From d688086844dbc08c7206bc04eeaf9b236fa33c7a Mon Sep 17 00:00:00 2001 From: dinoex Date: Sat, 31 Mar 2001 11:36:43 +0000 Subject: PGP (Pretty Good Privacy) is a public key encryption pack- age to protect E-mail and data files. It lets you commu- nicate securely with people you've never met, with no secure channels needed for prior exchange of keys. It's well featured and fast, with sophisticated key management, digital signatures, data compression, and good ergonomic design. Contributors: Matthias Bruestle for the myetsid feature. Lutz Donnerhacke for the pgp2.6.3in development. Ingmar Camphausen, Thomas Roessler, a.o. for extensive testing. WWW: http://www.in-ca.individual.net/ FTP: ftp://ftp.fu-berlin.de/doc/IN/IN-CA/pgp/pgp263in/files/pgp263in.changes --- security/Makefile | 1 + security/pgpin/Makefile | 49 +++++++++++++++++++ security/pgpin/distinfo | 1 + security/pgpin/files/CHANGES | 94 +++++++++++++++++++++++++++++++++++++ security/pgpin/files/patch-fileio.h | 11 +++++ security/pgpin/files/patch-makefile | 28 +++++++++++ security/pgpin/pkg-comment | 1 + security/pgpin/pkg-descr | 15 ++++++ security/pgpin/pkg-plist | 12 +++++ 9 files changed, 212 insertions(+) create mode 100644 security/pgpin/Makefile create mode 100644 security/pgpin/distinfo create mode 100644 security/pgpin/files/CHANGES create mode 100644 security/pgpin/files/patch-fileio.h create mode 100644 security/pgpin/files/patch-makefile create mode 100644 security/pgpin/pkg-comment create mode 100644 security/pgpin/pkg-descr create mode 100644 security/pgpin/pkg-plist (limited to 'security') diff --git a/security/Makefile b/security/Makefile index f362076db33..e267de11fa1 100644 --- a/security/Makefile +++ b/security/Makefile @@ -113,6 +113,7 @@ SUBDIR += pgp6 SUBDIR += pgpdump SUBDIR += pgpgpg + SUBDIR += pgpin SUBDIR += pidentd SUBDIR += pks SUBDIR += pktsuckers diff --git a/security/pgpin/Makefile b/security/pgpin/Makefile new file mode 100644 index 00000000000..22f4016aeca --- /dev/null +++ b/security/pgpin/Makefile @@ -0,0 +1,49 @@ +# New ports collection makefile for: pgpin +# Date created: 23 Mar 2001 +# Whom: dirk.meyer@dinoex.sub.org +# +# $FreeBSD$ +# + +PORTNAME= pgpin +PORTVERSION= 010322 +CATEGORIES= security +MASTER_SITES= ftp://ftp.fu-berlin.de/doc/IN/IN-CA/pgp/pgp263in/ +DISTNAME= pgp263in010322 +EXTRACT_SUFX= .tgz + +MAINTAINER= dirk.meyer@dinoex.sub.org + +WRKSRC= ${WRKDIR}/pgp263in/src + +MAKEFILE= makefile +ALL_TARGET= freebsd-${MACHINE_ARCH} OS_CFLAGS="${CFLAGS}" +PGPLIB= ${PREFIX}/lib/pgpin +MAN1= pgpin.1 + +do-install: + cd ${WRKSRC}; ${INSTALL_PROGRAM} -c -o bin -g bin -m 555 \ + pgp ${PREFIX}/bin/pgpin + cd ${WRKSRC}/../doc; \ + ${INSTALL_MAN} -c -o bin -g bin -m 444 \ + pgp.1 ${PREFIX}/man/man1/pgpin.1 + -${MKDIR} ${PGPLIB} + ${CHMOD} 555 ${PGPLIB} + ${INSTALL_DATA} -c -o bin -g bin -m 444 \ + ${FILESDIR}/CHANGES ${PGPLIB} + cd ${WRKSRC}/..; \ + ${INSTALL_DATA} -c -o bin -g bin -m 444 \ + pgp.hlp doc/pgpdoc1.txt doc/pgpdoc2.txt ${PGPLIB}; \ + ${INSTALL_DATA} -c -o bin -g bin -m 444 \ + language.txt ${PGPLIB}/language.txt-dist; \ + [ -f ${PGPLIB}/language.txt ] || \ + ${INSTALL_DATA} -c -o bin -g bin -m 444 \ + language.txt ${PGPLIB}; \ + ${INSTALL_DATA} -c -o bin -g bin -m 444 \ + config.txt ${PGPLIB}/config.txt-dist; \ + [ -f ${PGPLIB}/config.txt ] || \ + ${INSTALL_DATA} -c -o bin -g bin -m 444 \ + config.txt ${PGPLIB} + -${PREFIX}/bin/pgpin > /dev/null 2>&1 # update .idx file + +.include diff --git a/security/pgpin/distinfo b/security/pgpin/distinfo new file mode 100644 index 00000000000..d2430377c7f --- /dev/null +++ b/security/pgpin/distinfo @@ -0,0 +1 @@ +MD5 (pgp263in010322.tgz) = 4e2a471e12d6735f63cf2e9c661a3bea diff --git a/security/pgpin/files/CHANGES b/security/pgpin/files/CHANGES new file mode 100644 index 00000000000..db78bb936a4 --- /dev/null +++ b/security/pgpin/files/CHANGES @@ -0,0 +1,94 @@ +20010322: + - Protect against the Czech attack of modified secret key files. (Cool!) + - Protect against MPI computing errors. (more programm errors than Bellcore) + +20001006: + - Alter the ARJ signature to the current version. + - Prevent automatic renaming of command line arguments + used for file names (+batchmode). + +199990902: + - Up to 32bit KeyID can be selected. + - Allow batchmode to revoke certificates (and keys :-{). + +199971007: + - Bugfix of the previous bugfix. I'm an idiot unable to program in C. + - language.txt (German part) brushed up. + +199971006: + - Bugfix of ordinary PGP: -kc failed to deal correctly w/ DSS signatures. + +199970905: + - Bugfix: Compile under MSDOS and OSF. + - Corrected some spelling errors. + - ESC is plain text, too. + - Somewhat more verbose output. + - 8192 bit RSA support + +199970828: + - Certificates of unknown pubkeys are suppressed. + (New Option UNKNOWN_CERTS (On/Off)) + - pgp -kvv shows the quality of user identification. + +199970729: + - Bugfix: Validity period is read correctly from the key ring. + +199970529: + - Certificates from revoked keys are invalid. + +199970513: + - Certificates from unknown users are handled correctly. + +199970512: + - Certificate revocations are correctly handled and displayed. + +199970418: + - support of a separate "encrypt to self" id + - certificates signed with compromised keys are invalid now + - support of certificate revocation certificates: + You can revoke your ID without loosing your key. + +199970404: + - try the corresponding key, if the key of the wrong purpose is used, + so 'pgp -se file myname -u myname' will automatically choose the right + keys. + - SIGN keys can be used to decrypt, but PGP will warn the user. + - The language modul could not distinguish two strings, so changed them. + - Recommendations for key generating changed: Larger keys, userid options. + +199970403: + - 2.6.3ia patch included + - bugfixes + +199970402: + - While certifying a key the certifier can specify how (s)he checked + the user's real identity. (This question is quite different to + the question whether the key was presented by this person or not!) + - SIGN keys cannot encrypt. + - SIGN keys cannot decrypt (so you can't read it!) + - ENCR keys cannot sign or certify. + - Signatures or certificates by ENCR keys are invalid. (even self signed) + - Signatures or certificates are invalid, if their timestamp is not covered + by the validity period of the public key. (too young or too old) + - Expired keys are kept but marked. (same for keys valid in future) + - Purpose and expire of a key are set while generating the key. + It is derived from the userid as described in the policy of the IN-CH. + +References: + http://www.in-ca.individual.net/ + ftp://ftp.iks-jena.de/pub/mitarb/lutz/crypt/software/pgp/ + Diffs and full source (tgz) + *.asc are detached signatures. + +Contributors: + Matthias Bruestle for the myetsid feature. + Lutz Donnerhacke for the pgp2.6.3in development. + Ingmar Camphausen, Thomas Roessler, a.o. for extensive testing. + +Todo: + - New trust models for revoked certificates. + - Time stamping features (using the Eternity Logfile: + http://www.iks-jena.de/mitarb/lutz/logfile/) + - Support of EBP and PGP5.0 features. + - Better internal key management for faster access. + - Direct support for keyserver issues. diff --git a/security/pgpin/files/patch-fileio.h b/security/pgpin/files/patch-fileio.h new file mode 100644 index 00000000000..a745a57ae0b --- /dev/null +++ b/security/pgpin/files/patch-fileio.h @@ -0,0 +1,11 @@ +--- fileio.h.orig Mon Jan 12 09:13:04 1998 ++++ fileio.h Fri Mar 23 13:55:39 2001 +@@ -28,7 +28,7 @@ + #ifdef LINUX + # define PGP_SYSTEM_DIR "/usr/lib/pgp/" + #else +-# define PGP_SYSTEM_DIR "/usr/local/lib/pgp/" ++# define PGP_SYSTEM_DIR "/usr/local/lib/pgpin/" + #endif + #define FOPRBIN "r" + #define FOPRTXT "r" diff --git a/security/pgpin/files/patch-makefile b/security/pgpin/files/patch-makefile new file mode 100644 index 00000000000..44b3734895a --- /dev/null +++ b/security/pgpin/files/patch-makefile @@ -0,0 +1,28 @@ +--- makefile.orig Mon Jan 12 09:15:06 1998 ++++ makefile Fri Mar 23 13:41:03 2001 +@@ -79,7 +79,7 @@ + @echo "where can be:" + @echo " 386bsd, 3b1, 3b1_asm, aix370, aix386, amix-68k-gcc, apollo," + @echo " apollo-gcc, atari,aux(*), aux-gcc, bsd, bsdgcc, convexos," +- @echo " dgux, djgpp, encore, freebsd, hpux-68k(*), hpux-68k-ansi," ++ @echo " dgux, djgpp, encore, freebsd-{alpha,i386}, hpux-68k(*), hpux-68k-ansi," + @echo " hpux-68k-gcc, hpux-pa(*), hpux-pa-ansi, hpux-pa-gcc, hpux9-pa-ansi," + @echo " irix, irix_asm, isc, isc_asm, linux, linux-aout, linux-68k," + @echo " machten, mach_386, mips-ultrix, netbsd, netbsd_68k, newsasm," +@@ -175,9 +175,14 @@ + $(MAKE) all CC=gcc LD=gcc \ + CFLAGS="$(RSAINCDIR) -O2 -DHIGHFIRST -DUNIX -DPORTABLE -DIDEA32" + +-freebsd: ++freebsd-i386: + $(MAKE) all LD="$(CC) -s" OBJS_EXT="_80386.o _zmatch.o" \ +- CFLAGS="$(RSAINCDIR) -O2 -fno-strength-reduce -DUNIX -DIDEA32 -DASM \ ++ CFLAGS="$(RSAINCDIR) $(OS_CFLAGS) -DUNIX -DIDEA32 -DASM \ ++ -DMAX_NAMELEN=255" ++ ++freebsd-alpha: ++ $(MAKE) all LD="$(CC) -s" \ ++ CFLAGS="$(RSAINCDIR) $(OS_CFLAGS) -DPORTABLE -DUNIX -DIDEA32 \ + -DMAX_NAMELEN=255" + + 386bsd: diff --git a/security/pgpin/pkg-comment b/security/pgpin/pkg-comment new file mode 100644 index 00000000000..a4ebf6c23f1 --- /dev/null +++ b/security/pgpin/pkg-comment @@ -0,0 +1 @@ +PGP International version - improved for use in IN-CA diff --git a/security/pgpin/pkg-descr b/security/pgpin/pkg-descr new file mode 100644 index 00000000000..de21590fb4f --- /dev/null +++ b/security/pgpin/pkg-descr @@ -0,0 +1,15 @@ +PGP (Pretty Good Privacy) is a public key encryption pack- +age to protect E-mail and data files. It lets you commu- +nicate securely with people you've never met, with no +secure channels needed for prior exchange of keys. It's +well featured and fast, with sophisticated key management, +digital signatures, data compression, and good ergonomic +design. + +Contributors: + Matthias Bruestle for the myetsid feature. + Lutz Donnerhacke for the pgp2.6.3in development. + Ingmar Camphausen, Thomas Roessler, a.o. for extensive testing. + +WWW: http://www.in-ca.individual.net/ +FTP: ftp://ftp.fu-berlin.de/doc/IN/IN-CA/pgp/pgp263in/files/pgp263in.changes diff --git a/security/pgpin/pkg-plist b/security/pgpin/pkg-plist new file mode 100644 index 00000000000..727f6a60b8c --- /dev/null +++ b/security/pgpin/pkg-plist @@ -0,0 +1,12 @@ +bin/pgpin +lib/pgpin/CHANGES +lib/pgpin/pgp.hlp +lib/pgpin/pgpdoc1.txt +lib/pgpin/pgpdoc2.txt +@unexec if cmp -s %D/lib/pgpin/language.txt %D/lib/pgpin/language.txt-dist; then rm -f %D/lib/pgpin/language.txt; fi +lib/pgpin/language.txt-dist +@exec [ ! -f %B/language.txt ] && cp %B/%f %B/language.txt +@unexec if cmp -s %D/lib/pgpin/config.txt %D/lib/pgpin/config.txt-dist; then rm -f %D/lib/pgpin/config.txt; fi +lib/pgpin/config.txt-dist +@exec [ ! -f %B/config.txt ] && cp %B/%f %B/config.txt +@dirrm lib/pgpin -- cgit