non port: net/samba43/Makefile |
Number of commits found: 19 |
Thursday, 25 May 2017
|
12:36 brnrd
net/samba43: Mark 4.2 and 4.3 deprecated
- Add deprecation date and message
- Update/simplify conflicts
PR: 219514
Approved by: timur (maintainer)
MFH: 2017Q2
Security: 6f4d96c0-4062-11e7-b291-b499baebfeaf
|
Saturday, 25 Mar 2017
|
23:34 antoine
Add devel/p5-Parse-Pidl44, based on samba44 sources to allow building
net/samba{42,43,44}
|
Tuesday, 21 Mar 2017
|
21:59 antoine
- Add USES=samba to handle dependency on samba
Valid ARGS: build, env, lib, run (default: build,run)
- Add SAMBA_DEFAULT to bsd.default-versions.mk (default: 4.3)
- Remove obsolete samba36 ports
- Modify samba4x ports to install libsmbclient
- Convert the ports tree to USES=samba
Reviewed by: mat
Differential Revision: https://reviews.freebsd.org/D8919
|
Tuesday, 10 Jan 2017
|
12:08 antoine
Remove WANT_OPENLDAP_SASL from a few ports as it prevents users from easily
installing a desktop environment and samba.
WANT_OPENLDAP_SASL must not be used in invidual ports Makefiles.
Note: there is a wip to rewrite the handling of openldap in ports
With hat: portmgr
Reviewed by: mat
MFH: 2017Q1
Differential Revision: https://reviews.freebsd.org/D9083
|
Wednesday, 28 Dec 2016
|
14:17 adamw
Fix packaging with DEVELOPER knob off.
|
02:51 timur
* Upgrade net/samba43 and net/samba44 to address multiple vulnerabilities
* Switch port to use net/openldap24-sasl-client as some authorization methods
don't work with plain openldap24-client.
* Changed namespace used by vfs_fruit to be compatiable with net/netatalk3.
* Removed old DNS crypto patch, as it SEEMS it was superseded by recent code
changes. Please, notify me if you see that internal DNS
doesn't handle signed requests properly anymore.
Security: CVE-2016-2123
CVE-2016-2125
CVE-2016-2126
|
Friday, 28 Oct 2016
|
17:55 danfe
Do not redefine DEBUG_DESC when its meaning more or less matches the default
option description. Those ports where it meant something more specific were
left untouched.
|
Friday, 21 Oct 2016
|
12:51 mat
${RM} already has -f.
PR: 213570
Submitted by: mat
Exp-run by: antoine
Sponsored by: Absolight
|
Wednesday, 20 Jul 2016
|
15:33 mat
Cleanup $() variables in ports Makefiles.
Mostly replace with ${}, but sometime, replace with $$() because it is
what was intended in the first place. (I think.)
Sponsored by: Absolight
|
Wednesday, 13 Jul 2016
|
13:03 timur
Fixed missed Python module requirement :(
|
Tuesday, 12 Jul 2016
|
21:36 timur
Update Samba 4.2, 4.3 and 4.4 to the lates version to address CVE-2016-2119
(Client side SMB2/3 required signing can be downgraded).
Security: CVE-2016-2119
|
Saturday, 7 May 2016
|
00:28 timur
Update samba42 and samba43 to the latest versions. A lot of fixes are made to
fix the fixes in the previous security fixes :)
* BUG 11841: Fix NT_STATUS_ACCESS_DENIED when accessing Windows
public share.
* BUG 11847: Only validate MIC if "map to guest" is not being used.
* BUG 11849: auth/ntlmssp: Add ntlmssp_{client,server}:force_old_spnego
option for testing.
* BUG 11850: NetAPP SMB servers don't negotiate NTLMSSP_SIGN.
* BUG 11858: Allow anonymous smb connections.
* BUG 11870: Fix ads_sasl_spnego_gensec_bind(KRB5).
* BUG 11872: Fix 'wbinfo -u' and 'net ads search'.
|
Thursday, 21 Apr 2016
|
02:19 timur
Fixed problem with the undeclared clearenv() that broke the build.
Applied additional patches to fix problem with talloc 2.1.6 and failed
provisioning, thanks to Andrey Kramarenko for pointing me to the patches and
support.
PR: 208767
208767
|
Tuesday, 12 Apr 2016
|
22:44 timur
Update Samba ports to versions 4.2.11 and 4.3.8 respectivelly, to address
BadLock vulnerability(http://badlock.org).
Security: CVE-2016-2118
|
Friday, 1 Apr 2016
|
14:16 mat
Remove ${PORTSDIR}/ from dependencies, categories m, n, o, and p.
With hat: portmgr
Sponsored by: Absolight
|
Sunday, 27 Mar 2016
|
14:58 tijl
- Update security/gnutls to 3.4.10.
- Rename the LIBDANE option DANE because that's the name of the protocol
supported by libgnutls-dane and gnutls-cli. Also clarify the option
description.
- Add an IDN option.
- libgnutls-openssl has been removed in 3.4. Some ports used this library
in their LIB_DEPENDS but no port actually required it.
- Some old API functions have been removed. Ports that used these have been
updated or patched to use the new API.
- Add a patch to print/cups to prevent overlinking of libgnutls.so.
- Bump PORTREVISION on dependent ports.
net-im/jabber: This port used the old API to give users fine grained
control over which crypto algorithms were used via a configuration file.
It's not immediately obvious how to port this to the new API so the port
always uses the defaults now.
www/hydra: Mark BROKEN. This uses more removed calls than the other ports,
is said to be alpha quality and not fully functional and has been abandoned
10 years ago.
PR: 207768
Exp-run by: antoine
Approved by: portmgr (antoine)
|
Friday, 11 Mar 2016
|
11:53 tijl
Combine print/cups-base, print/cups-client and print/cups-image into
print/cups and update it to 2.1.3. Also remove print/cups-pstoraster,
improve print/cups-filters, print/foomatic-* and update print/hplip to
3.16.2.
Long description:
First some background. When you hand a file to cups it sets up a chain of
filter programs that converts the file to something a printer understands.
Each filter has a cost associated with it and cups tries to find the
cheapest chain. Costs used to be configured in such a way that files were
first converted to PostScript. This could then be manipulated further (e.g.
putting multiple pages on one sheet) before finally being sent to a
PostScript printer or another filter like pstoraster which produces a raster
format understood by non-PostScript printer drivers. Nowadays most filters
have been moved from cups to cups-filters and they have been configured to
use PDF as an intermediate format instead of PostScript.
Merging of cups-base, cups-client and cups-image into print/cups:
- cups-image provides a library to work with the cups raster format. It is
only used to implement filters and printer drivers and these only exist
in the context of a cups server so there's no need to separate this from
cups-base.
- cups-client provides a library that allows applications to print via cups.
It is possible to use the library to access a remote cups server without
running a local cups server, but such a setup is discouraged and the
configuration file to set this up has been marked deprecated. It is
better to run a local cups server and let that talk to the remote cups
server because then you have the benefits of local job queuing in case the
remote server is down or busy. Given this and the fact that without
filters cups-base is now smaller than it used to be it makes sense to
merge the ports. The patch also adds options IPPTOOL, DOCS and NLS which
when disabled make the new cups package smaller than the current
cups-client package. Merging the ports also prevents problems with
options like ZEROCONF being configured differently in both ports.
- print/cups was a metaport that depended on cups-base and some filters.
There isn't really a need for such a metaport so cups-base can be renamed
to cups. The filters can be depended on by printer drivers such as hplip
if they need them.
Additional changes to the new print/cups:
- Clean up the patches. They seem to have been regenerated with post-patch
changes included.
- Add a patch to prevent intermediate conversion to PDF when a PostScript
file is sent to a PostScript printer when cups-filters is installed.
- Fix the PAM configuration file.
- Add a patch to let the server search /usr/local/share/ppd like on Linux so
other ports don't have to add links to it.
- Remove ulpt(4) helper scripts. The port uses libusb with ugen(4).
- Remove support for mDNSResponder. cups-filters only supports Avahi.
- Combine ICONS and XDG_OPEN options into an X11 option to support WITHOUT_X11.
- Optionally depend on colord for ICC profile support.
- Various smaller changes.
Changes to print/cups-filters:
- Let the cups_browsed rc.d script depend on cupsd and avahi_daemon instead
of LOGIN.
- Development of foomatic-filters has been moved to cups-filters so let this
port install foomatic related files and add foomatic-filters to CONFLICTS.
- Fix location of liblouis tables.
- Add patch to fix ICC support.
Changes to print/cups-pstoraster:
This port is essentially an old version of Ghostscript plus a cups filter.
It's no longer developed. This commit removes it and changes existing
dependencies to print/cups-filters which depends on print/ghostscript* and
includes a gstoraster filter that can handle both PostScript and PDF.
Changes to print/foomatic-db*:
Remove old MASTER_SITES and dependencies and eliminate PKGNAMEPREFIX.
Changes to print/foomatic-filters:
Install beh backend with its original name again and add cups-filters to
CONFLICTS.
Changes to print/hplip:
- Stop installing hpijs/foomatic-rip support. This is no longer supported
upstream.
- Stop installing hpcups PPDs. These are now automatically generated. The
bundled PPDs are generated for an older version of cups.
- Rename the QT option to X11 to support WITHOUT_X11.
- Simplify the patches now that ports are installed in a staging area.
- Add a patch to set SO_REUSEPORT (next to SO_REUSEADDR) on the mDNS socket
like avahi-daemon does. This fixes Zeroconf support for HP network
printers.
PR: 207746
Exp-run by: antoine
Approved by: portmgr (antoine)
|
Saturday, 19 Dec 2015
|
22:51 timur
A security fix release of Samba 4.1, 4.2 and 4.3. Samba 4.1 is also marked as
deprecated.
Security: CVE-2015-3223
CVE-2015-5252
CVE-2015-5299
CVE-2015-5296
CVE-2015-8467
CVE-2015-5330
|
Monday, 30 Nov 2015
|
01:35 timur
A new version 4.3.1 of Samba suite. Handle with care.
|
Number of commits found: 19 |