head 1.5; access; symbols pkgsrc-2023Q4:1.5.0.18 pkgsrc-2023Q4-base:1.5 pkgsrc-2023Q3:1.5.0.16 pkgsrc-2023Q3-base:1.5 pkgsrc-2023Q2:1.5.0.14 pkgsrc-2023Q2-base:1.5 pkgsrc-2023Q1:1.5.0.12 pkgsrc-2023Q1-base:1.5 pkgsrc-2022Q4:1.5.0.10 pkgsrc-2022Q4-base:1.5 pkgsrc-2022Q3:1.5.0.8 pkgsrc-2022Q3-base:1.5 pkgsrc-2022Q2:1.5.0.6 pkgsrc-2022Q2-base:1.5 pkgsrc-2022Q1:1.5.0.4 pkgsrc-2022Q1-base:1.5 pkgsrc-2021Q4:1.5.0.2 pkgsrc-2021Q4-base:1.5 pkgsrc-2021Q3:1.4.0.4 pkgsrc-2021Q3-base:1.4 pkgsrc-2021Q2:1.4.0.2 pkgsrc-2021Q2-base:1.4 pkgsrc-2021Q1:1.3.0.12 pkgsrc-2021Q1-base:1.3 pkgsrc-2020Q4:1.3.0.10 pkgsrc-2020Q4-base:1.3 pkgsrc-2020Q3:1.3.0.8 pkgsrc-2020Q3-base:1.3 pkgsrc-2020Q2:1.3.0.6 pkgsrc-2020Q2-base:1.3 pkgsrc-2020Q1:1.3.0.2 pkgsrc-2020Q1-base:1.3 pkgsrc-2019Q4:1.3.0.4 pkgsrc-2019Q4-base:1.3 pkgsrc-2019Q3:1.1.0.12 pkgsrc-2019Q3-base:1.1 pkgsrc-2019Q2:1.1.0.10 pkgsrc-2019Q2-base:1.1 pkgsrc-2019Q1:1.1.0.8 pkgsrc-2019Q1-base:1.1 pkgsrc-2018Q4:1.1.0.6 pkgsrc-2018Q4-base:1.1 pkgsrc-2018Q3:1.1.0.4 pkgsrc-2018Q3-base:1.1 pkgsrc-2018Q2:1.1.0.2 pkgsrc-2018Q2-base:1.1; locks; strict; comment @# @; 1.5 date 2021.11.07.18.37.02; author khorben; state Exp; branches; next 1.4; commitid jhgJUFkysWeurTfD; 1.4 date 2021.05.29.22.39.45; author khorben; state Exp; branches; next 1.3; commitid 23XxXsEGzq0CY5VC; 1.3 date 2019.12.21.23.44.59; author joerg; state Exp; branches; next 1.2; commitid 5DdnC0yUnMJpeDPB; 1.2 date 2019.11.03.11.45.35; author rillig; state Exp; branches; next 1.1; commitid llzTCvoTAgLcNoJB; 1.1 date 2018.05.01.21.10.42; author khorben; state Exp; branches; next ; commitid adtuH3YgjHU0CDAA; desc @@ 1.5 log @fwknop: let the RC script work unprivileged This takes advantage of the introduction of the SYSCONFBASE variable. Tested on NetBSD/amd64. Bumps PKGREVISION. @ text @# $NetBSD: Makefile,v 1.4 2021/05/29 22:39:45 khorben Exp $ DISTNAME= fwknop-2.6.10 PKGREVISION= 1 CATEGORIES= net MASTER_SITES= ${MASTER_SITE_GITHUB:=mrash/} MAINTAINER= khorben@@defora.org HOMEPAGE= https://github.com/mrash/fwknop/ COMMENT= Port knocking via Single Packet Authorization (SPA) LICENSE= gnu-gpl-v2 DEPENDS+= gnupg-[0-9]*:../../security/gnupg DEPENDS+= wget-[0-9]*:../../net/wget USE_TOOLS+= aclocal autoconf automake autoheader makeinfo USE_LIBTOOL= yes GNU_CONFIGURE= yes CONFIGURE_ARGS+= --infodir=${PREFIX}/${PKGINFODIR} RCD_SCRIPTS= fwknopd EGDIR= ${PREFIX}/share/examples/fwknop CONF_FILES_PERMS+= ${EGDIR}/access.conf \ ${PKG_SYSCONFDIR}/fwknop/access.conf \ ${REAL_ROOT_USER} ${REAL_ROOT_GROUP} 0600 CONF_FILES_PERMS+= ${EGDIR}/fwknopd.conf \ ${PKG_SYSCONFDIR}/fwknop/fwknopd.conf \ ${REAL_ROOT_USER} ${REAL_ROOT_GROUP} 0600 INSTALLATION_DIRS+= ${EGDIR} INFO_FILES= yes pre-configure: cd ${WRKSRC} && sh autogen.sh post-install: ${MV} ${DESTDIR}${PKG_SYSCONFDIR}/fwknop/access.conf ${DESTDIR}${EGDIR}/ ${MV} ${DESTDIR}${PKG_SYSCONFDIR}/fwknop/fwknopd.conf ${DESTDIR}${EGDIR}/ .include "../../net/libpcap/buildlink3.mk" .include "../../security/gpgme/buildlink3.mk" .include "../../mk/bsd.pkg.mk" @ 1.4 log @fwknop: update to version 2.6.10 This release brings: - [server] Add MAX_FW_TIMEOUT to access.conf stanzas to allow a maximum number of seconds for client-specified timeouts in SPA packets. This fixes issue #226 which was spotted by Jeremiah Rothschild. - [server] Bug fix in CMD_EXEC mode to make sure to call exit() upon any error from execvpe(). Without this fix, additional fwknopd processes would be started upon a user specifying a command without the necessary permissions. This bug was reported by Stephen Isard. - [build] Jeremie Courreges-Anglas and Ingo Feinerer contributed a patch to fix endian detection on OpenBSD systems based on information contained here: https://www.opengroup.org/austin/docs/austin_514.txt - [client/server] (Michael Stair) Added client and server infrastructure written in Erlang. See the erlang/ directory. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.3 2019/12/21 23:44:59 joerg Exp $ d4 1 @ 1.3 log @Needs libtool. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.2 2019/11/03 11:45:35 rillig Exp $ d3 1 a3 1 DISTNAME= fwknop-2.6.9 d21 1 d23 6 a28 4 CONF_FILES+= ${EGDIR}/access.conf \ ${PKG_SYSCONFDIR}/fwknop/access.conf CONF_FILES+= ${EGDIR}/fwknopd.conf \ ${PKG_SYSCONFDIR}/fwknop/fwknopd.conf a32 2 WRKSRC= ${WRKDIR}/fwknop-2.6.9 @ 1.2 log @net: align variable assignments pkglint -Wall -F --only aligned --only indent -r No manual corrections. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.1 2018/05/01 21:10:42 khorben Exp $ d17 1 @ 1.1 log @Import net/fwknop version 2.6.9 from wip fwknop stands for the "FireWall KNock OPerator", and implements an authorization scheme called Single Packet Authorization (SPA). This method of authorization is based around a default-drop packet filter (fwknop supports iptables and firewalld on Linux, ipfw on FreeBSD and Mac OS X, and PF on OpenBSD) and libpcap. SPA is essentially next generation port knocking. @ text @d1 1 a1 1 # $NetBSD$ d17 2 a18 2 GNU_CONFIGURE= yes CONFIGURE_ARGS+=--infodir=${PREFIX}/${PKGINFODIR} d20 5 a24 5 EGDIR= ${PREFIX}/share/examples/fwknop CONF_FILES+= ${EGDIR}/access.conf \ ${PKG_SYSCONFDIR}/fwknop/access.conf CONF_FILES+= ${EGDIR}/fwknopd.conf \ ${PKG_SYSCONFDIR}/fwknop/fwknopd.conf @