From 553bd5d59f5cb6ba4d0d2fb2c7d430e47e76467b Mon Sep 17 00:00:00 2001 From: Torsten Blum Date: Tue, 1 Nov 1994 01:46:09 +0000 Subject: TCP/IP daemon wrapper package --- security/tcp_wrapper/Makefile | 23 ++++++ security/tcp_wrapper/files/patch-aa | 149 ++++++++++++++++++++++++++++++++++++ security/tcp_wrapper/pkg-comment | 1 + security/tcp_wrapper/pkg-descr | 18 +++++ security/tcp_wrapper/pkg-plist | 7 ++ 5 files changed, 198 insertions(+) create mode 100644 security/tcp_wrapper/Makefile create mode 100644 security/tcp_wrapper/files/patch-aa create mode 100644 security/tcp_wrapper/pkg-comment create mode 100644 security/tcp_wrapper/pkg-descr create mode 100644 security/tcp_wrapper/pkg-plist (limited to 'security') diff --git a/security/tcp_wrapper/Makefile b/security/tcp_wrapper/Makefile new file mode 100644 index 000000000000..741d1e28e544 --- /dev/null +++ b/security/tcp_wrapper/Makefile @@ -0,0 +1,23 @@ +# New ports collection makefile for: tcp_wrapper +# Version required: 6.3 +# Date created: 27 Oct 1994 +# Whom: torstenb +# +# $Id$ +# + +DISTNAME= tcp_wrappers_6.3 +MASTER_SITES= ftp://ftp.win.tue.nl/pub/security/ +EXTRACT_CMD= ${.CURDIR}/scripts/extract.sh +EXTRACT_ARGS= ${WRKSRC} +EXTRACT_SUFX= .shar.Z + +pre-install: + @mkdir -p ${PREFIX}/sbin + @mkdir -p ${PREFIX}/lib + @mkdir -p ${PREFIX}/etc + @mkdir -p ${PREFIX}/man/man3 + @mkdir -p ${PREFIX}/man/man5 + @mkdir -p ${PREFIX}/man/man8 + +.include diff --git a/security/tcp_wrapper/files/patch-aa b/security/tcp_wrapper/files/patch-aa new file mode 100644 index 000000000000..e0e25145ad61 --- /dev/null +++ b/security/tcp_wrapper/files/patch-aa @@ -0,0 +1,149 @@ +*** Makefile.orig Mon Oct 31 14:50:32 1994 +--- Makefile Mon Oct 31 14:57:06 1994 +*************** +*** 1,5 **** +--- 1,7 ---- + # @(#) Makefile 1.12 94/03/23 16:51:32 + ++ default: freebsd ++ + what: + @echo + @echo "Usage: edit the REAL_DAEMON_DIR definition in the Makefile then:" +*************** +*** 46,52 **** + #REAL_DAEMON_DIR=/usr/sbin + # + # BSD 4.4 +! #REAL_DAEMON_DIR=/usr/libexec + # + # HP-UX SCO + #REAL_DAEMON_DIR=/etc +--- 48,54 ---- + #REAL_DAEMON_DIR=/usr/sbin + # + # BSD 4.4 +! REAL_DAEMON_DIR=/usr/libexec + # + # HP-UX SCO + #REAL_DAEMON_DIR=/etc +*************** +*** 120,126 **** + # Free bsd and linux by default have no NIS. + 386bsd netbsd freebsd: + @make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \ +! LIBS= RANLIB=ranlib ARFLAGS=rv AUX_OBJ= NETGROUP= TLI= all + + linux: + @make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \ +--- 122,129 ---- + # Free bsd and linux by default have no NIS. + 386bsd netbsd freebsd: + @make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \ +! LIBS= RANLIB=ranlib ARFLAGS=rv AUX_OBJ= NETGROUP= TLI= \ +! EXTRA_CFLAGS="-D_HAVE_PARAM_H" all + + linux: + @make REAL_DAEMON_DIR=$(REAL_DAEMON_DIR) STYLE=$(STYLE) \ +*************** +*** 318,324 **** + # instead of a long integer. Compile with -DINET_ADDR_BUG to work around + # this mutant behavour. + +! BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS + #BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS -DINET_ADDR_BUG + + ########################################################################## +--- 321,327 ---- + # instead of a long integer. Compile with -DINET_ADDR_BUG to work around + # this mutant behavour. + +! #BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS + #BUGS = -DGETPEERNAME_BUG -DBROKEN_FGETS -DINET_ADDR_BUG + + ########################################################################## +*************** +*** 345,351 **** + # module, which also gives hints on how to add your own extensions. + # Uncomment the next definition to turn on the language extensions. + # +! #STYLE = -DPROCESS_OPTIONS # Enable language extensions. + + ################################################################ + # Optional: Changing the default disposition of logfile records +--- 348,354 ---- + # module, which also gives hints on how to add your own extensions. + # Uncomment the next definition to turn on the language extensions. + # +! STYLE = -DPROCESS_OPTIONS # Enable language extensions. + + ################################################################ + # Optional: Changing the default disposition of logfile records +*************** +*** 368,374 **** + # + # The LOG_XXX names below are taken from the /usr/include/syslog.h file. + +! FACILITY= LOG_MAIL # LOG_MAIL is what most sendmail daemons use + + # The syslog priority at which successful connections are logged. + +--- 371,377 ---- + # + # The LOG_XXX names below are taken from the /usr/include/syslog.h file. + +! FACILITY= LOG_AUTH # LOG_MAIL is what most sendmail daemons use + + # The syslog priority at which successful connections are logged. + +*************** +*** 445,451 **** + # look for access control information. Watch out for the quotes and + # backslashes when you make changes. + +! TABLES = -DHOSTS_DENY=\"/etc/hosts.deny\" -DHOSTS_ALLOW=\"/etc/hosts.allow\" + + ########################################### + # Optional: Turning off host NAME checking +--- 448,454 ---- + # look for access control information. Watch out for the quotes and + # backslashes when you make changes. + +! TABLES = -DHOSTS_DENY=\"${PREFIX}/etc/hosts.deny\" -DHOSTS_ALLOW=\"${PREFIX}/etc/hosts.allow\" + + ########################################### + # Optional: Turning off host NAME checking +*************** +*** 463,469 **** + # daemon wrappers will use only the host address, but your daemons may + # still use the host name. + +! PARANOID= -DPARANOID + + ############################################# + # Optional: Turning on host ADDRESS checking +--- 466,472 ---- + # daemon wrappers will use only the host address, but your daemons may + # still use the host name. + +! #PARANOID= -DPARANOID + + ############################################# + # Optional: Turning on host ADDRESS checking +*************** +*** 522,527 **** +--- 525,538 ---- + LIB = libwrap.a + + all other: config-check tcpd try try-from safe_finger ++ ++ install: ++ install -c libwrap.a ${PREFIX}/lib/libwrap.a ++ install -c tcpd ${PREFIX}/sbin/tcpd ++ install -c hosts_access.3 ${PREFIX}/man/man3/hosts_access.3 ++ install -c hosts_access.5 ${PREFIX}/man/man5/hosts_access.5 ++ install -c hosts_options.5 ${PREFIX}/man/man5/hosts_options.5 ++ install -c tcpd.8 ${PREFIX}/man/man8/tcpd.8 + + config-check: + @set +e; test -n "$(REAL_DAEMON_DIR)" || { make; exit 1; } diff --git a/security/tcp_wrapper/pkg-comment b/security/tcp_wrapper/pkg-comment new file mode 100644 index 000000000000..ff7ae397dbb1 --- /dev/null +++ b/security/tcp_wrapper/pkg-comment @@ -0,0 +1 @@ +tcp-wrapper, TCP/IP daemon wrapper package, version 6.3 diff --git a/security/tcp_wrapper/pkg-descr b/security/tcp_wrapper/pkg-descr new file mode 100644 index 000000000000..7afb891c523d --- /dev/null +++ b/security/tcp_wrapper/pkg-descr @@ -0,0 +1,18 @@ +This is the 6.3 version of the TCP/IP daemon wrapper package. + +With this package you can monitor and filter incoming requests for the +SYSTAT, FINGER, FTP, TELNET, RLOGIN, RSH, EXEC, TFTP, TALK, and other +network services. + +The package provides tiny daemon wrapper programs that can be installed +without any changes to existing software or to existing configuration +files. The wrappers report the name of the remote host and of the +requested service; the wrappers do not exchange information with the +remote client process, and impose no overhead on the actual +communication between the client and server applications. + +Optional features are: access control to restrict what systems can +connect to your network daemons; remote user name lookups with the RFC +931 protocol; additional protection against hosts that pretend to have +someone elses host name; additional protection against hosts that +pretend to have someone elses host address. diff --git a/security/tcp_wrapper/pkg-plist b/security/tcp_wrapper/pkg-plist new file mode 100644 index 000000000000..376a4b39ade4 --- /dev/null +++ b/security/tcp_wrapper/pkg-plist @@ -0,0 +1,7 @@ +@cwd /usr/local +sbin/tcpd +lib/libwrap.a +man/man3/hosts_access.3 +man/man5/hosts_access.5 +man/man5/hosts_options.5 +man/man8/tcpd.8 -- cgit v1.2.3