's%^.*/%%'` - instname="$dir/$name"i - $show "$install_prog $instname $destdir/$name" - $run eval "$install_prog $instname $destdir/$name" || exit $? -+ fi - - # Maybe install the static library, too. - test -n "$old_library" && staticlibs="$staticlibs $dir/$old_library" diff --git a/security/libgcrypt-devel/pkg-comment b/security/libgcrypt-devel/pkg-comment deleted file mode 100644 index b316f2fd1cbb..000000000000 --- a/security/libgcrypt-devel/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -General purpose crypto library based on code used in GnuPG diff --git a/security/libgcrypt-devel/pkg-descr b/security/libgcrypt-devel/pkg-descr deleted file mode 100644 index a5d0b3a305f4..000000000000 --- a/security/libgcrypt-devel/pkg-descr +++ /dev/null @@ -1,4 +0,0 @@ -Libgcrypt is a general purpose crypto library based on the code used in GnuPG. - -Author: wk@g10code.com -WWW: http://www.gnupg.org/ diff --git a/security/libgcrypt-devel/pkg-plist b/security/libgcrypt-devel/pkg-plist deleted file mode 100644 index ece7c12390fc..000000000000 --- a/security/libgcrypt-devel/pkg-plist +++ /dev/null @@ -1,10 +0,0 @@ -bin/libgcrypt-config -include/gcrypt.h -@unexec install-info --delete %D/info/gcrypt.info %D/info/dir -info/gcrypt.info -@exec install-info %D/info/gcrypt.info %D/info/dir -lib/libgcrypt.a -lib/libgcrypt.la -lib/libgcrypt.so -lib/libgcrypt.so.5 -share/aclocal/libgcrypt.m4 diff --git a/security/nettle2/Makefile b/security/nettle2/Makefile deleted file mode 100644 index 6029d5fe2048..000000000000 --- a/security/nettle2/Makefile +++ /dev/null @@ -1,30 +0,0 @@ -# ex:ts=8 -# New ports collection makefile for: nettle -# Date created: Dec 6, 2001 -# Whom: ijliao -# -# $FreeBSD$ -# - -PORTNAME= nettle -PORTVERSION= 1.5 -PORTREVISION= 2 -CATEGORIES= security -MASTER_SITES= http://www.lysator.liu.se/~nisse/archive/ \ - ftp://ftp.lysator.liu.se/pub/security/lsh/ - -MAINTAINER= ports@FreeBSD.org - -LIB_DEPENDS= gmp.6:${PORTSDIR}/math/libgmp4 - -USE_GMAKE= yes -GNU_CONFIGURE= yes -CONFIGURE_TARGET= --build=${ARCH}-portbld-freebsd${OSREL} -CONFIGURE_ENV= CPPFLAGS="-I${LOCALBASE}/include" \ - LDFLAGS="-L${LOCALBASE}/lib" \ - MAKEINFO="makeinfo --no-split" - -post-extract: - @${RM} -f ${WRKSRC}/nettle.info* - -.include <bsd.port.mk> diff --git a/security/nettle2/distinfo b/security/nettle2/distinfo deleted file mode 100644 index 0b0dff1b626a..000000000000 --- a/security/nettle2/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (nettle-1.5.tar.gz) = d66173646336e9e7b08deb3f9352248d diff --git a/security/nettle2/pkg-comment b/security/nettle2/pkg-comment deleted file mode 100644 index 5493f26f75e4..000000000000 --- a/security/nettle2/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -A low-level cryptographic library diff --git a/security/nettle2/pkg-descr b/security/nettle2/pkg-descr deleted file mode 100644 index e9e262fcac2d..000000000000 --- a/security/nettle2/pkg-descr +++ /dev/null @@ -1,6 +0,0 @@ -Nettle is a cryptographic library that is designed to fit easily in more or -less any context: In crypto toolkits for object-oriented languages (C++, -Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel -space. - -WWW: http://www.lysator.liu.se/~nisse/nettle/ diff --git a/security/nettle2/pkg-plist b/security/nettle2/pkg-plist deleted file mode 100644 index 3c9561c8b36c..000000000000 --- a/security/nettle2/pkg-plist +++ /dev/null @@ -1,8 +0,0 @@ -include/nettle/aes.h -include/nettle/arcfour.h -include/nettle/blowfish.h -@unexec install-info --delete %D/info/nettle.info %D/info/dir -info/nettle.info -@exec install-info %D/info/nettle.info %D/info/dir -lib/libnettle.a -@dirrm include/nettle diff --git a/security/openvpn-devel/Makefile b/security/openvpn-devel/Makefile deleted file mode 100644 index 67931d41a49a..000000000000 --- a/security/openvpn-devel/Makefile +++ /dev/null @@ -1,42 +0,0 @@ -# New ports collection makefile for: openvpn -# Date created: 2002-06-23 -# Whom: Matthias Andree <matthias.andree@web.de> -# -# $FreeBSD$ -# - -PORTNAME= openvpn -PORTVERSION= 1.3.2 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} -MASTER_SITE_SUBDIR= ${PORTNAME} - -MAINTAINER= matthias.andree@web.de - -LIB_DEPENDS= lzo.1:${PORTSDIR}/archivers/lzo - -GNU_CONFIGURE= yes -USE_OPENSSL= yes -CONFIGURE_ARGS= --with-lzo-lib=${LOCALBASE}/lib \ - --with-lzo-headers=${LOCALBASE}/include \ - --program-transform-name="s/x/x/" - -MAN8= openvpn.8 - -post-install: - ${INSTALL_SCRIPT} ${FILESDIR}/openvpn.sh.sample \ - ${PREFIX}/etc/rc.d/openvpn.sh.sample -.if !defined(NOPORTDOCS) - @${MKDIR} ${DOCSDIR} -.for docs in AUTHORS COPYING COPYRIGHT.GPL ChangeLog INSTALL NEWS \ - PORTS README - @${INSTALL_DATA} ${WRKSRC}/${docs} ${DOCSDIR} -.endfor -.for dirs in easy-rsa sample-config-files sample-scripts - @${MKDIR} ${DOCSDIR}/${dirs} - @${INSTALL_DATA} ${WRKSRC}/${dirs}/* ${DOCSDIR}/${dirs} -.endfor - @${CAT} ${PKGMESSAGE} -.endif - -.include <bsd.port.mk> diff --git a/security/openvpn-devel/distinfo b/security/openvpn-devel/distinfo deleted file mode 100644 index 48ba3eeb93b8..000000000000 --- a/security/openvpn-devel/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (openvpn-1.3.2.tar.gz) = 57f5f92730566401797943561f7cae6e diff --git a/security/openvpn-devel/files/openvpn.sh.sample b/security/openvpn-devel/files/openvpn.sh.sample deleted file mode 100644 index a906ecf44425..000000000000 --- a/security/openvpn-devel/files/openvpn.sh.sample +++ /dev/null @@ -1,19 +0,0 @@ -#! /bin/sh -# (C) 2002 by Matthias Andree - -# This file may be redistributed according to the terms of the GNU General -# Public License, version 2 (two). - -# To use this script, rename it to openvpn.sh and make sure it is -# executable for the owner. - -# This file rouses a security warning at port install time. However, this -# file itself does not start network services, but it loads a kernel driver. -# The security of this file therefore depends on the security of kldload and -# the if_tap driver. - -case x$1 in - xstart) echo -n ' if_tap' ; exec kldload if_tap ;; - xstop) echo -n ' if_tap' ; exec kldunload if_tap ;; - *) echo >&2 "Usage: $0 {start|stop}" -esac diff --git a/security/openvpn-devel/pkg-comment b/security/openvpn-devel/pkg-comment deleted file mode 100644 index c8311a5d7daa..000000000000 --- a/security/openvpn-devel/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Secure IP/Ethernet tunnel daemon diff --git a/security/openvpn-devel/pkg-descr b/security/openvpn-devel/pkg-descr deleted file mode 100644 index d5f0eb29a86f..000000000000 --- a/security/openvpn-devel/pkg-descr +++ /dev/null @@ -1,10 +0,0 @@ -OpenVPN is a robust and highly configurable VPN (Virtual Private -Network) daemon which can be used to securely link two or more private -networks using an encrypted tunnel over the internet. It uses UDP as its -transport, avoiding TCP-over-TCP retransmission congestion. SSL can be -used to authenticate the sites, or they can use a pre-shared secret. - -WWW: http://openvpn.sourceforge.net/ - -- Matthias Andree -matthias.andree@web.de diff --git a/security/openvpn-devel/pkg-message b/security/openvpn-devel/pkg-message deleted file mode 100644 index 122c4096ec2a..000000000000 --- a/security/openvpn-devel/pkg-message +++ /dev/null @@ -1,9 +0,0 @@ -### ---------------------------------------------------------------------- ### -### To use the tap driver, you may need to do: kldload if_tap ### -### See ${PREFIX}/etc/rc.d/openvpn.sh.sample for how to do this ### -### automatically at system boot-up time. ### -### ---------------------------------------------------------------------- ### -### To retain backwards compatibility of OpenVPN 1.3.0 with OpenVPN peers ### -### that run older versions (back to 1.1.0), you will have to set the MTU ### -### explicitly by command line options since OpenVPN 1.3.0. ### -### ---------------------------------------------------------------------- ### diff --git a/security/openvpn-devel/pkg-plist b/security/openvpn-devel/pkg-plist deleted file mode 100644 index f3b09096c538..000000000000 --- a/security/openvpn-devel/pkg-plist +++ /dev/null @@ -1,40 +0,0 @@ -sbin/openvpn -etc/rc.d/openvpn.sh.sample -%%PORTDOCS%%share/doc/openvpn/AUTHORS -%%PORTDOCS%%share/doc/openvpn/COPYING -%%PORTDOCS%%share/doc/openvpn/COPYRIGHT.GPL -%%PORTDOCS%%share/doc/openvpn/ChangeLog -%%PORTDOCS%%share/doc/openvpn/INSTALL -%%PORTDOCS%%share/doc/openvpn/NEWS -%%PORTDOCS%%share/doc/openvpn/PORTS -%%PORTDOCS%%share/doc/openvpn/README -%%PORTDOCS%%share/doc/openvpn/easy-rsa/README -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-ca -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-dh -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-inter -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-key -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-key-pass -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-req -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-req-pass -%%PORTDOCS%%share/doc/openvpn/easy-rsa/clean-all -%%PORTDOCS%%share/doc/openvpn/easy-rsa/openssl.cnf -%%PORTDOCS%%share/doc/openvpn/easy-rsa/sign-req -%%PORTDOCS%%share/doc/openvpn/easy-rsa/vars -%%PORTDOCS%%share/doc/openvpn/sample-config-files/README -%%PORTDOCS%%share/doc/openvpn/sample-config-files/firewall.sh -%%PORTDOCS%%share/doc/openvpn/sample-config-files/home.up -%%PORTDOCS%%share/doc/openvpn/sample-config-files/office.up -%%PORTDOCS%%share/doc/openvpn/sample-config-files/openvpn-shutdown.sh -%%PORTDOCS%%share/doc/openvpn/sample-config-files/openvpn-startup.sh -%%PORTDOCS%%share/doc/openvpn/sample-config-files/static-home.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/static-office.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/tls-home.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/tls-office.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/xinetd-client-config -%%PORTDOCS%%share/doc/openvpn/sample-config-files/xinetd-server-config -%%PORTDOCS%%share/doc/openvpn/sample-scripts/openvpn.init -%%PORTDOCS%%share/doc/openvpn/sample-scripts/verify-cn -%%PORTDOCS%%@dirrm share/doc/openvpn/sample-scripts -%%PORTDOCS%%@dirrm share/doc/openvpn/sample-config-files -%%PORTDOCS%%@dirrm share/doc/openvpn/easy-rsa -%%PORTDOCS%%@dirrm share/doc/openvpn/ diff --git a/security/openvpn20/Makefile b/security/openvpn20/Makefile deleted file mode 100644 index 67931d41a49a..000000000000 --- a/security/openvpn20/Makefile +++ /dev/null @@ -1,42 +0,0 @@ -# New ports collection makefile for: openvpn -# Date created: 2002-06-23 -# Whom: Matthias Andree <matthias.andree@web.de> -# -# $FreeBSD$ -# - -PORTNAME= openvpn -PORTVERSION= 1.3.2 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_SOURCEFORGE} -MASTER_SITE_SUBDIR= ${PORTNAME} - -MAINTAINER= matthias.andree@web.de - -LIB_DEPENDS= lzo.1:${PORTSDIR}/archivers/lzo - -GNU_CONFIGURE= yes -USE_OPENSSL= yes -CONFIGURE_ARGS= --with-lzo-lib=${LOCALBASE}/lib \ - --with-lzo-headers=${LOCALBASE}/include \ - --program-transform-name="s/x/x/" - -MAN8= openvpn.8 - -post-install: - ${INSTALL_SCRIPT} ${FILESDIR}/openvpn.sh.sample \ - ${PREFIX}/etc/rc.d/openvpn.sh.sample -.if !defined(NOPORTDOCS) - @${MKDIR} ${DOCSDIR} -.for docs in AUTHORS COPYING COPYRIGHT.GPL ChangeLog INSTALL NEWS \ - PORTS README - @${INSTALL_DATA} ${WRKSRC}/${docs} ${DOCSDIR} -.endfor -.for dirs in easy-rsa sample-config-files sample-scripts - @${MKDIR} ${DOCSDIR}/${dirs} - @${INSTALL_DATA} ${WRKSRC}/${dirs}/* ${DOCSDIR}/${dirs} -.endfor - @${CAT} ${PKGMESSAGE} -.endif - -.include <bsd.port.mk> diff --git a/security/openvpn20/distinfo b/security/openvpn20/distinfo deleted file mode 100644 index 48ba3eeb93b8..000000000000 --- a/security/openvpn20/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (openvpn-1.3.2.tar.gz) = 57f5f92730566401797943561f7cae6e diff --git a/security/openvpn20/files/openvpn.sh.sample b/security/openvpn20/files/openvpn.sh.sample deleted file mode 100644 index a906ecf44425..000000000000 --- a/security/openvpn20/files/openvpn.sh.sample +++ /dev/null @@ -1,19 +0,0 @@ -#! /bin/sh -# (C) 2002 by Matthias Andree - -# This file may be redistributed according to the terms of the GNU General -# Public License, version 2 (two). - -# To use this script, rename it to openvpn.sh and make sure it is -# executable for the owner. - -# This file rouses a security warning at port install time. However, this -# file itself does not start network services, but it loads a kernel driver. -# The security of this file therefore depends on the security of kldload and -# the if_tap driver. - -case x$1 in - xstart) echo -n ' if_tap' ; exec kldload if_tap ;; - xstop) echo -n ' if_tap' ; exec kldunload if_tap ;; - *) echo >&2 "Usage: $0 {start|stop}" -esac diff --git a/security/openvpn20/pkg-comment b/security/openvpn20/pkg-comment deleted file mode 100644 index c8311a5d7daa..000000000000 --- a/security/openvpn20/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Secure IP/Ethernet tunnel daemon diff --git a/security/openvpn20/pkg-descr b/security/openvpn20/pkg-descr deleted file mode 100644 index d5f0eb29a86f..000000000000 --- a/security/openvpn20/pkg-descr +++ /dev/null @@ -1,10 +0,0 @@ -OpenVPN is a robust and highly configurable VPN (Virtual Private -Network) daemon which can be used to securely link two or more private -networks using an encrypted tunnel over the internet. It uses UDP as its -transport, avoiding TCP-over-TCP retransmission congestion. SSL can be -used to authenticate the sites, or they can use a pre-shared secret. - -WWW: http://openvpn.sourceforge.net/ - -- Matthias Andree -matthias.andree@web.de diff --git a/security/openvpn20/pkg-message b/security/openvpn20/pkg-message deleted file mode 100644 index 122c4096ec2a..000000000000 --- a/security/openvpn20/pkg-message +++ /dev/null @@ -1,9 +0,0 @@ -### ---------------------------------------------------------------------- ### -### To use the tap driver, you may need to do: kldload if_tap ### -### See ${PREFIX}/etc/rc.d/openvpn.sh.sample for how to do this ### -### automatically at system boot-up time. ### -### ---------------------------------------------------------------------- ### -### To retain backwards compatibility of OpenVPN 1.3.0 with OpenVPN peers ### -### that run older versions (back to 1.1.0), you will have to set the MTU ### -### explicitly by command line options since OpenVPN 1.3.0. ### -### ---------------------------------------------------------------------- ### diff --git a/security/openvpn20/pkg-plist b/security/openvpn20/pkg-plist deleted file mode 100644 index f3b09096c538..000000000000 --- a/security/openvpn20/pkg-plist +++ /dev/null @@ -1,40 +0,0 @@ -sbin/openvpn -etc/rc.d/openvpn.sh.sample -%%PORTDOCS%%share/doc/openvpn/AUTHORS -%%PORTDOCS%%share/doc/openvpn/COPYING -%%PORTDOCS%%share/doc/openvpn/COPYRIGHT.GPL -%%PORTDOCS%%share/doc/openvpn/ChangeLog -%%PORTDOCS%%share/doc/openvpn/INSTALL -%%PORTDOCS%%share/doc/openvpn/NEWS -%%PORTDOCS%%share/doc/openvpn/PORTS -%%PORTDOCS%%share/doc/openvpn/README -%%PORTDOCS%%share/doc/openvpn/easy-rsa/README -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-ca -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-dh -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-inter -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-key -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-key-pass -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-req -%%PORTDOCS%%share/doc/openvpn/easy-rsa/build-req-pass -%%PORTDOCS%%share/doc/openvpn/easy-rsa/clean-all -%%PORTDOCS%%share/doc/openvpn/easy-rsa/openssl.cnf -%%PORTDOCS%%share/doc/openvpn/easy-rsa/sign-req -%%PORTDOCS%%share/doc/openvpn/easy-rsa/vars -%%PORTDOCS%%share/doc/openvpn/sample-config-files/README -%%PORTDOCS%%share/doc/openvpn/sample-config-files/firewall.sh -%%PORTDOCS%%share/doc/openvpn/sample-config-files/home.up -%%PORTDOCS%%share/doc/openvpn/sample-config-files/office.up -%%PORTDOCS%%share/doc/openvpn/sample-config-files/openvpn-shutdown.sh -%%PORTDOCS%%share/doc/openvpn/sample-config-files/openvpn-startup.sh -%%PORTDOCS%%share/doc/openvpn/sample-config-files/static-home.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/static-office.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/tls-home.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/tls-office.conf -%%PORTDOCS%%share/doc/openvpn/sample-config-files/xinetd-client-config -%%PORTDOCS%%share/doc/openvpn/sample-config-files/xinetd-server-config -%%PORTDOCS%%share/doc/openvpn/sample-scripts/openvpn.init -%%PORTDOCS%%share/doc/openvpn/sample-scripts/verify-cn -%%PORTDOCS%%@dirrm share/doc/openvpn/sample-scripts -%%PORTDOCS%%@dirrm share/doc/openvpn/sample-config-files -%%PORTDOCS%%@dirrm share/doc/openvpn/easy-rsa -%%PORTDOCS%%@dirrm share/doc/openvpn/ diff --git a/security/opieprint/Makefile b/security/opieprint/Makefile deleted file mode 100644 index 8dbcf0039105..000000000000 --- a/security/opieprint/Makefile +++ /dev/null @@ -1,30 +0,0 @@ -# New ports collection makefile for: keyprint -# Date created: Sat May 29 02:05:00 PDT 1999 -# Whom: mharo@FreeBSD.org -# -# $FreeBSD$ -# - -PORTNAME= keyprint -PORTVERSION= 1.0 -CATEGORIES= security -MASTER_SITES= ${MASTER_SITE_LOCAL} -MASTER_SITE_SUBDIR= mharo - -MAINTAINER= mharo@FreeBSD.org - -NO_BUILD= yes -USE_REINPLACE= yes - -post-patch: - ${REINPLACE_CMD} -e 's,__PREFIX__,${PREFIX},' ${WRKSRC}/keyprint - -do-install: - ${MKDIR} ${PREFIX}/share/keyprint - ${INSTALL_DATA} ${WRKSRC}/keyblank.ps ${PREFIX}/share/keyprint - ${INSTALL_SCRIPT} ${WRKSRC}/keyprint ${PREFIX}/bin -.if !defined(NOPORTDOCS) - ${INSTALL_DATA} ${WRKSRC}/README ${PREFIX}/share/keyprint -.endif - -.include <bsd.port.mk> diff --git a/security/opieprint/distinfo b/security/opieprint/distinfo deleted file mode 100644 index 692ad721b513..000000000000 --- a/security/opieprint/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (keyprint-1.0.tar.gz) = e142a207c6c33a60b5940a8050dc9ea9 diff --git a/security/opieprint/pkg-comment b/security/opieprint/pkg-comment deleted file mode 100644 index d9644e1fe249..000000000000 --- a/security/opieprint/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Print S/Key keys on a piece of paper, twice the size of a credit card diff --git a/security/opieprint/pkg-descr b/security/opieprint/pkg-descr deleted file mode 100644 index 56e6e215f8fd..000000000000 --- a/security/opieprint/pkg-descr +++ /dev/null @@ -1,19 +0,0 @@ -This is keyprint: a quick hack for printing S/Key keys on a small piece -of paper, twice the size of a credit card for easy storage in a -wallet, card holder, etc. It produces a PostScript file which can be -printed and then trimmed to size: - - hn38925 - +----------------------------------------+ - | 1 af fd alfal 26 fd s fdas da | - | 2 af fd alfal 27 fd s fdas da | - | 3 af fd alfal 28 fd s fdas da | - | . . | - | . . | - | 74 af fd alfal 98 fd s fdas da | - | 75 af fd alfal 99 fd s fdas da | - +----------------------------------------+ - -Warning: If you don't have a secure network, then it is not a good -idea to print this key set on a network printer. It might be obvious, -but you never know. diff --git a/security/opieprint/pkg-plist b/security/opieprint/pkg-plist deleted file mode 100644 index 8c721589ccc4..000000000000 --- a/security/opieprint/pkg-plist +++ /dev/null @@ -1,4 +0,0 @@ -bin/keyprint -share/keyprint/README -share/keyprint/keyblank.ps -@dirrm share/keyprint diff --git a/security/p5-Filter-CBC/Makefile b/security/p5-Filter-CBC/Makefile deleted file mode 100644 index a34527ad657e..000000000000 --- a/security/p5-Filter-CBC/Makefile +++ /dev/null @@ -1,35 +0,0 @@ -# New ports collection makefile for: Filter-CBC -# Date created: 11 Dec 2001 -# Whom: Sergey Skvortsov <skv@protey.ru> -# -# $FreeBSD$ -# - -PORTNAME= Filter-CBC -PORTVERSION= 0.09 -CATEGORIES= devel perl5 -MASTER_SITES= ${MASTER_SITE_PERL_CPAN} -MASTER_SITE_SUBDIR= Filter -PKGNAMEPREFIX= p5- - -MAINTAINER= skv@FreeBSD.org - -BUILD_DEPENDS= ${LOCALBASE}/lib/perl5/site_perl/${PERL_VER}/${PERL_ARCH}/Filter/Util/Call.pm:${PORTSDIR}/devel/p5-Filter \ - ${LOCALBASE}/lib/perl5/site_perl/${PERL_VER}/${PERL_ARCH}/Crypt/Rijndael.pm:${PORTSDIR}/security/p5-Crypt-Rijndael \ - ${LOCALBASE}/lib/perl5/site_perl/${PERL_VER}/Crypt/CBC.pm:${PORTSDIR}/security/p5-Crypt-CBC -RUN_DEPENDS= ${BUILD_DEPENDS} - -PERL_CONFIGURE= yes -PLIST_SUB= EXAMPLESDIR="share/examples/${PORTNAME}" - -MAN3PREFIX= ${PREFIX}/lib/perl5/${PERL_VERSION} -MAN3= Filter::CBC.3 - -post-install: -.ifndef(NOPORTDOCS) - @${ECHO_MSG} "===> Installing examples for ${PKGNAME}" - @${MKDIR} ${EXAMPLESDIR} - ${INSTALL_SCRIPT} ${WRKSRC}/examples/* ${EXAMPLESDIR} -.endif - -.include <bsd.port.mk> diff --git a/security/p5-Filter-CBC/distinfo b/security/p5-Filter-CBC/distinfo deleted file mode 100644 index 84be2a8dc651..000000000000 --- a/security/p5-Filter-CBC/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (Filter-CBC-0.09.tar.gz) = 474c25e26ef509350a72090b296d24a3 diff --git a/security/p5-Filter-CBC/pkg-comment b/security/p5-Filter-CBC/pkg-comment deleted file mode 100644 index f4bb2c9572ca..000000000000 --- a/security/p5-Filter-CBC/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -Source filter for Cipher Block Chaining diff --git a/security/p5-Filter-CBC/pkg-descr b/security/p5-Filter-CBC/pkg-descr deleted file mode 100644 index c76cede02578..000000000000 --- a/security/p5-Filter-CBC/pkg-descr +++ /dev/null @@ -1,9 +0,0 @@ -Filter::CBC is a Source filter that uses Cipher Block Chaining (CBC) to -encrypt your code. The tricky part is that most CBC Algorithms have binary -output. The textmode bypasses this obstacle, by converting the data to less -scary data. - -WWW: http://search.cpan.org/search?dist=Filter-CBC - --- Sergey Skvortsov -skv@FreeBSD.org diff --git a/security/p5-Filter-CBC/pkg-plist b/security/p5-Filter-CBC/pkg-plist deleted file mode 100644 index 3e278b272f6d..000000000000 --- a/security/p5-Filter-CBC/pkg-plist +++ /dev/null @@ -1,19 +0,0 @@ -lib/perl5/site_perl/%%PERL_VER%%/%%PERL_ARCH%%/auto/Filter/CBC/.packlist -lib/perl5/site_perl/%%PERL_VER%%/Filter/CBC.pm -lib/perl5/site_perl/%%PERL_VER%%/Filter/cbc2code.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/autofilter.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/blowfish.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/defaults.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/des.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/des_ede3.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/gost.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/idea.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/null.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/rc6.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/rijndael.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/tea.pl -%%PORTDOCS%%%%EXAMPLESDIR%%/twofish.pl -%%PORTDOCS%%@dirrm %%EXAMPLESDIR%% -@dirrm lib/perl5/site_perl/%%PERL_VER%%/%%PERL_ARCH%%/auto/Filter/CBC -@unexec rmdir %D/lib/perl5/site_perl/%%PERL_VER%%/Filter 2>/dev/null || true -@unexec rmdir %D/lib/perl5/site_perl/%%PERL_VER%%/%%PERL_ARCH%%/auto/Filter 2>/dev/null || true diff --git a/security/racoon2/Makefile b/security/racoon2/Makefile deleted file mode 100644 index 9ce8bf88fc38..000000000000 --- a/security/racoon2/Makefile +++ /dev/null @@ -1,47 +0,0 @@ -# New ports collection makefile for: racoon -# Date created: 4 July 2000 -# Whom: sumikawa -# -# $FreeBSD$ -# - -PORTNAME= racoon -PORTVERSION= 20021120a -CATEGORIES= security net -MASTER_SITES= ftp://ftp.kame.net/pub/kame/misc/ - -MAINTAINER= sumikawa@FreeBSD.org - -.if !exists(/usr/lib/libipsec.so.1) -BROKEN= "You must upgrade the OS" -.endif - -USE_OPENSSL= YES - -WRKSRC= ${WRKDIR}/${DISTNAME}/racoon -GNU_CONFIGURE= yes -CONFIGURE_ENV+=CPPFLAGS=-I${LOCALBASE}/include CFLAGS=-I${LOCALBASE}/include \ - LDFLAGS="-L${LOCALBASE}/lib -L${WRKSRC}/../libipsec" -CONFIGURE_ARGS+=--enable-debug -CONFIGURE_ARGS+=--enable-ipv6 -CONFIGURE_ARGS+=--sysconfdir=${LOCALBASE}/etc -CONFIGURE_ARGS+=--with-pkgversion=freebsd-${PORTVERSION} - -MAN5= racoon.conf.5 -MAN8= racoon.8 - -pre-patch: - ${MV} ${WRKSRC}/racoon.8 ${WRKSRC}/racoon.8.in - -pre-configure: - (cd ${WRKSRC}/../libipsec; make) - -post-install: - @${SED} 's@%PREFIX%@${LOCALBASE}@g' ${FILESDIR}/racoon.sh > ${PREFIX}/etc/rc.d/racoon.sh - @${CHMOD} +x ${PREFIX}/etc/rc.d/racoon.sh - @if [ -z `/sbin/sysctl -a | ${GREP} -q ipsec && echo ipsec` ]; then \ - ${ECHO_MSG} "WARNING: IPsec feature is disabled on this host"; \ - ${ECHO_MSG} " You must build the kernel if you want to run racoon on the host"; \ - fi ; - -.include <bsd.port.mk> diff --git a/security/racoon2/distinfo b/security/racoon2/distinfo deleted file mode 100644 index f697fafcc598..000000000000 --- a/security/racoon2/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (racoon-20021120a.tar.gz) = a5b9ecdc9665fc71a1ead7c21db04d1d diff --git a/security/racoon2/files/patch-aa b/security/racoon2/files/patch-aa deleted file mode 100644 index b9e78afe4ac3..000000000000 --- a/security/racoon2/files/patch-aa +++ /dev/null @@ -1,20 +0,0 @@ ---- ../libipsec/Makefile.orig Sun Jun 11 23:54:31 2000 -+++ ../libipsec/Makefile Tue Oct 17 01:06:10 2000 -@@ -25,12 +25,13 @@ - # OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF - # SUCH DAMAGE. - --.if exists(${.CURDIR}/../Makefile.opsys) --.include "${.CURDIR}/../Makefile.opsys" --.endif -+#.if exists(${.CURDIR}/../Makefile.opsys) -+#.include "${.CURDIR}/../Makefile.opsys" -+#.endif -+OPSYS!= uname -s - - LIB= ipsec --CFLAGS+=-g -+CFLAGS+=-g -I. - .if (${OPSYS} != "NetBSD") - CFLAGS+=-DIPSEC_DEBUG -DIPSEC -DINET6 - .else diff --git a/security/racoon2/files/patch-ab b/security/racoon2/files/patch-ab deleted file mode 100644 index e5fb29c03f60..000000000000 --- a/security/racoon2/files/patch-ab +++ /dev/null @@ -1,22 +0,0 @@ ---- Makefile.in.orig Fri Sep 27 07:04:59 2002 -+++ Makefile.in Thu Nov 21 22:28:50 2002 -@@ -7,7 +7,7 @@ - LDFLAGS=@LDFLAGS@ - CPPFLAGS= @CPPFLAGS@ - OPTFLAG=@OPTFLAG@ --CFLAGS= @CFLAGS@ $(CPPFLAGS) @DEFS@ $(CPPFLAGS) $(OPTFLAG) -DIPSEC -I. -I$(srcdir) -DSYSCONFDIR=\"${sysconfdir}\" -+CFLAGS= @CFLAGS@ $(CPPFLAGS) @DEFS@ $(CPPFLAGS) $(OPTFLAG) -DIPSEC -I. -I$(srcdir) -DSYSCONFDIR=\"${sysconfdir}/racoon\" - CFLAGS+=-DYY_NO_UNPUT - CFLAGS+=-I${srcdir}/../libipsec - LIBS= @LIBS@ -@@ -88,10 +88,6 @@ - $(INSTALL) -o bin -g bin -m 444 racoon.conf.5 $(mandir)/man5 - -mkdir -p ${sysconfdir}/racoon - for i in $(CONF); do \ -- if test ! -f ${sysconfdir}/racoon/$$i; then \ -- $(INSTALL) -o bin -g bin -m 444 samples/$$i \ -- ${sysconfdir}/racoon; \ -- fi; \ - $(INSTALL) -o bin -g bin -m 444 samples/$$i \ - ${sysconfdir}/racoon/$$i.dist; \ - done diff --git a/security/racoon2/files/patch-ac b/security/racoon2/files/patch-ac deleted file mode 100644 index ee9eba403dd1..000000000000 --- a/security/racoon2/files/patch-ac +++ /dev/null @@ -1,11 +0,0 @@ ---- configure- Wed Jul 5 16:18:19 2000 -+++ configure Wed Jul 5 16:18:32 2000 -@@ -4021,7 +4021,7 @@ - - cat >> $CONFIG_STATUS <<EOF - --CONFIG_FILES=\${CONFIG_FILES-"Makefile samples/psk.txt samples/racoon.conf"} -+CONFIG_FILES=\${CONFIG_FILES-"Makefile samples/psk.txt samples/racoon.conf racoon.8"} - EOF - cat >> $CONFIG_STATUS <<\EOF - for ac_file in .. $CONFIG_FILES; do if test "x$ac_file" != x..; then diff --git a/security/racoon2/files/patch-ad b/security/racoon2/files/patch-ad deleted file mode 100644 index 8b8fb3b81fe0..000000000000 --- a/security/racoon2/files/patch-ad +++ /dev/null @@ -1,13 +0,0 @@ ---- racoon.8.in.orig Tue Jul 4 21:27:59 2000 -+++ racoon.8.in Wed Jul 5 16:17:43 2000 -@@ -97,8 +97,8 @@ - .El - .\" - .Sh FILES --.Bl -tag -width /usr/local/v6/etc/racoon.conf -compact --.It Pa /usr/local/v6/etc/racoon.conf -+.Bl -tag -width @sysconfdir@/racoon/racoon.conf -compact -+.It Pa @sysconfdir@/racoon/racoon.conf - default configuration file. - .It Pa /var/log/racoon.log - default log file. diff --git a/security/racoon2/files/patch-ae b/security/racoon2/files/patch-ae deleted file mode 100644 index 66fed09eb1c8..000000000000 --- a/security/racoon2/files/patch-ae +++ /dev/null @@ -1,16 +0,0 @@ -$NetBSD: patch-ae,v 1.9 2001/08/02 12:44:18 itojun Exp $ - ---- ../libipsec/key_debug.c- Thu Aug 2 21:38:17 2001 -+++ ../libipsec/key_debug.c Thu Aug 2 21:38:44 2001 -@@ -392,9 +392,8 @@ - - printf("sadb_x_sa2{ mode=%u reqid=%u\n", - sa2->sadb_x_sa2_mode, sa2->sadb_x_sa2_reqid); -- printf(" reserved1=%u reserved2=%u sequence=%u }\n", -- sa2->sadb_x_sa2_reserved1, sa2->sadb_x_sa2_reserved2, -- sa2->sadb_x_sa2_sequence); -+ printf(" reserved1=%u reserved2=%u }\n", -+ sa2->sadb_x_sa2_reserved1, sa2->sadb_x_sa2_reserved2); - - return; - } diff --git a/security/racoon2/files/patch-af b/security/racoon2/files/patch-af deleted file mode 100644 index d4563bc11a42..000000000000 --- a/security/racoon2/files/patch-af +++ /dev/null @@ -1,14 +0,0 @@ -$NetBSD: patch-af,v 1.1 2001/08/02 12:44:18 itojun Exp $ - ---- ../libipsec/pfkey_dump.c- Thu Aug 2 21:38:21 2001 -+++ ../libipsec/pfkey_dump.c Thu Aug 2 21:38:34 2001 -@@ -299,8 +299,7 @@ - } - - /* replay windoe size & flags */ -- printf("\tseq=0x%08x replay=%u flags=0x%08x ", -- m_sa2->sadb_x_sa2_sequence, -+ printf("\treplay=%u flags=0x%08x ", - m_sa->sadb_sa_replay, - m_sa->sadb_sa_flags); - diff --git a/security/racoon2/files/racoon.sh b/security/racoon2/files/racoon.sh deleted file mode 100644 index d6a5c1b3098a..000000000000 --- a/security/racoon2/files/racoon.sh +++ /dev/null @@ -1,18 +0,0 @@ -#!/bin/sh - -case "$1" in - start) - if [ -x %PREFIX%/sbin/racoon ]; then - %PREFIX%/sbin/racoon -f %PREFIX%/etc/racoon/racoon.conf && echo -n ' racoon' - fi - ;; - - stop) - /usr/bin/killall racoon && echo -n ' racoon' - ;; - - *) - echo "Usage: `basename $0` { start | stop }" - exit 64 - ;; -esac diff --git a/security/racoon2/pkg-comment b/security/racoon2/pkg-comment deleted file mode 100644 index 252204b81ad6..000000000000 --- a/security/racoon2/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -KAME racoon IKE daemon diff --git a/security/racoon2/pkg-descr b/security/racoon2/pkg-descr deleted file mode 100644 index 9470793d9b4b..000000000000 --- a/security/racoon2/pkg-descr +++ /dev/null @@ -1,18 +0,0 @@ -racoon speaks IKE (ISAKMP/Oakley) key management protocol, to -establish security association with other hosts. - -Known issues: -- Too many use of dynamic memory allocation, which leads to memory leak. -- Non-threaded implementation. Simultaneous key negotiation performance - should be improved. -- Cannot negotiate keys for per-socket policy. -- Cryptic configuration syntax - blame IPsec specification too... -- Needs more documentation. - -Design choice, not a bug: -- racoon negotiate IPsec keys only. It does not negotiate policy. Policy must - be configured into the kernel separately from racoon. If you want to - support roaming clients, you may need to have a mechanism to put policy - for the roaming client after phase 1 finishes. - -WWW: http://www.kame.net/ diff --git a/security/racoon2/pkg-plist b/security/racoon2/pkg-plist deleted file mode 100644 index 0f1457b0e69f..000000000000 --- a/security/racoon2/pkg-plist +++ /dev/null @@ -1,4 +0,0 @@ -sbin/racoon -etc/racoon/psk.txt.dist -etc/racoon/racoon.conf.dist -@unexec rmdir %D/etc/racoon 2>/dev/null || true diff --git a/security/stunnel/files/stunnel.in b/security/stunnel/files/stunnel.in deleted file mode 100644 index 8edeb0c175dc..000000000000 --- a/security/stunnel/files/stunnel.in +++ /dev/null @@ -1,25 +0,0 @@ -#!/bin/sh -# -# A sample stunnel startup script written by martti.kuparinen@ericsson.com -# -# $FreeBSD$ -# - -# Where is the program -STUNNEL="!!PREFIX!!/sbin/stunnel" - -case "$1" in - start) - ${STUNNEL} !!PREFIX!!/etc/stunnel/stunnel.conf - ;; - - stop) - killall `basename ${STUNNEL}` - ;; - - *) - echo "" - echo "Usage: `basename $0` { start | stop }" - echo "" - ;; -esac diff --git a/security/tripwire/files/twpol.m4 b/security/tripwire/files/twpol.m4 deleted file mode 100644 index edb5d6a2e9f1..000000000000 --- a/security/tripwire/files/twpol.m4 +++ /dev/null @@ -1,655 +0,0 @@ -# -# Policy file for FreeBSD -# -# $FreeBSD$ - - -# -# This is the example Tripwire Policy file. It is intended as a place to -# start creating your own custom Tripwire Policy file. Referring to it as -# well as the Tripwire Policy Guide should give you enough information to -# make a good custom Tripwire Policy file that better covers your -# configuration and security needs. A text version of this policy file is -# called twpol.txt. -# -# Note that this file is tuned to an install of FreeBSD using -# buildworld. If run unmodified, this file should create no errors on -# database creation, or violations on a subsiquent integrity check. -# However it is impossible for there to be one policy file for all machines, -# so this existing one errs on the side of security. Your FreeBSD -# configuration will most likey differ from the one our policy file was -# tuned to, and will therefore require some editing of the default -# Tripwire Policy file. -# -# The example policy file is best run with 'Loose Directory Checking' -# enabled. Set LOOSEDIRECTORYCHECKING=TRUE in the Tripwire Configuration -# file. -# -# Email support is not included and must be added to this file. -# Add the 'emailto=' to the rule directive section of each rule (add a comma -# after the 'severity=' line and add an 'emailto=' and include the email -# addresses you want the violation reports to go to). Addresses are -# semi-colon delimited. -# - - - -# -# Global Variable Definitions -# -# These are defined at install time by the installation script. You may -# Manually edit these if you are using this file directly and not from the -# installation script itself. -# - -@@section GLOBAL -TWROOT=; -TWBIN=; -TWPOL=; -TWDB=; -TWSKEY=; -TWLKEY=; -TWREPORT=; -HOSTNAME=; - -@@section FS -SEC_CRIT = $(IgnoreNone)-SHa ; # Critical files that cannot change -SEC_SUID = $(IgnoreNone)-SHa ; # Binaries with the SUID or SGID flags set -SEC_BIN = $(ReadOnly) ; # Binaries that should not change -SEC_CONFIG = $(Dynamic) ; # Config files that are changed infrequently but accessed often -SEC_TTY = $(Dynamic)-ugp ; # Tty files that change ownership at login -SEC_LOG = $(Growing) ; # Files that grow, but that should never change ownership -SEC_INVARIANT = +tpug ; # Directories that should never change permission or ownership -SIG_LOW = 33 ; # Non-critical files that are of minimal security impact -SIG_MED = 66 ; # Non-critical files that are of significant security impact -SIG_HI = 100 ; # Critical files that are significant points of vulnerability - - -# Tripwire Binaries -( - rulename = "Tripwire Binaries", - severity = $(SIG_HI) -) -{ - $(TWBIN)/siggen -> $(SEC_BIN) ; - $(TWBIN)/tripwire -> $(SEC_BIN) ; - $(TWBIN)/twadmin -> $(SEC_BIN) ; - $(TWBIN)/twprint -> $(SEC_BIN) ; -} - -# Tripwire Data Files - Configuration Files, Policy Files, Keys, Reports, Databases -( - rulename = "Tripwire Data Files", - severity = $(SIG_HI) -) -{ - # NOTE: We remove the inode attribute because when Tripwire creates a backup, - # it does so by renaming the old file and creating a new one (which will - # have a new inode number). Inode is left turned on for keys, which shouldn't - # ever change. - - # NOTE: The first integrity check triggers this rule and each integrity check - # afterward triggers this rule until a database update is run, since the - # database file does not exist before that point. - - $(TWDB) -> $(SEC_CONFIG) -i ; - $(TWPOL)/tw.pol -> $(SEC_BIN) -i ; - $(TWPOL)/tw.cfg -> $(SEC_BIN) -i ; - $(TWPOL)/twcfg.txt -> $(SEC_BIN) ; - $(TWPOL)/twpol.txt -> $(SEC_BIN) ; - $(TWLKEY)/$(HOSTNAME)-local.key -> $(SEC_BIN) ; - $(TWSKEY)/site.key -> $(SEC_BIN) ; - - #don't scan the individual reports - $(TWREPORT) -> $(SEC_CONFIG) (recurse=0) ; -} - - -# Tripwire HQ Connector Binaries -#( -# rulename = "Tripwire HQ Connector Binaries", -# severity = $(SIG_HI) -#) -#{ -# $(TWBIN)/hqagent -> $(SEC_BIN) ; -#} -# -# Tripwire HQ Connector - Configuration Files, Keys, and Logs - -# -# Note: File locations here are different than in a stock HQ Connector -# installation. This is because Tripwire 2.3 uses a different path -# structure than Tripwire 2.2.1. -# -# You may need to update your HQ Agent configuation file (or this policy -# file) to correct the paths. We have attempted to support the FHS standard -# here by placing the HQ Agent files similarly to the way Tripwire 2.3 -# places them. -# - -#( -# rulename = "Tripwire HQ Connector Data Files", -# severity = $(SIG_HI) -#) -#{ -# -# # NOTE: Removing the inode attribute because when Tripwire creates a backup -# # it does so by renaming the old file and creating a new one (which will -# # have a new inode number). Leaving inode turned on for keys, which -# # shouldn't ever change. -# -# -# $(TWBIN)/agent.cfg -> $(SEC_BIN) -i ; -# $(TWLKEY)/authentication.key -> $(SEC_BIN) ; -# $(TWDB)/tasks.dat -> $(SEC_CONFIG) ; -# $(TWDB)/schedule.dat -> $(SEC_CONFIG) ; -# -# # Uncomment if you have agent logging enabled. -# #/var/log/tripwire/agent.log -> $(SEC_LOG) ; -#} - - - -# Commonly accessed directories that should remain static with regards to owner and group -( - rulename = "Invariant Directories", - severity = $(SIG_MED) -) -{ - / -> $(SEC_INVARIANT) (recurse = false) ; - /home -> $(SEC_INVARIANT) (recurse = false) ; -} - -# -# First, root's "home" -# - -( - rulename = "Root's home", - severity = $(SIG_HI) -) -{ - # /.rhosts -> $(SEC_CRIT) ; - /.profile -> $(SEC_CRIT) ; - /.cshrc -> $(SEC_CRIT) ; - /.login -> $(SEC_CRIT) ; - # /.exrc -> $(SEC_CRIT) ; - # /.logout -> $(SEC_CRIT) ; - # /.forward -> $(SEC_CRIT) ; - /root -> $(SEC_CRIT) (recurse = true) ; - !/root/.history ; - !/root/.bash_history ; - # !/root/.lsof_SYSTEM_NAME ; # Uncomment if lsof is installed -} - - -# -# FreeBSD Kernel -# - -( - rulename = "FreeBSD Kernel", - severity = $(SIG_HI) -) -{ - /kernel -> $(SEC_CRIT) ; - /kernel.old -> $(SEC_CRIT) ; - /kernel.GENERIC -> $(SEC_CRIT) ; -} - - -# -# FreeBSD Modules -# - -( - rulename = "FreeBSD Modules", - severity = $(SIG_HI) -) -{ - /modules -> $(SEC_CRIT) (recurse = true) ; - /modules.old -> $(SEC_CRIT) (recurse = true) ; - # /lkm -> $(SEC_CRIT) (recurse = true) ; # uncomment if using lkm kld -} - - -# -# System Administration Programs -# - -( - rulename = "System Administration Programs", - severity = $(SIG_HI) -) -{ - /sbin -> $(SEC_CRIT) (recurse = true) ; - /usr/sbin -> $(SEC_CRIT) (recurse = true) ; -} - - -# -# User Utilities -# - -( - rulename = "User Utilities", - severity = $(SIG_HI) -) -{ - /bin -> $(SEC_CRIT) (recurse = true) ; - /usr/bin -> $(SEC_CRIT) (recurse = true) ; -} - - -# -# /dev -# - -( - rulename = "/dev", - severity = $(SIG_HI) -) -{ - /dev -> $(Device) (recurse = true) ; - !/dev/vga ; - !/dev/dri ; - /dev/console -> $(SEC_TTY) ; - /dev/ttyv0 -> $(SEC_TTY) ; - /dev/ttyv1 -> $(SEC_TTY) ; - /dev/ttyv2 -> $(SEC_TTY) ; - /dev/ttyv3 -> $(SEC_TTY) ; - /dev/ttyv4 -> $(SEC_TTY) ; - /dev/ttyv5 -> $(SEC_TTY) ; - /dev/ttyv6 -> $(SEC_TTY) ; - /dev/ttyv7 -> $(SEC_TTY) ; - /dev/ttyp0 -> $(SEC_TTY) ; - /dev/ttyp1 -> $(SEC_TTY) ; - /dev/ttyp2 -> $(SEC_TTY) ; - /dev/ttyp3 -> $(SEC_TTY) ; - /dev/ttyp4 -> $(SEC_TTY) ; - /dev/ttyp5 -> $(SEC_TTY) ; - /dev/ttyp6 -> $(SEC_TTY) ; - /dev/ttyp7 -> $(SEC_TTY) ; - /dev/ttyp8 -> $(SEC_TTY) ; - /dev/ttyp9 -> $(SEC_TTY) ; - /dev/ttypa -> $(SEC_TTY) ; - /dev/ttypb -> $(SEC_TTY) ; - /dev/ttypc -> $(SEC_TTY) ; - /dev/ttypd -> $(SEC_TTY) ; - /dev/ttype -> $(SEC_TTY) ; - /dev/ttypf -> $(SEC_TTY) ; - /dev/ttypg -> $(SEC_TTY) ; - /dev/ttyph -> $(SEC_TTY) ; - /dev/ttypi -> $(SEC_TTY) ; - /dev/ttypj -> $(SEC_TTY) ; - /dev/ttypl -> $(SEC_TTY) ; - /dev/ttypm -> $(SEC_TTY) ; - /dev/ttypn -> $(SEC_TTY) ; - /dev/ttypo -> $(SEC_TTY) ; - /dev/ttypp -> $(SEC_TTY) ; - /dev/ttypq -> $(SEC_TTY) ; - /dev/ttypr -> $(SEC_TTY) ; - /dev/ttyps -> $(SEC_TTY) ; - /dev/ttypt -> $(SEC_TTY) ; - /dev/ttypu -> $(SEC_TTY) ; - /dev/ttypv -> $(SEC_TTY) ; - /dev/cuaa0 -> $(SEC_TTY) ; # modem -} - - -# -# /etc -# - -( - rulename = "/etc", - severity = $(SIG_HI) -) -{ - /etc -> $(SEC_CRIT) (recurse = true) ; - # /etc/mail/aliases -> $(SEC_CONFIG) ; - /etc/dumpdates -> $(SEC_CONFIG) ; - /etc/motd -> $(SEC_CONFIG) ; - !/etc/ppp/connect-errors ; - /etc/skeykeys -> $(SEC_CONFIG) ; - # Uncomment the following 4 lines if your password file does not change - # /etc/passwd -> $(SEC_CONFIG) ; - # /etc/master.passwd -> $(SEC_CONFIG) ; - # /etc/pwd.db -> $(SEC_CONFIG) ; - # /etc/spwd.db -> $(SEC_CONFIG) ; -} - - -# -# Copatibility (Linux) -# - -( - rulename = "Linux Compatibility", - severity = $(SIG_HI) -) -{ - /compat -> $(SEC_CRIT) (recurse = true) ; -# -# Uncomment the following if Linux compatibility is used. Replace -# HOSTNAME1 and HOSTNAME2 with the hosts that have Linux emulation port -# installed. -# -#@@ifhost HOSTNAME1 || HOSTNAME2 -# /compat/linux/etc -> $(SEC_INVARIANT) (recurse = false) ; -# /compat/linux/etc/X11 -> $(SEC_CONFIG) (recurse = true) ; -# /compat/linux/etc/pam.d -> $(SEC_CONFIG) (recurse = true) ; -# /compat/linux/etc/profile.d -> $(SEC_CONFIG) (recurse = true) ; -# /compat/linux/etc/real -> $(SEC_CONFIG) (recurse = true) ; -# /compat/linux/etc/bashrc -> $(SEC_CONFIG) ; -# /compat/linux/etc/csh.login -> $(SEC_CONFIG) ; -# /compat/linux/etc/host.conf -> $(SEC_CONFIG) ; -# /compat/linux/etc/hosts.allow -> $(SEC_CONFIG) ; -# /compat/linux/etc/hosts.deny -> $(SEC_CONFIG) ; -# /compat/linux/etc/info-dir -> $(SEC_CONFIG) ; -# /compat/linux/etc/inputrc -> $(SEC_CONFIG) ; -# /compat/linux/etc/ld.so.conf -> $(SEC_CONFIG) ; -# /compat/linux/etc/nsswitch.conf -> $(SEC_CONFIG) ; -# /compat/linux/etc/profile -> $(SEC_CONFIG) ; -# /compat/linux/etc/redhat-release -> $(SEC_CONFIG) ; -# /compat/linux/etc/rpc -> $(SEC_CONFIG) ; -# /compat/linux/etc/securetty -> $(SEC_CONFIG) ; -# /compat/linux/etc/shells -> $(SEC_CONFIG) ; -# /compat/linux/etc/termcap -> $(SEC_CONFIG) ; -# /compat/linux/etc/yp.conf -> $(SEC_CONFIG) ; -# !/compat/linux/etc/ld.so.cache ; -# !/compat/linux/var/spool/mail ; -#@@endif -} - - -# -# Libraries, include files, and other system files -# - -( - rulename = "Libraries, include files, and other system files", - severity = $(SIG_HI) -) -{ - /usr/include -> $(SEC_CRIT) (recurse = true) ; - /usr/lib -> $(SEC_CRIT) (recurse = true) ; - /usr/libdata -> $(SEC_CRIT) (recurse = true) ; - /usr/libexec -> $(SEC_CRIT) (recurse = true) ; - /usr/share -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man -> $(SEC_CONFIG) ; - !/usr/share/man/whatis ; - !/usr/share/man/.glimpse_filenames ; - !/usr/share/man/.glimpse_filenames_index ; - !/usr/share/man/.glimpse_filetimes ; - !/usr/share/man/.glimpse_filters ; - !/usr/share/man/.glimpse_index ; - !/usr/share/man/.glimpse_messages ; - !/usr/share/man/.glimpse_partitions ; - !/usr/share/man/.glimpse_statistics ; - !/usr/share/man/.glimpse_turbo ; - /usr/share/man/man1 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man2 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man3 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man4 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man5 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man6 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man7 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man8 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/man9 -> $(SEC_CRIT) (recurse = true) ; - /usr/share/man/mann -> $(SEC_CRIT) (recurse = true) ; - ! /usr/share/man/cat1 ; - ! /usr/share/man/cat2 ; - ! /usr/share/man/cat3 ; - ! /usr/share/man/cat4 ; - ! /usr/share/man/cat5 ; - ! /usr/share/man/cat6 ; - ! /usr/share/man/cat7 ; - ! /usr/share/man/cat8 ; - ! /usr/share/man/cat9 ; - ! /usr/share/man/catl ; - ! /usr/share/man/catn ; - /usr/share/perl/man -> $(SEC_CONFIG) ; - !/usr/share/perl/man/whatis ; - !/usr/share/perl/man/.glimpse_filenames ; - !/usr/share/perl/man/.glimpse_filenames_index ; - !/usr/share/perl/man/.glimpse_filetimes ; - !/usr/share/perl/man/.glimpse_filters ; - !/usr/share/perl/man/.glimpse_index ; - !/usr/share/perl/man/.glimpse_messages ; - !/usr/share/perl/man/.glimpse_partitions ; - !/usr/share/perl/man/.glimpse_statistics ; - !/usr/share/perl/man/.glimpse_turbo ; - /usr/share/perl/man/man3 -> $(SEC_CRIT) (recurse = true) ; - ! /usr/share/perl/man/cat3 ; - /usr/local/lib/perl5/5.00503/man -> $(SEC_CONFIG) ; - ! /usr/local/lib/perl5/5.00503/man/whatis ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_filters ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_filetimes ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_messages ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_statistics ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_index ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_turbo ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_partitions ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_filenames ; - ! /usr/local/lib/perl5/5.00503/man/.glimpse_filenames_index ; - /usr/local/lib/perl5/5.00503/man/man3 -> $(SEC_CRIT) (recurse = true) ; - ! /usr/local/lib/perl5/5.00503/man/cat3 ; -} - - -# -# X11R6 -# - -( - rulename = "X11R6", - severity = $(SIG_HI) -) -{ - /usr/X11R6 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/lib/X11/xdm -> $(SEC_CONFIG) (recurse = true) ; - !/usr/X11R6/lib/X11/xdm/xdm-errors ; - !/usr/X11R6/lib/X11/xdm/authdir/authfiles ; - !/usr/X11R6/lib/X11/xdm/xdm-pid ; - /usr/X11R6/lib/X11/xkb/compiled -> $(SEC_CONFIG) (recurse = true) ; - /usr/X11R6/man -> $(SEC_CONFIG) ; - !/usr/X11R6/man/whatis ; - !/usr/X11R6/man/.glimpse_filenames ; - !/usr/X11R6/man/.glimpse_filenames_index ; - !/usr/X11R6/man/.glimpse_filetimes ; - !/usr/X11R6/man/.glimpse_filters ; - !/usr/X11R6/man/.glimpse_index ; - !/usr/X11R6/man/.glimpse_messages ; - !/usr/X11R6/man/.glimpse_partitions ; - !/usr/X11R6/man/.glimpse_statistics ; - !/usr/X11R6/man/.glimpse_turbo ; - /usr/X11R6/man/man1 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man2 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man3 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man4 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man5 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man6 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man7 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man8 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/man9 -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/manl -> $(SEC_CRIT) (recurse = true) ; - /usr/X11R6/man/mann -> $(SEC_CRIT) (recurse = true) ; - ! /usr/X11R6/man/cat1 ; - ! /usr/X11R6/man/cat2 ; - ! /usr/X11R6/man/cat3 ; - ! /usr/X11R6/man/cat4 ; - ! /usr/X11R6/man/cat5 ; - ! /usr/X11R6/man/cat6 ; - ! /usr/X11R6/man/cat7 ; - ! /usr/X11R6/man/cat8 ; - ! /usr/X11R6/man/cat9 ; - ! /usr/X11R6/man/catl ; - ! /usr/X11R6/man/catn ; -} - - -# -# sources -# - -( - rulename = "Sources", - severity = $(SIG_HI) -) -{ - /usr/src -> $(SEC_CRIT) (recurse = true) ; - /usr/src/sys/compile -> $(SEC_CONFIG) (recurse = false) ; -} - - -# -# NIS -# - -( - rulename = "NIS", - severity = $(SIG_HI) -) -{ - /var/yp -> $(SEC_CRIT) (recurse = true) ; - !/var/yp/binding ; -} - - -# -# Temporary directories -# -( - rulename = "Temporary directories", - recurse = false, - severity = $(SIG_LOW) -) -{ - /usr/tmp -> $(SEC_INVARIANT) ; - /var/tmp -> $(SEC_INVARIANT) ; - /var/preserve -> $(SEC_INVARIANT) ; - /tmp -> $(SEC_INVARIANT) ; -} - -# -# Local files -# - -( - rulename = "Local files", - severity = $(SIG_MED) -) -{ - /usr/local/bin -> $(SEC_BIN) (recurse = true) ; - /usr/local/sbin -> $(SEC_BIN) (recurse = true) ; - /usr/local/etc -> $(SEC_BIN) (recurse = true) ; - /usr/local/lib -> $(SEC_BIN) (recurse = true ) ; - /usr/local/libexec -> $(SEC_BIN) (recurse = true ) ; - /usr/local/share -> $(SEC_BIN) (recurse = true ) ; - /usr/local/man -> $(SEC_CONFIG) ; - !/usr/local/man/whatis ; - !/usr/local/man/.glimpse_filenames ; - !/usr/local/man/.glimpse_filenames_index ; - !/usr/local/man/.glimpse_filetimes ; - !/usr/local/man/.glimpse_filters ; - !/usr/local/man/.glimpse_index ; - !/usr/local/man/.glimpse_messages ; - !/usr/local/man/.glimpse_partitions ; - !/usr/local/man/.glimpse_statistics ; - !/usr/local/man/.glimpse_turbo ; - /usr/local/man/man1 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man2 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man3 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man4 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man5 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man6 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man7 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man8 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/man9 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/manl -> $(SEC_CRIT) (recurse = true) ; - /usr/local/man/mann -> $(SEC_CRIT) (recurse = true) ; - ! /usr/local/man/cat1 ; - ! /usr/local/man/cat2 ; - ! /usr/local/man/cat3 ; - ! /usr/local/man/cat4 ; - ! /usr/local/man/cat5 ; - ! /usr/local/man/cat6 ; - ! /usr/local/man/cat7 ; - ! /usr/local/man/cat8 ; - ! /usr/local/man/cat9 ; - ! /usr/local/man/catl ; - ! /usr/local/man/catn ; - /usr/local/krb5 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man -> $(SEC_CONFIG) ; - !/usr/local/krb5/man/whatis ; - !/usr/local/krb5/man/.glimpse_filenames ; - !/usr/local/krb5/man/.glimpse_filenames_index ; - !/usr/local/krb5/man/.glimpse_filetimes ; - !/usr/local/krb5/man/.glimpse_filters ; - !/usr/local/krb5/man/.glimpse_index ; - !/usr/local/krb5/man/.glimpse_messages ; - !/usr/local/krb5/man/.glimpse_partitions ; - !/usr/local/krb5/man/.glimpse_statistics ; - !/usr/local/krb5/man/.glimpse_turbo ; - /usr/local/krb5/man/man1 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man2 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man3 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man4 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man5 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man6 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man7 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man8 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/man9 -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/manl -> $(SEC_CRIT) (recurse = true) ; - /usr/local/krb5/man/mann -> $(SEC_CRIT) (recurse = true) ; - ! /usr/local/krb5/man/cat1 ; - ! /usr/local/krb5/man/cat2 ; - ! /usr/local/krb5/man/cat3 ; - ! /usr/local/krb5/man/cat4 ; - ! /usr/local/krb5/man/cat5 ; - ! /usr/local/krb5/man/cat6 ; - ! /usr/local/krb5/man/cat7 ; - ! /usr/local/krb5/man/cat8 ; - ! /usr/local/krb5/man/cat9 ; - ! /usr/local/krb5/man/catl ; - ! /usr/local/krb5/man/catn ; - /usr/local/www -> $(SEC_CONFIG) (recurse = true) ; -} - - -( - rulename = "Security Control", - severity = $(SIG_HI) -) -{ - /etc/group -> $(SEC_CRIT) ; - /etc/crontab -> $(SEC_CRIT) ; -} - -#============================================================================= -# -# Copyright 2000 Tripwire, Inc. Tripwire is a registered trademark of Tripwire, -# Inc. in the United States and other countries. All rights reserved. -# -# FreeBSD is a registered trademark of the FreeBSD Project Inc. -# -# UNIX is a registered trademark of The Open Group. -# -#============================================================================= -# -# Permission is granted to make and distribute verbatim copies of this document -# provided the copyright notice and this permission notice are preserved on all -# copies. -# -# Permission is granted to copy and distribute modified versions of this -# document under the conditions for verbatim copying, provided that the entire -# resulting derived work is distributed under the terms of a permission notice -# identical to this one. -# -# Permission is granted to copy and distribute translations of this document -# into another language, under the above conditions for modified versions, -# except that this permission notice may be stated in a translation approved by -# Tripwire, Inc. -# -# DCM diff --git a/security/zenmap/Makefile b/security/zenmap/Makefile deleted file mode 100644 index 5864cb4ddeea..000000000000 --- a/security/zenmap/Makefile +++ /dev/null @@ -1,24 +0,0 @@ -# ex:ts=8 -# Ports collection makefile for: nmap -# Date created: Tue Aug 04, 1998 -# Whom: David O'Brien (obrien@NUXI.com) -# -# $FreeBSD$ -# - -MASTERDIR= ${.CURDIR}/../nmap - -PORTNAME= nmapfe - -RUN_DEPENDS= nmap:${PORTSDIR}/security/nmap - -USE_GNOMENG= yes -USE_GNOME= gtk12 -INSTALL_TARGET= install-nmapfe -MAN1= nmapfe.1 xnmap.1 - -after-install: - test -e ${PREFIX}/bin/nmapfe \ - || (cd ${PREFIX}/bin ; ${LN} -f nmapfe xnmap) - -.include "${MASTERDIR}/Makefile" diff --git a/security/zenmap/distinfo b/security/zenmap/distinfo deleted file mode 100644 index f39de2ced0c5..000000000000 --- a/security/zenmap/distinfo +++ /dev/null @@ -1 +0,0 @@ -MD5 (nmapfe-0.9.5.tgz) = f7cd97ddcd1eca49489298ad9bd3bf00 diff --git a/security/zenmap/files/nmap.1 b/security/zenmap/files/nmap.1 deleted file mode 100644 index b80aaa89fe46..000000000000 --- a/security/zenmap/files/nmap.1 +++ /dev/null @@ -1,87 +0,0 @@ -.\" -.\" Copyright (c) 1998 David E. O'Brien -.\" -.\" All rights reserved. -.\" -.\" Redistribution and use in source and binary forms, with or without -.\" modification, are permitted provided that the following conditions -.\" are met: -.\" 1. Redistributions of source code must retain the above copyright -.\" notice, this list of conditions and the following disclaimer. -.\" 2. Redistributions in binary form must reproduce the above copyright -.\" notice, this list of conditions and the following disclaimer in the -.\" documentation and/or other materials provided with the distribution. -.\" -.\" THIS SOFTWARE IS PROVIDED BY THE DEVELOPERS ``AS IS'' AND ANY EXPRESS OR -.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES -.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. -.\" IN NO EVENT SHALL THE DEVELOPERS BE LIABLE FOR ANY DIRECT, INDIRECT, -.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT -.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, -.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY -.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT -.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF -.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. -.\" -.\" $FreeBSD$ -.\" -.\" .TH NMAP 1L local -.Dd August 4, 1998 -.Dt NMAP 1 -.Os BSD -.Sh NAME -.Nm nmap -.Nd network port scanner -.Sh SYNOPSIS -.Nm nmap -.Op Ar options -.Ar hostname -.Op Ar /mask -.Sh DESCRIPTION -.Nm -is a utility for port scanning large networks, although it works fine for -single hosts. The guiding philosophy for the creation of -.Nm -was TMTOWTDI (There's More Than One Way To Do It). This is the Perl slogan, but -it is equally applicable to scanners. Sometimes you need speed, other times you -may need stealth. In some cases, bypassing firewalls may be required. Not to -mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, -etc.). You just can't do all this with one scanning mode. And you don't want to -have 10 different scanners around, all with different interfaces and -capabilities. Thus -.Nm -incorporats virtually every scanning technique known. -Specifically, -.Nm -supports: - - Vanilla TCP connect() scanning, - TCP SYN (half open) scanning, - TCP FIN (stealth) scanning, - TCP ftp proxy (bounce attack) scanning - SYN/FIN scanning using IP fragments (bypasses packet filters), - UDP recvfrom() scanning, - UDP raw ICMP port unreachable scanning, - ICMP scanning (ping-sweep), and - Reverse-ident scanning. - -.Nm -also supports a number of performance and reliability features such as dynamic -delay time calculations, packet timeout and retransmission, parallel port -scanning, detection of down hosts via parallel pings, and flexible target and -port specification. -.Sh FILES -none. -.Sh SEE ALSO -.Xr mscan 1L , -.Xr nc 1L , -.Xr scrobe 1L -.Sh DIAGNOSTICS -none. -.Sh BUGS -none known. -.Sh AUTHORS -This man page has been written by David O'Brien (obrien@cs.ucdavis.edu) -.\" .Sh HISTORY -.\" .Nm -.\" appeared in FreeBSD 3.0. diff --git a/security/zenmap/pkg-comment b/security/zenmap/pkg-comment deleted file mode 100644 index 5678ecd23a9f..000000000000 --- a/security/zenmap/pkg-comment +++ /dev/null @@ -1 +0,0 @@ -GUI frontend for the nmap scanning utility diff --git a/security/zenmap/pkg-descr b/security/zenmap/pkg-descr deleted file mode 100644 index ef1316ec24bc..000000000000 --- a/security/zenmap/pkg-descr +++ /dev/null @@ -1,6 +0,0 @@ -nmapfe is a GUI front end for the nmap port scanning tool. - -WWW: http://www.insecure.org/nmap/index.html - --- David - obrien@cs.ucdavis.edu diff --git a/security/zenmap/pkg-plist b/security/zenmap/pkg-plist deleted file mode 100644 index 2a77109ab26a..000000000000 --- a/security/zenmap/pkg-plist +++ /dev/null @@ -1,7 +0,0 @@ -@comment $FreeBSD$ -bin/nmapfe -bin/xnmap -share/gnome/apps/Utilities/nmapfe.desktop -@dirrm share/gnome/apps/Utilities -@dirrm share/gnome/apps -@dirrm share/gnome |