aboutsummaryrefslogtreecommitdiffstats
path: root/dns
Commit message (Collapse)AuthorAgeFilesLines
* - Update to 1.2.1wen2012-04-102-3/+3
|
* Switch to using the PORTDOCS macrodougb2012-04-052-51/+1
| | | | Feature safe: yes
* Update to version 9.6-ESV-R6, the latest from ISC, which contains numerous ↵dougb2012-04-054-78/+10
| | | | | | | | | | bug fixes. For the port, switch to using the PORTDOCS macro. Also, switch to the (identical) pkg-message in ../bind97 which was apparently missed when the other ports were converted. Feature safe: yes
* Update to version 9.7.5, the latest from ISC, which contains numerous bug fixes.dougb2012-04-053-64/+10
| | | | | | For the port, switch to using the PORTDOCS macro. Feature safe: yes
* Update to version 9.8.2, the latest from ISC, which contains numerous bug fixes.dougb2012-04-053-57/+8
| | | | | | For the port, switch to using the PORTDOCS macro. Feature safe: yes
* - Add p5-Mozilla-PublicSuffix 0.1.6sunpoet2012-04-035-0/+51
| | | | | | | | | | | | | | | | | | | | Mozilla::PublicSuffix provides a single function that returns the public suffix of a domain name by referencing a parsed copy of Mozilla's Public Suffix List. From the official website at http://publicsuffix.org: A "public suffix" is one under which Internet users can directly register names. Some examples of public suffixes are .com, .co.uk and pvt.k12.wy.us. The Public Suffix List is a list of all known public suffixes. A copy of the official list is bundled with the distribution. As the official list continues to be updated, the bundled copy will inevitably fall out of date. Therefore, if the bundled copy of found to be over thirty days old, this distribution's installer provides the option to check for a new version of the list and download/use it if one is found. WWW: http://search.cpan.org/dist/Mozilla-PublicSuffix/ Feature safe: yes
* Fix a rare configuration-dependent crash. Simon Kelley, upstreammandree2012-04-012-0/+13
| | | | | | | | | | | | | | maintainer, wrote in message <4F70361B.7080306@thekelleys.org.uk>: A bug has been found in dnsmasq 2.60 that can cause crashes. This is configuration dependent: it either crashes frequently or not at all. The configuration required is one which allows dnsmasq to receive DHCPINFORM requests for which there is no valid dhcp-range. This is rare. Adding the patch he offers for download. Feature safe: yes
* - Update to 12.0.0sunpoet2012-03-293-4/+8
| | | | | | | | | | - Pass maintainership to python@ Changes: http://twistedmatrix.com/trac/browser/tags/releases/twisted-12.0.0/twisted/names/topfiles/NEWS PR: ports/165732 Submitted by: sunpoet (myself) Approved by: Neal Nelson <neal@nicandneal.net> (maintainer) Feature safe: yes
* - Adopt portzi2012-03-231-2/+5
| | | | | | | - Add LICENSE - Add additional MASTER_SITE Feature safe: yes
* - Update to 1.3.7miwi2012-03-183-5/+5
| | | | | | PR: 166125 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl>(maintainer) Feature safe: yes
* - Final patchscheidell2012-03-173-8/+8
| | | | | | | | | | | - Add back cat pkg-message - Add knot.full.conf to ETCDIR and pkg-plist - Bump PORTREVISON PR: ports/165798 Submitted by: Leo Vandewoestijne <freebsd@dns-lab.com> (maintainer) Approved by: Leo Vandewoestijne <freebsd@dns-lab.com> (maintainer) Feature safe: yes
* Add a patch from ISC slated for 9.9.1 which fixes an assertion failuredougb2012-03-172-0/+12
| | | | Feature safe: yes
* - Unbreak for non i86 archsscheidell2012-03-162-2/+15
| | | | | | | | | - No PORTREVISION bump PR: ports/165798 Submitted by: mexas@bristol.ac.uk Approved by: Leo Vandewoestijne <freebsd@dns-lab.com> (maintainer, implicit) Feature safe: yes
* - Add ONLY_FOR_ARCHS= i386 amd64scheidell2012-03-151-0/+2
| | | | | | | | | - No PORTREVISION bump PR: ports/165787 Reported by: Anton Shterenlikht <mexas@bristol.ac.uk> Approved by: Leo Vandewoestijne <freebsd@dns-lab.com> (maintainer, implicit) Feature safe: yes
* New port: dns/knot high-performance auth-only DNS server by NIC-CZscheidell2012-03-157-0/+173
| | | | | | | PR: ports/165798 Submitted by: Leo Vandewoestijne <freebsd@dns-lab.com> Approved by: Leo Vandewoestijne <freebsd@dns-lab.com> (maintainer) Feature safe: yes
* - Revert ports/165605 as requested by portmgr@pgollucci2012-03-143-4/+25
| | | | | | | | | Note: devel/p5-B-Size and devel/p5-Devel-Arena where intentionally not restored. PR: ports/165605 Approved by: portmgr (bapt) Feature safe: yes (I sure hope so)
* Restore support for ${PERL_LEVEL} < 501000dougb2012-03-121-0/+4
| | | | Feature safe: yes
* Update to new upstream release 2.60. Notable new features are:mandree2012-03-122-6/+16
| | | | | | | | | - The LUA port option enables Lua support for DHCP lease-change scripts - DHCPv6 support - IPv6 Router Advertisement support Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG Feature safe: yes
* Fix OPTIONS broken by the perl < 5.12 sweep [1]dougb2012-03-121-4/+5
| | | | | | | | | While I'm here, reduce the number of docs variables. PR: ports/165930 [1] Submitted by: Alexey Markov <redrat@mail.ru> [1] Feature safe: yes
* - Remove ports that only work with < perl 5.12 (devel/p5-B-Size, ↵pgollucci2012-03-094-32/+5
| | | | | | | | | | | | | | | devel/p5-Devel-Arena) - Remove conditionals for PERL_LEVEL < 501200 - Remove regression-test targets b/c this will be centralized in Mk/bsd.perl.mk - Other minor cleanups RUN_DEPENDS = ${BUILD_DEPENDS} -> RUN_DEPENDS:= ${BUILD_DEPENDS} PR: ports/165605 Submitted by: pgollucci (myself) Approved by: portmgr (linimon) Exp Run by: linimon Tested by: make index
* - Update to 0.22sunpoet2012-03-082-9/+8
| | | | | | - Sort *_DEPENDS Changes: http://search.cpan.org/dist/POE-Component-Server-DNS/Changes
* - Update to 0.916culot2012-03-062-3/+3
| | | | | | Changes: http://search.cpan.org/dist/POE-Component-Resolver/CHANGES PR: ports/165718 Submitted by: Jase Thew <freebsd@beardz.net> (maintainer)
* A Perl POE component that provides non-blocking DNSBL lookupsswills2012-03-025-0/+35
| | | | WWW: http://search.cpan.org/dist/POE-Component-Client-DNSBL/
* - Update to 1.04sunpoet2012-03-013-9/+12
| | | | | | - Sort *_DEPENDS Changes: http://search.cpan.org/dist/POE-Component-Client-DNS-Recursive/Changes
* Release version of 9.9.0. Code is identical to rc4.dougb2012-03-012-7/+6
|
* - Update to 1.41swills2012-03-014-6/+33
| | | | | - Add TEST_DEPENDS to enable testing - Add patch to fix tests, submitted upstream
* - Add missing BUILD_DEPENDS and RUN_DEPENDSswills2012-02-291-2/+5
| | | | - Bump PORTREVISION due to new RUN_DEPENDS changing package
* A recursive DNS client for POEswills2012-02-295-0/+40
| | | | WWW: http://search.cpan.org/dist/POE-Component-Client-DNS-Recursive/
* - Reassign to the heapglarkin2012-02-283-3/+3
| | | | Requested by: roam (on ports-developers@)
* Return maintainership back to poolmm2012-02-261-1/+1
|
* - Update to 1.7.5zi2012-02-253-24/+9
| | | | - Add additional MASTER_SITES
* - Adopt port per maintainers requestzi2012-02-251-1/+1
| | | | Approved by: roam@
* - Adpot port per request of maintainerzi2012-02-251-1/+1
| | | | Approved by: roam@
* - Change boost-libs from BUILD_DEPENDS to LIB_DEPENDS. This fixes installing ↵scheidell2012-02-241-2/+3
| | | | | | | | | | from packages. PR: ports/165352 Reported by: Marat Bakeev <hawara@hawara.com> Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer) Approved by: gabor (mentor, implicit) Feature safe: yes
* Upgrade to rc4, rndc and dlz fixes, including DNSSEC key maintenance timerdougb2012-02-242-6/+6
|
* - Update to 20110809-2jgh2012-02-232-14/+8
| | | | | | | | - Builds now on 9.x, drop conditional - while here use include of bpm and loop on portdocs PR: ports/165388 Submitted by: maintainer, mc@hack.org
* Upgrade to 9.9.0rc3, various small bug fixesdougb2012-02-192-6/+6
|
* Add DNSCurve support for dnscache, using Michael Dempsky's patch.lx2012-02-182-6/+22
| | | | PR: ports/164833
* - Update to 1.3.6jgh2012-02-182-3/+3
| | | | | PR: ports/165216 Submitted by: maintainer, jaap at NLnetLabs.nl
* - Update to 3.2.10culot2012-02-172-3/+3
| | | | | PR: ports/165185 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* Update to version 0.68; Jan 30, 2012dougb2012-02-153-10/+18
| | | | | | | | | | | | | Lots of fixes for older Perl versions, and several other bug fixes The parse and data methods are renamed to decode and encode respectively New feature: IDN query support, requires Net::LibIDN New modules: Mailbox.pm, Text.pm For the port: * Add TEST_DEPENDS (probably won't work on its own due to CONFIGURE_ARGS) * Add an OPTION for IDN support, off by default * Use the PORTDOCS macro * Move the OPTIONS= to the more standard location
* - Add new port (dns/py-easyzone)jgh2012-02-115-0/+59
| | | | | | | | | | | | Easyzone is a package to manage the common record types of a zone file, including SOA records. This module sits on top of the dnspython package and provides a higher level abstraction for common zone file manipulation use cases. WWW: http://www.psychofx.com/easyzone/ PR: ports/164961 Submitted by: Attila Nagy <bra at fsn.hu>
* give all my p5-* ports to perl teambapt2012-02-071-1/+1
|
* - update to 2.3.6rm2012-02-062-3/+3
|
* - Update to 1.4.16sem2012-02-022-3/+3
| | | | * Bugfix release
* Update to 9.9.0rc2, which addresses mostly in-line signing bugsdougb2012-02-012-6/+6
|
* - Update to 1.3.5culot2012-01-302-4/+4
| | | | | | Changes: http://www.opendnssec.org/2012/01/23/opendnssec-1-3-5/ PR: ports/164628 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* - Fix broken binary caused by using INSTALL_SCRIPT on some architecturesavl2012-01-291-10/+11
| | | | | | | | | | | - Use INSTALL_MAN for the man files and respect NO_INSTALL_MANPAGES knob - Use INSTALL_DATA for PORTDOCS file - Hide post-extract and post-patch procedure - Bump PORTREVISION PR: ports/163942 [1] Submitted by: Garrett Cooper <yanegomi AT gmail.com> [1] Approved by: maintainer via private mail
* - Update to 1.6.12miwi2012-01-292-12/+15
| | | | | PR: 164224 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl>
* - Bump unbound library versionsem2012-01-291-2/+2
|
* By popular demand add a port for the newest BIND branch, 9.9.x. This willdougb2012-01-285-0/+546
| | | | | | | | | | | | | | | | | stay as a -devel until it's formally released, which should be soon'ish. BIND 9.9 includes a number of changes from BIND 9.8 and earlier releases, including: NXDOMAIN redirection Improved startup and reconfiguration time, especially with large numbers of authoritative zones New "inline-signing" option, allows named to sign zones completely transparently, including static zones Many other new features, especially for DNSSEC See the CHANGES file for more information on features. https://kb.isc.org/article/AA-00592
* - Fix plistsem2012-01-271-2/+2
| | | | Submitted by: dougb
* - Update to 1.4.15sem2012-01-263-8/+8
| | | | | | * Fixed a little memory leak * Couple other bugs fixed - Run unbound-checkconf before start.
* Update to 0.2mm2012-01-252-3/+3
|
* - Run unbound-anchor with unbound user. It solves a permissions problem.sem2012-01-252-2/+2
|
* - Run unbound-anchor before unbound to obtain a trust anchor for DNSSEC.sem2012-01-242-0/+9
| | | | Requested by: des
* At the moment 1385 ports use BUILD_DEPENDS= ${RUN_DEPENDS} and 450eadler2012-01-2213-13/+13
| | | | | | | | | | ports use BUILD_DEPENDS:= ${RUN_DEPENDS}. This patch fixes ports that are currently broken. This is a temporary measure until we organically stop using := or someone(s) spend a lot of time changing all the ports over. Explicit duplication > := > = and this just moves ports one step to the left Approved by: portmgr
* - Update to 1.4.10decke2012-01-172-3/+3
| | | | | PR: ports/164233 Submitted by: Takefu <takefu@airport.fm>
* Properly fix the rc.d script patch, both for the set_rcvar change,dougb2012-01-162-14/+61
| | | | | | | | | | | | and generally improve the script (most of which was unneeded). While I'm here, fix some other problems with the port: 1. Remove a dead MASTER_SITE 2. Make the rc.d script honor PREFIX 3. Install a link for /usr/local/bin/dnscheck-dispatcher so that the rc.d script has something to start Bump PORTREVISION due to package changes
* In the rc.d scripts, change assignments to rcvar to use thedougb2012-01-1428-28/+28
| | | | | | | | | | | literal name_enable wherever possible, and ${name}_enable when it's not, to prepare for the demise of set_rcvar(). In cases where I had to hand-edit unusual instances also modify formatting slightly to be more uniform (and in some cases, correct). This includes adding some $FreeBSD$ tags, and most importantly moving rcvar= to right after name= so it's clear that one is derived from the other.
* - update to 3.0.1rm2012-01-122-8/+7
| | | | | | | | | This update fixes a Denial of Service Vulnerability, which affects versions < 3.0.1 (CVE-2012-0206) Changes: http://doc.powerdns.com/changelog.html#changelog-auth-3-0-1 PR: 164019
* - Need to include bsd.port.options.mk to make OPTIONS work [1]scheidell2012-01-111-0/+3
| | | | | | PR: ports/163734 [1] Submitted by: Matthew Seaman <m.seaman@infracaninophile.co.uk> [1] Approved by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer), gabor (mentor, implicit)
* - The proper acronym for Apache Software License 2 is really AL2tabthorpe2012-01-091-1/+1
| | | | | | | | | - Thanks to crees@ for generating the initial patch PR: ports/163521 Submitted by: Pedro Giffuni <pfg apache.org> Hat: portmgr Exp run by: pav
* - Update to 1.16sunpoet2012-01-062-5/+5
| | | | Changes: http://search.cpan.org/dist/Net-DNS-ZoneFile-Fast/Changes
* - Add TEST_DEPENDS to enable testingswills2012-01-051-0/+1
|
* - Remove problematic empty variable assignmentzi2012-01-051-1/+0
| | | | Reported by: dougb
* - Add SSL to OPTIONSzi2012-01-042-5/+13
| | | | | | | - Do not force the user to run ddclient as a daemon PR: ports/163271 Submitted by: Rob Farmer <rfarmer@predatorlabs.net> (maintainer)
* - Fix build with clangavl2012-01-031-2/+3
|
* End WWW CPAN URL with a "/"ehaupt2011-12-281-1/+1
|
* Pacify portlintehaupt2011-12-271-2/+2
| | | | Feature safe: yes
* - Update to 0.9.1sunpoet2011-12-263-5/+5
| | | | | | - Fix WWW links in pkg-descr Changes: https://github.com/weppos/public_suffix_service/blob/master/CHANGELOG.md
* move contributor address => jghjgh2011-12-211-1/+1
| | | | Approved by: crees (mentor)
* - Update to 1.4.07decke2011-12-202-4/+7
| | | | | | | - Add LICENSE PR: ports/163325 Submitted by: Takefu <takefu@airport.fm>
* - Add missing BUILD_DEPENDS to silence build warningsswills2011-12-201-1/+3
| | | | - Add TEST_DEPENDS to enable testing
* - Point at the homepage consistently as defined by rubygems.orgpgollucci2011-12-201-3/+3
|
* - Update to 1.4.14sem2011-12-192-3/+3
| | | | * CVE-2011-4528 fixed
* - Update to 1.3.4miwi2011-12-184-25/+34
| | | | | PR: 163080 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* - Update to 1.2.0wen2011-12-132-6/+9
| | | | Feature safe: yes
* - Update to 1.53swills2011-12-052-3/+3
| | | | Feature safe: yes
* - Update to 2.1.3miwi2011-12-042-3/+3
| | | | | | PR: 162986 Submitted by: Armin Pirkovitsch <armin@frozen-zone.org> Feature safe: yes
* - Remove post-install check to conditionally run 'nsdc patch'zi2011-12-011-5/+0
| | | | | | Submitted by: me Approved by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) Feature safe: yes
* - Update to 3.2.9miwi2011-11-283-3/+15
| | | | | | PR: 162782 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) Feature safe: yes
* Internationalized Domain Name toolkit 2 (idnkit-2) provides usefulmiwi2011-11-245-0/+59
| | | | | | | | | | | | | | | | | | APIs (libraries) for application developers to make softwares IDNA2008-compliant, and also provides tools for system administrators to process IDNs appropriately according to IDNA2008 specification. The idnkit-2 is a toolkit revised by JPRS from the idnkit-1.0 developed by JPNIC, and it is released as an open source free software modified to comply with IDNA2008. idnkit-2 consists from its main part written in C and additional API packages for other languages (Java, Python, and Perl). WWW: http://jprs.co.jp/idn/index-e.html PR: ports/162521 Submitted by: Rafal Lesniak <fbsd@grid.einherjar.de> Feature safe: yes
* - Fix plistpav2011-11-212-2/+4
| | | | | Reported by: pointyhat Feature safe: yes
* - Update to 0.45clsung2011-11-182-3/+3
| | | | Feature safe: yes
* Add LATEST_LINK line to avoid conflict with idnkitcrees2011-11-181-0/+1
| | | | | Pointyhat: erwin --> crees Feature safe: yes
* Upgrade to the latest security patch releases to address thedougb2011-11-176-18/+18
| | | | | | | | | | | | | | | | | | | | | | | | following DDOS bug: Recursive name servers are failing with an assertion: INSIST(! dns_rdataset_isassociated(sigrdataset)) At this time it is not thought that authoritative-only servers are affected, but information about this bug is evolving rapidly. Because it may be possible to trigger this bug even on networks that do not allow untrusted users to access the recursive name servers (perhaps via specially crafted e-mail messages, and/or malicious web sites) it is recommended that ALL operators of recursive name servers upgrade immediately. For more information see: https://www.isc.org/software/bind/advisories/cve-2011-tbd which will be updated as more information becomes available. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313 Feature safe: yes
* - Fix CATEGORIES: it should be rubygems, not rubysunpoet2011-11-171-1/+1
| | | | Feature safe: yes
* Internationalized Domain Name toolkit 2 (idnkit-2) provides usefulcrees2011-11-175-0/+83
| | | | | | | | | | | | | | | | | | APIs (libraries) for application developers to make softwares IDNA2008-compliant, and also provides tools for system administrators to process IDNs appropriately according to IDNA2008 specification. The idnkit-2 is a toolkit revised by JPRS from the idnkit-1.0 developed by JPNIC, and it is released as an open source free software modified to comply with IDNA2008. idnkit-2 consists from its main part written in C and additional API packages for other languages (Java, Python, and Perl). WWW: http://jprs.co.jp/idn/index-e.html PR: ports/162520 Submitted by: Rafal Lesniak <fbsd@grid.einherjar.de> Feature safe: yes
* - Fix PLISTsunpoet2011-11-112-0/+2
| | | | | | | - Bump PORTREVISION for package change Reported by: pointyhat Feature safe: yes
* Change email for my ports to FreeBSD one.rm2011-11-111-1/+1
| | | | | Approved by: novel (mentor) Feature safe: yes
* The fact that Net::DNS no longer depends on Net::IP means thatdougb2011-11-111-0/+1
| | | | | | | | %%SITE_PERL%%/Net may be empty when this port is deinstalled, so @dirrmtry it. Poked by: pavmail Feature safe: yes
* - Update to 0.44clsung2011-11-103-5/+19
|
* Mark broken on powerpc as well as sparc64. (In fact, on all the tier-2s.)linimon2011-11-101-2/+2
| | | | Hat: portmgr
* - Add rubygem-public_suffix_service 0.9.0sunpoet2011-11-104-0/+40
| | | | | | | | | | | | | | | | | | | | Public Suffix Service is a Ruby domain name parser based on the Public Suffix List. The Public Suffix Service is a cross-vendor initiative to provide an accurate list of domain name suffixes. The Public Suffix Service is an initiative of the Mozilla Project, but is maintained as a community resource. It is available for use in any software, but was originally created to meet the needs of browser manufacturers. A "public suffix" is one under which Internet users can directly register names. Some examples of public suffixes are ".com", ".co.uk" and "pvt.k12.wy.us". The Public Suffix List is a list of all known public suffixes. WWW: http://www.simonecarletti.com/code/public_suffix_service/ WWW: https://github.com/weppos/public_suffix_service WWW: https://rubygems.org/gems/public_suffix_service
* Freshmeat is now called Freecode. Change all freshmeat.net URLs for toehaupt2011-11-101-1/+1
| | | | freecode.com (for ports@ and ehaupt@).
* - Remove WITH_FBSD10_FIX, is no longer neededmiwi2011-11-092-2/+0
|
* **** 0.67 Nov 4, 2011dougb2011-11-093-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes: ====== Suppress IO::Socket::INET(6)::peerhost usage with TCP. On some systems it doesn't work after receiving data. Prevent TCP accepts from blocking on unfinished 3-way handshakes. Named nameserver should be reachable by IPv6 too. Typo that prevented TCP traffic from being replied from the same socket as it was received on. Suppress warnings of the deprecated use of qw as parentheses in perl 5.14. Gracefully handle corrupted incoming packets in Net::DNS::Nameserver. Make Net::DNS::Resolver load even if /etc/resolv.conf is unreadable. Assembly of segmented TCP traffic. Fix documentation to reflect code behaviour where on successful packet creation, the error should be ignored. A Net::DNS::Nameserver without a NotifyHandler now responds NOTIMP to NOTIFY requests. Documentation now reflects Net::DNS::Packet construction behaviour. Replace TSIG key with the signature of the whole packet when signing a packet, even when the TSIG key is not the first in the additional section. Various typo fixes. Enhancements: ============= Allow ReplyHandlers to indicate that no answer should be returned by the Net::DNS::Nameserver. Use a class method ReplyHandler for classes inheriting from Net::DNS::Nameserver. New improved version of the check_soa script in the contrib section. Removed dependency on Net::IP Perform presentation to wire format conversion more efficiently. Manage serial numbers in SOA records in a modular and extensible way. Three modules are provided. Strictly sequential, Date Encoded and Time Encoded. A contribution from Dick Franks. Provide a configurable IdleTimeout for Net::DNS::Namserver.
* - Fix INDEXmiwi2011-11-071-1/+1
|
* - Get rid FreeBSD 6 supportmiwi2011-11-072-20/+2
|
* - add fix from upstream vendor to preserve slowdowns during (re)startohauer2011-11-072-1/+17
| | | | | | | PowerDNS with BIND backend PR: ports/160308 Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
* - Update to 1.02clsung2011-11-062-3/+3
|
* Remove ports@ ports that have been DEPRECATED for at least 1 monthdougb2011-11-026-193/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | audio/shoutcast Unfetchable; website rearranged audio/linux-shoutcast Unfetchable; website rearranged chinese/scim-chewing Does not configure converters/py-cjkcodecs Integrated into every python version in the tree databases/kpogre Does not compile deskutils/mhc Does not fetch deskutils/org-mode.el6 Does not fetch deskutils/gemcal Does not fetch devel/erlang-thrift Does not build dns/domtools Does not fetch editors/richtext Does not compile games/vultures-claw Does not fetch games/bomb Does not fetch games/lgeneral-data Bad plist games/linux-enemyterritory-jaymod Does not fetch games/xphotohunter Does not fetch graphics/gimpshop Fails to patch graphics/lightspark-devel Does not compile graphics/xmms-plazma Does not fetch graphics/py-cgkit Does not fetch, does not compile on ia64, powerpc, or sparc64 japanese/rxvt Does not fetch, fails to build with new utmpx japanese/epic4 Some distfiles do not fetch java/jde Does not fetch java/kaffe Does not fetch korean/gdick HTMLs from the Yahoo! Korea Dictionary cannot be parsed, other runtime problems korean/hanterm-xf86 Does not compile korean/stardict2-dict-kr Does not fetch lang/p5-JavaScript Does not fetch lang/TenDRA Website disappeared; last release 2006, Does not compile on recent FreeBSD-9 mail/freepops Does not build mail/itraxp Does not build misc/tellico Leaves file behind on deinstall net/gsambad Does not fetch net/nocatauth-gateway Uses a UID registered to another port net/nocatauth-server Uses a UID registered to another port net/libosip2 Does not fetch net/kmuddy Does not fetch net/netboot Does not build net-mgmt/jffnms Does not fetch net-p2p/frostwire Does not fetch net-p2p/azureus Does not fetch news/cleanscore Does not fetch news/nntpswitch Does not fetch news/p5-NewsLib Does not fetch russian/cyrproxy Does not fetch science/gerris Does not fetch security/opensaml Does not fetch sysutils/wmbattery Does not fetch sysutils/cpuburn No more public distfiles textproc/tei-guidelines-p4 Does not fetch textproc/tei-p4 Does not fetch textproc/py-hyperestraier Does not fetch textproc/tdtd.el Does not fetch textproc/tei-lite Does not fetch www/phpwiki13 Does not fetch www/p5-Apache-Scoreboard Depends on mod_perl www/p5-B-LexInfo Broken due the new mod_perl2 API www/phpwiki Does not fetch www/smb2www Apache13 is deprecated, migrate to 2.2.x+ now www/spip Checksum is changing daily www/monkey Does not fetch x11-toolkits/jdic Does not fetch x11-toolkits/py-kde Does not compile
* Fix build on FreeBSD 10.kwm2011-10-291-0/+1
| | | | Approved by: portmgr (miwi)
* - Fix build FreeBSD 10miwi2011-10-291-0/+1
|
* - Update to 0.08clsung2011-10-272-3/+3
|
* - Update MAINTAINER to ruby@ for my ruby portszi2011-10-261-1/+1
|
* The vast majority of pkg-descr files had the following format when theydougb2011-10-2411-29/+8
| | | | | | | | | | | | | | | | had both lines: Author: ... WWW: .... So standardize on that, and move them to the end of the file when necessary. Also fix some more whitespace, and remove more "signature tags" of varying forms, like -- name, etc. s/AUTHOR/Author/ A few other various formatting issues
* Remove more tags from pkg-descr files fo the form:dougb2011-10-2420-57/+0
| | | | | | | | - Name em@i.l or variations thereof. While I'm here also fix some whitespace and other formatting errors, including moving WWW: to the last line in the file.
* - Return my ports back to the pool. I was unable to make any fixes tostas2011-10-242-2/+2
| | | | | | | | my ports in the past 3 weeks while ports were broken on any 10.x machines, which means I'm unable to maintain them. So let people know that there's no available support for them until things are back to normal (which also means that anyone with spare time will be able to fix them without getting approval).
* Fix BUILD_DEPENDS (use += not =) creation in port.mandree2011-10-192-5/+5
| | | | | | | | | | | | | | | | | | | | | | Upgrade to new upstream regression fix release 2.59: Fix regression in 2.58 which caused failure to start up with some combinations of dnsmasq config and IPv6 kernel network config. Thanks to Brielle Bruns for the bug report. Improve dnsmasq's behaviour when network interfaces are still doing duplicate address detection (DAD). Previously, dnsmasq would wait up to 20 seconds at start-up for the DAD state to terminate. This is broken for bridge interfaces on recent Linux kernels, which don't start DAD until the bridge comes up, and so can take arbitrary time. The new behaviour lets dnsmasq poll for an arbitrary time whilst providing service on other interfaces. Thanks to Stephen Hemminger for pointing out the problem. Note the 2.59.tar.lzma tarball causes the startup banner to print 2.59rc1 which I deem harmless.
* As previously advertised, complete removal of vulnerable ports thatdougb2011-10-1516-1986/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | no one has stepped up to deal with: archivers/pecl-phar Vulnerable since 2011-01-13 comms/libsyncml Depends on devel/libsoup22, which is FORBIDDEN databases/mysql323-server Vulnerable since 2006-10-29 databases/mysql323-client Vulnerable since 2006-10-29 databases/mysql323-scripts Vulnerable since 2006-10-29 databases/mysql40-server Vulnerable since 2006-10-29 databases/mysql40-client Vulnerable since 2006-10-29 databases/mysql40-scripts Vulnerable since 2006-10-29 databases/p5-DBD-mysql40 Depends on databases/mysql40-server, which is FORBIDDEN deskutils/buoh Depends on devel/libsoup22, which is FORBIDDEN deskutils/libopensync-plugin-syncml Depends on comms/libsyncml, which is DEPRECATED devel/libsoup22 Vulnerable since 2011-07-28 dns/bind9-sdb-ldap Vulnerable since 2011-06-04 dns/bind9-sdb-postgresql Vulnerable since 2011-06-04 ftp/wgetpro Vulnerable since 2004-12-14 games/quake2forge Vulnerable since 2005-01-21 graphics/linux-tiff Vulnerable since 2004-10-13 japanese/mutt Vulnerable since 2007-07-29 japanese/asterisk14-sounds Depends on net/asterisk14, which is FORBIDDEN net/asterisk14 Vulnerable since 2011-06-25 net/isc-dhcp31-client Vulnerable since 2011-04-10 net/isc-dhcp31-server Vulnerable since 2011-04-10 net/isc-dhcp31-relay Vulnerable since 2011-04-10 net/asterisk-app-ldap Depends on net/asterisk14, which is FORBIDDEN net/asterisk-app-notify Depends on net/asterisk14, which is FORBIDDEN net/asterisk-oh323 Depends on net/asterisk14, which is FORBIDDEN, does not compile on sparc64 net/asterisk14-addons Depends on net/asterisk14, which is FORBIDDEN net/astfax Depends on net/asterisk14, which is FORBIDDEN net-mgmt/nagios2 Vulnerable since 2009-06-30 www/gforge Vulnerable since 2005-08-09 www/linux-flashplugin7 Vulnerable since at least 2008-05-30 www/opera-devel Vulnerable since 2010-06-25, does not fetch www/plone3 Vulnerable and unsupported upstream www/serendipity-devel Vulnerable since 2008-04-25 www/ziproxy Vulnerable since 2010-06-15 www/asterisk-gui Depends on net/asterisk14, which is FORBIDDEN x11-toolkits/linux-pango Vulnerable since 2009-05-13
* - Mark BROKEN on FreeBSD 9.X: does not compilepav2011-10-131-1/+7
| | | | | | | radns.c:164: error: redefinition of 'struct nd_opt_rdnss' radns.c:177: error: redefinition of 'struct nd_opt_dnssl' Reported by: pointyhat
* - Update to 2.01clsung2011-10-092-3/+3
|
* - Update to 0.11clsung2011-10-092-3/+3
|
* - Fix LICENSE (Artistic 1 instead of Artistic 2)culot2011-10-071-1/+1
| | | | | | | - Pet portlint(1) PR: ports/161336 Submitted by: Simon Olofsson <simon@olofsson.de>
* - Update to 1.6.11zi2011-10-072-23/+24
| | | | | | | - Fix up whitespace PR: ports/161133 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* Remove dns/nsd2 at maintainer's request:dougb2011-10-018-181/+0
| | | | | | | | | | | | This version of nsd is end of life since 2007 and unsupported. See the details at http://nlnetlabs.nl/projects/nsd/nsd-v2.html. The current version also contains a vulnerability. It is much more sensible to move to a supported version (as available in the port dns/nsd). PR: ports/161122 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* As previously advertised, remove ports that previously had beendougb2011-09-301-9/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | DEPRECATED without EXPIRATION_DATE, and the ports that depend on them. audio/mt-daapd Use audio/firefly instead databases/p5-DBIx-Class-Validation Depends on textproc/p5-FormValidator-Simple, which is DEPRECATED devel/p5-Class-Data-Accessor Please consider using p5-Class-Accessor-Grouped or p5-Moose graphics/libflash gplflash is no longer supported. Please use gnash instead graphics/flashplayer Depends on DEPRECATED graphics/libflash japanese/p5-FormValidator-Simple-Plugin-Number-Phone-JP Depends on textproc/p5-FormValidator-Simple, which is DEPRECATED net/p5-OAuth-Lite Depends on devel/p5-Class-Data-Accessor, which is DEPRECATED net-mgmt/py-snmp use net-mgmt/py-snmp4 instead net-mgmt/py-twistedSNMP Relies on net-mgmt/py-snmp, which is DEPRECATED net-p2p/gift unmaintained upstream for several years net-p2p/giftcurs unmaintained upstream for several years net-p2p/giftoxic unmaintained upstream for several years net-p2p/giftui unmaintained upstream for several years net-p2p/apollon Depends on net-p2p/gift, which is DEPRECATED textproc/p5-FormValidator-Simple Depends on devel/p5-Class-Data-Accessor, which is DEPRECATED www/flashplugin-mozilla gplflash is no longer supported. Please use graphics/gnash, \ www/p5-HTML-Widget Depends on devel/p5-Class-Data-Accessor, which is DEPRECATED www/p5-Catalyst-Plugin-AutoRestart Depends on devel/p5-Class-Data-Accessor, which is DEPRECATED www/p5-Catalyst-Example-InstantCRUD Depends on www/p5-HTML-Widget, which is DEPRECATED www/p5-Catalyst-Plugin-FormValidator-Simple Depends on textproc/p5-FormValidator-Simple, which is DEPRECATED www/p5-Catalyst-Plugin-HTML-Widget Depends on www/p5-HTML-Widget, which is DEPRECATED www/asterisk-fop Depends on www/flashplugin-mozilla which is DEPRECATED www/p5-Handel Depends on textproc/p5-FormValidator-Simple, which is DEPRECATED www/p5-DBIx-Class-HTMLWidget Depends on www/p5-HTML-Widget, which is DEPRECATED www/p5-HTML-Widget-DBIC Disappear from CPAN x11-wm/fvwm24 No longer supported by fvwm.org
* Router Advertisement DNS (radns)bapt2011-09-287-0/+141
| | | | | | | | | | | | radns is an IPv6 DNS server address autoconfiguration client. It listens for IPv6 Router Advertisements with the Recursive DNS Server (RDNSS) and the DNS Search List (DNSSL) options and stores the search list and address(es) in a file in the same syntax as resolv.conf(5). WWW: http://hack.org/mc/hacks/radns/ PR: ports/159626 Submitted by: Michael Cardell Widerkrantz <mc@hack.org>
* - Update to 2.00clsung2011-09-272-3/+3
|
* - Update to 0.43clsung2011-09-263-3/+4
|
* Mark FORBIDDEN the remaining ports that are vulnerable for more thandougb2011-09-263-0/+9
| | | | | | | | | | 2 weeks according to portaudit (ranging from 23 days to 7 years). The maintainers were notified by mail that this action would be taken on 2011-09-03. (Ports for which maintainers responded have been/will be dealt with separately.) Also mark DEPRECATED ports that rely on the FORBIDDEN ports, and a few ports that rely on those DEPRECATED ports.
* - Update to 0.10clsung2011-09-262-3/+3
|
* Incremental improvements to the rc.d script perdougb2011-09-252-18/+10
| | | | | | http://lists.freebsd.org/pipermail/cvs-all/2011-July/341217.html Approved by: maintainer timeout (2 months)
* - Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)amdmi32011-09-246-10/+8
| | | | | | | | | - Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead PR: 157936 Submitted by: myself Exp-runs by: pav Approved by: pav
* - Update to 1.3.2dhn2011-09-212-3/+3
| | | | | PR: ports/160828 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* - Chase libev shlib bumppav2011-09-201-2/+2
| | | | Pointy hat to: vsevolod
* - Change PERL_CONFIGURE to "yes" for all values less than or equal to 5.8.0+sunpoet2011-09-171-1/+1
| | | | With hat: perl
* - Update to 1.4.13sem2011-09-152-3/+3
|
* - Update to 3.0.5pav2011-09-134-56/+31
| | | | | PR: ports/159920 Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu> (maintainer)
* Fix network interface detection. Pass maintainership to submitter.ehaupt2011-09-123-23/+11
| | | | | PR: 160677 Submitted by: sthalik@tehran.lain.pl
* BIND version 9.7 with support for sdb database drivers, including ldap anddougb2011-09-109-1/+210
| | | | | | | | | postgresql. WWW: https://www.isc.org/software/bind/ PR: ports/157752 Submitted by: Josh Carroll <josh.carroll@gmail.com>
* - Fix Build on 9.xdhn2011-09-102-9/+19
| | | | | | | | - Update files/pkg-message.in [1] PR: ports/160441 Submitted by: Ruslan Mahmatkhanov <cvs-src@yandex.ru> Approved by: maintainer ([1] via mail)
* Update to 1.69.tobez2011-09-082-5/+3
| | | | Changes: http://search.cpan.org/dist/Net-Domain-TLD/Changes
* - Replace ../../authors in MASTER_SITE_SUBDIR with CPAN:CPANID macro.az2011-09-081-2/+2
| | | | | | | See http://wiki.freebsd.org/Perl for details. - Change maintainership from ports@ to perl@ for ports in this changeset. With perl@ hat
* Pass maintainership to Mikhail Tsatsenko.crees2011-09-082-2/+2
| | | | Thank you for volunteering.
* - Update to 11.0.0sbz2011-09-072-5/+8
| | | | | | | | - Update MASTER_SITES - Add LICENSE Reviewed by: lwhsu@ Approved by: jadawin@ (mentor)
* Fix IPv6 support.ale2011-09-052-1/+21
| | | | | PR: ports/160344 Submitted by: Viktor Gal <wiking@maeth.com>
* - Update to 1.1.4wen2011-09-052-3/+3
|
* 2011-09-01 deskutils/gkrellm-gtodo: No more public distfilesbapt2011-09-015-115/+0
| | | | | | | | | | | | | | | | | | | | | 2011-09-01 deskutils/xopps: No more public distfiles 2011-09-01 devel/adocman: No more public distfiles 2011-09-01 devel/bisongen: No more public distfiles 2011-09-01 devel/crow: BROKEN for more than 6 month 2011-09-01 devel/p5-Config-INI-MVP: Disappear from CPAN 2011-09-01 devel/p5-Date-Set: Disappear from CPAN 2011-09-01 devel/p5-File-FTS: No more public distfiles 2011-09-01 devel/p5-PerlMenu: No more public distfiles 2011-09-01 devel/p5-Proc-PIDFile: No more public distfiles 2011-09-01 devel/p5-UNIVERSAL-exports: Disappear from CPAN 2011-09-01 devel/ruby-rbtree: No Master Site 2011-09-01 dns/host: No more public distfiles 2011-09-01 emulators/linux-padjoy: No more public distfiles 2011-09-01 emulators/mame-extras: No more public distfiles 2011-09-01 emulators/snespp: BROKEN for more than 6 month 2011-09-01 emulators/xgs: No more public distfiles 2011-09-01 ftp/gproftpd: No more public distfiles 2011-09-01 ftp/muddleftpd: No more public distfiles
* Upgrade to version 9.8.1. Release notes at:dougb2011-09-014-20/+7
| | | | | | | | https://deepthought.isc.org/article/AA-00446/81/ or /usr/local/share/doc/bind98/CHANGES Remove the patch incorporated upstream, and add new include to plist.
* - Pet portlintsunpoet2011-08-301-3/+4
|
* Update to new upstream release 2.58mandree2011-08-272-6/+7
| | | | | | Changes: http://thekelleys.org.uk/dnsmasq/CHANGELOG Suggested by: Loic Pefferkorn.
* - change the email address I use to maintain portseadler2011-08-221-1/+1
| | | | Approved by: bapt (mentor)
* - change the email address I use to maintain portseadler2011-08-221-1/+1
| | | | Approved by: bapt (mentor)
* - Update to 1.3.1crees2011-08-164-29/+82
| | | | | | | | | - Pass maintainership to submitter (thank you for volunteering) - Add LICENSE - Unbreak -- fix dependencies PR: ports/158948 Submitted by: Jason Helfman <jhelfman@experts-exchange.com>
* - Fix building when security/polarssl is already installedswills2011-08-142-0/+110
| | | | | PR: ports/159741 Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
* Remove USE_GNOME=gnometarget from ports. It has been a empty keyword sincekwm2011-08-121-1/+1
| | | | | | | mid 2008. PR: ports/159624 Submitted by: Ruslan Mahmatkhanov <cvs-src@yandex.ru>
* - Fix/add usage of SQLITE3_CFLAGS and SQLITE3_LIBS as detected by pkg-configswills2011-08-112-0/+38
| | | | | | | - Fixes compilation on systems that don't have math/gmp installed PR: ports/159617 Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
* - Update to 3.0pav2011-08-089-249/+169
| | | | | PR: ports/159349 Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
* - Update to 0.913swills2011-08-072-5/+6
| | | | | | | | | - Make use of CPAN:USER macro - Correct LICENSE (ART10 instead of ART20) - Pet portlint(1) by reordering LICENSE section PR: ports/159314 Submitted by: Jase Thew <freebsd@beardz.net> (maintainer)
* - Mark broken with Ruby 1.9swills2011-08-061-1/+5
| | | | With hat: ruby@
* Assign to new volunteer.linimon2011-08-031-1/+1
| | | | | PR: ports/159394 Submitted by: ports@eitanadler.com
* - Update to 0.07culot2011-08-032-3/+6
| | | | | | - Add LICENSE (Artistic 1 & GPLv1) Changes: http://search.cpan.org/dist/Net-DNS-Lite/Changes
* Deprecate some ports where I can't find distfiles and upstreambapt2011-08-031-0/+3
|
* Mark BROKEN: Does not fetchbapt2011-08-021-0/+2
|
* Update to version 9.7.4 which contains various bug fixes and improvements:dougb2011-08-023-7/+13
| | | | ftp://ftp.isc.org/isc/bind9/9.7.4/RELEASE-NOTES-BIND-9.7.4.html
* Remove patch incorporated into version 9.7.4dougb2011-08-021-14/+0
|
* Update to version 9.6-ESV-R5 which contains various bug fixesdougb2011-08-023-7/+13
| | | | | | and improvements: ftp://ftp.isc.org/isc/bind9/9.6-ESV-R5/RELEASE-NOTES-BIND-9.6-ESV.html
* Remove patch incorporated into version 9.6-ESV-R5dougb2011-08-021-14/+0
|
* Update to 1.8.1 [1]zi2011-07-294-41/+18
| | | | | | | | Add LICENSE PR: ports/159199 Submitted by: Rob Farmer <rfarmer@predatorlabs.net> (maintainer) [1] Approved by: tabthorpe (mentor)
* Removed dns/dhid -- expired 25/Julycrees2011-07-2812-347/+0
| | | | 2011-07-25 dns/dhid: Unmaintained, distfile has changed with no explanation
* Now that the Java 1.3 and Java 1.4 ports are deprecated and will expire soon,linimon2011-07-211-1/+1
| | | | | | | | | | | | | | | | remove support for them from bsd.java.mk. As Jikes is not available in Java 1.5 or higher, remove it from bsd.java.mk too (suggested by hq@) and from the ports which used it (only occurences were USE_JIKES=no). Support for the Blackdown VM is also removed, as it is not available in Java 1.5 and higher. Also remove the mapping from Java 1.1-1.4 to Java 1.5+ in bsd.java.mk to detect old, broken ports; therefore bump the minimal value of JAVA_VERSION to 1.5. While here, replace static values of JAVA_VERSION in files/*.in by %%JAVA_VERSION%% . PR: ports/158969 Submitted by: rene Tested on: pointyhat-west -exp
* - Use USERS and GROUPScrees2011-07-205-45/+23
| | | | | | | | - Stop clobbering config files on deinstall PR: ports/157854 Submitted by: Leo Vandewoestijne <freebsd@dns-lab.com> Approved by: rene (mentor, implicit), maintainer timeout (14 days)
* Fix the location of the default pid file in named.8dougb2011-07-173-0/+3
| | | | | | | Problem pointed out in the PR PR: conf/155006 Submitted by: Helmut Schneider <jumper99@gmx.de>
* Mark as broken on sparc64: does not compile.linimon2011-07-161-0/+4
|
* Update my email address on the ports I maintain.zi2011-07-162-2/+2
| | | | Approved by: wxs@ (mentor)
* Update to 1.3.0jlaffaye2011-07-164-8/+75
| | | | | | PR: ports/158865 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) Approved by: bapt (mentor)
* - Update to 1.4.12 (a bugfix release)sem2011-07-153-5/+18
| | | | | - Disable GOST by default - Depend on dns/ldns
* Update to 1.22jlaffaye2011-07-112-3/+3
| | | | | | PR: ports/158785 Submitted by: Hung-Yi Chen <gaod@hychen.org> (maintainer) Approved by: bapt (mentor, implicit)
* Pass maintainership to submittercrees2011-07-101-1/+1
| | | | | PR: ports/156029 Approved by: rene (mentor, implicit), maintainer (linimon, in PR close message)
* Update to 2.3.5. Changes:linimon2011-07-104-17/+29
| | | | | | | | | | | | | - Add SPF support - Added rotation of name servers - SF Patch ID: 2795929. - Address sourceforge patch requests 2981978, 2795932 to add revlookupall and raise DNSError instead of IndexError on server fail. - Use blocking IO with timeout for TCP replies. - Don't try to close socket when never opened. - Clarify CNRI (academic-style) license. PR: ports/156029 Submited by: Ruslan Mahmatkhanov <cvs-src@yandex.ru>
* Use USERScrees2011-07-102-22/+2
| | | | | | PR: ports/157597 Submitted by: crees (me) Reviewed by: rene (mentor, implicit), maintainer timeout (sem, 34 days)
* Update to versions 9.8.0-P4, 9.7.3-P3, and 9.6-ESV-R4-P3.dougb2011-07-063-24/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ALL BIND USERS ENCOURAGED TO UPGRADE IMMEDIATELY This update addresses the following vulnerabilities: CVE-2011-2464 ============= Severity: High Exploitable: Remotely Description: A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2464 https://www.isc.org/software/bind/advisories/cve-2011-2464 CVE-2011-2465 ============= Severity: High Exploitable: Remotely Description: A defect in the affected versions of BIND could cause the "named" process to exit when queried, if the server has recursion enabled and was configured with an RPZ zone containing certain types of records. Specifically, these are any DNAME record and certain kinds of CNAME records. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2465 https://www.isc.org/software/bind/advisories/cve-2011-2465 Additional changes in this version: * If named is configured to be both authoritative and resursive and receives a recursive query for a CNAME in a zone that it is authoritative for, if that CNAME also points to a zone the server is authoritative for, the recursive part of name will not follow the CNAME change and the response will not be a complete CNAME chain. [RT #24455] Thus the patch for this bug has been removed from the port * Using Response Policy Zone (RPZ) to query a wildcard CNAME label with QUERY type SIG/RRSIG, it can cause named to crash. Fix is query type independant. [RT #24715] [CVE-2011-1907]
* Update to versions 9.7.3-P3, and 9.6-ESV-R4-P3.dougb2011-07-064-12/+12
| | | | | | | | | | | | | | | | | | | | | | ALL BIND USERS ARE ENCOURAGED TO UPGRADE IMMEDIATELY This update addresses the following vulnerability: CVE-2011-2464 ============= Severity: High Exploitable: Remotely Description: A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect affects both recursive and authoritative servers. The code location of the defect makes it impossible to protect BIND using ACLs configured within named.conf or by disabling any features at compile-time or run-time. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2464 https://www.isc.org/software/bind/advisories/cve-2011-2464
* - Use USERS and GROUPScrees2011-07-052-34/+2
| | | | | PR: ports/157601 Approved by: rene (mentor, implicit)
* - Use USERS and GROUPScrees2011-07-033-57/+2
| | | | | | PR: ports/157587 Submitted by: Chris Rees <utisoft@gmail.com> Approved by: rene (mentor)
* - Update to 1.4.11sem2011-07-012-3/+3
|
* Fix clang build, using REINPLACE_CMD to change gcc to ${CC}.mandree2011-07-013-1/+23
| | | | | Add missing #include <string.h> in dns.c (adds files/patch-dns.c) Fix obvious format string error in html.c (adds files/patch-html.c)
* - Use USERS and GROUPScrees2011-06-282-34/+3
| | | | | | PR: ports/157578 Submitted by: Chris Rees (utisoft@gmail.com) Approved by: tabthorpe (co-mentor)
* - Update to 0.111300sunpoet2011-06-262-5/+3
| | | | | | | Changes: http://search.cpan.org/dist/Net-Amazon-Route53/Changes PR: ports/158288 Submitted by: Jin-Sih Lin <linpct@gmail.com> Approved by: Jui-Nan Lin <jnlin@csie.nctu.edu.tw> (maintainer)
* - Deprecate; Unmaintained, distfile has changed with no explanation, uses pw ↵crees2011-06-261-0/+3
| | | | | | | | | directly Expires in one month PR: ports/157603 Approved by: rene (mentor)
* - Cannoicalize the WWW: [again],pgollucci2011-06-241-1/+1
| | | | - Save redirects s/http/https/ for github
* Fix build with clang.nox2011-06-231-4/+22
| | | | | PR: ports/158180 Submitted by: Niclas Zeising <niclas.zeising@gmail.com>
* - Update to 20110502.wxs2011-06-222-3/+5
| | | | | | | | - Add LICENSE. PR: ports/157675 Submitted by: Ryan Steinmetz <rpsfa@rit.edu> Approved by: maintainer timeout
* - Replace ../../authors in MASTER_SITE_SUBDIR with CPAN:CPANID macro.az2011-06-213-3/+6
| | | | | | | See http://wiki.freebsd.org/Perl for details. - Change maintainership from ports@ to perl@ for ports in this changeset. - Remove MD5 checksum - Utilize CPAN macro
* - Replace ../../authors in MASTER_SITE_SUBDIR with CPAN:CPANID macro.az2011-06-201-1/+1
| | | | | | See http://wiki.freebsd.org/Perl for details. - Change maintainership from ports@ to perl@ for ports in this changeset. - Remove MD5 checksum
* Net::DNS is a pure Ruby DNS library, with a cleanswills2011-06-204-0/+28
| | | | | | | | | OO interface and an extensible API WWW: http://rubygems.org/gems/net-dns PR: ports/158012 Submitted by: rpsfa at rit.edu
* Update to 1.2.1ehaupt2011-06-182-3/+3
|
* ftp master site no more availablebapt2011-06-161-2/+1
|
* Update my e-mail to my FreeBSD one.jlaffaye2011-06-091-1/+1
| | | | | | While I am here, use GOOGLE_CODE instead of ${MASTER_SITE_GOOGLE_CODE} Approved by: bapt (mentor)
* - Update to 1.01swills2011-06-052-3/+4
| | | | | | - Add build depend to silence build warning Changes: http://search.cpan.org/dist/Net-Domain-ExpireDate/Changes
* Net::DNS::Check is a collection of OOP Perl modules allowing easyculot2011-06-015-0/+81
| | | | | | | | | implementation of applications for domain name checking. WWW: http://search.cpan.org/dist/Net-DNS-Check/ PR: ports/157445 Submitted by: Ryan Steinmetz <rpsfa@rit.edu>
* - Update to 1.6.10wen2011-06-013-4/+6
| | | | | PR: ports/157478 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* BIND 9.4.x is now EOLdougb2011-06-019-579/+0
|
* Fix PKGVERSION for 9.7.3-P1dougb2011-05-281-1/+1
| | | | Submitted by: Craig Leres <leres@ee.lbl.gov>
* Upgrade to 9.8.0-P2, which addresses the following issues:dougb2011-05-284-6/+38
| | | | | | | | | | | | | | | | | | | | 1. Very large RRSIG RRsets included in a negative cache can trigger an assertion failure that will crash named (BIND 9 DNS) due to an off-by-one error in a buffer size check. This bug affects all resolving name servers, whether DNSSEC validation is enabled or not, on all BIND versions prior to today. There is a possibility of malicious exploitation of this bug by remote users. 2. Named could fail to validate zones listed in a DLV that validated insecure without using DLV and had DS records in the parent zone. Add a patch provided by ru@ and confirmed by ISC to fix a crash at shutdown time when a SIG(0) key is being used. Add a patch from ISC that will be in 9.8.1 to handle intermittent failure of recursive queries involving CNAMEs and previously cached responses.
* Upgrade to 9.6-ESV-R4-P1 and 9.7.3-P1, which address the following issues:dougb2011-05-286-11/+39
| | | | | | | | | | | | | | | | 1. Very large RRSIG RRsets included in a negative cache can trigger an assertion failure that will crash named (BIND 9 DNS) due to an off-by-one error in a buffer size check. This bug affects all resolving name servers, whether DNSSEC validation is enabled or not, on all BIND versions prior to today. There is a possibility of malicious exploitation of this bug by remote users. 2. Named could fail to validate zones listed in a DLV that validated insecure without using DLV and had DS records in the parent zone. Add a patch provided by ru@ and confirmed by ISC to fix a crash at shutdown time when a SIG(0) key is being used.
* Upgrade to 9.4-ESV-R4-P1, which addresses the following issues:dougb2011-05-282-6/+6
| | | | | | | | | | | | | 1. Very large RRSIG RRsets included in a negative cache can trigger an assertion failure that will crash named (BIND 9 DNS) due to an off-by-one error in a buffer size check. This bug affects all resolving name servers, whether DNSSEC validation is enabled or not, on all BIND versions prior to today. There is a possibility of malicious exploitation of this bug by remote users. 2. Named could fail to validate zones listed in a DLV that validated insecure without using DLV and had DS records in the parent zone.
* - Update to 1.4.10sem2011-05-252-3/+3
| | | | * CVE-2011-1922 VU#531342 fixed
* - Add licensesylvio2011-05-211-0/+2
|
* Miscellaneous cleanups and fixes, some of the windowmaker stuffdougb2011-05-169-9/+9
| | | | gracefully provided by danfe.
* adsuck is a DNS relay that returns NXdomain for hosts that match names in abapt2011-05-0710-0/+140
| | | | | | | | | blacklist for quick and non browser plugin based ad blocking. WWW: http://opensource.conformal.com/wiki/Adsuck PR: ports/156644 Submitted by: Philippe Pepiot <phil@philpep.org>
* Upgrade to version 9.8.0-P1:dougb2011-05-072-7/+7
| | | | | | | | | Certain response policy zone configurations could trigger an INSIST when receiving a query of type RRSIG. https://www.isc.org/CVE-2011-1907 This vulnerability is only possible if you have enable the new RPZ feature.
* - Update to 1.1.0wen2011-05-052-24/+34
|
* - Update to 0.912wen2011-05-053-6/+12
| | | | | | | - Add LICENSE PR: ports/156804 Submitted by: Jase Thew <freebsd@beardz.net> (maintainer)
* - Mark CONFLICTS between devel/py-boto-devel and dns/p5-Net-Amazon-Route53sunpoet2011-05-031-0/+3
| | | | - Bump PORTREVISION
* - Add p5-Net-Amazon-Route53 0.110310sunpoet2011-04-275-0/+54
| | | | | | | | | | | | The Net::Amazon::Route53 Perl module allows you to manage DNS records for your domains via Amazon's Route 53 service. For more information, visit http://aws.amazon.com/route53/ WWW: http://search.cpan.org/dist/Net-Amazon-Route53/ PR: ports/156611, ports/156661 Submitted by: Jui-Nan Lin <jnlin@csie.nctu.edu.tw>
* Update to 1.2.0ehaupt2011-04-173-10/+31
|
* Add an option for installing python bindings.ehaupt2011-04-172-2/+21
| | | | | PR: 156419 Approved by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* - Add missing USERS/GROUPS for binddecke2011-04-122-4/+33
| | | | | | | - Improve ident for syslog messages to only show "maradns:" instead of "/usr/local/sbin/maradns:" - Bump PORTREVISION Submitted by: n j <nino80@gmail.com>
* - Update to 1.9.4miwi2011-04-122-3/+3
| | | | | | PR: 156069 Submitted by: Ruslan Mahmatkhanov <cvs-src@yandex.ru> Approved by: maintainer
* This is Net::Bonjour, a set of perl modules to utilize DNS for servicebapt2011-04-065-0/+51
| | | | | | | discovery. This method of service discovery is branded as Bonjour by Apple Computer. WWW: http://search.cpan.org/dist/Net-Bonjour/
* Garbage collect expired portsrene2011-04-054-71/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 2011-04-01 accessibility/linux-f8-atk: End of Life since Jan 7, 2009 2011-04-01 archivers/linux-f8-ucl: End of Life since Jan 7, 2009 2011-04-01 archivers/linux-f8-upx: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-alsa-lib: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-arts: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-esound: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-freealut: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-libaudiofile: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-libogg: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-libvorbis: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-mikmod: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-nas-libs: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-openal: End of Life since Jan 7, 2009 2011-04-01 audio/linux-f8-sdl_mixer: End of Life since Jan 7, 2009 2011-04-01 databases/linux-f8-sqlite3: End of Life since Jan 7, 2009 2011-04-02 databases/postgresql81-server: EOL see http://wiki.postgresql.org/wiki/PostgreSQL_Release_Support_Policy 2011-04-02 databases/postgresql73-server: EOL see http://wiki.postgresql.org/wiki/PostgreSQL_Release_Support_Policy 2011-04-02 databases/postgresql74-server: EOL see http://wiki.postgresql.org/wiki/PostgreSQL_Release_Support_Policy 2011-04-02 databases/postgresql80-server: EOL see http://wiki.postgresql.org/wiki/PostgreSQL_Release_Support_Policy 2011-04-01 devel/linux-f8-libglade: End of Life since Jan 7, 2009 2011-04-01 devel/linux-f8-sdl12: End of Life since Jan 7, 2009 2011-04-01 devel/linux-f8-allegro: End of Life since Jan 7, 2009 2011-04-01 devel/linux-f8-libsigc++20: End of Life since Jan 7, 2009 2011-04-01 devel/linux-f8-libglade2: End of Life since Jan 7, 2009 2011-04-01 devel/linux-f8-nspr: End of Life since Jan 7, 2009 2011-04-01 dns/linux-f8-libidn: End of Life since Jan 7, 2009 2011-04-01 emulators/linux_base-f8: End of Life since Jan 7, 2009 2011-04-01 emulators/linux_base-f9: End of Life since Jul 10, 2009 2011-04-01 emulators/linux_base-fc6: End of Life since December 7, 2007 2011-04-01 emulators/linux_base-f7: End of Life since June 13, 2008 2011-04-01 ftp/linux-f8-curl: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-sdl_image: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-ungif: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-imlib: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-cairo: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-dri: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-gdk-pixbuf: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-jpeg: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-png: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-libGLU: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-libmng: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-png10: End of Life since Jan 7, 2009 2011-04-01 graphics/linux-f8-tiff: End of Life since Jan 7, 2009 2011-04-01 lang/linux-f8-libg2c: End of Life since Jan 7, 2009 2011-04-01 lang/linux-f8-tcl84: End of Life since Jan 7, 2009 2011-04-01 multimedia/linux-f8-libtheora: End of Life since Jan 7, 2009 2011-04-02 net-p2p/dcd: No fetch sources and looks like project abandoned 2011-03-31 net/straw: abandoned upstream and does not work with python 2.6+ 2011-04-01 security/linux-f8-libssh2: End of Life since Jan 7, 2009 2011-04-01 security/linux-f8-nss: End of Life since Jan 7, 2009 2011-04-01 security/linux-f8-openssl: End of Life since Jan 7, 2009 2011-04-01 textproc/linux-f8-libxml2: End of Life since Jan 7, 2009 2011-04-01 textproc/linux-f8-scim-gtk: End of Life since Jan 7, 2009 2011-04-01 textproc/linux-f8-scim-libs: End of Life since Jan 7, 2009 2011-04-01 textproc/linux-f8-expat: End of Life since Jan 7, 2009 2011-04-01 textproc/linux-f8-libxml: End of Life since Jan 7, 2009 2011-04-01 textproc/linux-f8-aspell: End of Life since Jan 7, 2009 2011-04-01 www/linux-f8-flashplugin10: End of Life since Jan 7, 2009 2011-03-30 www/mediawiki112: abandoned upstream 2011-03-30 www/mediawiki113: abandoned upstream 2011-03-30 www/mediawiki114: abandoned upstream 2011-03-30 www/mediawiki16: abandoned upstream 2011-04-01 x11-fonts/linux-f8-fontconfig: End of Life since Jan 7, 2009 2011-03-01 x11-themes/gnome-icons-cool-gorilla: "no mastersite" 2011-04-01 x11-themes/linux-f8-hicolor-icon-theme: End of Life since Jan 7, 2009 2011-04-01 x11-toolkits/linux-f8-gtk: End of Life since Jan 7, 2009 2011-04-01 x11-toolkits/linux-f8-gtk2: End of Life since Jan 7, 2009 2011-04-01 x11-toolkits/linux-f8-openmotif: End of Life since Jan 7, 2009 2011-04-01 x11-toolkits/linux-f8-pango: End of Life since Jan 7, 2009 2011-04-01 x11-toolkits/linux-f8-qt33: End of Life since Jan 7, 2009 2011-04-01 x11-toolkits/linux-f8-tk84: End of Life since Jan 7, 2009 2011-04-01 x11/linux-f8-xorg-libs: End of Life since Jan 7, 2009
* - change maintainers mail addressohauer2011-03-312-2/+2
| | | | Appoved by maintainer via mail
* - update to version 3.2.8ohauer2011-03-302-4/+4
| | | | | | | | | | | | | | | | | | Bugfixes: Do setusercontext before chroot, otherwise login.conf etc. are required inside chroot. Bugfix #216: Fix leak of compressiontable when the domain table increases in size. Bugfix #348: Don't include header/library path if OpenSSL is in /usr. Bugfix #350: Refused notifies should log client ip. Bugfix #352: Fix hard coded paths in man pages. Bugfix #354: The realclean target deletes a bit too much. Bugfix #357, make xfrd quit with many zones. Bugfix #362: outgoing-interface and v4 vs. v6 leads to spurious warning messages. Bugfix #363: nsd-checkconf -v does not print outgoing-interface ok. Bugfix: nsd-checkconf -o outgoing-interface omits NOKEY. Undo Bugfix #235: Don't skip dname compression, messes up packets that do need compression. PR: ports/155785 Submitted by: Jaap Akkerhuis <jaap _at_ nlnetlabs.nl> (maintainer)
* - Pass -Dbsd_with_getifaddrs to CFLAGS in order to get a correct networkehaupt2011-03-295-58/+11
| | | | | | | interface list [1] PR: 155974 [1] Submitted by: David Naylor <naylor.b.david@gmail.com> [1]
* - Mark BROKEN on 9.X: does not configurepav2011-03-261-1/+7
| | | | Reported by: pointyhat
* - update to 1.15bapt2011-03-252-3/+3
|
* - Update to 1.2.1dhn2011-03-254-9/+25
| | | | | PR: ports/155889 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* - Update to 1.4.9sem2011-03-242-3/+3
|
* - Add LICENSE knob(s)mm2011-03-231-0/+3
|
* Remove some leftover files from a long time ago.edwin2011-03-235-624/+0
|
* Update to version 134edwin2011-03-233-27/+5
| | | | Submitted by: "Wessels, Duane" <dwessels@verisign.com>
* Fix distinfomm2011-03-231-2/+2
| | | | Reported by: pointyhat (pav)
* - Update to 0.1 [1]mm2011-03-221-7/+5
| | | | | | | - Add LICENSE information (GPLv2) PR: ports/155191 [1] Submitted by: Ruslan Mahmatkhanov <cvs-src@yandex.ru> [1]
* - Get Rid MD5 supportmiwi2011-03-20116-132/+1
|
* - Update to 1.52clsung2011-03-202-3/+3
|
* Bump PORTREVISION for ports linking to default libmysqlclient.ale2011-03-192-1/+2
|
* Update my MAINTAINER address to sbz at FreeBSD.org.sbz2011-03-181-1/+1
| | | | Approved by: jadawin@ (mentor)
* - Update to 0.06miwi2011-03-182-4/+4
| | | | | PR: 155630 Submitted by: maintainer
* - Update to 1.6.9wen2011-03-172-3/+3
| | | | | PR: ports/155613 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
* update MASTER_SITESbapt2011-03-162-2/+1
| | | | while here remove md5
* - Update to 2.1.1wen2011-03-142-4/+3
|
* - Bump PORTREVISION to chase the update of dns/libidnwen2011-03-142-2/+3
|
* - Update to 1.19wen2011-03-143-7/+5
| | | | | PR: ports/153499 Submitted by: Hung-Yi Chen <gaod@hychen.org> (maintainer)
* - fix with non-standard PREFIX/LOCALBASEmakc2011-03-132-3/+26
| | | | | | | | - fix error with undefined variables on some services. This is upstream ticket #2: http://sourceforge.net/apps/trac/ddclient/ticket/2 PR: ports/155486 Submitted by: Rob Farmer (maintainer)
* - Pass maintainership to new volunteerwen2011-03-101-1/+1
| | | | Submitted by: rfarmer@predatorlabs.net (new maintainer, via email)
* - Reset maintainer [1]wen2011-03-102-2/+1
| | | | | | | - Drop MD5 PR: ports/155424 [1] Submitted by: Radek Kozlowski <radek@raadradd.com> (previous maintainer) [1]
* - Add missing filesmiwi2011-03-081-1/+2
| | | | PR: 155351
* CurveDNS is a forwarding nameserver adding DNSCurve to DNS,miwi2011-03-049-0/+146
| | | | | | | | | | and it's the first publicly released forwarding implementation that implements the DNSCurve protocol. WWW: http://curvedns.on2it.net/ PR: ports/153881 Submitted by: Leo Vandewoestijne <freebsd at dns-lab.com>
* This is 9.8.0, the first release version in the 9.8 series.dougb2011-03-022-8/+7
| | | | | | | | | | | | | | | | | | | | | New features versus previous release candidates include: * There is a new option in dig, +onesoa, that allows the final SOA record in an AXFR response to be suppressed. [RT #20929 * There is additional information displayed in the recursing log (qtype, qclass, qid and whether we are following the original name). [RT #22043] * Added option 'resolver-query-timeout' in named.conf (max query timeout in seconds) to set a different value than the default (30 seconds). A value of 0 means 'use the compiled in default'; anything longer than 30 will be silently set to 30. [RT #22852] * For Mac OS X, you can now have the test interfaces used during "make test" stay beyond reboot. See bin/tests/system/README for details. There are also numerous bug fixes and enhancements. See http://ftp.isc.org/isc/bind9/9.8.0/RELEASE-NOTES-BIND-9.8.html for more information.
* Deprecate all non-default Fedora based linux_base respectively linux-fx-*netchild2011-02-281-0/+3
| | | | | | | | | ports. All of them are End of Life (no security updates) since a loooong time. As they are not the default, I decided to go with a short expiration date (one month). The maintainer of the few ports which depend upon the f8 infrastructure is informed to take action (update to the default f10 infrastructure, or to deprecate).
* Add p5-POE-Component-Resolver 0.911, a non-blocking getaddrinfo()skv2011-02-275-0/+50
| | | | resolver.
* - Update to 1.0.7miwi2011-02-262-4/+4
|
* Chase after net/openldap24-server update.delphij2011-02-252-1/+2
| | | | Reminded by: miwi
* - Move over to py25+ or abovemiwi2011-02-253-3/+4
| | | | - While here kick md5 support
* Update dnsmasq rc.d script again (sorry for the churn with portrev. 1)mandree2011-02-233-16/+69
| | | | | | | | | | | | | | | | | | | | | - Start before named, to unbreak named_wait if /etc/resolv.conf points to dnsmasq (when named is the resolver that dnsmasq forwards to). Is also more robust/maintenance friendly if other scripts depend on "named". - Track if the configuration has changed since start, and upgrade reload to restart by default in that case (can be disabled with dnsmasq_restart="NO" in /etc/rc.conf[.local]), to work around dnsmasq shortcoming - Add a "logstats" action to the rcscript, and document it. - Document the "reload" action and the new dnsmasq_restart variable. - Properly quote variable expansions. - Enhance pkg-message to point to the rcfile for feature documentation. - Bump PORTREVISION to 2.
* Change rc.d file to ensure proper startup order:mandree2011-02-232-3/+13
| | | | | | | - depend on named, in case dnsmasq uses named as resolver - start before ntpdate and rpcbase (which require named). Bump PORTREVISION.