sshd2 unless it detects an entry for ssh in /etc/inetd.conf. As there
are three ways to automatically start sshd2 and /etc/rc.conf is the
simplest one (at least on FreeBSD 4, with rcNG once /etc/rc.d/sshd is
fixed to not be tailored to the base sshd) this version of the port
is the last one to do so. Beginning with next version it will only
install a sample start-up script. To prevent foot shooting when
updating to the next version this port won't remove an existing
start-up scripting on deinstall. Please see also the pkg-message that
gets displayed on installation.
- Update to 3.2.9.1. This is _not_ a security update. For the non-commercial
version the only change worth mentioning since 3.2.5 is the addition of the
config option "DisableVersionFallback", see sshd2_config(5) for further
details.
- Use sites from the official list of mirrors for MASTER_SITES.
- Adjust COMMENT to justify why this port is security/ssh2, not security/ssh3.
- Revise list of installed documentation. No longer install MANIFEST (list of
source files) and INSTALL, install RFCs referenced in sshd2_config(5) and
HOWTO.anonymous.sftp (patched to better fit FreeBSD).
- Remove WITH_STATIC_SFTP knob. Using the internal sftp-server instead of the
external (static) one is much simpler to set up and maintain (using the
external one requires to install a copy of it in the home directory of the
anonymous sftp user which has to be manually updated when installing a newer
version of the port).
- Remove WITHOUT_TCPWRAP knob, libwarp is part of FreeBSD since 3.2.
- Install examples scripts for the ExternalAuthorizationProgram and
AuthKbdInt.Plugin config options in EXAMPLESDIR. See sshd2_config(5) for
further information.
- Replace references to /etc/ssh2/* in config files with PREFIX/etc/ssh2/*.
- Add a pkg-message displaying the different methods to automatically start
sshd2.
- Switch to the start-up script for Solaris which is part of the tarball, it
handles the name of the pidfile better.
- Fix detection of X11 headers, this enables compilation with support for X11
SECURITY extension. See TrustX11Applications in ssh2_config(5) for further
information.
- Add a test target to the Makefile of the port, the tests seem a bit outdated
and buggy but it's enough to e.g. do a bit of speed comparison when building
with different compilers.
- Minor changes and clean-up (sort pkg-plist, don't add /usr/local/lib to
the library search path when compiling, etc.).
Revive some local modifications lost with the update to 3.1.0:
- Use login_cap(3)/login_class(3) facilities to set environment variables,
prority and shell, get motd, copyright, hushlogin and nologin, respect
ignorenologin and requirehome. This changes are roughly based on former
patch-ah and patch-ai and patches of security/openssh.
- Don't print "No mail.", it's not FreeBSD login style.
Submitted by: maintainer
maintainer, in my response to request about build errors on 5.x:
As much as I may try, I just can't find the time anymore to spend on
projects such as this. Since there are some documented exploits
available against 6.5.x, it would probably be best to remove the port.
These patches do the following things for PEAR ports:
* devel-pear-PEAR-Makefile.common.patch
- provides a do-install target and all that jazz in
devel/pear-PEAR/Makefile.common
- individual PEAR ports now just set a few variables:
* pear-ports-Makefile.common-ng.patch
contains changes for all pear-* ports including devel/pear-PEAR
See http://smradoch.innuendo.cz/FreeBSD/ for complete description.
Note: still missing are:
devel/pear-HTML_Common
devel/pear-I18N
net/pear-Net_NNTP
security/pear-Auth
PR: ports/59213
Submitted by: Roman Neuhauser <neuhauser@bellavista.cz>
- The reference source for the CVM interface
- Diagnostic and benchmark CVM clients
- A checkpassword interface CVM client
- A UNIX/POSIX system module (uses getpwnam)
- A flat-file module
- A library for client writers
- A set of libraries for module writers
Author: Bruce Guenter <bruceg@em.ca>
WWW: http://untroubled.org/cvm/
This port in needed to unbreak build of mail/mailfront and ftp/twoftpd.
- added a man-page
- installing additional docs
- fixed installing with 0666
- sample start script now works and actually contains an usefull example
- fixed install target
- added a comment (in pkg-message) about ESP "Protocol not supported"
PR: 60364
Submitted by: maintainer
