1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-24 04:33:24 +00:00
Commit Graph

177 Commits

Author SHA1 Message Date
Olli Hauer
0b09f5bfe6 - update to 6.4.7
- add CPE entry
- sort pkg-plist

Changelog (entries related to the command line tools)

Nmap 6.47 [2014-08-20]

o Integrated all of your IPv4 OS fingerprint submissions since June 2013
  (2700+ of them). Added 366 fingerprints, bringing the new total to 4485.
  Additions include Linux 3.10 - 3.14, iOS 7, OpenBSD 5.4 - 5.5, FreeBSD 9.2,
  OS X 10.9, Android 4.3, and more. Many existing fingerprints were improved.
  Highlights: http://seclists.org/nmap-dev/2014/q3/325 [Daniel Miller]

o Removed the External Entity Declaration from the DOCTYPE in Nmap's XML. This
  was added in 6.45, and resulted in trouble for Nmap XML parsers without
  network access, as well as increased traffic to Nmap's servers. The doctype
  is now:
  <!DOCTYPE nmaprun>

o [Ncat] Fixed SOCKS5 username/password authentication. The password length was
  being written in the wrong place, so authentication could not succeed.
  Reported with patch by Pierluigi Vittori.

o Avoid formatting NULL as "%s" when running nmap --iflist. GNU libc converts
  this to the string "(null)", but it caused segfault on Solaris. [Daniel Miller]

o Handle ICMP admin-prohibited messages when doing service version detection.
  Crash reported by Nathan Stocks was: Unexpected error in NSE_TYPE_READ
  callback.  Error code: 101 (Network is unreachable) [David Fifield]

o [NSE] Fix a bug causing http.head to not honor redirects. [Patrik Karlsson]

MFH:		2014Q3
2014-08-23 12:29:46 +00:00
Olli Hauer
b21a4b6529 Nmap 6.46 [2014-04-18]
o [NSE] Made numerous improvements to ssl-heartbleed to provide
  more reliable detection of the vulnerability.

o [Zenmap] Fixed a bug which caused this crash message:
     IOError: [Errno socket error] [Errno 10060] A connection attempt failed
     because the connected party did not properly respond after a period of
     time, or established connection failed because connected host has
     failed to
     respond
  The bug was caused by us adding a DOCTYPE definition to Nmap's XML
  output which caused Python's XML parser to try and fetch the DTD
  every time it parses an XML file.  We now override that DTD-fetching
  behavior. [Daniel Miller]

o [NSE] Fix some bugs which could cause snmp-ios-config and
  snmp-sysdescr scripts to crash
  (http://seclists.org/nmap-dev/2014/q2/120) [Patrik Karlsson]

o [NSE] Improved performance of citrixlua library when handling large XML
  responses containing application lists. [Tom Sellers]
2014-04-18 08:05:14 +00:00
Olli Hauer
58a9ab423a - update to nmap-6.45
Changelog:
http://nmap.org/changelog.html

Most of the changes of version 6.45 where already
adopted in the last port version
2014-04-15 12:12:02 +00:00
Olli Hauer
f568cd2d45 - update nmap nselib and scripts to upstream revision r32810
The update includes a working script to detect whether a server
  is vulnerable to the OpenSSL Heartbleed bug (CVE-2014-0160)

  http://nmap.org/nsedoc/scripts/ssl-heartbleed.html

MFH: 2014Q2
2014-04-11 04:52:45 +00:00
Olli Hauer
03d75ab5d3 - use internal liblua instead the one from ports [1]
- update internal liblua from 5.2.2 -> 5.2.3
- bump PORTREVISION

[1] nmap use static lua for nmap, nping and ncat, after
    build lua is no longer needed.
2014-01-12 17:56:20 +00:00
Olli Hauer
29dc006884 - fix security/nmap runtime on current (FreeBSD 11)
- adopt ${opt}_USE style
- remove ${opt} PKGNAMEPREFIX
- bump PORTREVISION

PR:		ports/184288
Submitted by:	Ruslan Makhmatkhanov <rm@FreeBSD.org>
2013-11-25 20:49:58 +00:00
Olli Hauer
c3e2621f60 - add stage support 2013-09-28 15:50:43 +00:00
Baptiste Daroussin
a65ed2e51b Add NO_STAGE all over the place in preparation for the staging support (cat: security) 2013-09-20 22:55:24 +00:00
Olli Hauer
56b7b51e42 - fix pkg-plist (ja) 2013-08-21 07:42:01 +00:00
Olli Hauer
c18edf2f37 - update to 6.4.0
- remove patches for EOL FreeBSD releases
- convert to OPTIONS

Changelog:
http://nmap.org/changelog.html
2013-08-21 04:57:14 +00:00
Olli Hauer
78344c76b2 - Fix build for FreeBSD-7.4
(nmap 6.25 contains liblua5.2.1)

 Requested by Martin Olsson <martin.olsson@sentor.se> per PM

PR:		175210
Submitted by:	Jürgen <caligula@primamail.de>
Obtained from:	http://lua-users.org/lists/lua-l/2011-12/msg00708.html
2013-01-13 22:43:17 +00:00
Olli Hauer
dfddabb5cd - update nmap to version 6.25
- fix build with clang and stdlib=libc++ [1]

Nmap 6.25 [2012-11-29]
o [NSE]	Added CPE to smb-os-discovery output.

o [Ncat] Fixed the printing of warning messages	for large arguments to
  the -i and -w	options. [Michal Hlavinka]

o [Ncat] Shut down the write part of connected sockets in listen mode
  when stdin hits EOF, just as was already done	in connect mode.
  [Michal Hlavinka]

o [NSE]	Added new fingerprints for http-enum: Sitecore,	Moodle,	typo3,
  SquirrelMail,	RoundCube. [Jesper Kückelhahn]

o Added	some new checks	for failed library calls. [Bill	Parker]

PR:		172358
		174817

Submitted by:	arrowdodger <6yearold@gmail.com> [1]
		Anders N. <wicked@baot.se> (general update request)
2013-01-06 18:42:38 +00:00
Martin Matuska
b2c4fbb77a Update PCRE to 8.32
Introduces the UTF-32 library pcre32
Bump PORTREVISION in dependent ports
2012-12-10 19:11:11 +00:00
Olli Hauer
19089d4e8b - update nmap to version 6.0.1
Announcement: http://seclists.org/nmap-hackers/2012/3
Changelog:    http://nmap.org/changelog.html

Some relevant changes in 6.01:

o Fixed a bug that caused Nmap to fail to find any network interface when
  at least one of them is in the monitor mode. The fix was to define the
  ARP_HRD_IEEE80211_RADIOTAP 802.11 radiotap header identifier in the
  libdnet-stripped code. Network interfaces that are in this mode are used
  by radiotap for 802.11 frame injection and reception. The bug was
  reported by Tom Eichstaedt and Henri Doreau.
  http://seclists.org/nmap-dev/2012/q2/449
  http://seclists.org/nmap-dev/2012/q2/478
  [Djalal Harouni, Henri Doreau]

o Fixed the greppable output of hosts that time-out (when --host-timeout was
  used and the host timed-out after something was received from that host).
  This issue was reported by Matthew Morgan. [jah]
2012-06-24 15:54:18 +00:00
Olli Hauer
e8cd63f4bd - update to version 6.00
Changelog:
==========
Nmap 6.00

o Most important release since Nmap 5.00 in July 2009! For a list of
  the most significant improvements and new features, see the
  announcement at: http://nmap.org/6

o In XML output, <osclass> elements are now child elements of the
  <osmatch> they belong to. Old output was thus:
    <os><osclass/><osclass/>...<osmatch/><osmatch/>...</os>
  New output is:
    <os><osmatch><osclass/><osclass/>...</osmatch>...</os>
  The option --deprecated-xml-osclass restores the old output, in case
  you use an Nmap XML parser that doesn't understand the new
  structure. The xmloutputversion has been increased to 1.04.

o Added a new <target> element to XML output that indicates when a
  target specification was ignored, perhaps because of a syntax error
  or DNS failure. It looks like this:
    <target specification="1.2.3.4.5" status="skipped" reason="invalid"/>
  [David Fifield]

o [NSE] Added the script samba-vuln-cve-2012-1182 which detects the
  SAMBA pre-auth remote root vulnerability (CVE-2012-1182).
  [Aleksandar Nikolic]

o [NSE] Added http-vuln-cve2012-1823.nse, which checks for PHP CGI
  installations with a remote code execution vulnerability. [Paulino
  Calderon]

o [NSE] Added script targets-ipv6-mld that sends a malformed ICMP6 MLD Query
  to discover IPv6 enabled hosts on the LAN. [Niteesh Kumar]

o [NSE] Added rdp-vuln-ms12-020.nse by Aleksandar Nikolic. This tests
  for two Remote Desktop vulnerabilities, including one allowing
  remote code execution, that were fixed in the MS12-020 advisory.

o [NSE] Added a stun library and the scripts stun-version and stun-info, which
  extract version information and the external NAT:ed address.
  [Patrik Karlsson]

o [NSE] Added the script duplicates which attempts to determine duplicate
  hosts by analyzing information collected by other scripts. [Patrik Karlsson]

o Fixed the routing table loop on OS X so that on-link routes appear.
  Previously, they were ignored so that things like ARP scan didn't
  work. [Patrik Karlsson, David Fifield]

o Upgraded included libpcap to version 1.2.1.

o [NSE] Added ciphers from RFC 5932 and Fortezza-based ciphers to
  ssl-enum-ciphers.nse. The patch was submitted by Darren McDonald.

o [NSE] Renamed hostmap.nse to hostmap-bfk.nse.

o Fixed a compilation problem on Solaris 9 caused by a missing
  definition of IPV6_V6ONLY. Reported by Dagobert Michelsen.

o Setting --min-parallelism by itself no longer forces the maximum
  parallelism to the same value. [Chris Woodbury, David Fifield]

o Changed XML output to show the "service" element whenever a tunnel
  is discovered for a port, even if the service behind it was unknown.
  [Matt Foster]

o [Zenmap] Fixed a crash that would happen in the profile editor when
  the script.db file doesn't exist. The bug was reported by Daniel
  Miller.

o [Zenmap] It is now possible to compare scans having the same name or
  command line parameters. [Jah, David Fifield]

o Fixed an error that could occur with ICMPv6 probes and -d4 debugging:
  "Unexpected probespec2ascii type encountered" [David Fifield]

o [NSE] Added new script http-chrono, which measures min, max and average
  response times of web servers. [Ange Gutek]

o Applied a workaround to make pcap captures work better on Solaris
  10. This involves peeking at the pcap buffer to ensure that captures
  are not being lost. A symptom of the previous behavior was that,
  when doing ARP host discovery against two targets, only one would be
  reported as up. [David Fifield]

o Fixed a bug that could cause Nsock timers to fire too early. This
  could happen for the timed probes in IPv6 OS detection, causing an
  incorrect measurement of the TCP_ISR feature. [David Fifield]

o [Zenmap] We now build on Windows with a newer version of PyGTK, so
  copy and paste should work again.

o Changed the way timeout calculations are made in the IPv6 OS engine.
  In rare cases a certain interleaving of probes and responses would
  result in an assertion failure.
2012-05-24 16:30:44 +00:00
Olli Hauer
a638ec23f1 - update to version 5.61TEST5
small snippet from changelog:
 http://nmap.org/changelog.html

 o Integrated all of your IPv4 OS fingerprint submissions since June 2011 (about 1,900 of them)
   Added about 256 new fingerprints (total 3,572)
 o Integrated all of your service/version detection fingerprints submitted since November 2010
   (signature count increased to 7,423)
 o Integrated your latest IPv6 OS submissions and corrections
 o [NSE] Added 43(!) NSE scripts, bringing the total up to 340
 o [NSE] Added 14 new protocol libraries
 o [CPE] (Common Platform Enumeration) OS classification is now supported for IPv6 OS detection
 o Added a new --script-args-file option
 o [NSE] Added support for decoding EIGRP broadcasts from Cisco routers to broadcast-listener
 o [NSE] Added redirect support to the http library
 o Update to the latest MAC address prefix assignments from IEEE as of March 8, 2012

Test builds sponsored by redports.org

Feature safe: yes
2012-03-10 12:31:25 +00:00
Martin Matuska
dbbf004162 Bump pcre library dependency due to 8.30 update 2012-02-14 12:45:35 +00:00
Olli Hauer
d4bf9fc462 - update to 5.61TEST4
For detailed Changes see http://nmap.org/changelog.html
(List is simply to long ...)

Some highlights
* [NSE] Added a new httpspider library which is used for recursively
  crawling web sites for information.  New scripts using this
  functionality include http-backup-finder, http-email-harvest,
  http-grep, http-open-redirect, and http-unsafe-output-escaping. See
  http://nmap.org/nsedoc/ or the list later in this file for details
  on these.

* [NSE] Added a vulnerability management library (vulns.lua) to store and to
  report discovered vulnerabilities.

* [NSE] Added a new script force feature.  You can force scripts to
  run against target ports (even if the "wrong" service is detected)
  by placing a plus in front of the script name passed to --script.
  See http://nmap.org/book/nse-usage.html#nse-script-selection.

* [NSE] Added 51(!) NSE scripts, bringing the total up to 297.

Build tests sponsored by redports.org
2012-01-04 16:47:52 +00:00
Olli Hauer
f355af154d - update to version 5.61TEST2
- add workaround for system build with WITHOUT_INET6 [1]

 Thanks to Kim Scarborough for sharing the libpcap workaround

PR:		ports/159376 [1]
Submitted by:	Alexander Panyushkin [1]
2011-10-04 17:17:47 +00:00
Dmitry Marakasov
6f6fbe4bdf - Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:		157936
Submitted by:	myself
Exp-runs by:	pav
Approved by:	pav
2011-09-23 22:26:39 +00:00
Olli Hauer
f0318868a4 - update to 5.61TEST1
Here is the (partial) CHANGELOG since 5.59BETA1:

Nmap 5.61TEST1 [2011-09-19]

o The changelog entries below for this test release are not yet
  finished or comprehensive.  We'll update them soon.

o [Ncat] Updated ca-bundle.crt (primarily to remove DigiNotar).

o Fixed compilation on OS X 10.7 Lion. Thanks to Patrik Karlsson and
  Babak Farroki for researching fixes.

o [NSE] Fixed SSL compressor names in ssl-enum-ciphers.nse, and
  removed redundant multiple listings of the NULL compressor.
  [Matt Selsky]

o [NSE] Added cipher strength ratings to ssl-enum-ciphers.nse.
  [Gabriel Lawrence]

o Added Common Platform Enumeration (CPE, http://cpe.mitre.org/)
  output for OS and service versions. These show up in normal output
  with the headings "OS CPE:" and "Service Info:":
    OS CPE: cpe:/o:linux:kernel:2.6.39
    Service Info: OS: Linux; CPE: cpe:/o:linux:kernel
  These also appear in XML output, which additionally has CPE entries
  for service versions. [David, Henri]

o [NSE] Added new default credential list for Oracle and modified the
  oracle-brute script to make use of it. [Patrik]

o [NSE] Added xmpp-info.nse as a replacement for xmpp.nse. This updated version
  brings new features and fixes. [Vasiliy Kulikov]

o Fixed RPC scan for 64-bit architectures by using fixed-size data
  types. [David]

o Relaxed the XML DTD to allow validation of files where the verbosity
  level changed during the scan. [Daniel Miller]

o Made a service confidence of 8 (used when tcpwrapped) and indeed any
  number between 0 and 10 be legal in XML output according to the DTD.
  [Daniel Miller]

o [NSE] Added three scripts that do host discovery on local IPv6
  subnets. Each of them uses a different multicast technique, meaning
  that even very large networks have host discovery done without
  needing to probe every address individually.
  + targets-multicast-ipv6-echo: Sends a multicast echo request, like
    broadcast-ping does for IPv4.
  + targets-multicast-ipv6-invalid-dst: Sends an invalid packet that
    can elicit an ICMPv6 Parameter Problem response.
  + targets-multicast-ipv6-slaac: Sends a phony router advertisement,
    which causes hosts to allocate a temporary address and then send a
    packet to discover if anyone else is using the address.
  [Weilin, David]

o [NSE] Added functions to packet.lua to make it easier to build IPv6
  packets. [Weilin]

o [NSE] Added new script http-vuln-cve2011-3192 which checks whether an instance
  of Apache is vulnerable to a DoS attack exploiting the byterange filter.
  [Duarte Silva].

o [NSE] Fixed authentication problems in the TNS library that would prevent
  authentication from working against Oracle 11.2.0.2.0 XE [Chris Woodbury]

o Removed some restrictions on probe matching that, for example,
  prevented a RST/ACK reply from being recognized in a NULL scan. This
  was found and fixed by Matthew Stickney and Joe McEachern.

o Rearranged some characters classes in service matches to avoid any
  that look like POSIX collating symbols ("[.xyz.]"). John Hutchison
  discovered this error caused by one of the match lines:
    InitMatch: illegal regexp: POSIX collating elements are not supported
  [Daniel Miller]

o [NSE] Added the address-info.nse script, which shows extra information about IP addresses.

o [NSE] Added scripts http-joomla-brute, http-wordpress-brute, http-wp-enum and
  http-awstatstotal-exec. [Paulino]

o [Zenmap] Fixed zenmap deleting ports based on newer scans which did
  not actually scan the port in question. Additionally ncat now only
  updates ports with new information if the new information is the same
  protocol. Not just the same port. [Colin Rice]

o [Ncat] Fixed ncat crashing with --ssl-verify -vvv on windows. [Colin Rice]

o [NSE] Added script http-waf-detect. This script tries to determine
  if an IDS/IPS/WAF is protecting a web server. [Paulino]

o [NSE] Added the bittorrent library and bittorrent-discovery script which
  enables us to discover peers and nodes for a particular torrent file or
  magnet link.

o [NSE] Added basic query support to the Oracle TNS library making it possible
  for scripts to query the database server using SQL. [Patrik]

o [Ncat] Added --append-output option, that when used along with -o and/or -x
  prevents clobbering(truncating) an existing file. [Shinnok]

o [NSE] Added script broadcast-listener that attempts to discover hosts by
  passively listening to the network. It does so by decoding ethernet and IP
  broadcast and multicast messages. [Patrik]

o Fixed a bug that would make Nmap segfault if it failed to open an interface
  using pcap. The bug details and patch are posted here:
  http://seclists.org/nmap-dev/2011/q3/365 [Patrik]

o Ncat SCTP mode supports connection brokering now(--sctp --broker). [Shinnok]

o Nmap now defers options parsing until it has read through all the command line
  arguments. You can now use options like -S with an IPv6 address before
  specifying -6 at the command line, which previously got you an error.
  [Shinnok]

o [NSE] Added the library xmpp.lua and the script xmpp-brute that performs
  brute force password auditing against XMPP (Jabber) servers. [Patrik]

o [NSE] Fixed a bug in the ssh2-enum-algos script that would prevent it from
  displaying any output unless run in debug mode. [Patrik]

o [NSE] Fixed the nsedebug print_hex() function so it does not print an
  empty line if there are no remaining characters, and improved its NSEDoc.
  [Chris Woodbury].

o [NSE] Added the scripts http-axis2-dir-traversal and
  http-litespeed-sourcecode-download that exploits a directory traversal and
  null byte poisoning vulnerabilities in Apache Axis2 and LiteSpeed Web Server
  respectively. [Paulino]

o [Ncat] Ncat now no longer blocks while an ssl handshake is taking place or
  waiting to complete. [Shinnok]

o [NSE] Added the script broadcast-dhcp-discover that sends a DHCP discover
  message to the broadcast address and collects and reports the network
  information received from the DHCP server. [Patrik]

o [NSE] Added the script smtp-brute that performs brute force password
  auditing against SMTP servers. [Patrik]

o [NSE] Updated SMTP library to support authentication using both plain-text
  and the SASL library. [Patrik]

o [NSE] Added the script imap-brute that performs brute force password
  auditing against IMAP servers. [Patrik]

o [NSE] Updated IMAP library to support authentication using both plain-text
  and the SASL library. [Patrik]

o [NSE] Added SASL library created by Djalal Harouni and Patrik Karlsson
  providing common code for "Simple Authentication and Security Layer" to
  services supporting it. The algorithms supported by the library are:
  PLAIN, CRAM-MD5, DIGEST-MD5 and NTLM. [Patrik Karlsson, Djalal Harouni]

o [NSE] Added scripts cvs-brute.nse, cvs-brute-repository.nse and the cvs
  library. The cvs-brute-repository script allows for guessing possible
  repository names needed in order to perform password guessing using the
  cvs-brute.nse script. [Patrik]

o [Zenmap] The Zenmap crash handler now instructs you to mail in crash
  information to nmap-dev. [Colin Rice]

o Added IPv6 Neighbor Discovery ping. This is the IPv6 analog to IPv4
  ARP scan. It is the default ping type for local IPv6 networks.
  [Weilin]

o [NSE] Added smtp-vuln-cve2011-1764 script, which checks if the Exim
  SMTP server is vulnerable to the DKIM Format String vulnerability
  (CVE-2011-1764). [Djalal]

o Added the broadcast-ping script which sends icmp packets to broadcast
  addresses on the selected network interface, or all ethernet interfaces if
  none is selected. It has the option to add the discovered hosts as targets.

o [NSE] Applied patch from Chris Woodbury that adds the following additional
  information to the output of smb-os-discovery:
  + Forest name
  + FQDN
  + NetBIOS computer name
  + NetBIOS domain name

o [Ncat] Ncat now supports IPV6 addresses by default without the -6 flag.
  Additionally ncat listens on both :: and localhost when passed
  -l, or any other listening mode unless a specific listening address is
  supplied.

o [NSE] Split script db2-discover into two scripts, adding a new
  broadcast-db2-discover script. This script attempts to discover DB2
  database servers through broadcast requests. [Patrik Karlsson]

o Fixed broken XML output in the case of timed-out hosts; the
  enclosing host element was missing. The fix was suggested by Rémi
  Mollon.

o [NSE] Added ftp-vuln-cve2010-4221 script, which checks if the ProFTPD
  server is vulnerable to the Telnet IAC stack overflow vulnerability
  (CVE-2010-4221). [Djalal]

o [NSE] Added ftp-vsftpd-backdoor, which detects a backdoor that was introduced
  into vsftpd-2.3.4 source code distributions. [Daniel Miller]

o [NSE] ldap-brute.nse - Multiple changes:
  + Added support for 2008 R2 functional level Active Directory instances
    to ldap-brute.
  + Added detection for valid credentials where the target account was
    expired or limited by time or login host constraints.
  + Added support for specifying a UPN suffix to be appended to usernames
    when brute forcing Microsoft Active Directory accounts.
  + Added support for saving discovered credentials to a CSV file.
  + Now reports valid credentials as they are discovered when the script
    is run with -vv or higher.
	[Tom Sellers]

o [NSE] ldap-search.nse - Added support for saving search results to
  CSV.  This is done by using the ldap.savesearch script argument to
  specify an output filename prefix.  [Tom Sellers]

o [NSE] Updated smb-brute to add detection for valid credentials where the
  target account was expired or limited by time or login host constraints.
  [Tom Sellers]

o [NSE] Updated account status text in brute force password discovery
  scripts in an effort to make the reporting more consistent across
  all scripts.  This will have an impact on any code that parses these
  values.  [Tom Sellers]
2011-09-23 20:29:18 +00:00
Olli Hauer
c746ce5b7b - fix build with clang
Thanks for the patch goes to Dimitry Andric <dim@FreeBSD.org>
2011-07-31 21:49:46 +00:00
Olli Hauer
939332056c - update to version 5.59BETA1
This version includes:
 o 40 new NSE scripts (plus improvements to many others)
 o even more IPv6 goodness than our informal World IPv6 Day release
 o 7 new NSE protocol libraries
 o hundreds of bug fixes
 o and much more see http://seclists.org/nmap-hackers/2011/3
2011-07-01 13:23:23 +00:00
Olli Hauer
67a025995a - add support for gcc from ports
PR:		ports/156880
Submitted by:	Zhihao Yuan <lichray _at_ gmail.com>
2011-06-03 21:10:32 +00:00
Olli Hauer
911ff9e84f - fix crash due to a null pointer dereference
Thanks to Christian Peron csjp@
2011-04-20 23:09:04 +00:00
Olli Hauer
8d8c954d31 - update to version 5.51
Nmap 5.51 [2011-02-11]

o [Ndiff] Added support for prerule and postrule scripts. [David]

o [NSE] Fixed a bug which caused some NSE scripts to fail due to the
  absence of the NSE SCRIPT_NAME environment variable when loaded.
  Michael Pattrick reported the problem. [Djalal]

o [Zenmap] Selecting one of the scan targets in the left pane is
  supposed to jump to that host in the Nmap Output in the right pane
  (but it wasn't).  Brian Krebs reported this bug. [David]

o Fixed an obscure bug in Windows interface matching. If the MAC
  address of an interface couldn't be retrieved, it might have been
  used instead of the correct interface. Alexander Khodyrev reported
  the problem.  [David]

o [NSE] Fixed portrules in dns-zone-transfer and ftp-proftpd-backdoor
  that used shortport functions incorrectly and always returned
  true. [Jost Krieger]

o [Ndiff] Fixed ndiff.dtd to include two elements that can be diffed:
  status and address. [Daniel Miller]

o [Ndiff] Fixed the ordering of hostscript-related elements in XML
  output. [Daniel Miller]

o [NSE] Fixed a bug in the nrpe-enum script that would make it run for
  every port (when it was selected--it isn't by default).  Daniel
  Miller reported the bug. [Patrick]

o [NSE] When an NSE script sets a negative socket timeout, it now
  causes a controlled Lua stack trace instead of a fatal error.
  Vlatko Kosturjak reported the bug. [David]

o [Zenmap] Worked around an error that caused the py2app bootstrap
  executable to be non-universal even when the rest of the application
  was universal. This prevented the binary .dmg from working on
  PowerPC. Yxynaxen reported the problem. [David]

o [Ndiff] Fixed an output line that wasn't being redirected to a file
  when all other output was. [Daniel Miller]
2011-02-13 19:36:36 +00:00
Olli Hauer
0813236ffa - update to version 5.50
- always enable bpf in libdnet-stripped to support build in Jail [1]

Announcement and Changelog are very long and covered by last updates.

Announcement: http://seclists.org/nmap-hackers/2011/0
Changelog: http://nmap.org/changelog.html

PR:		ports/154353 [1]
Submitted by:	Mars G Miro <spry _at_ anarchy.in.the.ph> [1]
Feature safe:	yes
2011-01-30 17:15:07 +00:00
Olli Hauer
6bd9969942 - update nmap to version 5.36TEST4
Changelog: http://nmap.org/changelog.html

Feature safe:	yes
2011-01-22 16:43:18 +00:00
Olli Hauer
3f0360cc96 - update nmap to version 5.36TEST3
- remove dead mirror servers

 Changelog: http://nmap.org/changelog.html

 Mayjor changes are NSE script related, some highlihts:
  o [NSE] Added stuxnet-detect.nse
  o [NSE] Added the ftp-proftpd-backdoor.nse

  and many more interesting NSE scripts.
2011-01-07 20:51:25 +00:00
Olli Hauer
f22045cc52 - remove forgotten patch files/patch-nbase__configure (obsolate)
Approved by:	glarkin (mentor, implizit)
2010-09-04 00:59:10 +00:00
Olli Hauer
fd2a15f5ed - update nmap to version 5.35DC1
- remove MD2 code from nse_openssl.cc (already removed in nmap svn)
 - remove naming conflict if openssl-1.x is build with SCTP support

Approved by:	glarkin (mentor)
2010-09-03 21:16:38 +00:00
Olli Hauer
ae37133ee1 Take Maintainership
Approved by:	glarkin (mentor, implicit)
2010-08-10 13:37:06 +00:00
Tilman Keskinoz
4f7173998e Drop Maintainership
PR:		149436
Submitted by:	old maintainer
2010-08-09 13:28:50 +00:00
Wesley Shields
ca1cc67c34 - Fix plist and bump PORTREVISION
PR:		ports/144401
Submitted by:	olli hauer <ohauer@gmx.de>
Approved by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
Feature safe:	yes
2010-03-06 14:35:00 +00:00
Martin Wilke
6d09d8dd4f - Update to 5.21
PR:		143331
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2010-01-31 00:50:27 +00:00
Martin Wilke
a54f89aa98 - Update to 5.00
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2009-07-16 22:17:11 +00:00
Martin Wilke
35bf7feac6 - Update to 4.90RC1
PR:		136295
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2009-07-05 22:24:16 +00:00
Wesley Shields
50edd7d663 - Replace previous patch with a better one.
Submitted by:	Hajimu UMEMOTO <ume@FreeBSD.org>
Approved by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2009-04-22 16:25:53 +00:00
Wesley Shields
5098fed9c7 - Add patch to work around versions of FreeBSD with broken
getaddrinfo(3) (7.1 and earlier, and -CURRENT before the end of March
  2009).

PR:		ports/133779
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2009-04-21 15:36:56 +00:00
Dennis Herrmann
36a2474a72 - Update to 4.85.b7
PR:		ports/133547
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
Approved by:	miwi (mentor)
2009-04-13 09:53:53 +00:00
Martin Wilke
8fd6d0b0a8 - Update to 4.76
PR:		127379
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2008-09-24 14:47:04 +00:00
Oliver Lehmann
9d2ead2bb4 fix build when openssl is not in base but in $LOCALBASE
Approved by:	maintainer
2008-09-07 10:20:16 +00:00
Rong-En Fan
741aa71483 Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk
 - Remove CONFIGURE_TARGET hack in various bsd.*.mk
 - USE_GNOME=gnometarget is now an no-op

Changes to individual ports, other than removing the CONFIGURE_TARGET hack:

= pkg-plist changed (due to the ugly CONFIGURE_TARGET prefix in * executables)
  - comms/gnuradio
  - science/abinit
  - science/elmer-fem
  - science/elmer-matc
  - science/elmer-meshgen2d
  - science/elmerfront
  - science/elmerpost

= use x86_64 as ARCH
  - devel/g-wrap

= other changes
  - print/magicfilter
    GNU_CONFIGURE -> HAS_CONFIGURE since it's not generated by autoconf

Total # of ports modified:  1,027
Total # of ports affected: ~7,000 (set GNU_CONFIGURE to yes)

PR:		126524 (obsoletes 52917)
Submitted by:	rafan
Tested on:	two pointyhat 7-amd64 exp runs (by pav)
Approved by:	portmgr (pav)
2008-08-21 06:18:49 +00:00
Martin Wilke
915e27e96b - Update to 4.68
PR:		126211
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2008-08-03 16:09:47 +00:00
Martin Wilke
7a1b9836bb - Update to 4.62
PR:		123401
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2008-05-06 13:26:11 +00:00
Martin Wilke
3e4ed01146 - Remove unneeded dependency from gtk12/gtk20 [1]
- Remove USE_XLIB/USE_X_PREFIX/USE_XPM in favor of USE_XORG
- Remove X11BASE support in favor of LOCALBASE or PREFIX
- Use USE_LDCONFIG instead of INSTALLS_SHLIB
- Remove unneeded USE_GCC 3.4+

Thanks to all Helpers:
	Dmitry Marakasov, Chess Griffin, beech@, dinoex, rafan, gahr,
	ehaupt, nox, itetcu, flz, pav

PR:		116263
Tested on:	pointyhat
Approved by:	portmgr (pav)
2008-04-19 17:56:05 +00:00
Cheng-Lung Sung
d0bc782954 - Update nmap to 4.60 and fix moved MASTER_SITES.
Also fixed portlint warnings about Makefile structure.

PR:		ports/122728
Submitted by:	maintainer (Daniel Roethlisberge)
2008-04-14 00:53:05 +00:00
Pav Lucistnik
fb3b71be54 - Remove empty files 2008-04-10 11:56:28 +00:00
Martin Wilke
2f195e4f8d - Update to 4.52
PR:		119673
Submitted by:	Daniel Roethlisberger <daniel@roe.ch> (maintainer)
2008-03-14 21:30:23 +00:00
Gabor Kovesdan
42542fb076 - Remove the DESTDIR modifications from individual ports as we have a new,
fully chrooted DESTDIR, which does not need such any more.

Sponsored by:	Google Summer of Code 2007
Approved by:	portmgr (pav)
2007-08-04 11:41:30 +00:00