notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Want a good monitor light? See my photosAll times are UTC
Ukraine
This referral link gives you 10% off a Fastmail.com account and gives me a discount on my Fastmail account.

Get notified when packages are built

A new feature has been added. FreshPorts already tracks package built by the FreeBSD project. This information is displayed on each port page. You can now get an email when FreshPorts notices a new package is available for something on one of your watch lists. However, you must opt into that. Click on Report Subscriptions on the right, and New Package Notification box, and click on Update.

Finally, under Watch Lists, click on ABI Package Subscriptions to select your ABI (e.g. FreeBSD:14:amd64) & package set (latest/quarterly) combination for a given watch list. This is what FreshPorts will look for.

Port details
ipsec-tools KAME racoon IKE daemon, ipsec-tools version
0.8.2_13 security on this many watch lists=18 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 0.8.2_13Version of this port present on the latest quarterly branch.
There is no maintainer for this port.
Any concerns regarding this port should be directed to the FreeBSD Ports mailing list via ports@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2005-09-05 14:14:25
Last Update: 2024-02-25 13:19:44
Commit Hash: 5c684c9
People watching this port, also watch:: sudo, nmap, unzip, rsync, openvpn
License: BSD3CLAUSE
WWW:
https://ipsec-tools.sourceforge.net/
Description:
racoon speaks IKE (ISAKMP/Oakley) key management protocol, to establish security association with other hosts. This is the IPSec-tools version of racoon. Enchancements: - Support of NAT-T and IKE fragmentation. - Support of many authentication algorithms. - Tons of bugfixes. Known issues: - Non-threaded implementation. Simultaneous key negotiation performance should be improved. - Cannot negotiate keys for per-socket policy. - Cryptic configuration syntax - blame IPsec specification too... - Needs more documentation. Design choice, not a bug: - racoon negotiate IPsec keys only. It does not negotiate policy. Policy must be configured into the kernel separately from racoon. If you want to support roaming clients, you may need to have a mechanism to put policy for the roaming client after phase 1 finishes.
Homepage    cgit ¦ Codeberg ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
Expand this list (45 items)
Collapse this list.
  1. include/racoon/openssl_compat.h
  2. @ldconfig
  3. /usr/local/share/licenses/ipsec-tools-0.8.2_13/catalog.mk
  4. /usr/local/share/licenses/ipsec-tools-0.8.2_13/LICENSE
  5. /usr/local/share/licenses/ipsec-tools-0.8.2_13/BSD3CLAUSE
  6. sbin/plainrsa-gen
  7. sbin/racoon
  8. sbin/racoonctl
  9. sbin/setkey
  10. include/libipsec/libpfkey.h
  11. include/racoon/admin.h
  12. include/racoon/evt.h
  13. include/racoon/gcmalloc.h
  14. include/racoon/ipsec_doi.h
  15. include/racoon/isakmp.h
  16. include/racoon/isakmp_cfg.h
  17. include/racoon/isakmp_unity.h
  18. include/racoon/isakmp_var.h
  19. include/racoon/isakmp_xauth.h
  20. include/racoon/misc.h
  21. include/racoon/racoonctl.h
  22. include/racoon/schedule.h
  23. include/racoon/sockmisc.h
  24. include/racoon/var.h
  25. include/racoon/vmbuf.h
  26. lib/libipsec.a
  27. lib/libipsec.so
  28. lib/libipsec.so.0
  29. lib/libipsec.so.0.0.1
  30. lib/libracoon.a
  31. lib/libracoon.so
  32. lib/libracoon.so.0
  33. lib/libracoon.so.0.0.0
  34. share/man/man3/ipsec_set_policy.3.gz
  35. share/man/man3/ipsec_strerror.3.gz
  36. share/man/man5/racoon.conf.5.gz
  37. share/man/man8/plainrsa-gen.8.gz
  38. share/man/man8/racoon.8.gz
  39. share/man/man8/racoonctl.8.gz
  40. share/man/man8/setkey.8.gz
  41. @dir etc/racoon
  42. @dir /var/db/racoon
  43. @owner
  44. @group
  45. @mode
Collapse this list.
Dependency lines:
  • ipsec-tools>0:security/ipsec-tools
Conflicts:
CONFLICTS:
  • racoon
Conflicts Matches:
There are no Conflicts Matches for this port. This is usually an error.
To install the port:
cd /usr/ports/security/ipsec-tools/ && make install clean
To add the package, run one of these commands:
  • pkg install security/ipsec-tools
  • pkg install ipsec-tools
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: ipsec-tools
Flavors: there is no flavor information for this port.
distinfo:
SHA256 (ipsec-tools-0.8.2.tar.bz2) = 8eb6b38716e2f3a8a72f1f549c9444c2bc28d52c9536792690564c74fe722f2d SIZE (ipsec-tools-0.8.2.tar.bz2) = 866465

Packages (timestamps in pop-ups are UTC):
ipsec-tools
ABIaarch64amd64armv6armv7i386powerpcpowerpc64powerpc64le
FreeBSD:13:latest0.8.2_130.8.2_130.8.2_110.8.2_130.8.2_13-0.8.2_11-
FreeBSD:13:quarterly0.8.2_130.8.2_130.8.2_120.8.2_130.8.2_130.8.2_120.8.2_120.8.2_12
FreeBSD:14:latest0.8.2_130.8.2_130.8.2_120.8.2_130.8.2_130.8.2_12-0.8.2_12
FreeBSD:14:quarterly0.8.2_130.8.2_13-0.8.2_130.8.2_130.8.2_120.8.2_120.8.2_12
FreeBSD:15:latest--n/a-n/a0.8.2_120.8.2_120.8.2_12
This port has no dependencies.
There are no ports dependent upon this port

Configuration Options:
===> The following configuration options are available for ipsec-tools-0.8.2_13: ADMINPORT=on: Enable Admin port DOCS=on: Build and/or install documentation DPD=on: Dead Peer Detection EXAMPLES=on: Build and/or install examples FRAG=on: IKE fragmentation payload support GSSAPI=off: GSSAPI Security API support HYBRID=on: Hybrid, Xauth and Mode-cfg support IDEA=off: IDEA encryption (patented) IPV6=on: IPv6 protocol support LDAP=off: LDAP authentication (Xauth server) NATT=on: NAT-Traversal PAM=off: PAM authentication (Xauth server) RADIUS=off: Radius authentication (Xauth server) RC5=off: RC5 encryption (patented) SAUNSPEC=off: Unspecified SA mode STATS=off: Statistics logging function WCPSKEY=on: Allow wildcard matching for pre-shared keys ===> Use 'make config' to modify these settings
Options name:
security_ipsec-tools
USES:
cpe libtool tar:bzip2 ssl
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (56 items)
Collapse this list.
  1. http://cfhcable.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  2. http://cytranet.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  3. http://deac-ams.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  4. http://deac-fra.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  5. http://deac-riga.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  6. http://downloads.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  7. http://excellmedia.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  8. http://freefr.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  9. http://gigenet.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  10. http://ixpeering.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  11. http://jaist.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  12. http://jztkft.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  13. http://kumisystems.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  14. http://liquidtelecom.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  15. http://nchc.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  16. http://netactuate.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  17. http://netcologne.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  18. http://netix.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  19. http://onboardcloud.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  20. http://phoenixnap.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  21. http://razaoinfo.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  22. http://sinalbr.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  23. http://sitsa.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  24. http://sonik.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  25. http://tenet.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  26. http://udomain.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  27. http://ufpr.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  28. http://versaweb.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  29. https://cfhcable.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  30. https://cytranet.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  31. https://deac-ams.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  32. https://deac-fra.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  33. https://deac-riga.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  34. https://downloads.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  35. https://excellmedia.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  36. https://freefr.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  37. https://gigenet.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  38. https://ixpeering.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  39. https://jaist.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  40. https://jztkft.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  41. https://kumisystems.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  42. https://liquidtelecom.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  43. https://nchc.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  44. https://netactuate.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  45. https://netcologne.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  46. https://netix.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  47. https://onboardcloud.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  48. https://phoenixnap.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  49. https://razaoinfo.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  50. https://sinalbr.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  51. https://sitsa.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  52. https://sonik.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  53. https://tenet.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  54. https://udomain.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  55. https://ufpr.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
  56. https://versaweb.dl.sourceforge.net/project/ipsec-tools/ipsec-tools/0.8.2/
Collapse this list.

Number of commits found: 91

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
0.8.2_13
25 Feb 2024 13:19:44
commit hash: 5c684c91f462494537f070c27b6308884e5af4b8commit hash: 5c684c91f462494537f070c27b6308884e5af4b8commit hash: 5c684c91f462494537f070c27b6308884e5af4b8commit hash: 5c684c91f462494537f070c27b6308884e5af4b8 files touched by this commit
Muhammad Moinur Rahman (bofh) search for other commits by this committer
security/ipsec-tools: Moved man to share/man

Approved by:    portmgr (blanket)
0.8.2_12
27 Dec 2023 09:43:05
commit hash: 2717de7aefde69279e0063d3bdd47b7411240fcacommit hash: 2717de7aefde69279e0063d3bdd47b7411240fcacommit hash: 2717de7aefde69279e0063d3bdd47b7411240fcacommit hash: 2717de7aefde69279e0063d3bdd47b7411240fca files touched by this commit
Dirk Meyer (dinoex) search for other commits by this committer
security/ipsec-tools: fix build with openssl from ports
0.8.2_12
01 Nov 2023 22:11:47
commit hash: 05f0f44a557a53913001d6debf17965dfb799288commit hash: 05f0f44a557a53913001d6debf17965dfb799288commit hash: 05f0f44a557a53913001d6debf17965dfb799288commit hash: 05f0f44a557a53913001d6debf17965dfb799288 files touched by this commit
Rodrigo Osorio (rodrigo) search for other commits by this committer
*/*: Update WWW to use HTTPS for sourceforge.net projects

Homepage link is permanent redirected to its HTTPS counterpart
0.8.2_12
08 Feb 2023 10:53:56
commit hash: 6e1233be229212a0496f42d611bd40f3e3a628dacommit hash: 6e1233be229212a0496f42d611bd40f3e3a628dacommit hash: 6e1233be229212a0496f42d611bd40f3e3a628dacommit hash: 6e1233be229212a0496f42d611bd40f3e3a628da files touched by this commit
Muhammad Moinur Rahman (bofh) search for other commits by this committer
Mk/**ldap.mk: Convert USE_LDAP to USES=ldap

Convert the USE_LDAP=yes to USES=ldap and adds the following features:

- Adds the argument USES=ldap:server to add openldap2{4|5|6}-server as
  RUN_DEPENDS
- Adds the argument USES=ldap<version> and replaces WANT_OPENLDAP_VER
- Adds OPENLDAP versions in bsd.default-versions.mk
- Adds USE_OPENLDAP/WANT_OPENLDAP_VER in Mk/bsd.sanity.mk
- Changes consumers to use the features

Reviewed by:	delphij
Approved by:	portmgr
Differential Revision: https://reviews.freebsd.org/D38233
07 Sep 2022 21:58:51
commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4commit hash: fb16dfecae4a6efac9f3a78e0b759fb7a3c53de4 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Remove WWW entries moved into port Makefiles

Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.

This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.

Approved by:		portmgr (tcberner)
0.8.2_12
07 Sep 2022 21:10:59
commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52commit hash: b7f05445c00f2625aa19b4154ebcbce5ed2daa52 files touched by this commit
Stefan Eßer (se) search for other commits by this committer
Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.8.2_12
20 Jul 2022 14:22:56
commit hash: 857c05f8674c5f4c990f49f9d0fb7034ebd340fecommit hash: 857c05f8674c5f4c990f49f9d0fb7034ebd340fecommit hash: 857c05f8674c5f4c990f49f9d0fb7034ebd340fecommit hash: 857c05f8674c5f4c990f49f9d0fb7034ebd340fe files touched by this commit
Tobias C. Berner (tcberner) search for other commits by this committer
security: remove 'Created by' lines

A big Thank You to the original contributors of these ports:

  *  <ports@c0decafe.net>
  *  Aaron Dalton <aaron@FreeBSD.org>
  *  Adam Weinberger <adamw@FreeBSD.org>
  *  Ade Lovett <ade@FreeBSD.org>
  *  Aldis Berjoza <aldis@bsdroot.lv>
  *  Alex Dupre <ale@FreeBSD.org>
  *  Alex Kapranoff <kappa@rambler-co.ru>
  *  Alex Samorukov <samm@freebsd.org>
  *  Alexander Botero-Lowry <alex@foxybanana.com>
  *  Alexander Kriventsov <avk@vl.ru>
  *  Alexander Leidinger <netchild@FreeBSD.org>
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.8.2_12
01 Apr 2022 15:53:18
commit hash: 74c02f1ec9c9d18845ef12df8d1168974564c667commit hash: 74c02f1ec9c9d18845ef12df8d1168974564c667commit hash: 74c02f1ec9c9d18845ef12df8d1168974564c667commit hash: 74c02f1ec9c9d18845ef12df8d1168974564c667 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
all: drop support for EOL FreeBSD 12.2

- Mk/bsd.port.mk: bump minimal FreeBSD version to 12.3,
  update an example
- sysutils/lsof: drop support for ancient FreeBSD releases.
- multimedia/ustreamer: remove inline patch for 12.2
- x11/wayland-logout: remove support for FreeBSD < 12.3
- sysutils/bhyve+: remove support for FreeBSD 12.2
- databases/clickhouse: remove support for FreeBSD 12.2
- databases/mariadb106-server: remove support for FreeBSD 12.2
- devel/cvsd: no need to test for FreeBSD >=5 anymore
- devel/imake: no need to support a.out anymore
- japanese/kterm: no need to support FreeBSD <= 9
- math/igraph: remove support for FreeBSD 12.2
- net/onedrive: remove support for FreeBSD 12.2
- security/ipsec-tools: no need to test for FreeBSD >= 11
- emulators/rpcs3: Revert "emulators/rpcs3: unbreak on FreeBSD 12.2 after
49f593b2f77f"

Reviewed by:	brnrd, fluffy, jbeich, ler, yuri, x11 (zeising)
Approved by:	portmgr (implicit)
Differential Revision:	https://reviews.freebsd.org/D34523
0.8.2_12
29 Oct 2021 09:50:18
commit hash: 819f25b36d45b8ac5593ec8e6f470d9ad454b08acommit hash: 819f25b36d45b8ac5593ec8e6f470d9ad454b08acommit hash: 819f25b36d45b8ac5593ec8e6f470d9ad454b08acommit hash: 819f25b36d45b8ac5593ec8e6f470d9ad454b08a files touched by this commit
Stefan Eßer (se) search for other commits by this committer
*/*: Remove redundant '-[0-9]*' from CONFLICTS

The conflict checks compare the patterns first against the package
names without version (as reported by "pkg query "%n"), then - if
there was no match - agsinst the full package names including the
version (as reported by "pkg query "%n-%v").

Many CONFLICTS definitions used patterns like "bash-[0-9]*" to filter
for the bash package in any version. But that pattern is functionally
identical with just "bash".

Approved by:	portmgr (blanket)
0.8.2_12
30 Sep 2021 21:23:30
commit hash: 620968a43a5f9bb3fa98ab20f257a4c0d864caa7commit hash: 620968a43a5f9bb3fa98ab20f257a4c0d864caa7commit hash: 620968a43a5f9bb3fa98ab20f257a4c0d864caa7commit hash: 620968a43a5f9bb3fa98ab20f257a4c0d864caa7 files touched by this commit
Rene Ladan (rene) search for other commits by this committer
cleanup: drop support for EOL FreeBSD 11.X

Search criteria used:
- 11.4
- OSREL*
- OSVER*
- *_FreeBSD_11

Input from:
- adridg: devel/qca-legacy
- jbeich: _WITH_DPRINTF, _WITH_GETLINE, GNU bfd workarounds
- sunpoet: security/p5-*OpenSSL*

Reviewed by:	doceng, kde, multimedia, perl, python, ruby, rust
Differential Revision: https://reviews.freebsd.org/D32008
Test Plan: make index
0.8.2_12
29 Aug 2021 18:49:13
commit hash: a342af62d5755c05558f57c39725ab8276b3dd0bcommit hash: a342af62d5755c05558f57c39725ab8276b3dd0bcommit hash: a342af62d5755c05558f57c39725ab8276b3dd0bcommit hash: a342af62d5755c05558f57c39725ab8276b3dd0b files touched by this commit
Bernhard Froehlich (decke) search for other commits by this committer
security/ipsec-tools: Add CPE information

Approved by:	portmgr (blanket)
0.8.2_12
18 Aug 2021 13:06:01
commit hash: b69e9c3c4e6fd7b5d7b71676f0f16ce635cde6d0commit hash: b69e9c3c4e6fd7b5d7b71676f0f16ce635cde6d0commit hash: b69e9c3c4e6fd7b5d7b71676f0f16ce635cde6d0commit hash: b69e9c3c4e6fd7b5d7b71676f0f16ce635cde6d0 files touched by this commit
Eugene Grosbein (eugen) search for other commits by this committer
security/ipsec-tools: make upgrade less painful

Partially revert r516983 to make upgrade from old versions
less painful. For example, upgrade path from 9.3 via 10.4
then to 11.0 and later should not break due to non-existing
required module ipsec.ko.
0.8.2_11
06 Apr 2021 14:31:13
commit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937dcommit hash: 135fdeebb99c3569e42d8162b265e15d29bd937d files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
all: Remove all other $FreeBSD keywords.
0.8.2_11
06 Apr 2021 14:31:07
commit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344ebcommit hash: 305f148f482daf30dcf728039d03d019f88344eb files touched by this commit
Mathieu Arnold (mat) search for other commits by this committer
Remove # $FreeBSD$ from Makefiles.
0.8.2_11
13 Nov 2020 13:35:56
Revision:555023Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tool: minor port cleanup

Remove non-existing configure options --enable-debug and --with-pkgversion.
Remove option NATTF that changed --enable-natt=yes to --enable-natt=kernel
that is exactly same for FreeBSD releases since 8.0-RELEASE.
0.8.2_11
26 Apr 2020 09:00:01
Revision:532998Original commit files touched by this commit
tijl search for other commits by this committer
Update devel/automake to 1.16.2.

mail/bogofilter security/ipsec-tools:
Patch Makefile.in instead of Makefile.am so automake is not required.

PR:		245599
Approved by:	portmgr (antoine)
Exp-run by:	antoine
0.8.2_11
07 Nov 2019 16:30:12
Revision:516983Original commit files touched by this commit
rene search for other commits by this committer
Clean up support for FreeBSD 11.2.

While here, modernize some comments in Mk/bsd.*.mk.

Note that graphics/drm-fbsd11.2-kmod is not renamed yet, this was somewhat
under discussion.

Submitted by:	rene
Reviewed by:	antoine, jbeich, mat, zeising
Differential Revision:	https://reviews.freebsd.org/D21974
0.8.2_11
10 Oct 2019 13:15:14
Revision:514225Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: unbreak racoon_create_dirs

Specifying required_dirs and creating it at prestart stage does not work
because required_dirs is checked before running prestart these days.
So it fails to start for mfs-based /var even if racoon_create_dirs=YES

Unbreak this by replacing "required_dirs" and "mkdir -p"
in the racoon_prestart with "install -d" that returns error in case
of failure and does nothing if the directory already exists.

Reported by:	Cybil Courraud <freebsd@cyb.fr>
0.8.2_10
01 Jul 2019 04:49:33
Revision:505537Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: fix aggressive mode tunnels with wildcard-psk config

Wilcard patch exposures existing bug where agressive tunnels using ip addresses
for identification were not matching the entry in the PSK file,
due to the identifier not being cast to a 'xxx.xxx.xxx.xxx' notation.

PR:		203308
Submitted by:	andywhite@gmail.com (based on)
0.8.2_9
12 May 2019 13:22:28
Revision:501380Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: autoload ipsec.ko if possible

Check for IPSEC support in kernel and auto-load ipsec.ko
if needed while starting racoon except of 11.0-RELEASE
that had not IPSEC as a module.
0.8.2_8
27 Mar 2019 08:56:35
Revision:496938Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: small correction NATT patch

This change fixes rare case for "site to site" IPSec tunnel mode
when remote peer is behind NAT and has its own LAN behind.
Now this works too (previously NATT worked only for single host behind NAT).
0.8.2_7
03 Feb 2019 21:04:24
Revision:492078Original commit files touched by this commit
olivier search for other commits by this committer
Fix build on 12-stable when using OpenSSL from port.

PR:		232169
Submitted by:	Michael Grimm <trashcan@ellael.org>
0.8.2_7
31 Jan 2019 17:59:50
Revision:491745Original commit files touched by this commit
tobik search for other commits by this committer
security/ipsec-tools: Only append to BUILD_DEPENDS after bsd.port.pre.mk
0.8.2_7
25 Nov 2018 20:35:22
Revision:485900Original commit files touched by this commit
olivier search for other commits by this committer
Fix openssl 1.1.1 breakage

PR:		232169
Submitted by:	Walter Schwarzenfeld <w.schwarzenfeld@utanet.at>
Obtained from:	https://bugs.archlinux.org/task/59734
0.8.2_6
03 Oct 2018 10:08:15
Revision:481154Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: make binary package more useful

- enable options ADMINPORT and WCPSKEY by default;
- polish NATT_DESC a bit as we have releases past 11.0-STABLE;
- bump PORTREVISION.
0.8.2_5
10 Aug 2018 10:03:31
Revision:476825Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: add support for multiple if_ipsec(4) interfaces

- added patch introducing racoon compatibility with multiple
  if_ipsec(4) interfaces (*);
- MAINTAINER reset due to nearly 3 years maintainer inactivity;
- bump PORTREVISION.

Submitted by:	ae (*)
Approved by:	vanhu (implicitly)
0.8.2_4
29 Apr 2018 10:00:01
Revision:468617Original commit files touched by this commit
eugen search for other commits by this committer
Fix phase 1 initiation in the racoon daemon after base system change r285204

PR:		192774, 222065
Submitted by:	Andreas Longwitz <longwitz@incore.de>
Approved by:	VANHULLEBUS Yvan (maintainer, implicitly)
0.8.2_3
14 Apr 2018 12:07:58
Revision:467313Original commit files touched by this commit
eugen search for other commits by this committer
security/ipsec-tools: fix CVE-2016-10396

The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable
computational-complexity attack when parsing and storing ISAKMP fragments.
The implementation permits a remote attacker to exhaust computational
resources on the remote endpoint by repeatedly sending ISAKMP fragment
packets in a particular order such that the worst-case computational
complexity is realized in the algorithm utilized to determine
if reassembly of the fragments can take place.

The fix obtained from NetBSD CVS head with a command:

cvs diff -D 2017-01-24 -D 2017-09-01 \
	src/racoon/handler.h \
	src/racoon/isakmp.c \
	src/racoon/isakmp_frag.c \
	src/racoon/isakmp_inf.c

While here, add LICENSE.

PR:		225066
Approved by:	VANHULLEBUS Yvan (maintainer timeout, 3 months)
Obtained from:	NetBSD
MFH:		2018Q1
Security:	CVE-2016-10396
0.8.2_2
18 Apr 2017 14:36:08
Revision:438782Original commit files touched by this commit This port version is marked as vulnerable.
eugen search for other commits by this committer
This patch adds NATT_EXTRA_PATCHES=natt.diff and enables only UDP encapsulation
defined in RFC3948.

The natt.diff patch contains the following changes:
* added support for SADB_X_EXT_NAT_T_OAI and SADB_X_EXT_NAT_T_OAR PF_KEY
messages;
* used NAT address instead of original for SAs created by racoon;
* NAT-T keep-alives now sends only by NATed host.

Tested with 11.0-STABLE after projects/ipsec merge.

PR:		217131
Submitted by:	Andrey V. Elsukov
Approved by:	VANHULLEBUS Yvan (maintainer timeout, 2 months), vsevolod (mentor)
0.8.2_1
15 Mar 2017 14:45:31
Revision:436247Original commit files touched by this commit This port version is marked as vulnerable.
mat search for other commits by this committer
Remove all USE_OPENSSL occurrences.

Sponsored by:	Absolight
0.8.2_1
21 Oct 2016 12:51:41
Revision:424411Original commit files touched by this commit Sanity Test Failure This port version is marked as vulnerable.
mat search for other commits by this committer
${RM} already has -f.

PR:		213570
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	Absolight
0.8.2_1
11 Oct 2015 15:13:52
Revision:399091Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Switch to options helpers
- Drop 8.x support

Approved by:	portmgr blanket
0.8.2_1
19 May 2015 17:00:57
Revision:386793Original commit files touched by this commit This port version is marked as vulnerable.
brd search for other commits by this committer
Update ipsec-tools with a patch from NetBSD to fix a memory leak.

PR:		200334 (reported in)
Submitted by:	brd
Approved by:	bdrewery (mentor, portmgr)
MFH:		2015Q2
0.8.2
06 Feb 2015 20:31:54
Revision:378554Original commit files touched by this commit This port version is marked as vulnerable.
pi search for other commits by this committer
security/ipsec-tools: 0.8.1 -> 0.8.2

From ChangeLog:
- Fix admin port establish-sa for tunnel mode SAs (Alexander Sbitnev)
- Fix source port selection regression from version 0.8.1
- Various logging improvements
- Additional compliance and build fixes

From submitter:
- extra patch to adding wildcard psk option

PR:		196930
Submitted by:	Harald Schmalzbauer <bugzilla.freebsd@omnilan.de>,
		Ed Schouten <ed@80368.nl>
Approved by:	vanhu (maintainer)
0.8.1_7
23 Sep 2014 09:29:00
Revision:369008Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Simplify plist
Modernize a bit
0.8.1_7
24 Jul 2014 18:34:16
Revision:362835Original commit files touched by this commit This port version is marked as vulnerable.
tijl search for other commits by this committer
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.8.1_6
05 Jun 2014 19:55:52
Revision:356692Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Drop .la files, no dependees require them

Approved by:	portmgr blanket
0.8.1_5
23 Apr 2014 13:25:17
Revision:351936Original commit files touched by this commit This port version is marked as vulnerable.
tijl search for other commits by this committer
When linking a library libA with a library libB using libtool, if libB.la
exists, libtool will add all libraries libB.la refers to (dependency_libs
field) to the linker command line and store them in the dependency_libs
field of libA.la.  So everything that subsequently links with libA will also
link to these extra libraries.  This causes too much overlinking.

This commit modifies Mk/Uses/libtool.mk so it empties the dependency_libs
field in .la libraries during staging.  However, because .la libraries have
very limited use when dependency_libs is empty it makes sense to completely
remove them during staging.

So with this commit USES=libtool is modified to remove .la libraries and a
new form (USES=libtool:keepla) is introduced in case they need to be kept
(dependency_libs is still emptied).
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.8.1_4
22 Apr 2014 15:17:41
Revision:351846Original commit files touched by this commit This port version is marked as vulnerable.
linimon search for other commits by this committer
Restore vanhu as maintainer: bounce was due to mail configuration error.
0.8.1_4
22 Apr 2014 02:55:43
Revision:351747Original commit files touched by this commit This port version is marked as vulnerable.
linimon search for other commits by this committer
Reset vanhu@netasq.com: email bounces.
0.8.1_4
17 Feb 2014 14:50:48
Revision:344766Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Fix build with clang 3.4
0.8.1_4
11 Feb 2014 11:20:52
Revision:343733Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Remove CFLAGS unsupported by ancient gcc and just remove -Werror to have the
code build with clang

Reported by:	olgeni
0.8.1_4
10 Feb 2014 16:42:40
Revision:343652Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Fix build with clang,
Convert to USES=libtool
Strip binaries
0.8.1_3
29 Oct 2013 20:03:39
Revision:331989Original commit files touched by this commit This port version is marked as vulnerable.
wg search for other commits by this committer
security/ipsec-tools: update to 0.8.1

- Update to 0.8.1 [1]
- Allow staging [1]
- Remove FreeBSD < 8.x message

PR:		ports/182758 [1]
Submitted by:	Kurt Jaeger <fbsd-ports opsec.eu>
0.8.0_3
20 Sep 2013 22:55:26
Revision:327769Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
0.8.0_3
13 Jun 2013 20:39:52
Revision:320838Original commit files touched by this commit This port version is marked as vulnerable.
antoine search for other commits by this committer
- Fix a typo in PORT_OPTIONS conversion
- Create configuration directory we try to remove on uninstall
0.8.0_3
27 Apr 2013 18:25:25
Revision:316683Original commit files touched by this commit This port version is marked as vulnerable.
mva search for other commits by this committer
- Convert USE_ICONV=yes to USES=iconv
- Change USE_GNOME=pkgconfig|gnomehack to USES=pathfix|pkgconfig and
  USE_GETTEXT=yes to USES=gettext while here
0.8.0_3
09 Jan 2013 11:06:33
Revision:310136Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Convert vanhu@ ports to new options framework
Removed optionnal dependency on the deprecated py-visual for net/scapy

Approved by:	maintainer (vanhu)
0.8.0_3
05 Aug 2012 23:19:40
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
Move the rc.d scripts of the form *.sh.in to *.in

Where necessary add $FreeBSD$ to the file

No PORTREVISION bump necessary because this is a no-op
0.8.0_3
25 Jan 2012 06:13:53
Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
Apply utmp patch from ${FILESDIR} (not files) if OSVERSION <  900007

Spotted by: Jason Hellenthal <jhell at DataIX.net>
Approved by:    crees,rene (mentors,implicit)
0.8.0_2
14 Jan 2012 08:57:23
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
0.8.0_2
21 Jul 2011 05:14:57
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
Fix the rc.d script to avoid unconditional code execution,
and various other cleanups.
0.8.0_1
19 Jul 2011 03:33:26
Original commit files touched by this commit This port version is marked as vulnerable.
stephen search for other commits by this committer
- Fix startup script rc.d/racoon.
- Bump portrevision.

PR:             ports/148605
Submitted by:   John Hein <jhein@symmetricom.com>
Approved by:    maho (mentor) and vanhu@netasq.com (maintainer)
0.8.0
23 Mar 2011 19:48:10
Original commit files touched by this commit This port version is marked as vulnerable.
flo search for other commits by this committer
- update to 0.8.0

PR:             ports/155883
Submitted by:   vanhu (maintainer)
0.7.3
04 Dec 2010 07:34:27
Original commit files touched by this commit This port version is marked as vulnerable.
ade search for other commits by this committer
Sync to new bsd.autotools.mk
0.7.3
27 Mar 2010 00:15:24
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#
0.7.3
20 Mar 2010 15:12:15
Original commit files touched by this commit This port version is marked as vulnerable.
miwi search for other commits by this committer
- Mark BROKEN on HEAD: fails to build with new utmpx

Reported by:    pointyhat
0.7.3
26 Aug 2009 16:37:22
Original commit files touched by this commit This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 0.7.3

PR:             137966
Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
0.7.2
02 Aug 2009 19:36:34
Original commit files touched by this commit This port version is marked as vulnerable.
mezz search for other commits by this committer
-Repocopy devel/libtool15 -> libtool22 and libltdl15 -> libltdl22.
-Update libtool and libltdl to 2.2.6a.
-Remove devel/libtool15 and devel/libltdl15.
-Fix ports build with libtool22/libltdl22.
-Bump ports that depend on libltdl22 due to shared library version change.
-Explain what to do update in the UPDATING.

It has been tested with GNOME2, XFCE4, KDE3, KDE4 and other many wm/desktop
and applications in the runtime.

With help:      marcus and kwm
Pointyhat-exp:  a few times by pav
Tested by:      pgollucci, "Romain Tartière" <romain@blogreen.org>, and
                a few MarcusCom CVS users. Also, I might have missed a few.
Repocopy by:    marcus
Approved by:    portmgr
0.7.2
15 Jul 2009 16:56:10
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
Fix a few "bad example" problems in the rc.d scripts that have been
propogated by copy and paste.

1. Primarily the "empty variable" default assignment, which is mostly
${name}_flags="", but fix a few others as well.
2. Where they are not already documented, add the existence of the _flags
(or other deleted empties) option to the comments, and in some cases add
comments from scratch.
3. Replace things that look like:
prefix=%%PREFIX%%
command=${prefix}/sbin/foo
to just use %%PREFIX%%. In many cases the $prefix variable is only used
once, and in some cases it is not used at all.
4. In a few cases remove ${name}_flags from command_args
5. Remove a long-stale comment about putting the port's rc.d script in
/etc/rc.d (which is no longer necessary).

No PORTREVISION bumps because all of these changes are noops.
0.7.2
23 Apr 2009 16:02:44
Original commit files touched by this commit This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 0.7.2. This release fixes a remote DoS bug with IKE
  fragmentation reassembly.

PR:             ports/133922
Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
0.7.1
21 Aug 2008 06:18:49
Original commit files touched by this commit This port version is marked as vulnerable.
rafan search for other commits by this committer
Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.7.1
01 Aug 2008 12:57:25
Original commit files touched by this commit This port version is marked as vulnerable.
arved search for other commits by this committer
Add an WITH_LDAP option
enable hybrid, xauth and mode-cfg per default

PR:             125748
Submitted by:   Matthew Grooms
Approved by:    vanhu (maintainer)
0.7.1
25 Jul 2008 21:39:29
Original commit files touched by this commit This port version is marked as vulnerable.
beech search for other commits by this committer
- Update to 0.7.1

PR:             ports/125957
Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
0.7
07 Jul 2008 23:59:33
Original commit files touched by this commit This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Fix build on 7.x when RC5 support is enabled.

PR:             103084, 122187
Submitted by:   Dmitry A Grigorovich
Approved by:    maintainer
0.7
02 Jul 2008 04:19:30
Original commit files touched by this commit This port version is marked as vulnerable.
beech search for other commits by this committer
- Fix: Have the racoon startup script [optionally] create its required dirs.

PR:             ports/117128
Submitted by:   John Hein <jhein@timing.com>
Approved by:    VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
0.7
04 Oct 2007 06:00:24
Original commit files touched by this commit This port version is marked as vulnerable.
edwin search for other commits by this committer
Remove always-false/true conditions based on OSVERSION 500000
0.7
02 Sep 2007 16:48:50
Original commit files touched by this commit This port version is marked as vulnerable.
arved search for other commits by this committer
Update to 0.7

PR:             115978
Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com>
0.6.7
04 Aug 2007 11:41:31
Original commit files touched by this commit This port version is marked as vulnerable.
gabor search for other commits by this committer
- Remove the DESTDIR modifications from individual ports as we have a new,
  fully chrooted DESTDIR, which does not need such any more.

Sponsored by:   Google Summer of Code 2007
Approved by:    portmgr (pav)
0.6.7
03 Jul 2007 05:40:12
Original commit files touched by this commit This port version is marked as vulnerable.
rafan search for other commits by this committer
- Revert changes to patch-configure. It was slipped in when committing
  fix for gcc 4.x

Noticed by:   sat
Approved by:  maintainer (implicit)
0.6.7
02 Jul 2007 17:00:01
Original commit files touched by this commit This port version is marked as vulnerable.
rafan search for other commits by this committer
- Fix build with gcc 4.x
- While I'm here, remove extra empty line in distinfo

PR:            ports/113383
Submitted by:  rafan
Approved by:   VANHULLEBUS Yvan <yvan.vanhullebus at netasq.com> (maintainer)
0.6.7
07 Apr 2007 04:23:27
Original commit files touched by this commit This port version is marked as vulnerable.
clsung search for other commits by this committer
- Version 0.6.7 of ipsec-tools is out, which fixes an easy to exploit
  Denial of Service (CVE-2007-1841).

PR:             ports/111319
Submitted by:   maintainer (VANHULLEBUS Yvan)
Security:       CVE-2007-1841
0.6.6
01 Feb 2007 02:42:06
Original commit files touched by this commit This port version is marked as vulnerable.
kris search for other commits by this committer
Use libtool port instead of included version to avoid objformat a.out botch
0.6.6
04 Dec 2006 10:24:33
Original commit files touched by this commit This port version is marked as vulnerable.
sat search for other commits by this committer
- An option to force NATT functionality
- Sneak in master sites beautification and use_ldconfig
  while I'm here

PR:             ports/105488
Submitted by:   bz
Approved by:    VANHULLEBUS Yvan <yvan.vanhullebus@netasq.com> (maintainer)
0.6.6
16 Aug 2006 14:00:59
Original commit files touched by this commit This port version is marked as vulnerable.
sat search for other commits by this committer
- There should be only one site in the WWW line and kame is obsolete anyway
0.6.6
20 Jun 2006 09:53:50
Original commit files touched by this commit This port version is marked as vulnerable.
pav search for other commits by this committer
- Add patch for people having trouble compiling OpenSSL bits

PR:             ports/97442
Submitted by:   Dmitry Andrianov <dimas@dataart.com>
Approved by:    VANHULLEBUS Yvan <yvan.vanhullebus@netasq.com> (maintainer)
0.6.6
16 Jun 2006 16:02:54
Original commit files touched by this commit This port version is marked as vulnerable.
pav search for other commits by this committer
- Update to 0.6.6

PR:             ports/98902
Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
0.6.5_2
03 May 2006 16:01:58
Original commit files touched by this commit This port version is marked as vulnerable.
garga search for other commits by this committer
Makefile:
- introduce OPTIONS to enable/disable features
- add more features to the OPTION dialog
- choose reasonable defaults for OPTIONS (disabled patented stuff)
- remove usesless WRKSRC line
- move LDFLAGS to the place where it is necessary
- extend CONFIGURE_ARGS to set the directory for the adminport socket
  * Note: racoonctl is useless without adminport enabled
  * create the socket dir in post-install
- bump PORTREVISION that users notice the changes
- finally: remove one item from the TODO list on top of the Makefile ;)

pkg-descr:
- shortened by one line to please portlint
(Only the first 15 lines of the commit message are shown above View all of this commit message)
0.6.5_1
23 Feb 2006 10:40:45
Original commit files touched by this commit This port version is marked as vulnerable.
ade search for other commits by this committer
Conversion to a single libtool environment.

Approved by:    portmgr (kris)
0.6.5
20 Feb 2006 20:47:50
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
Remove the FreeBSD KEYWORD from all rc.d scripts where it appears.
We have not checked for this KEYWORD for a long time now, so this
is a complete noop, and thus no PORTREVISION bump. Removing it at
this point is mostly for pedantic reasons, and partly to avoid
perpetuating this anachronism by copy and paste to future scripts.
0.6.5
06 Feb 2006 00:17:05
Original commit files touched by this commit This port version is marked as vulnerable.
barner search for other commits by this committer
- Update to 0.6.5

Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
PR:             ports/92838
0.6.4_2
24 Jan 2006 09:18:44
Original commit files touched by this commit This port version is marked as vulnerable.
vd search for other commits by this committer
Change facility from daemon to security, because daemon.info goes to
devnull by default

PR:             ports/91047
Submitted by:   PR: Brian Candler <B.Candler@pobox.com>, patch: VANHULLEBUS Yvan
<vanhu@netasq.com> (maintainer)
Approved by:    garga (mentor)
0.6.4_1
22 Jan 2006 02:50:55
Original commit files touched by this commit This port version is marked as vulnerable.
edwin search for other commits by this committer
Replace ugly "@unexec rmdir %D... 2>/dev/null || true" with @dirrmtry

Approved by:    krion@
PR:             ports/88711 (related)
0.6.4_1
04 Jan 2006 20:48:49
Original commit files touched by this commit This port version is marked as vulnerable.
edwin search for other commits by this committer
ports/security/ipsec-tools enables itself at startup

        ports/security/ipsec-tools rc.d script defaults to 'enabled'

        It also installs its own versions of setkey and libipsec.so
        which seems redundant as they are part of the base system
        and should be used in preference.

Submitted by:   Vivek Khera <vivek@khera.org>
PR:             ports/91317
0.6.4
13 Dec 2005 20:04:01
Original commit files touched by this commit This port version is marked as vulnerable.
mnag search for other commits by this committer
Update to 0.6.4

PR:             90326
Submitted by:   maintainer
0.6.3
02 Dec 2005 11:28:06
Original commit files touched by this commit This port version is marked as vulnerable.
lawrance search for other commits by this committer
- Change the location of racoon configuration files to /usr/local/etc/racoon,
  bringing it in line with the old security/racoon port and the handbook [1]
- Make use of USE_RC_SUBR instead of home-grown substitution and install
- Prevent installation of some intermediate sample configuration files

PR:             ports/89273 [1]
Submitted by:   Angelo Turetta <aturetta@bestunion.it> [1]
Approved by:    VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
0.6.3
21 Nov 2005 23:29:18
Original commit files touched by this commit This port version is marked as vulnerable.
sem search for other commits by this committer
- Update to 0.6.3. It fixes some crashes,
  including potential DoS in aggressive mode.
- Add SHA256

PR:             ports/89365
Submitted by:   ANHULLEBUS Yvan (maintainer)
0.6.2
15 Nov 2005 06:52:12
Original commit files touched by this commit This port version is marked as vulnerable.
ade search for other commits by this committer
Mass-conversion to the USE_AUTOTOOLS New World Order.  The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
        http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.
0.6.2
26 Oct 2005 18:49:58
Original commit files touched by this commit This port version is marked as vulnerable.
ehaupt search for other commits by this committer
Update to 0.6.2

PR:             88042
Submitted by:   VANHULLEBUS Yvan <yvan.vanhullebus@netasq.com> (maintainer)
0.6.1
15 Sep 2005 12:11:48
Original commit files touched by this commit This port version is marked as vulnerable.
vsevolod search for other commits by this committer
Update to 0.6.1

Submitted by:   Yvan Vanhullebus (maintainer)
0.6
05 Sep 2005 14:13:42
Original commit files touched by this commit This port version is marked as vulnerable.
vsevolod search for other commits by this committer
Add IPSec tools port - the new "official" version of racoon,
is the only one which is maintained and have lots of new features.

PR:             85544
Submitted by:   VANHULLEBUS Yvan <vanhu@netasq.com>
Approved by:    perky (mentor)

Number of commits found: 91