head	1.6;
access;
symbols
	RELEASE_6_1_0:1.5
	RELEASE_5_5_0:1.5
	RELEASE_6_0_0:1.5
	RELEASE_5_4_0:1.5
	RELEASE_4_11_0:1.5
	RELEASE_5_3_0:1.5
	RELEASE_4_10_0:1.5
	RELEASE_5_2_1:1.5
	RELEASE_5_2_0:1.5
	RELEASE_4_9_0:1.5
	RELEASE_5_1_0:1.5
	RELEASE_4_8_0:1.5
	RELEASE_5_0_0:1.5
	RELEASE_4_7_0:1.5
	RELEASE_4_6_2:1.5
	RELEASE_4_6_1:1.5
	RELEASE_4_6_0:1.5
	RELEASE_5_0_DP1:1.5
	RELEASE_4_5_0:1.5
	RELEASE_4_4_0:1.5
	RELEASE_4_3_0:1.5
	RELEASE_4_2_0:1.5
	RELEASE_4_1_1:1.5
	RELEASE_4_1_0:1.5
	RELEASE_3_5_0:1.5
	RELEASE_4_0_0:1.5
	RELEASE_3_4_0:1.4
	RELEASE_3_3_0:1.4
	RELEASE_3_2_0:1.4
	RELEASE_3_1_0:1.3
	RELEASE_2_2_8:1.3
	RELEASE_3_0_0:1.3
	RELEASE_2_2_7:1.2
	RELEASE_2_2_6:1.1.1.1
	ARCHIE_1:1.1.1.1
	WHISTLE_ARCHIE:1.1.1;
locks; strict;
comment	@# @;


1.6
date	2006.04.06.13.54.44;	author archie;	state dead;
branches;
next	1.5;

1.5
date	2000.01.26.01.55.08;	author archie;	state Exp;
branches;
next	1.4;

1.4
date	99.03.10.22.27.52;	author archie;	state Exp;
branches;
next	1.3;

1.3
date	98.07.30.03.14.29;	author julian;	state Exp;
branches;
next	1.2;

1.2
date	98.04.13.00.17.43;	author julian;	state Exp;
branches;
next	1.1;

1.1
date	98.01.09.23.23.46;	author julian;	state Exp;
branches
	1.1.1.1;
next	;

1.1.1.1
date	98.01.09.23.23.46;	author julian;	state Exp;
branches;
next	;


desc
@@


1.6
log
@Remove the skip port. Created before there was an IPSec implementation on
FreeBSD, it is now extremely obsolete. In any case it doesn't compile. Earlier
version of this port can still be used on older versions of FreeBSD of course.
@
text
@diff -ur --unidirectional-new-file skipsrc-1.0.orig/certs/lib/manualcrl.h work.new/certs/lib/manualcrl.h
--- skipsrc-1.0.orig/certs/lib/manualcrl.h	Fri Oct 25 13:11:47 1996
+++ work.new/certs/lib/manualcrl.h	Mon Jan 24 13:01:14 2000
@@@@ -58,7 +58,7 @@@@
 	int store(const char *filename);
 	void add(Bigint&);
 	void del(Bigint&);
-	ispresent(Bigint&);
+	int ispresent(Bigint&);
 	ManualCRL();
 	ManualCRL(const ManualCRL&);
 	ManualCRL& operator =(const ManualCRL& rhs);
@


1.5
log
@Bash this port until it compiles under -current again.
@
text
@@


1.4
log
@Build SKIP port as a KLD instead of an LKM.
@
text
@d1 12
a12 27
diff -ur --unidirectional-new-file skipsrc-1.0.orig/doc/INSTALL work.new/doc/INSTALL
--- skipsrc-1.0.orig/doc/INSTALL	Fri Oct 25 13:11:55 1996
+++ work.new/doc/INSTALL	Mon Mar  8 21:33:38 1999
@@@@ -1,6 +1,13 @@@@
 Quick-Start Guide
 -----------------
 
+    *** 
+    ***        NOTE TO FREEBSD PORT USERS
+    *** 
+    *** If you've installed SKIP using the FreeBSD port
+    *** or package, you can go directly to step #4.
+    *** 
+
 This is a quick-start guide for SKIP.  It covers installing the SKIP
 binaries and setting up IP-level encryption between two hosts.
 
@@@@ -64,7 +71,8 @@@@
 View the key manager log file to see if the the certificate
 exchange and the shared secret computation succeeded:
 
-	tail /var/log/skip.log
+	tail /var/log/skiphost.log
+	tail /var/log/messages
 
 If you have tcpdump, etherfind, snoop, or some other packet dumping
 utility, you can verify that encrypted packets are using protocol 57.
@


1.3
log
@PR:		6078
Submitted by:	archie cobbs (archie@@whistle.com)

fix typo in docs
@
text
@d1 27
a27 78
diff -ur --unidirectional-new-file skipsrc-1.0.orig/doc/README.FreeBSD skipsrc-1.0/doc/README.FreeBSD
--- skipsrc-1.0.orig/doc/README.FreeBSD	Wed Dec 31 16:00:00 1969
+++ skipsrc-1.0/doc/README.FreeBSD	Sun Apr 12 16:10:32 1998
@@@@ -0,0 +1,74 @@@@
+
+Some notes regarding the FreeBSD port of SKIP
+December 8, 1997
+
+- Most of the non-man page documentation has NOT be patched to
+  reflect the different locations of files, etc. The main difference
+  is that the original version of SKIP puts everything under /usr/skip,
+  wheras the FreeBSD port puts it under /usr/local (or elsewhere if
+  you set ${PREFIX}). This documentation can be found under
+  /usr/local/share/doc/skip.
+
+- Thanks to S. Wehner, skiphost now takes a new argument for specifying
+  the source address for encrypted packets. This allows encrypted packets
+  that are being tunnelled between two routers to have source and dest
+  IP addresses of only those two routers. This reduces firewall complexity
+  in many cases. From his description:
+
+    This adds another command line option to skiphost, namely
+    -f <source address> . Every packet going out to the other host
+    will then have this source address in the packet.
+
+- SKIP is applied to packets *after* any ipfw(8) filtering is applied.
+  This is true for both incoming and outgoing packets. Note that SKIP
+  has its own access control functionality.
+
+  One way to deal with this is to do the following:
+
+  - Setup ipfw as you normally would to restrict access to your machine.
+  - Add additional ipfw rules to allow SKIP related traffic:
+    - ipfw add 10 allow 57 from any to any
+    - ipfw add 10 allow 79 from any to any (if using SunScreen mode)
+    - ipfw add 10 allow 50 from any to any (if using raw ESP/AH mode)
+    - ipfw add 10 allow 51 from any to any (if using raw ESP/AH mode)
+    - ipfw add 10 allow udp from any to <your-address> 1640
+    - ipfw add 10 allow udp from <your-address> 1640 to any
+  - Set the default rule for SKIP to be to allow access.
+
+- Skipd will logs via syslog(3) instead of logging directly
+  to /var/log/skip.log as before, using the LOG_DAEMON facility.
+
+  You may want to redirect this output to its own log file.
+  This is done by the following steps:
+
+    1. touch /var/log/skipd.log
+    2. Edit /etc/syslog.conf and add these lines at the end:
+
+       !skipd
+       *.*		/var/log/skipd.log
+
+    3. Edit /etc/newsyslog.conf as appropriate
+    4. Restart syslogd
+
+- Each time skip is started (at reboot time), the skiphost
+  output is written to /var/log/skiphost.log. You may also
+  want to add an entry to /etc/newsyslog.conf for this one
+  as well.
+
+- Users of skip should subscribe to the SKIP mailing list
+  by sending an email to "majordomo@@skip.org" containing
+  the line "subscribe skip-info".
+
+- If you have trouble:
+
+  - If there is a problem with the port itself (e.g., it won't
+    compile on your system), use send-pr(1) to send a problem report.
+
+  - If you are having trouble with SKIP configuration, use,
+    compatibility, etc., send your questions to the SKIP
+    mailing list: skip-info@@skip.org (you should subscribe
+    to it first).
+
+Thanks,
+-Archie Cobbs  <archie@@whistle.com>
+
@


1.2
log
@Submitted by:	archie Cobbs (archie@@whistle.com)
updates to make skip port work better, from the original porter.
@
text
@d48 1
a48 1
+    1. touch /var/log/skipd
@


1.1
log
@Initial revision
@
text
@d3 2
a4 2
+++ skipsrc-1.0/doc/README.FreeBSD	Tue Dec 23 16:23:06 1997
@@@@ -0,0 +1,64 @@@@
d15 10
@


1.1.1.1
log
@Add a package for the SKIP package from Sun Microsystems,
for making secure pipes across the internet (etc.)
@
text
@@
