Bite the bullet and make kcheckpass setuid root by default so the lock

and screensaver functions work by default (i.e. they let you back in if
you type the right password).  This will also avoid the caveat that quite
often people install KDE using the metaport and usually leave it runnning
and by the time it's done, the not-so-helpful message is long gone.

Usability police:	~20 emails from users...
Won't mind releasing a security advisory for this if needed:	kris

x11/kde4-baseapps/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kde4-baseapps/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kde4-runtime/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kde4-runtime/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kde4-workspace/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kde4-workspace/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kdebase2/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kdebase2/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kdebase3/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kdebase3/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kdebase4-runtime/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kdebase4-runtime/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kdebase4-workspace/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kdebase4-workspace/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-

x11/kdebase4/Makefile

@@ -7,6 +7,7 @@
 
 PORTNAME=	kdebase
 PORTVERSION=	2.2.1
+PORTREVISION=	1
 CATEGORIES?=	x11 kde
 MASTER_SITES=	${MASTER_SITE_KDE}
 MASTER_SITE_SUBDIR=	stable/${PORTVERSION}/src
@@ -64,6 +65,6 @@ post-configure:
 	${PERL} -pi -e "s@444@644@g" ${WRKSRC}/kdesktop/init/Templates/Makefile
 
 post-install:
-	@${CAT} ${PKGMESSAGE}
+	${CHMOD} u+s ${PREFIX}/bin/kcheckpass
 
 .include <bsd.port.post.mk>

x11/kdebase4/pkg-message

@@ -1,21 +0,0 @@
-
-************************** I M P O R T A N T ****************************
-
-This package (kdebase2) installs a program called kcheckpass which is
-used by kdm or screensavers to check the user's password.  This activity
-requires it to be setuid root.  However, for security reasons, FreeBSD
-leaves the setuid bit on this binary off by default, for several reasons.
-First, some people may not use screensavers or kdm at all.  Second,
-others may choose to use a different screensaver or display manager
-utility.  And finally, there may be holes in kcheckpass which can be
-exploited to gain root privileges.  FreeBSD chooses not to take that risk
-with the default package.  If you decide that you need it setuid root,
-you can make it so:
-
-	chmod u+s ${PREFIX}/bin/kcheckpass
-
-..where ${PREFIX} is the prefix where this package was installed.  It is
-typically /usr/local but may also be /usr/X11R6 or /usr.
-
-************************** I M P O R T A N T ****************************
-