12:42 culot 

File::KeePass is an interface to KeePassX and KeePass V1 database files.
It supports only Rijndael encryption and only bases which were secured
via passkeys (key files not supported).

WWW: http://search.cpan.org/dist/File-KeePass/

PR:             ports/165922 (based on)
Submitted by:   Alexander Y. Grigoryev <alexander.4mail@gmail.com>
Feature safe:   yes

19:55 swills 

Perl Crypto Extention to OpenSSL

WWW:    http://search.cpan.org/dist/OpenCA-OpenSSL/
Feature safe:   yes

19:30 swills 

Perl extension for handling X509 Certificates

WWW:    http://search.cpan.org/dist/OpenCA-X509/

Feature safe:   yes

20:21 eadler 

security/blocksshd: security/sshguard is more active and a better tool.
2011-11-26 net/p5-Net-Subnets: Disappeared from CPAN

Approved by:    maintainer (implicit)

15:06 cs 

obfsproxy is a tool that attempts to circumvent censorship, by transforming the
Tor traffic between the client and the bridge. This way, censors, who usually
monitor traffic between the client and the bridge, will see innocent-looking
transformed traffic instead of the actual Tor traffic.

WWW: https://www.torproject.org/projects/obfsproxy.html.en

Approved by:    glarkin@ (mentor)

02:16 kuriyama 

This is a set of various Samba VFS modules to scan and filter virus
files on Samba file services with an anti-virus scanner.

Supported Anti-Virus engines:
  - ClamAV (clamd daemon)
  - F-Secure Anti-Virus (fsavd daemon)
  - Sophos Anti-Virus (savdid daemon)

WWW: https://github.com/fumiyas/samba-virusfilter

18:46 pgj 

HsOpenSSL is an (incomplete) OpenSSL binding for Haskell.  It can
generate RSA and DSA keys, read and write PEM files, generate message
digests, sign and verify messages, encrypt and decrypt messages.  It has
also some capabilities of creating SSL clients and servers.

WWW:    https://github.com/phonohawk/HsOpenSSL

Obtained from:  FreeBSD Haskell

16:24 pgj 

A set of extra definitions, default values and helpers for the tls
package.

WWW:    http://github.com/vincenthz/hs-tls-extra

Obtained from:  FreeBSD Haskell

16:23 pgj 

Native Haskell TLS and SSL protocol implementation for server and
client.

This provides a high-level implementation of a sensitive security
protocol, eliminating a common set of security issues through the use of
the advanced type system, high level constructions and common Haskell
features.

Currently implement the SSL3.0, TLS1.0, TLS1.1 and TLS1.2 protocol, with
only RSA supported for Key Exchange.

WWW:    http://github.com/vincenthz/hs-tls

Obtained from:  FreeBSD Haskell

16:19 pgj 

Certificates and Key reader/writer.  At the moment only X509 certificate
and unencrypted private key are supported, but will include PGP
certificate and pkcs8 private keys.

WWW:    http://github.com/vincenthz/hs-certificate

Obtained from:  FreeBSD Haskell

16:09 pgj 

This library implements the RSA encryption and signature algorithms for
arbitrarily-sized ByteStrings.  While the implementations work, they are
not necessarily the fastest ones on the planet.  Particularly key
generation.  The algorithms included are based of RFC 3447, or the
Public-Key Cryptography Standard for RSA, version 2.1 (a.k.a, PKCS#1
v2.1).

WWW:    http://hackage.haskell.org/package/RSA

Obtained from:  FreeBSD Haskell

16:06 pgj 

An unrolled implementation of MD5 purely in Haskell.

WWW:    http://hackage.haskell.org/package/pureMD5

Obtained from:  FreeBSD Haskell

22:42 jgh 

Add new port (security/tsshbatch)

'tsshbatch' is a tool to enable you to issue a command to many
servers without having to log into each one separately. When writing
scripts, this overcomes the 'ssh' limitation of not being able to
specify the password on the command line.

'tsshbatch' also understands basic 'sudo' syntax and can be used
to access a server, 'sudo' a command, and then exit.

'tsshbatch' thus allows you to write complex, hands-off scripts that
issue commands to many servers without the tedium of manual login and
'sudo' promotion. System administrators, especially, will find this
helpful when working in large server farms.

WWW: http://www.tundraware.com/Software/tsshbatch

PR:     ports/163866
Submitted by:   Tim Daneliuk, tsshbatch at tundraware.com

18:27 glarkin 

gpgr is a very light interface to the command-line GPG (GNU Privacy
Guard) tool which is soley concerned with making it as easy as
possible to encrypt files with one (or more) public keys. It does
not provide any major key management tools and does not support
decryption.

WWW: https://github.com/HHRy/gpgr

03:58 pgj 

- Connect all the previously added hs- ports to the build

Obtained from:  FreeBSD Haskell

06:26 jgh 

Add new port (security/sshpass)

Sshpass is a tool for non-interactively performing password authentication
with SSH's so called "interactive keyboard password authentication".
Most user should use SSH's more secure public key authentication instead.

WWW:    http://sourceforge.net/projects/sshpass/

PR: ports/164775
Submitted by: Hung-Yi Chen <gaod at hychen.org>

01:53 jgh 

New Port: security/binwalk

Binwalk is a tool for searching a given binary image for embedded
files and executable code. Specifically, it is designed for identifying
files and code embedded inside of firmware images. Binwalk uses the
libmagic library, so it is compatible with magic signatures created
for the Unix file utility.

Binwalk also includes a custom magic signature file which contains
improved signatures for files that are commonly found in firmware
images such as compressed/archived files, firmware headers, Linux
kernels, bootloaders, filesystems, etc.
More details are available at:

WWW: http://code.google.com/p/binwalk/

PR: ports/164821
Submitted by:   Kurt Jaeger, fbsd-ports at opsec.eu

13:51 culot 

Dancer::Plugin::Passphrase manages the hashing of passwords for Dancer apps,
allowing developers to follow best cryptography practice without having to
become a cryptography expert. It uses the bcrypt algorithm as the default,
wrapping Crypt::Eksblowfish::Bcrypt, and also supports any hashing function
provided by Digest.

WWW: http://search.cpan.org/dist/Dancer-Plugin-Passphrase/

PR:             ports/164427
Submitted by:   Grzegorz Blach <magik@roorback.net>

13:03 arved 

Add pcsc-tools, tools for testing PCSC cards and readers

First submission:
PR:             42702
Submitted by:   bms

19:24 miwi 

Certifi: Python Mozilla's SSL Certificates.

WWW:    http://pypi.python.org/pypi/certifi/

PR:             ports/163970
Submitted by:   Olivier Duchateau <duchateau.olivier@gmail.com>

13:16 culot 

The Authen::OATH module provides a Perl implementation of the
HOTP and TOTP One Time Password algorithms as defined by OATH
(http://www.openautentication.org).

WWW: http://search.cpan.org/dist/Authen-OATH/

PR:             ports/164035 (based on)
Submitted by:   Jui-Nan Lin <jnlin@csie.nctu.edu.tw>

22:21 eadler 

2012-01-08 security/cryptplug: development has ceased
2012-01-08 security/gpgme03: superceded by security/gpgme

08:42 rm 

Import plone4 dependencies part 8/15

08:16 kuriyama 

The murmur hash algorithm by Austin Appleby is an exteremely fast
algorithm that combines both excellent collision resistence and
distribution characteristics.

WWW: http://search.cpan.org/dist/Digest-MurmurHash/

14:38 rm 

- Add fifth portion of dependencies needed for Plone 4 import.

Approved by:   novel (mentor)

12:47 sunpoet 

- Add p5-CACertOrg-CA 20110724.001

CACertOrg::CA provides a copy of Certificate Authority certificate for
CACert.org. This is the Class 1 PKI Key.

sha1 13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33
md5  A6:1B:37:5E:39:0D:9C:36:54:EE:BD:20:31:46:1F:6B

WWW: http://search.cpan.org/dist/CACertOrg-CA/

16:40 vsevolod 

- Remove expired security/p5-Digest-SHA256: use the builtin
  Digest::SHA instead

03:21 lwhsu 

Add py-ssh 1.7.11, python SSH2 protocol library.

19:27 rm 

- Add first portion of dependencies needed for Plone 4 import.

Submitted by:   rm (myself, via github)
Approved by:    novel (mentor)

14:02 kuriyama 

TLS/SSL proxy in front of the application creates a transparent
encryption tunnel.

WWW: http://search.cpan.org/dist/App-TLSMe/

Feature safe:   yes

20:01 crees 

Scannedonly is a samba VFS module and a scanning daemon that ensure that only
files that have been  scanned for viruses are visible and accessible to the end
user.

Scannedonly was developed because of scalability problems with samba-vscan: high
server loads when (the same) files were requested often, and timeouts when large
zip files were requested. Scannedonly doesn't have these problems, but it does
introduce some other issues.  Choose the product that suits you best.

Scannedonly is available under the open source GPL licence. The source code
repository is available on Sourceforge.

WWW: http://olivier.sessink.nl/scannedonly/

PR:             ports/154202
Submitted by:   girald@etcom.ufrgs.br
Feature safe:   yes

14:37 ale 

The OATH Toolkit contains a shared library, command line tool
and a PAM module that makes it possible to build one-time
password authentication systems. Supported technologies include
the event-based HOTP algorithm and the time-based TOTP algorithm.
OATH is the Open AuTHentication organization which specify
the algorithms.

The components included in the package is:

- liboath:  A shared and static C library for OATH handling.
- oathtool: A command line tool for generating and validating OTPs.
- pam_oath: A PAM module for pluggable login authentication for OATH.

Feature safe:   yes

14:25 garga 

Add security/clamav-milter, clamav's meta-port with MILTER on

Submitted by:   bz@
Feature safe:   yes

13:37 sunpoet 

- Add p5-Net-SSL-ExpireDate 1.10

Net::SSL::ExpireDate get certificate from network (SSL) or local file and obtain
its expiration date.

WWW: http://search.cpan.org/dist/Net-SSL-ExpireDate/

PR:             ports/161258 (based on)
Submitted by:   Stephon Chen <stephon@gmail.com>
Feature safe:   yes

20:58 cy 

libfwbuilder-devel has been merged into fwbuilder-devel and is no longer
required.

Feature safe:   yes

08:32 wen 

AccessControl provides a general security framework for use in Zope2.

WWW: http://pypi.python.org/pypi/AccessControl

Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru>
Feature safe:   yes

07:58 wen 

The Security framework provides a generic mechanism to implement security
policies on Python objects.

WWW: http://pypi.python.org/pypi/zope.security/

Feature safe:   yes

08:08 wen 

This package provides a password manager mechanism. Password manager is
an utility object that can encode and check encoded passwords.

WWW: http://pypi.python.org/pypi/zope.password

Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru> (via github)

07:03 clsung 

Net::OpenID::Common - Libraries shared between Net::OpenID::Consumer
and Net::OpenID::Server

WWW: https://metacpan.org/release/Net-OpenID-Common

01:35 dougb 

Remove ports@ ports that have been DEPRECATED for at least 1 month

audio/shoutcast         Unfetchable; website rearranged
audio/linux-shoutcast   Unfetchable; website rearranged
chinese/scim-chewing    Does not configure
converters/py-cjkcodecs Integrated into every python version in the tree
databases/kpogre        Does not compile
deskutils/mhc           Does not fetch
deskutils/org-mode.el6  Does not fetch
deskutils/gemcal        Does not fetch
devel/erlang-thrift     Does not build
dns/domtools            Does not fetch
editors/richtext        Does not compile
games/vultures-claw     Does not fetch
games/bomb              Does not fetch
games/lgeneral-data     Bad plist
games/linux-enemyterritory-jaymod       Does not fetch
games/xphotohunter      Does not fetch
graphics/gimpshop       Fails to patch
graphics/lightspark-devel       Does not compile
graphics/xmms-plazma    Does not fetch
graphics/py-cgkit       Does not fetch, does not compile on ia64, powerpc, or
sparc64
japanese/rxvt           Does not fetch, fails to build with new utmpx
japanese/epic4          Some distfiles do not fetch
java/jde                Does not fetch
java/kaffe              Does not fetch
korean/gdick    HTMLs from the Yahoo! Korea Dictionary cannot be parsed, other
runtime problems
korean/hanterm-xf86     Does not compile
korean/stardict2-dict-kr Does not fetch
lang/p5-JavaScript      Does not fetch
lang/TenDRA     Website disappeared; last release 2006, Does not compile on
recent FreeBSD-9
mail/freepops           Does not build
mail/itraxp             Does not build
misc/tellico            Leaves file behind on deinstall
net/gsambad             Does not fetch
net/nocatauth-gateway   Uses a UID registered to another port
net/nocatauth-server    Uses a UID registered to another port
net/libosip2            Does not fetch
net/kmuddy              Does not fetch
net/netboot             Does not build
net-mgmt/jffnms         Does not fetch
net-p2p/frostwire       Does not fetch
net-p2p/azureus         Does not fetch
news/cleanscore         Does not fetch
news/nntpswitch         Does not fetch
news/p5-NewsLib         Does not fetch
russian/cyrproxy        Does not fetch
science/gerris          Does not fetch
security/opensaml       Does not fetch
sysutils/wmbattery      Does not fetch
sysutils/cpuburn        No more public distfiles
textproc/tei-guidelines-p4      Does not fetch
textproc/tei-p4         Does not fetch
textproc/py-hyperestraier       Does not fetch
textproc/tdtd.el        Does not fetch
textproc/tei-lite       Does not fetch
www/phpwiki13           Does not fetch
www/p5-Apache-Scoreboard        Depends on mod_perl
www/p5-B-LexInfo        Broken due the new mod_perl2 API
www/phpwiki             Does not fetch
www/smb2www             Apache13 is deprecated, migrate to 2.2.x+ now
www/spip                Checksum is changing daily
www/monkey              Does not fetch
x11-toolkits/jdic       Does not fetch
x11-toolkits/py-kde     Does not compile

05:19 dougb 

x11-toolkits/gambas2-gb-qt has been broken for over a year.

Remove it, and the ports that depend on it.

23:21 zi 

New port: security/pam_krb5-rh

The pam_krb5 module allows PAM-aware applications to authenticate
users by performing an AS exchange with a Kerberos KDC.

This module includes many configurable options and provides functionality
and features that other pam_krb5 modules do not provide.

WWW: https://fedorahosted.org/pam_krb5/

19:37 cs 

The anonymizing relay monitor (arm) is a terminal status monitor for Tor,
intended for command-line aficionados, ssh connections, and anyone with a tty
terminal. This works much like top does for system usage, providing real time
statistics for:

  * bandwidth, cpu, and memory usage
  * relay's current configuration
  * logged events
  * connection details (ip, hostname, fingerprint, and consensus data)
  * ... etc

PR:             ports/159017
Approved by:    glarkin@ (mentor)

19:29 cs 

Remove port security/py-arm to rename it

Suggested by:   danfe@
Approved by:    glarkin@ (mentor)

12:22 eadler 

Replacement for htpasswd.

This port will install htpasswd.py that can be found in trac trac contrib
directory.

WWW: http://trac.edgewall.org/browser/trunk/contrib/htpasswd.py

PR:             ports/160213
Submitted by:   Aldis Berjoza <aldis@bsdroot.lv>
Approved by:    bapt (mentor)

20:28 cs 

The anonymizing relay monitor (arm) is a terminal status monitor for Tor,
intended for command-line aficionados, ssh connections, and anyone with a tty
terminal. This works much like top does for system usage, providing real time
statistics for:

  * bandwidth, cpu, and memory usage
  * relay's current configuration
  * logged events
  * connection details (ip, hostname, fingerprint, and consensus data)
  * ... etc

PR:             ports/159017
Approved by:    glarkin@ (mentor)

23:33 avilla 

- Add port for shipping of PAM modules used by KDM.

It deprecates the "kde" module in base, and installs (optionally) the
"kde-np" module, which enables auto-logins.

02:13 zi 

New port: security/sssd

sssd integrates the functionality of pam_krb5 and pam_ldap/nss_ldap
with caching and additional features.

This project provides a set of daemons to manage access to remote
directories and authentication mechanisms, it provides an NSS and
PAM interface toward the system and a pluggable backend system to
connect to multiple different account sources. It is also the
basis to provide client auditing and policy services for projects
like FreeIPA.  sssd also features caching, which can allow for
offline use to assist laptop users.

WWW: https://fedorahosted.org/sssd/

PR:             ports/161555
Submitted by:   Andrew Elble <aweits@rit.edu>

02:46 wen 

RestrictedPython provides a restricted execution environment for Python,
e.g. for running untrusted code.

WWW: http://pypi.python.org/pypi/ExtensionClass

Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru> (via GitHub)

16:57 dougb 

Remove security/snort_inline:

Does not build properly, no longer supported upstream

PR:             ports/161410
Approved by:    maintainer

02:47 dougb 

Remove ports maintainted by ports@ which have passed their EXPIRATION_DATE

astro/gkrellsun         Abandonware
astro/xrmap             No more distfiles
audio/midimountain      Abandonware
audio/gkrellmss         Abandonware
audio/gnapster          Abandonware
databases/xbase         No more public distfiles
databases/xbsql         No more public distfiles
games/gtkabale          No more public distfiles
games/battleball        No more public distfiles, does not compile on ia64 or
sparc64
games/race              No more public distfiles
games/stvef-paks        No more public distfiles
games/stvef-server      No more public distfiles
games/tome              No more public distfiles
games/qkmj              No more public distfiles
games/oilwar            No more public distfiles
games/xbaby             No more public distfiles
games/xword             Abandonware
games/kslide            No more public distfiles
graphics/xmrm           No more public distfiles, does not compile on amd64 or
sparc64
graphics/giftrans       Upstream disappeared and distfile is not available
graphics/wildmagic      BROKEN for more than 6 months, does not fetch
irc/ircd-rusnet         No more public distfiles
irc/tkirc               No more public distfiles
korean/mizifont         No more public distfiles
lang/freetxl            No more public distfiles
math/nsc2ke             No more public distfiles
misc/mgp-mode.el        No more public distfiles
multimedia/p5-RIFF-Info No more public distfiles
net/p5-Net-OpenDHT      No more public distfiles
net/mudix               No more public distfiles
net-im/newsbot          No more public distfiles
net-im/libicq2000       Abandonware
net-im/gossip           No longer maintain by upstream, use net-im/empathy
instead
net-im/ickle            Abandonware
net-mgmt/nipper         BROKEN for more than 6 month, does not fetch
net-p2p/mldonkey-serverspy      No more public distfiles
news/p5-Gateway         No more public distfiles
print/epsmerge          No more public distfiles
science/at              No more public distfiles
science/pyvox           No more public distfiles
security/p5-Email-Obfuscate     No more public distfiles
security/libparanoia    No more public distfiles
security/execwrap       No more public distfiles

23:16 rene 

Remove expired port:
2011-10-04 security/cfs: Locks don't work, ports/137378, unmaintained, dead
upstream, insecure

02:36 lx 

Add NaCl, a high speed cryptography library.

02:52 sunpoet 

- Add p5-App-Genpass 2.10

If you've ever needed to create 10 (or even 10,000) passwords on the fly with
varying preferences (lowercase, uppercase, no confusing characters, special
characters, minimum length, etc.), you know it can become a pretty pesky task.

This module makes it possible to create flexible and secure passwords, quickly
and easily.

WWW: http://search.cpan.org/dist/App-Genpass/

05:21 cs 

This Python package is a high-level wrapper for Kerberos (GSSAPI) operations.
The goal is to avoid having to build a module that wraps the entire
Kerberos.framework, and instead offer a limited set of functions that do what
is needed for client/server Kerberos authentication based on
<http://www.ietf.org/rfc/rfc4559.txt>.

PR:             ports/156791
Submitted by:   Roland van Laar <roland@micite.net>
Approved by:    wen@ (co-mentor)

09:12 dougb 

As previously advertised, delete ports that have
vulnerabilities listed in portaudit, and those
that depend on them - part 1

math/mupad
        Relies on xpm, vulnerable since 2004-09-15
net-p2p/torrentflux
        Vulnerable since 2006-10-07
net/tptest
        Vulnerable since 2009-12-17
security/pgp6
        Vulnerable since 2005-07-31
www/p5-RTx-RightsMatrix
        Only works with www/rt36, which is FORBIDDEN
www/p5-RTx-Shredder
        Only works with www/rt36, which is FORBIDDEN
www/p5-RTx-Statistics
        Only works with www/rt36, which is FORBIDDEN
www/plone
        Vulnerable since 2011-02-10
www/pyblosxom
        Vulnerable since 2009-02-11
www/rt36
        Vulnerable since 2009-12-09
www/zope-archetypes
        Depends on www/plone, which is FORBIDDEN
www/zope-calendaring
        Depends on www/plone, which is FORBIDDEN
www/zope-coreblog2
        Depends on www/plone, which is FORBIDDEN
www/zope-i18nlayer
        Depends on www/plone, which is FORBIDDEN
www/zope-plonelanguagetool
        Depends on www/plone, which is FORBIDDEN
www/zope-simpleblog
        Depends on www/plone, which is FORBIDDEN

18:14 bsam 

Add linux-f10-gnutls 2.4.2, GNU Transport Layer Security library.

Changes over original shar file at the PR:
. change the maintainer to emulation@ (since it's an infrastructure linux port);
. use the latest version of the package (2.4.2-5.fc10);
. fix pkg-plist.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

17:38 bsam 

Add linux-f10-libgpg-error 1.6, common error values for all GnuPG
components.

Changes over original shar file at the PR:
. change the maintainer to emulation@ (since it's an infrastructure linux port);
. add BRANDELF_FILES;
. fix pkg-plist.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

17:14 bsam 

Add linux-f10-libgcrypt 1.4.4, general purpose crypto library based on
code used in GnuPG.

Changes over original shar file at the PR:
. change the maintainer to emulation@ (since it's an infrastructure linux port);
. use the latest version of the package (1.4.4-1.fc10);
. use PLIST_FILES, PLIST_DIRSTRY and post-install target instead of pkg-plist.

Notes: the port uses ${PREFIX}/etc/gcrypt directory for configuration files
(i.e. /compat/linux/etc/gcrypt). We usually try to use FreeBSD directories.
But there is no [/usr/local/]/etc/gcrypt directory.
I'm open to ideas on what to do here.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

16:38 bsam 

Add linux-f10-libtasn1 1.5, ASN.1 structure parser library.

Changes over original shar file at the PR:
 . change the maintainer to emulation@ (since it's an infrastructure linux
port);
 . remove commented out lines;
 . use PLIST_FILES, DOCSDIR_REL and PORTDOCS instead of pkg-plist.

PR:             ports/159007
Submitted by:   Stas Timokhin <devel@stasyan.com>

13:25 bapt 

2011-09-23 devel/libnotifymm: Doesn't build and isn't used by anything.
2011-09-11 games/abuse: BROKEN after games/abuse_sdl update
2011-09-01 security/donkey: No more public distfiles
2011-09-01 graphics/moth: No more public distfiles
2011-09-01 net-mgmt/aguri: No more public distfiles
2011-09-01 games/senso: No more public distfiles
2011-09-01 net-im/jabber-users-agent: No more public distfiles
2011-09-01 games/cchess: No more public distfiles

06:26 bapt 

2012-09-20 www/ruby-http-access: Deprecated upstream, please use
www/rubygem-httpclient
2011-09-01 sysutils/wots: No more public distfiles
2011-09-15 sysutils/gpart: Upstream disappeared
2011-09-01 sysutils/plod: No more public distfiles
2011-09-01 sysutils/checkservice: BROKEN for more than 6 month
2011-09-01 security/nsm-console: BROKEN for more than 6 month
2011-09-01 security/fressh: No more public distfiles
2011-09-01 palm/pose: No more public distfiles
2011-09-01 palm/isilo: No more public distfiles
2011-09-01 news/ija: BROKEN for more than 6 month
2011-09-01 news/PicMonger: Abandonware

21:47 pawel 

An ncurses based password database client that is compatible
with KeePass 1.x format databases.

WWW:    http://ckpass.sourceforge.net/

PR:             ports/160676
Submitted by:   Gvozdikov Veniamin <g.veniamin@googlemail.com>
Approved by:    miwi, wen (mentors implicit)

21:29 pawel 

Libkpass is a from-scratch C implementation of reading and writing
KeePass 1.x format password databases.

WWW:    http://libkpass.sourceforge.net/

PR:             ports/160675
Submitted by:   Gvozdikov Veniamin <g.veniamin@googlemail.com>
Approved by:    miwi, wen (mentors implicit)

19:31 eadler 

Massh makes it possible to perform the following on hundreds, or even
thousands of hosts in a parallelized fashion:

    * Run Remote Commands
    * Push and Execute Pre-Written Scripts
    * Push Files
    * Pull Files

WWW: http://m.a.tt/er/massh/
PR:             ports/159770
Submitted by:   Sascha Klauder <sklauder@trimind.de>
Approved by:    bapt (mentor)

13:05 tota 

- Add a new port: security/R-cran-ROAuth

  This package provides an interface to the OAuth 1.0 specification,
  allowing users to authenticate via OAuth to the server of their
  choice.

  WWW:  http://cran.r-project.org/web/packages/ROAuth/

13:01 tota 

- Add a new port: security/R-cran-digest

  The digest package provides a function 'digest' for the creation
  of hash digests of arbitrary R objects (using the md5, sha-1, sha-256
  and crc32 algorithms) permitting easy comparison of R language
  objects, as well as a function hmac() to create hash-based message
  authentication code. The md5 algorithm by Ron Rivest is specified
  in RFC 1321, the SHA-1 and SHA-256 algorithms are specified in
  FIPS-180-1 and FIPS-180-2, and the crc32 algorithm is described in
  ftp://ftp.rocksoft.com/cliens/rocksoft/papers/crc_v3.txt. For md5,
  sha-1 and sha-256, this packages uses small standalone implementations
  that were provided by Christophe Devine. For crc32, code from the
  zlib library is used. Please note that this package is not meant
  to be deployed for cryptographic purposes for which more comprehensive
  (and widely tested) libraries such as OpenSSL should be used.

  WWW:  http://cran.r-project.org/web/packages/digest/

20:21 sunpoet 

- Add p5-Crypt-OpenSSL-CA 0.21

Crypt-OpenSSL-CA - Model of an X509v3 Certification Authority

This package performs the cryptographic operations necessary to issue
X509 certificates and certificate revocation lists (CRLs).  It is
implemented as a Perl wrapper around the popular OpenSSL library.  All
certificate and CRL extensions supported by OpenSSL are available, and
then some.

WWW: http://search.cpan.org/dist/Crypt-OpenSSL-CA/

PR:             ports/160167
Submitted by:   Rodrigo Mosconi <freebsd@mosconi.mat.br>

08:04 cy 

Bring COPS back from the dead.

17:14 zi 

New port: security/duo

Duo provides simple two-factor authentication as a service via:

    1.  Phone callback
    2.  SMS-delivered one-time passcodes
    3.  Duo mobile app to generate one-time passcodes
    4.  Duo mobile app for smartphone push authentication
    5.  Duo hardware token to generate one-time passcodes

This package allows an admin (or ordinary user) to quickly add Duo
authentication to any Unix login without setting up secondary user
accounts, directory synchronization, servers, or hardware.

WWW: http://duosecurity.com

Approved by:    tabthorpe (mentor)

16:18 bapt 

Remove some expired ports

2011-08-08 deskutils/alexandria: Upcoming ruby-gnome removes dependencies
2011-08-06 security/drweb: fails to fetch (website rearranged)
2011-08-06 security/drweb-postfix: fails to fetch (website rearranged)
2011-08-06 security/drweb-qmail: fails to fetch (website rearranged)
2011-08-06 security/drweb-sendmail: fails to fetch (website rearranged)

06:49 bapt 

Removing old ruby stuff

2011-08-03 comms/ruby-serialport: Doesn't work with Ruby 1.9
2011-08-03 databases/ruby-search-namazu: Doesn't work with Ruby 1.9
2011-08-03 databases/ruby-sqlite: Doesn't work with Ruby 1.9
2011-08-03 databases/rubygem-kirbybase: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-eet: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-filelock: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-filemagic: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-metaruby: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-poll: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-rrb: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-strongtyping: Doesn't work with Ruby 1.9
2011-08-03 devel/ruby-textbuf: Doesn't work with Ruby 1.9
2011-08-03 graphics/ruby-graph: Doesn't work with Ruby 1.9
2011-08-03 graphics/ruby-libpng: Doesn't work with Ruby 1.9
2011-08-03 japanese/ruby-kakasi: Doesn't work with Ruby 1.9
2011-08-03 lang/ruby-extensions: Doesn't work with Ruby 1.9
2011-08-03 lang/ruby-lua: Doesn't work with Ruby 1.9
2011-08-03 lang/ruby-perl: Doesn't work with Ruby 1.9
2011-08-03 mail/ruby-tmail: Doesn't work with Ruby 1.9
2011-08-03 math/ruby-bitset: Doesn't work with Ruby 1.9
2011-08-03 math/ruby-bitvector: Doesn't work with Ruby 1.9
2011-08-03 math/ruby-gmp: Doesn't work with Ruby 1.9
2011-08-03 net/ruby-mpi: Doesn't work with Ruby 1.9
2011-08-03 net/ruby-nis: Doesn't work with Ruby 1.9
2011-08-03 net/ruby-pcap: Doesn't work with Ruby 1.9
2011-08-03 net/ruby-romp: Doesn't work with Ruby 1.9
2011-08-03 net/ruby-spread: Doesn't work with Ruby 1.9
2011-08-03 print/ruby-pdflib: Doesn't work with Ruby 1.9
2011-08-03 security/ruby-aes: Doesn't work with Ruby 1.9
2011-08-03 security/ruby-blowfish: Doesn't work with Ruby 1.9
2011-08-03 security/ruby-cast_256: Doesn't work with Ruby 1.9
2011-08-03 security/ruby-mcrypt: Doesn't work with Ruby 1.9
2011-08-03 security/ruby-pam: Doesn't work with Ruby 1.9
2011-08-03 sysutils/ruby-log4r: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-csv: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-formvalidator: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-gdome: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-htmltools: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-nqxml: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-quixml: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-raspell: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-tempura: Doesn't work with Ruby 1.9
2011-08-03 textproc/ruby-xtemplate: Doesn't work with Ruby 1.9
2011-08-03 www/ruby-tmpl: Doesn't work with Ruby 1.9

13:38 pgj 

DES, Blowfish, AES, TEA, SHA1, MD5, RSA, BubbleBabble, Hexdump, Support for
Word128, Word192 and Word256 and Beyond, PKCS5 Padding, Various Encryption
Modes e.g. Cipher Block Chaining all in one package, with HUnit and
QuickCheck tests, and examples.

WWW:    http://hackage.haskell.org/package/Crypto

Obtained from:  FreeBSD Haskell

05:52 bapt 

Bye bye abandonwares (part 5)

2011-08-08 russian/messarge: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 russian/pgp.language: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 security/ifd-gempc410: Has expired: Looks like an abandonware, no
more public distfiles
2011-08-08 security/libidea: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 security/rain: Has expired: Looks like an abandonware, no more public
distfiles
2011-08-08 sysutils/Tee: Has expired: No more public distfile
2011-08-08 sysutils/curly: Has expired: No more public distfiles
2011-08-08 sysutils/i855vidctl10: Has expired: No more public distfiles
2011-08-08 sysutils/ltrace: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 sysutils/rsyslog3-snmp: Has expired: unsupported upstream
2011-08-08 sysutils/xapply: Has expired: No more public distfiles
2011-08-08 textproc/asm2html: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 textproc/diff-mode.el: Has expired: Looks like an abandonware, no
more public distfiles
2011-08-08 vietnamese/gtk-im-vi: Has expired: Looks like an abandonware, no more
public distfiles
2011-08-08 www/campsite: Has expired: Does not work
2011-08-08 www/p5-PLP: Has expired: No more upstream, looks like an abandonware
2011-08-08 www/wcol: Has expired: Looks like an abandonware, no more public
distfiles
2011-08-08 x11-toolkits/sdl_gui: Has expired: Looks like an abandonware, no more
public distfiles

04:43 tota 

- Add a new port: security/rubygem-twitter_oauth

  twitter_oauth is a Ruby client for the Twitter API using OAuth.

  WWW:  https://github.com/moomerman/twitter_oauth

11:34 novel 

Add security/p11-kit, a library which provides a way to load and enumerate
PKCS#11 modules and provides a standard configuration setup for installing
PKCS#11 modules in such a way that they're discoverable.

02:43 linimon 

Disconnect the following deprecated ports that only work with java1.4:

  devel/colorer
  java/jboss3
  security/jce_policy14
  textproc/galax

PR:             ports/158969
Submitted by:   rene

22:25 mm 

This Horde package provides an OAuth consumer (http://oauth.net)
and OAuth infrastruture, and in the future will provide an OAuth server.

WWW: http://pear.horde.org

22:07 beech 

- Replaced by new pear install
security/horde4-auth

21:09 mm 

The Horde_Crypt package class provides an API for various cryptographic
systems.

WWW: http://pear.horde.org

19:46 mm 

Horde_Share provides an interface to all shared resources a user
owns or has access to.

WWW: http://pear.horde.org

19:45 mm 

The Perms package provides an interface to the Horde permissions system.

WWW: http://pear.horde.org

19:22 mm 

The Horde_Auth package provides a common interface into the various backends
for the Horde authentication system.

WWW: http://pear.horde.org

18:51 mm 

Package for managing and accessing the Horde groups system.

WWW: http://pear.horde.org

18:01 mm 

The Horde_Secret library provides an API for encrypting and decrypting
small pieces of data with the use of a shared key.

WWW: http://pear.horde.org

10:18 miwi 

Belier allows opening a shell or executing a command on a remote computer
through a SSH connection. The main feature of Belier is its ability to cross
several intermediate computers before realizing the job.

WWW: http://www.ohmytux.com/belier/index.html

PR:             ports/156757
Submitted by:   rokaz

15:52 dhn 

SSLScan is a fast SSL port scanner. SSLScan connects to SSL ports and determines
what ciphers are supported, which are the servers prefered ciphers, which SSL
protocols are supported and returns the SSL certificate. Client certificates and
private key can be configured and output is to text / XML.

PR:             ports/158111
Submitted by:   Matthieu BOUTHORS <matthieu@labs.fr>

01:32 wxs 

Free open-source disk encryption software

Main Features:
* Creates a virtual encrypted disk within a file and mounts it as
  a real disk.
* Encrypts an entire partition or storage device such as USB flash
  drive or hard drive.
* Encryption is automatic, real-time (on-the-fly) and transparent.
* Parallelization and pipelining allow data to be read and written
  as fast as if the drive was not encrypted.
* Provides plausible deniability, in case an adversary forces you
  to reveal the password:
  Hidden volume (steganography) and hidden operating system.

WWW: http://www.truecrypt.org/

NOTE: This port is experimental and provides no GUI for managing
truecrypt volumes.

PR:             ports/157072
Submitted by:   Ryan Steinmetz <rpsfa@rit.edu>

08:35 jadawin 

Dicewaregen is simple perl script that generated Diceware dictionaries, that
can be used to create secure passwords.

Dicewaregen relies on aspell, to make wordlist. Once you have wordlist you can
create Diceware dictionary. You can make few dictionaries using different
languages, merge them and then make Diceware dictionary.

More info about Diceware: http://world.std.com/~reinhold/diceware.html

WWW: http://hg.bsdroot.lv/aldis/dicewaregen/

PR:             ports/157251
Submitted by:   Aldis Berjoza <aldis at bsdroot.lv>

19:21 beech 

The Horde_Auth package provides a common interface into the
various backends for the Horde authentication system.

Approved by:    itetcu (mentor)(implicit)

02:45 lwhsu 

Add pam_google_authenticator 20110519, PAM module for two-step
authentication from Google.

PR:             ports/157152
Submitted by:   Jui-Nan Lin <jnlin at csie.nctu.edu.tw>

17:09 ohauer 

- add patch to barnyard2 to allow build with postgresql and tcl
  (reported and fixed upstream)
- display option TCL only for Master port, it makes no sense if
  the slave can de-select a required option
- remove broken barnyard-sguil (master port was removed 2011-04-04)
- add new port barnyard2-sguil [1]
- add entry to MOVED

PR:             ports/156188 [1]
Submitted by:   me
Approved by:    maintainer timeout

02:52 sunpoet 

- Add p5-String-MkPasswd

This Perl library defines a single function, mkpasswd(), to generate
random passwords. The function is meant to be a simple way for
developers and system administrators to easily generate a relatively
secure password.

WWW: http://search.cpan.org/dist/String-MkPasswd

PR:             ports/156714
Submitted by:   Frank Wall <fw@moov.de>

03:11 cy 

Libfwbuilder has been merged into fwbuilder.

23:28 stas 

Add rubygem-net-ssh-multi 1.0.1, SSH connection multiplexing library for
Ruby.

PR:             ports/ports/156780
Submitted by:   Renaud Chaput <renchap at cocoa-x.com>

20:14 bapt 

Remove unmaintained expired ports from security

2011-05-01 security/aafid2: Upstream disapear and distfile is no more available
2011-05-01 security/bjorb: Upstream disapear and distfile is no more available
2011-05-01 security/borzoi: Upstream disapear and distfile is no more available
2011-05-01 security/cmd5checkpw: Upstream disapear and distfile is no more
available
2011-05-01 security/cops: Upstream disapear and distfile is no more available
2011-05-01 security/find_ddos: Upstream disapear and distfile is no more
available
2011-05-01 security/ftpmap: Upstream disapear and distfile is no more available
2011-05-01 security/hafiye: Upstream disapear and distfile is no more available
2011-05-01 security/ident2: Upstream disapear and distfile is no more available
2011-05-01 security/liedentd: Upstream disapear and distfile is no more
available
2011-05-01 security/pam_pop3: Upstream disapear and distfile is no more
available
2011-05-01 security/poc: Upstream disapear and distfile is no more available
2011-05-01 security/portscanner: Upstream disapear and distfile is no more
available
2011-05-01 security/ppgen: Upstream disapear and distfile is no more available
2011-05-01 security/qident: Upstream disapear and distfile is no more available
2011-05-01 security/quintuple-agent: Upstream disapear and distfile is no more
available
2011-05-01 security/rc5pipe: Upstream disapear and distfile is no more available
2011-05-01 security/rid: Upstream disapear and distfile is no more available
2011-05-01 security/ssh: Upstream disapear and distfile is no more available
2011-05-01 security/tea-total: Upstream disapear and distfile is no more
available
2011-05-01 security/uberkey: Upstream disapear and distfile is no more available

17:42 skreuzer 

arpCounterattack is a program for detecting and remedying "ARP attacks." It
monitors traffic on any number of Ethernet interfaces and examines ARP replies
and gratuitous ARP requests. If it notices an ARP reply or gratuitous ARP
request that is in conflict with its notion of "correct" Ethernet/IP address
pairs, it logs the attack if logging is enabled, and, if the Ethernet
interface that the attack was seen on is is configured as being in aggressive
mode, it sends out a gratuitous ARP request and a gratuitous ARP reply with
the "correct" Ethernet/IP address pair in an attempt to reset the ARP tables
of hosts on the local network segment. The corrective gratuitous ARP request
and corrective gratuitous ARP reply can be sent from an Ethernet interface
other than the one that the attack was seen on.

WWW: http://acm.poly.edu/wiki/ARP_Counterattack

PR:             ports/151973
Submitted by:   Boris Kochergin <spawk@acm.poly.edu>

22:27 rene 

Remove unmaintained port that depends on expired security/newpki-lib:
security/newpki-client

22:25 rene 

Remove most expired ports:
2011-04-17 cad/tclspice: has been broken for more than a year
2011-04-17 comms/hcfmdm: does not compile on 7.X or higher
2011-04-17 databases/mysqlcc: has been broken for almost a year
2011-04-17 devel/ruby-rjudy: does not compile on FreeBSD 7.x or newer
2011-04-17 devel/xfc: does not compile on FreeBSD 7.x or newer
2011-04-17 devel/lamson: has been broken for a half year
2011-04-17 devel/cocktail: does not build on FreeBSD 7.x or newer
2011-04-17 devel/djgpp-gcc: has been broken for half a year
2011-04-17 devel/gauche-sdl: has been broken for a year
2011-04-17 devel/gdb53-act: does not compile on FreeBSD 7.x and up
2011-04-17 editors/zed: does not compile on FreeBSD 7.x or newer
2011-04-17 games/aqbubble: does not compile on FreeBSD 7.x or newer
2011-04-17 graphics/libvisual-plugins: has been broken for 3 years
2011-04-17 japanese/roundcube: has been broken for almost a year
2011-04-17 japanese/tkstep80: does not compile on FreeBSD 7.x or newer
2011-04-17 lang/u++: has been broken for over a half year
2011-04-17 lang/pugs: has been broken for over a year
2011-04-17 lang/mozart: does not compile on FreeBSD 7.x or newer
2011-04-17 math/linalg: does not build on FreeBSD 7.x or newer
2011-04-17 math/R-cran-igraph: has been broken for over a half year
2011-04-17 misc/ftree: has been broken for over a half year
2011-04-17 multimedia/katchtv: has been broken for a half year
2011-04-17 multimedia/libomxil-bellagio: has been broken for almost a year
2011-04-17 multimedia/banshee-mirage: has been broken for over a half year
2011-04-17 net-p2p/trackerbt: has been broken for a half year
2011-04-17 net/cap: does not compile on FreeBSD 7.x or newer
2011-04-17 net/ggsd: does not compile on FreeBSD 7.x or newer
2011-04-17 net/b2bua: does not compile on FreeBSD 7.x or newer
2011-04-17 net/penguintv: has been broken for a half year
2011-04-17 news/openftd: has been broken for almost a year
2011-04-17 palm/romeo: does not compile on FreeBSD 7.x or newer
2011-04-17 science/pcp: does not compile on FreeBSD 7.x or newer
2011-04-17 science/elmer-fem: has been broken for over a year
2011-04-17 security/newpki-lib: does not compile on FreeBSD 7.x or newer
2011-04-17 security/newpki-server: does not compile on FreeBSD 7.x or newer
2011-04-17 security/xmlsec: does not compile on FreeBSD 7.x or newer
2011-04-17 security/f-protd: has been broken for over a year
2011-04-17 sysutils/xwlans: does not compile on FreeBSD 7.x or newer
2011-04-17 www/bk_edit: does not compile on FreeBSD 7.x and newer
2011-04-17 www/bricolage: has been broken for a half year
2011-04-17 x11-toolkits/gauche-gtk: has been broken for a year
2011-04-17 x11-toolkits/gambas2-gb-qt: has been broken for over a year
2011-04-17 x11-toolkits/php-gtk2: has been broken for over a half year
2011-04-17 x11-toolkits/p5-Tcl-Tk: has been broken for 2 year
2011-04-17 x11/metisse: has been broken for over a half year

18:10 rene 

Remove expired ports:
2011-04-11 lang/gpc: development has ceased; use lang/fpc instead
2011-04-11 security/mypasswordsafe: development has ceased; try security/gorilla
instead