head 1.17; access; symbols pkgsrc-2023Q4:1.17.0.18 pkgsrc-2023Q4-base:1.17 pkgsrc-2023Q3:1.17.0.16 pkgsrc-2023Q3-base:1.17 pkgsrc-2023Q2:1.17.0.14 pkgsrc-2023Q2-base:1.17 pkgsrc-2023Q1:1.17.0.12 pkgsrc-2023Q1-base:1.17 pkgsrc-2022Q4:1.17.0.10 pkgsrc-2022Q4-base:1.17 pkgsrc-2022Q3:1.17.0.8 pkgsrc-2022Q3-base:1.17 pkgsrc-2022Q2:1.17.0.6 pkgsrc-2022Q2-base:1.17 pkgsrc-2022Q1:1.17.0.4 pkgsrc-2022Q1-base:1.17 pkgsrc-2021Q4:1.17.0.2 pkgsrc-2021Q4-base:1.17 pkgsrc-2021Q3:1.15.0.14 pkgsrc-2021Q3-base:1.15 pkgsrc-2021Q2:1.15.0.12 pkgsrc-2021Q2-base:1.15 pkgsrc-2021Q1:1.15.0.10 pkgsrc-2021Q1-base:1.15 pkgsrc-2020Q4:1.15.0.8 pkgsrc-2020Q4-base:1.15 pkgsrc-2020Q3:1.15.0.6 pkgsrc-2020Q3-base:1.15 pkgsrc-2020Q2:1.15.0.4 pkgsrc-2020Q2-base:1.15 pkgsrc-2020Q1:1.15.0.2 pkgsrc-2020Q1-base:1.15 pkgsrc-2019Q4:1.14.0.38 pkgsrc-2019Q4-base:1.14 pkgsrc-2019Q3:1.14.0.34 pkgsrc-2019Q3-base:1.14 pkgsrc-2019Q2:1.14.0.32 pkgsrc-2019Q2-base:1.14 pkgsrc-2019Q1:1.14.0.30 pkgsrc-2019Q1-base:1.14 pkgsrc-2018Q4:1.14.0.28 pkgsrc-2018Q4-base:1.14 pkgsrc-2018Q3:1.14.0.26 pkgsrc-2018Q3-base:1.14 pkgsrc-2018Q2:1.14.0.24 pkgsrc-2018Q2-base:1.14 pkgsrc-2018Q1:1.14.0.22 pkgsrc-2018Q1-base:1.14 pkgsrc-2017Q4:1.14.0.20 pkgsrc-2017Q4-base:1.14 pkgsrc-2017Q3:1.14.0.18 pkgsrc-2017Q3-base:1.14 pkgsrc-2017Q2:1.14.0.14 pkgsrc-2017Q2-base:1.14 pkgsrc-2017Q1:1.14.0.12 pkgsrc-2017Q1-base:1.14 pkgsrc-2016Q4:1.14.0.10 pkgsrc-2016Q4-base:1.14 pkgsrc-2016Q3:1.14.0.8 pkgsrc-2016Q3-base:1.14 pkgsrc-2016Q2:1.14.0.6 pkgsrc-2016Q2-base:1.14 pkgsrc-2016Q1:1.14.0.4 pkgsrc-2016Q1-base:1.14 pkgsrc-2015Q4:1.14.0.2 pkgsrc-2015Q4-base:1.14 pkgsrc-2015Q3:1.13.0.30 pkgsrc-2015Q3-base:1.13 pkgsrc-2015Q2:1.13.0.28 pkgsrc-2015Q2-base:1.13 pkgsrc-2015Q1:1.13.0.26 pkgsrc-2015Q1-base:1.13 pkgsrc-2014Q4:1.13.0.24 pkgsrc-2014Q4-base:1.13 pkgsrc-2014Q3:1.13.0.22 pkgsrc-2014Q3-base:1.13 pkgsrc-2014Q2:1.13.0.20 pkgsrc-2014Q2-base:1.13 pkgsrc-2014Q1:1.13.0.18 pkgsrc-2014Q1-base:1.13 pkgsrc-2013Q4:1.13.0.16 pkgsrc-2013Q4-base:1.13 pkgsrc-2013Q3:1.13.0.14 pkgsrc-2013Q3-base:1.13 pkgsrc-2013Q2:1.13.0.12 pkgsrc-2013Q2-base:1.13 pkgsrc-2013Q1:1.13.0.10 pkgsrc-2013Q1-base:1.13 pkgsrc-2012Q4:1.13.0.8 pkgsrc-2012Q4-base:1.13 pkgsrc-2012Q3:1.13.0.6 pkgsrc-2012Q3-base:1.13 pkgsrc-2012Q2:1.13.0.4 pkgsrc-2012Q2-base:1.13 pkgsrc-2012Q1:1.13.0.2 pkgsrc-2012Q1-base:1.13 pkgsrc-2011Q4:1.12.0.8 pkgsrc-2011Q4-base:1.12 pkgsrc-2011Q3:1.12.0.6 pkgsrc-2011Q3-base:1.12 pkgsrc-2011Q2:1.12.0.4 pkgsrc-2011Q2-base:1.12 pkgsrc-2011Q1:1.12.0.2 pkgsrc-2011Q1-base:1.12 pkgsrc-2010Q4:1.11.0.2 pkgsrc-2010Q4-base:1.11 pkgsrc-2010Q3:1.9.0.6 pkgsrc-2010Q3-base:1.9 pkgsrc-2010Q2:1.9.0.4 pkgsrc-2010Q2-base:1.9 pkgsrc-2010Q1:1.9.0.2 pkgsrc-2010Q1-base:1.9 pkgsrc-2009Q4:1.8.0.36 pkgsrc-2009Q4-base:1.8 pkgsrc-2009Q3:1.8.0.34 pkgsrc-2009Q3-base:1.8 pkgsrc-2009Q2:1.8.0.32 pkgsrc-2009Q2-base:1.8 pkgsrc-2009Q1:1.8.0.30 pkgsrc-2009Q1-base:1.8 pkgsrc-2008Q4:1.8.0.28 pkgsrc-2008Q4-base:1.8 pkgsrc-2008Q3:1.8.0.26 pkgsrc-2008Q3-base:1.8 cube-native-xorg:1.8.0.24 cube-native-xorg-base:1.8 pkgsrc-2008Q2:1.8.0.22 pkgsrc-2008Q2-base:1.8 cwrapper:1.8.0.20 pkgsrc-2008Q1:1.8.0.18 pkgsrc-2008Q1-base:1.8 pkgsrc-2007Q4:1.8.0.16 pkgsrc-2007Q4-base:1.8 pkgsrc-2007Q3:1.8.0.14 pkgsrc-2007Q3-base:1.8 pkgsrc-2007Q2:1.8.0.12 pkgsrc-2007Q2-base:1.8 pkgsrc-2007Q1:1.8.0.10 pkgsrc-2007Q1-base:1.8 pkgsrc-2006Q4:1.8.0.8 pkgsrc-2006Q4-base:1.8 pkgsrc-2006Q3:1.8.0.6 pkgsrc-2006Q3-base:1.8 pkgsrc-2006Q2:1.8.0.4 pkgsrc-2006Q2-base:1.8 pkgsrc-2006Q1:1.8.0.2 pkgsrc-2006Q1-base:1.8 pkgsrc-2005Q4:1.7.0.8 pkgsrc-2005Q4-base:1.7 pkgsrc-2005Q3:1.7.0.6 pkgsrc-2005Q3-base:1.7 pkgsrc-2005Q2:1.7.0.4 pkgsrc-2005Q2-base:1.7 pkgsrc-2005Q1:1.7.0.2 pkgsrc-2005Q1-base:1.7 pkgsrc-2004Q4:1.6.0.2 pkgsrc-2004Q4-base:1.6 pkgsrc-2004Q3:1.5.0.2 pkgsrc-2004Q3-base:1.5 pkgsrc-2004Q2:1.4.0.4 pkgsrc-2004Q2-base:1.4 pkgsrc-2004Q1:1.4.0.2 pkgsrc-2004Q1-base:1.4 pkgsrc-2003Q4:1.2.0.2 pkgsrc-2003Q4-base:1.2 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.17 date 2021.10.26.11.06.32; author nia; state Exp; branches; next 1.16; commitid G83yJyZF8er6kjeD; 1.16 date 2021.10.07.14.42.22; author nia; state Exp; branches; next 1.15; commitid EMvsIaZgYm1t8TbD; 1.15 date 2020.03.11.11.47.19; author nia; state Exp; branches; next 1.14; commitid UjrCYoAQKsItEYZB; 1.14 date 2015.11.04.00.35.29; author agc; state Exp; branches; next 1.13; commitid K5R8pkzReRJy0IHy; 1.13 date 2012.02.07.20.40.39; author morr; state Exp; branches; next 1.12; 1.12 date 2011.04.02.08.00.58; author obache; state Exp; branches; next 1.11; 1.11 date 2011.01.05.13.28.30; author adam; state Exp; branches; next 1.10; 1.10 date 2010.10.27.20.03.56; author zafer; state Exp; branches; next 1.9; 1.9 date 2010.02.04.12.34.08; author obache; state Exp; branches; next 1.8; 1.8 date 2006.02.24.14.35.30; author ghen; state Exp; branches; next 1.7; 1.7 date 2005.02.24.12.14.02; author agc; state Exp; branches; next 1.6; 1.6 date 2004.10.20.11.10.29; author cube; state Exp; branches; next 1.5; 1.5 date 2004.07.20.22.04.15; author recht; state Exp; branches; next 1.4; 1.4 date 2004.03.07.11.42.11; author recht; state Exp; branches; next 1.3; 1.3 date 2003.12.18.04.26.05; author xtraeme; state Exp; branches; next 1.2; 1.2 date 2003.09.20.16.56.41; author salo; state Exp; branches; next 1.1; 1.1 date 2003.07.12.14.43.08; author salo; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2003.07.12.14.43.08; author salo; state Exp; branches; next ; desc @@ 1.17 log @ net: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Not committed (merge conflicts...): net/radsecproxy/distinfo The following distfiles could not be fetched (fetched conditionally?): ./net/citrix_ica/distinfo citrix_ica-10.6.115659/en.linuxx86.tar.gz ./net/djbdns/distinfo dnscache-1.05-multiple-ip.patch ./net/djbdns/distinfo djbdns-1.05-test28.diff.xz ./net/djbdns/distinfo djbdns-1.05-ignoreip2.patch ./net/djbdns/distinfo djbdns-1.05-multiip.diff ./net/djbdns/distinfo djbdns-cachestats.patch @ text @$NetBSD: distinfo,v 1.16 2021/10/07 14:42:22 nia Exp $ BLAKE2s (pure-ftpd-1.0.49.tar.bz2) = f847187165aedd826059325c4d0389a0e4396bf86423df582b5cca3076c81c92 SHA512 (pure-ftpd-1.0.49.tar.bz2) = b44896d6fe2cda9169b1db93c5260bb892af14a173f2d25e60dd6530afe85d8e9156985609e35da7e5550dc123afb42bc5012beb9fca9011054cf0ed8b2eddef Size (pure-ftpd-1.0.49.tar.bz2) = 487958 bytes SHA1 (patch-Makefile.in) = 1fdd2463fe27605cc02ff445d55d5355617361c2 @ 1.16 log @net: Remove SHA1 hashes for distfiles @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.15 2020/03/11 11:47:19 nia Exp $ d3 1 a3 1 RMD160 (pure-ftpd-1.0.49.tar.bz2) = b4af1d749a8bb5a441ad504a00a03081875d734d @ 1.15 log @pure-ftpd: Update to 1.0.49 * Version 1.0.49: - This version fixes a regression introduced in version 1.0.48 that broke the external authentication feature. Reported by Peter Hudec, thanks! - Sockets from `pure-authd` and `pure-extauth` are now always owned by `root` in order to cope with the absence of `CAP_DAC_OVERRIDE` on Linux. Suggested by Arkadiusz Miśkiewicz, thanks! * Version 1.0.48: - SNI support has been added. A new service, `pure-certd`, can run external code written in any language in order to map SNI names to TLS certificates. - External authentication handlers get a new `AUTHD_CLIENT_SNI_NAME` environment variable set when the client uses SNI. - TLS certificates and keys can now be in different files. - `make install` does not overwrite existing configuration files any more. The example files layout has changed. - TLS 1.3 is enabled when using OpenSSL 1.1.x. - TLS < 1.2 is disabled by default. - Quirks for obsolete OpenSSL versions have been removed. - Username _ftp can be used as an alternative to ftp everywhere. - Password hashing parameters are now chosen according to locally available resources. The `pure-pw` command gets to new switches: `-C` (as a hint regarding the number of simultaneous login attempts) and `-M` (total memory, in MB, to reserve for password hashing). - New translation: Albanian, thanks to Moisi Xhaferaj. - The `PRET` command has been added. It can avoid opening useless data connections for nonexistent content. - Dot-files are always displayed. We don't lie any more in some commands while not lying in other commands to respect the protocol. - Support for RFC 2640 has been removed from the free version, as it was early, experimental, slow, mostly broken and unmaintained code. - The `NLST` command doesn't perform globbing any more. - The `MLSD` command now prepends the path to file names. * Version 1.0.47: - Unlike other directory listing commands, the STAT command should use TLS on the control channel even if TLS has been disabled on the data channel. It wasn't the case; this has been fixed. Thanks to Carlo Cannas. - Return a 451 error code instead of 226 on aborted uploads. - The system user "_ftp" can be used as an alternative to "ftp" for anonymous sessions. - Compatibility with libsodium > 1.0.12 was added (including minimal mode). * Version 1.0.46: - The server can now be linked against OpenSSL 1.1.x with the strict API. - Unmaintained contributions have been removed. - Globbing: the number of * in an expression has been limited to 3. * Version 1.0.45: - TLS v1.0 sessions are now refused. - Version 1.0.44 didn't properly parse the TLSCipherSuite directive. This has been fixed. * Version 1.0.44: - The Perl and Python wrappers are gone. The daemon can now use a configuration file without requiring external dependencies. - Pure-FTPd can now be linked against OpenSSL 1.1.x - The QUIT command didn't work properly when the server was compiled without support for RFC2640. This has been fixed. - 3DES was removed from the default cipher suite. * Version 1.0.43: - Passwords can now be hashed using Argon2. - The -J switch didn't work any more in 1.0.42. This has been fixed. - The default cipher suite was simplified. - Authentication against system accounts is compatible with OpenBSD 6.0. - Fixed: protocol conformance when TLS sessions are refused. - Altlog records can now be sent to `stdout`/`stderr`. * Version 1.0.42: - Compilation fix for OpenBSD and Bitrig when Pure-FTPd is not compiled with libsodium. - The connection is now dropped if HTTP commands are received. - LDAP force_default_gid and force_default_uid now work as documented. - The ONLY_ACCEPT_REUSED_SSL_SESSIONS switch (introduced in Pure-FTPd 1.0.22 circa 2009, but disabled back then due to client compatibility concerns) is now on by default, except in broken clients compatibility mode. * Version 1.0.41: - libmariadb is looked for in addition to libmysqlclient - MySQL: my_make_scrambled_password() is not always an exported symbol any more, so pure-ftpd now ships a reimplementation. - openssl/ec.h is not available on some Linux distributions that disable EC in OpenSSL. This is being tested by autoconf. - New command-line switch: -2/--certfile= to set the path to the certificate file when using TLS. * Version 1.0.40: - Support for TCP_FASTOPEN added on Linux - The LDAP configuration file didn't allow a default gid without also defining a default uid. This is no longer the case. - OpenBSD's glob() left the glob_t structure uninitialized if the pattern was larger than PATH_MAX, causing globfree() to free() an unwanted pointer. The bug was introduced in Pure-FTPd 1.0.34. * Version 1.0.39: - Explicitly include openssl/ec.h for OpenSSL 0.9.8 (CentOS 5) - Retry if SSL_shutdown() returns -1 and SSL_ERROR_WANT_(READ|WRITE) * Version 1.0.38: - The default cipher suite is now ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SH - TLS forward secrecy support was added. DH parameters are loaded from TLS_DHPARAMS_FILE, if present. ECDH is also supported - Default curve is prime256v1 (TLS_DEFAULT_ECDH_CURVE). The best curve is automatically selected when using LibreSSL. - scrypt hashed passwords can be used in the MySQL, PostgreSQL and LDAP backends. * Version 1.0.37: - The -C: prefix can be added to the cipher suite in order to make valid client certificates mandatory. This is no longer a compile-time option. - The Clear Command Channel (CCC) command is now supported. - pure-config.py is compatible with Python 3. - SSL (v2, v3) is refused by default. - The PureDB backend supports the scrypt function in order to hash passwords. This is the preferred algorithm, but requires the presence of libsodium. - DES-hashed passwords are not supported any more. - LDAP uid and gid values can over overridden in the LDAP configuration file. - New LDAPUseTLS directive for LDAP. - RC4 was killed. * Version 1.0.36: - The safe_write()/safe_read() factorization broke extauth. Using safe_read_partial() to read from the extauth pipe wasn't enough. Bug reported by Rasmus Fauske. - Improved autoconf detection of -fstack-protector and -fPIE - If 10 digits are not enough to print the size of a file in an ls-like output, bump the max number of digits to 18. This adds support for files up to 1 exabyte. - Pure-FTPd can be compiled with Cygwin, ASLR/DEP is enabled by default on Windows, and ASCII downloads on Windows have been fixed. - A new undocumented macro, ALLOW_EVERYTHING_IN_FILE_NAMES, allows any characters in a file name. Disabled by default. - Don't display dot files (except . and ..) if dot_read_ok is 0 in donlist() - but not in sglob() yet. This change is purely cosmetic. There are many ways to figure out if a file exists. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.14 2015/11/04 00:35:29 agc Exp $ a2 1 SHA1 (pure-ftpd-1.0.49.tar.bz2) = 467b5198ffeca9afa5f0aedf273553c3abe2a8e3 @ 1.14 log @Add SHA512 digests for distfiles for net category Problems found with existing digests: Package haproxy distfile haproxy-1.5.14.tar.gz 159f5beb8fdc6b8059ae51b53dc935d91c0fb51f [recorded] da39a3ee5e6b4b0d3255bfef95601890afd80709 [calculated] Problems found locating distfiles: Package bsddip: missing distfile bsddip-1.02.tar.Z Package citrix_ica: missing distfile citrix_ica-10.6.115659/en.linuxx86.tar.gz Package djbdns: missing distfile djbdns-1.05-test25.diff.bz2 Package djbdns: missing distfile djbdns-cachestats.patch Package djbdns: missing distfile 0002-dnscache-cache-soa-records.patch Package gated: missing distfile gated-3-5-11.tar.gz Package owncloudclient: missing distfile owncloudclient-2.0.2.tar.xz Package poink: missing distfile poink-1.6.tar.gz Package ra-rtsp-proxy: missing distfile rtspd-src-1.0.0.0.tar.gz Package ucspi-ssl: missing distfile ucspi-ssl-0.70-ucspitls-0.1.patch Package waste: missing distfile waste-source.tar.gz Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.13 2012/02/07 20:40:39 morr Exp $ d3 5 a7 4 SHA1 (pure-ftpd-1.0.35.tar.bz2) = e470bd886af68903ffba61832002fe90611f5756 RMD160 (pure-ftpd-1.0.35.tar.bz2) = 525ae8c4564b7a8f29ec09b882eacaa7a025a911 SHA512 (pure-ftpd-1.0.35.tar.bz2) = d54f0709fb49f480d6f3424b7a59d9c2ae3d252e6a63d98d7ccc6c8c2d3bbc959cc997ca790740afaf1207f306d516930fbd165a7c271c324954f883b3ecc688 Size (pure-ftpd-1.0.35.tar.bz2) = 482387 bytes @ 1.13 log @Update pure-ftpd to version 1.0.35 and add script to start pure-uploadscript. Changes since 1.0.30: - An old-standing bug has been fixed: when a file was renamed and overwrote an existing file, the quota wasn't properly updated. - SITE UTIME now supports the 2-arguments syntax in addition to the 5-arguments syntax. - Support for the MFMT command has been implemented. - A default directory can now be specified when using the LDAP backend. - Support SHA1 password hashing in MySQL and PostgreSQL backends - Support for braces expansion in directory listings has been disabled - Cf. CVE-2011-0418 - The list of allowed ciphers for SSL/TLS connections can now be specified (--tlsciphersuite / -J). - Shell-like escaping is now partially handled when emulating the "ls" command in order to improve compatibility with legacy clients. - Linking issues with MySQL support on Fedora have been solved. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.12 2011/04/02 08:00:58 obache Exp $ d5 1 @ 1.12 log @Update pure-ftpd to 1.0.30. * Version 1.0.30: - pure-quotacheck can now work with a large number of files. - OPTS UTF-8 is now an alias to OPTS UTF8. - Fix a STARTTLS flaw similar to Postfix's CVE-2011-0411. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.11 2011/01/05 13:28:30 adam Exp $ d3 3 a5 3 SHA1 (pure-ftpd-1.0.30.tar.bz2) = 0b73b80f102f2b62f97e6c7de55fa3e1eba1feaa RMD160 (pure-ftpd-1.0.30.tar.bz2) = 137c38d491b311e826076a85589e0ce4f1b46826 Size (pure-ftpd-1.0.30.tar.bz2) = 475402 bytes @ 1.11 log @Satify pkglint needs and switch to .tar.bz2 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.10 2010/10/27 20:03:56 zafer Exp $ d3 3 a5 3 SHA1 (pure-ftpd-1.0.29.tar.bz2) = 9bba0d6122066098273fde6db03b54825911c012 RMD160 (pure-ftpd-1.0.29.tar.bz2) = bcbff660f5ec34d39830a3ffd0594edae5745e79 Size (pure-ftpd-1.0.29.tar.bz2) = 466867 bytes @ 1.10 log @Update pure-ftpd to 1.0.29 Changelog: Version 1.0.29: * Fixed corruption when downloading files larger than 4 Gb on a 32-bits arch. * Fixed error on exit on Linux. * Downloading should be slightly faster. Version 1.0.28: * When —autorename is enabled, an upload script will now get the final file name instead of the original one. * The ALLO command now checks for the actual disk space in addition to the virtual quota. * ABOR on OSX has been fixed. * Fixed the virtual quota computation after an atomic upload has been resumed. * Fixed AUTH_ENCRYPTED. * A workaround against spurious disconnections with ncftp has been implemented. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.9 2010/02/04 12:34:08 obache Exp $ d3 3 a5 3 SHA1 (pure-ftpd-1.0.29.tar.gz) = 1be4253f2a2232dc32704e3a9b306ad7585470af RMD160 (pure-ftpd-1.0.29.tar.gz) = 188f8c9c15b0b2b968c345f7571d8c61a08efe6a Size (pure-ftpd-1.0.29.tar.gz) = 564233 bytes @ 1.9 log @Update pure-ftpd to 1.0.27. Based on PR#42711 by Fredrik Pettai. Pkgsrc changes: Honor VARBASE. * Version 1.0.27: - IPv6 connections are accepted again (regression from version 1.0.26) - SSLv3 renegociation has been disabled - .pureftpd-upload-* files can be deleted by users with no quota. - The server can be forced to shut down on iPhone. * Version 1.0.26: - Fix incompatibilities with Cyberduck and dramatically speed up directory listings and transfers when TLS is enabled with some other clients like LFTP. - Allow authentication of non-chrooted users again. It was a regression from version 1.0.25. Spotted by Juergen Daubert. * Version 1.0.25: - The FTP server can now be built as a library for iPhone and iPod Touch. - Display symbolic links in the MSLD command as symbolic links, unless the broken clients mode is enabled, just like STAT/LIST/NLST. - Enhanced compatibility with gcc 2.x and with custom installation paths. - Fix packaging issues, especially when the server isn't installed in the default paths - Downloads now require less CPU and less memory. - Fix an infinite loop that could lead to a client process burning a CPU core if the client didn't disconnect properly. Reported by Thomas Min and Margus Kaidja. - Handle fake download resumes the traditional way for the sake of being compatible with weird clients that insist on doing that. - The group name is now always displayed instead of the gid when it matches the primary user group. * Version 1.0.24: - When using LDAP in BIND mode, empty passwords are refused. Reported by Henning Brauer. * Version 1.0.23: - The LDAP schema has been fixed. - LDAP authentication through binding is now possible in addition to passwords. This allows for the FTP server to run with an unprivileged LDAP account. - In LDAP objects, the "enabled" value is accepted again as a FTPStatus property. - Privilege separation is now enabled by default. - The server should now properly compile on Solaris with privsep. - Charset conversions are properly made on directory names. - Transfers now handle every kind of disconnection. - More informative log messages for errors and activity reporting. - Virtual quotas are way more reliable and uploads are interrupted as soon as quotas are exceeded. - Atomic uploads are only used when necessary and only if --notruncate is enabled. - Dangling .pureftpd-upload files should be a thing of past. - Enhanced conformance with RFCs and better compatibility with FTP clients. - Improved SSL performance, compatibility and commands support. - By default, up to 10000 files per directory can be listed instead of 2000. - ALLO can now tell clients whether an upload would blow quotas before the upload actually starts. - PAM is now enabled by default on OSX. - Switch euid to the _pure-ftpd account (unless it's nonexistent) in the privsep process. - --without-banner is not necessary any more. Having a cookie file (--fortunefile=...) automatically disables the default banner, thus allowing full customization of the welcome banner. - ./configure --localstatedir is now honored in order to change the run-time directory. - Support for building a FTPS (implicit SSL/TLS) server, using --with-implicittls * Version 1.0.22: - the LDAP authentication backend now supports TLS encryption. - TLS encryption is supported on data channels. - downloads require way less CPU time on platforms with slow mmap() calls. - MySQL 5+ stored procedures can now be used in the authentication process. - time zones issues should be fixed for good. - on-demand directories can now be created with any set of permissions. - password scrambling of MySQL 5+ is now supported. - a catalan translation has been contributed. - spurious disconnections due to some clients keepalive tricks have been fixed. - custom authentication handlers are now informed about the encryption status of the session. - standard-conformance and compatibility with several clients have improved. - large files are now supported by default. - enhanced support for Solaris. - a bunch of bug fixes, optimizations and compatibility with newer libraries and operating system versions. - "ftp" and "anonymous" user names can have passwords if the -E switch (no anonymous logins) is specified. - in compatibility mode, non-dangling symbolic links are now displayed as if they were regular files/directories. - --with-everything now includes privsep. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.8 2006/02/24 14:35:30 ghen Exp $ d3 3 a5 3 SHA1 (pure-ftpd-1.0.27.tar.gz) = abd547ff4753e3e921e309175a786069393a8911 RMD160 (pure-ftpd-1.0.27.tar.gz) = 1ac601910ba6b92ff7671259d4a6216cb4ba391b Size (pure-ftpd-1.0.27.tar.gz) = 568556 bytes @ 1.8 log @Update pure-ftpd to version 1.0.21 and add an option for (experimental) utf8- support, from unex@@linija.org via PR pkg/32901. Changes: * When SHA1HANDSOFF is defined, we shouldn't cast a pointer to a large union to a char buffer, because of alignment required by some architectures. * WITH_THROTTLING should actually be THROTTLING in src/log_extauth.c . It fixes throttling with extauth. Reported and fixed by Marcus Merighi through Brad our beloved OpenBSD maintainer. * Rendezvous has been renamed Bonjour. * A double-close in the CHMOD command has been fixed. * The old PAM sample has been removed. * -F option added to pure-pw. * MAX_USER_LENGTH has been bumped to 127 due to popular demand. * pam/* can now be used if security/* doesn't exist. Fixes PAM detection on MacOS X. * Call tzset() in chrooted apps in order to get correct time zones in syslog messages. * simplify() simplifies paths ending by /. and /.. * MySQL's hash_password() needs 3 arguments since mySQL 4.1. * Experimental support for RFC2640 (UTF-8 filename encoding) has been added, derived from code by Jui-Nan Lin ===> added as "utf8" pkgsrc option. * The LDAP schema has been changed: FTPStatus should be a boolean. * New switch: -p (--pidfile=) for pure-authd and pure-uploadscript, by Old Sparky. * By popular request, even non-chrooted users are now denied access if their home directory is not mounted. * If die() is called during a TLS-enabled session, encrypt the death message. Contributed by Cynix. * Don't wrongly abort transfer during file upload. Fix by Patrick Gosling. * WITH_LARGE_FILES is now defined by default. * sendfile64() support on Linux. * privsep and main processes were swapped out so that pure-ftpwho displays the right pid. * OPTS MLST has been implemented. * SITE UTIME has been implemented. * TCP_CORK is on by default again. A new configure switch, --without-cork, can disable it. * Correctly format %c and %% in fakesprintf(). * The connection socket is now created with the Nagle algorithm disabled. It was the trick to dramatically improve performance when transfering a lot of small files. * Updated getopt_long() and realpath() substitutes. * Allow logging to named pipes (thanks to Steve Marple). * Use CLIENT_MULTI_STATEMENTS while connecting to a MySQL server. * Documentation updates. * MySQL errors are now logged. @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 SHA1 (pure-ftpd-1.0.21.tar.gz) = 0374031beb847d6a9aa61627c3db26cb81a28e92 RMD160 (pure-ftpd-1.0.21.tar.gz) = 5f5a86f118cf34dc52650cebc38e50130ab0c7cf Size (pure-ftpd-1.0.21.tar.gz) = 594394 bytes @ 1.7 log @Add RMD160 digests. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2004/10/20 11:10:29 cube Exp $ d3 3 a5 3 SHA1 (pure-ftpd-1.0.20.tar.gz) = cf7ac48ebb720d718b314c23ce96c6976adbd617 RMD160 (pure-ftpd-1.0.20.tar.gz) = f6161fdba94712b5b876738567fd22a669ca17e9 Size (pure-ftpd-1.0.20.tar.gz) = 561412 bytes @ 1.6 log @Update to version 1.0.20. pkgsrc changes: o move to bsd.options.mk framework o add ldap options package changes: o On MacOS X Panther and Tiger, clients were sometimes rejected when they has no reverse DNS entry and DNS resolution was enabled. This has been fixed. Thanks to Yann Thomas Gerard . o The command-line parser was broken on FreeBSD and Solaris in version 1.0.19. This has also been fixed. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.5 2004/07/20 22:04:15 recht Exp $ d4 1 @ 1.5 log @update to pure-ftpd-1.0.19 patch provided by Sergio Jimenez in PR pkg/26381 * Version 1.0.19: - A workaround for pure-ftpwho not working on OpenBSD has been added. - Real disk space is no more shown. - A possible denial of service when too many users were connected should be fixed. Reported by Agri , thanks! @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2004/03/07 11:42:11 recht Exp $ d3 2 a4 2 SHA1 (pure-ftpd-1.0.19.tar.gz) = 8b29ac6afe06fd10b36fa2b466006f922a3229de Size (pure-ftpd-1.0.19.tar.gz) = 538454 bytes @ 1.4 log @update to 1.0.18 * Version 1.0.18: - A new, nice-looking PDF version of the documentation is now available from http://www.pureftpd.org/readme.pdf . Contributed by Torgny Wernersson. - The beast now compiles and links against MySQL 4.1.x, but passwords must not be hashed with MySQL-specific hashing function. - Buglets were fixed in the documentation. - Two new translations were added : hungarian and catalan. Contributed by Bánhalmi Csaba and Contributed by Oriol Magrané. - The server now uses distinct IPv4 and IPv6 to listen to both protocols on all operating systems. A new switch, -6, forces the server to only listen to IPv6. - W3C and CLF alternative log formats are now more standard conformant. - Pure-FTPd can now produce WU-FTPd (xferlog) compatible log files. - Support for Rendezvous was added on MacOS X. - Support for Apple / GNUStep plist data output was added to pure-ftpwho. - UTF-8 characters are now supported in file names. A new switch, --without-unicode, can be used to filter out non-latin characters. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2003/12/18 04:26:05 xtraeme Exp $ d3 2 a4 2 SHA1 (pure-ftpd-1.0.18.tar.gz) = f0736357c8805c00cba9313866ef5e318001a5ed Size (pure-ftpd-1.0.18.tar.gz) = 536611 bytes @ 1.3 log @Update to 1.0.17a Changes: * Version 1.0.17a: + An old standing issue has been fixed : ungracefully aborted transfers caused the session to exit without removing ftpwho entry and atomic files. This fix also speeds up ftpwho and peruserlimit. * Version 1.0.17: + The SSL certificate file can now be changed through a new configuration switch, --with-certfile. It doesn't depend on sysconfdir any more and it defaults to the original location : /etc/ssl/private/pure-ftpd.pem. + Shadowed NIS accounts and MacOS X Panther system accounts are now processed by the pure-pwconvert tool. + The server doesn't reject users any more on Linux when capabilities are used. + The documentation has been improved (man pages, README, FAQ, typos). + Optimizations have been made. + SO_REUSEPORT is now used on FreeBSD to always bind the ftp-data port. + SSL-related error messages are now more explicit. + The SITE TIME command has been implemented. + The sample PAM configuration file has been rewritten. + A logfile parser has been added to the contribs. + MacOS X Panther specific instructions have been added. + Upload is now atomic. A file is uploaded with a temporary name and it gets its final name only once the upload has been completed. If a file already exists with the same name, the content can be preserved until the new content has been fully transfered (using the new --notruncate run-time switch). Web servers will no more serve partially transfered files during uploads. The new handling of uploads also limits the races in virtual quota handling. * Version 1.0.16c: + The PAM backend and the CGI mode were accidentally broken in version 1.0.16b. This version fixes both issues. + The Norwegian translation has been updated. * Version 1.0.16b: + The server now properly compiles with SSL/TLS on RedHat 9 systems. + pure-ftpwho now outputs nice-looking XHTML 1.1 conformant code, an XSS issue has been fixed and the local host name is now properly displayed in verbose mode. + The path to SSL certificates now follows the --sysconfdir prefix. + Minor optimizations have been made. + IPv4 and IPv6 addresses will now listen for connections even without the -4 switch on NetBSD and FreeBSD. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.2 2003/09/20 16:56:41 salo Exp $ d3 2 a4 2 SHA1 (pure-ftpd-1.0.17a.tar.gz) = ab4bc0794965620b42db88632d9b0f092b4e16b4 Size (pure-ftpd-1.0.17a.tar.gz) = 524367 bytes @ 1.2 log @Update to version 1.0.16a. Based on PR pkg/22680 by Jon Olsson. Changes: - add new build-time options: PURE_FTPD_USE_TLS, PURE_FTPD_USE_VIRTUAL_CHROOT - make the MySQL support actually work - install more documentation 1.0.16a: ======== - Fix typo (sizeof_resolved instead of sizeof resolved) in src/bsd-realpath.c Not a vulnerability because it happens in the good way, but it sometimes used to break uploadscript. 1.0.16: ======= - An obsolete comment in pure-ftpd.conf was fixed : RPMs don't parse /etc/sysconf/pure-ftpd any more. - Recognize the '##' prefix as a shadowed password - make authentication work on Solaris with shadow/NIS. - Add back some random sleep() between authentication failures in addition to the exponential sleep. Zzzzz... sleeping is good in summer... - Upgrade to automake 1.7.5. - The list of options in the pure-ftpd(8) man page was reordered - Thanks to our beloved Claudiu Costin. - SSL/TLS support was added (bits in src/{ftpd.c,ftp_parser.c,tls.c,tls.h, configure.ac}, new doc: README.TLS, new globals: tls_ctx, tls_cnx). New related commands were introduced : AUTH, PBSZ and PROT. - Uploaded files are now removed when realpath() fails and bsd_realpath() was modified to fall back to getcwd()/chdir() if we can't get a descriptor on the current directory because it is not readable. It fixes pure-uploadscript on some platforms like MacOS X. - HAVE_BROKEN_REALPATH is gone. USE_BUILTIN_REALPATH is born. - A typo in the Python configuration file wrapper was fixed : -t was used in place of -y. - MacOS X Panther has a lousy getnameinfo() implementation that doesn't fill the buffer when no DNS entry is found for a host and a numerical result wasn't explicitely asked. As a result, Pure-FTPd didn't even start on Panther (saying "bad IP address") . We now check for EAI_NONAME if available and we retry with NI_NUMERICHOST if this is what getnameinfo() returns. Thanks to Yann Bizeul for his valuable help on this issue. - Implement a working strdup() replacement in puredb for systems lacking it. - Some MAXPATHLEN / MAXPATHLEN + 1 cleanups. Basically when paths are generated by our own functions, we use MAXPATHLEN for the complete zero-terminated string. When a buffer is passed to a libc function, we reserve a MAXPATHLEN + 1 buffer and give a MAXPATHLEN size, just to avoid bad surprises if an off-by-one ever occurs in a getcwd() like function. - Don't use make_scrambled_password() in the MySQL backend because the API changed since MySQL 4.1. - Removed fixed-size constant arrays in src/crypto.c because of MacOS X linker bugs (grrr...) . @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1.1.1 2003/07/12 14:43:08 salo Exp $ d3 2 a4 2 SHA1 (pure-ftpd-1.0.16a.tar.gz) = 7795efc25595c86224912d42a18eb9527faebd10 Size (pure-ftpd-1.0.16a.tar.gz) = 509865 bytes @ 1.1 log @Initial revision @ text @d1 1 a1 1 $NetBSD$ d3 2 a4 2 SHA1 (pure-ftpd-1.0.15.tar.gz) = 301384e4967b325b439235abe661c406d6f036a3 Size (pure-ftpd-1.0.15.tar.gz) = 495335 bytes @ 1.1.1.1 log @Reimported net/pureftpd as net/pure-ftpd to make it more consistent. Updated to version 1.0.15. Addresses PR pkg/21941 by Jon Olsson. Changes: - buildlink2-ify - added PostgreSQL support (PURE_FTPD_USE_PGSQL) - fixed MySQL support (missing bsd.prefs.mk include) 1.0.15: ======= - A turkish translation has been added. Thanks to Mehmet Cokcevik . - Various functional and portability fixes have been made to the handling of upload scripts, to the pure-pw command and to the automatic creation of home directories. - Accounts in a puredb database can now be quickly listed ("pure-pw list"). - The anonymous FTP directory can now be overriden on the Windows port (using a WIN32_ANON_DIR environment variable). - The default banner has been stripped down to look more professionnal (ie. boring). - Transfer speed on BSD systems has been improved. - The license of the whole package has changed from GPL to a simplified BSD license. @ text @@