head	1.30;
access;
symbols
	RELEASE_8_1_0:1.29
	RELEASE_7_3_0:1.29
	RELEASE_8_0_0:1.29
	RELEASE_7_2_0:1.29
	RELEASE_7_1_0:1.29
	RELEASE_6_4_0:1.29
	RELEASE_5_EOL:1.29
	RELEASE_7_0_0:1.29
	RELEASE_6_3_0:1.29
	PRE_XORG_7:1.29
	RELEASE_4_EOL:1.29
	RELEASE_6_2_0:1.29
	RELEASE_6_1_0:1.29
	RELEASE_5_5_0:1.29
	RELEASE_6_0_0:1.27
	RELEASE_5_4_0:1.27
	RELEASE_4_11_0:1.27
	RELEASE_5_3_0:1.27
	RELEASE_4_10_0:1.27
	RELEASE_5_2_1:1.26
	RELEASE_5_2_0:1.26
	RELEASE_4_9_0:1.26
	RELEASE_5_1_0:1.24
	RELEASE_4_8_0:1.24
	RELEASE_5_0_0:1.23
	RELEASE_4_7_0:1.23
	RELEASE_4_6_2:1.22
	RELEASE_4_6_1:1.22
	RELEASE_4_6_0:1.22
	RELEASE_5_0_DP1:1.21
	RELEASE_4_5_0:1.19
	RELEASE_4_4_0:1.18
	RELEASE_4_3_0:1.18
	RELEASE_4_2_0:1.18
	RELEASE_4_1_1:1.18
	RELEASE_4_1_0:1.17
	RELEASE_3_5_0:1.17
	RELEASE_4_0_0:1.16
	RELEASE_3_4_0:1.16
	RELEASE_3_3_0:1.16
	RELEASE_3_2_0:1.15
	RELEASE_3_1_0:1.15
	ssh_2_0_11:1.15
	RELEASE_2_2_8:1.15
	RELEASE_3_0_0:1.14
	RELEASE_2_2_7:1.13
	RELEASE_2_2_6:1.11
	RELEASE_2_2_5:1.11
	RELEASE_2_2_1:1.8
	RELEASE_2_2_2:1.10
	ssh_1_2_10:1.1.1.1
	YLO:1.1.1;
locks; strict;
comment	@# @;


1.30
date	2010.10.15.17.40.30;	author garga;	state dead;
branches;
next	1.29;

1.29
date	2006.02.19.22.56.34;	author marius;	state Exp;
branches;
next	1.28;

1.28
date	2006.01.22.02.50.54;	author edwin;	state Exp;
branches;
next	1.27;

1.27
date	2004.01.04.14.03.52;	author netchild;	state Exp;
branches;
next	1.26;

1.26
date	2003.07.07.15.24.36;	author netchild;	state Exp;
branches;
next	1.25;

1.25
date	2003.07.07.14.19.06;	author netchild;	state Exp;
branches;
next	1.24;

1.24
date	2003.02.23.22.39.05;	author edwin;	state Exp;
branches;
next	1.23;

1.23
date	2002.06.18.23.45.19;	author pat;	state Exp;
branches;
next	1.22;

1.22
date	2002.05.17.09.20.47;	author sada;	state Exp;
branches;
next	1.21;

1.21
date	2002.04.02.04.49.20;	author knu;	state Exp;
branches;
next	1.20;

1.20
date	2002.02.22.02.52.25;	author knu;	state Exp;
branches;
next	1.19;

1.19
date	2001.09.14.13.51.27;	author dwcjr;	state Exp;
branches;
next	1.18;

1.18
date	2000.09.02.03.56.57;	author kris;	state Exp;
branches;
next	1.17;

1.17
date	2000.05.29.03.16.44;	author steve;	state Exp;
branches;
next	1.16;

1.16
date	99.06.18.20.02.29;	author ache;	state Exp;
branches;
next	1.15;

1.15
date	98.11.23.05.15.17;	author kuriyama;	state Exp;
branches;
next	1.14;

1.14
date	98.08.19.19.51.10;	author hoek;	state Exp;
branches;
next	1.13;

1.13
date	98.06.12.11.38.41;	author ache;	state Exp;
branches;
next	1.12;

1.12
date	98.06.12.07.55.14;	author dima;	state Exp;
branches;
next	1.11;

1.11
date	97.06.02.04.28.48;	author jdp;	state Exp;
branches;
next	1.10;

1.10
date	97.04.01.05.52.30;	author pst;	state Exp;
branches;
next	1.9;

1.9
date	97.04.01.03.34.25;	author pst;	state Exp;
branches;
next	1.8;

1.8
date	96.10.16.04.56.12;	author ache;	state Exp;
branches;
next	1.7;

1.7
date	96.08.08.13.57.02;	author peter;	state Exp;
branches;
next	1.6;

1.6
date	96.07.18.11.33.47;	author torstenb;	state Exp;
branches;
next	1.5;

1.5
date	96.07.16.00.33.19;	author ache;	state Exp;
branches;
next	1.4;

1.4
date	96.06.15.17.50.18;	author jkh;	state Exp;
branches;
next	1.3;

1.3
date	96.06.07.04.33.33;	author peter;	state Exp;
branches;
next	1.2;

1.2
date	96.01.21.00.32.46;	author ache;	state Exp;
branches;
next	1.1;

1.1
date	95.10.07.01.19.27;	author torstenb;	state Exp;
branches
	1.1.1.1;
next	;

1.1.1.1
date	95.10.07.01.19.27;	author torstenb;	state Exp;
branches;
next	;


desc
@@


1.30
log
@Remove expired ports

2010-10-15 security/ssh2: abandoned upstream
2010-10-15 security/ssh2-nox11: abandoned upstream
@
text
@bin/scp
bin/scp2
bin/sftp
bin/sftp2
bin/sftp-server
bin/sftp-server2
bin/ssh
bin/ssh-add
bin/ssh-add2
bin/ssh-agent
bin/ssh-agent2
%%WITH_X11:%%bin/ssh-askpass
%%WITH_X11:%%bin/ssh-askpass2
bin/ssh-dummy-shell
bin/ssh-keygen
bin/ssh-keygen2
bin/ssh-probe
bin/ssh-probe2
bin/ssh-signer
bin/ssh-signer2
bin/ssh2
@@unexec if cmp -s %D/etc/ssh2/sshd2_config %D/etc/ssh2/sshd2_config.example; then rm -f %D/etc/ssh2/sshd2_config; fi
etc/ssh2/sshd2_config.example
@@exec [ -f %B/sshd2_config ] || cp %B/%f %B/sshd2_config
@@unexec if cmp -s %D/etc/ssh2/ssh2_config %D/etc/ssh2/ssh2_config.example; then rm -f %D/etc/ssh2/ssh2_config; fi
etc/ssh2/ssh2_config.example
@@exec [ -f %B/ssh2_config ] || cp %B/%f %B/ssh2_config
etc/ssh2/ssh_dummy_shell.out
etc/ssh2/subconfig/anonymous.example
etc/ssh2/subconfig/host_ext.example
etc/ssh2/subconfig/host_int.example
etc/ssh2/subconfig/user.example
@@exec [ -d %D/etc/ssh2/hostkeys ] || mkdir %D/etc/ssh2/hostkeys
@@exec [ -d %D/etc/ssh2/knownhosts ] || mkdir %D/etc/ssh2/knownhosts
sbin/sshd
sbin/sshd-check-conf
sbin/sshd2
%%PORTDOCS%%%%DOCSDIR%%/CHANGES
%%PORTDOCS%%%%DOCSDIR%%/FAQ
%%PORTDOCS%%%%DOCSDIR%%/HOWTO.anonymous.sftp
%%PORTDOCS%%%%DOCSDIR%%/LICENSE
%%PORTDOCS%%%%DOCSDIR%%/NEWS
%%PORTDOCS%%%%DOCSDIR%%/README
%%PORTDOCS%%%%DOCSDIR%%/REGEX-SYNTAX
%%PORTDOCS%%%%DOCSDIR%%/SSH2.QUICKSTART
%%PORTDOCS%%%%DOCSDIR%%/RFC.authorization_program_protocol
%%PORTDOCS%%%%DOCSDIR%%/RFC.kbdint_plugin_protocol
%%PORTDOCS%%@@dirrm %%DOCSDIR%%
%%EXAMPLESDIR%%/ext_authorization_example.sh
%%EXAMPLESDIR%%/kbdint_plugin_example.sh
@@dirrm %%EXAMPLESDIR%%
@@dirrmtry etc/ssh2/hostkeys
@@dirrmtry etc/ssh2/knownhosts
@@dirrmtry etc/ssh2/subconfig
@@unexec rmdir %D/etc/ssh2 2> /dev/null || echo "If permanently deleting this package, %D/etc/ssh2 and its contents must be removed manually."
@


1.29
log
@- Switch to a rc.d startup script.
- Move the generation of the host key (if not present) from the package/
  port installation to the startup script in order to be in line with
  what the base OpenSSH and the OpenSSH-portable port do.
- Flush stdout when updating the transfer progress bar of sftp2 and scp2
  so the info displayed is up to date. [1]
- Remove obsolete USE_REINPLACE, remove trailing white space in Makefile.

PR:		91262 [1]
Approved by:	netchild
@
text
@@


1.28
log
@Replace ugly "@@unexec rmdir %D... 2>/dev/null || true" with @@dirrmtry

Approved by:    krion@@
PR:             ports/88711 (related)
@
text
@a21 3
etc/rc.d/sshd2.sh.sample
@@exec if [ "`grep ssh /etc/inetd.conf | grep -v ^#ssh`" = "" ] & [ ! -f %B/sshd2.sh ]; then cp %B/%f %B/sshd2.sh; fi
@@unexec if [ -f %B/sshd2.sh ]; then echo "If permanently deleting this package, %B/sshd2.sh must be removed manually."; fi
a34 1
@@exec if [ ! -f %D/etc/ssh2/hostkey ]; then umask 022; echo "Generating host key."; %D/bin/ssh-keygen2 -P -t dsa "DSA hostkey" %D/etc/ssh2/hostkey;  fi
@


1.27
log
@HEADS-UP: Traditionally this port automatically installs a start-up script for
	  sshd2 unless it detects an entry for ssh in /etc/inetd.conf. As there
	  are three ways to automatically start sshd2 and /etc/rc.conf is the
	  simplest one (at least on FreeBSD 4, with rcNG once /etc/rc.d/sshd is
	  fixed to not be tailored to the base sshd) this version of the port
	  is the last one to do so. Beginning with next version it will only
	  install a sample start-up script. To prevent foot shooting when
	  updating to the next version this port won't remove an existing
	  start-up scripting on deinstall. Please see also the pkg-message that
	  gets displayed on installation.

- Update to 3.2.9.1. This is _not_ a security update. For the non-commercial
  version the only change worth mentioning since 3.2.5 is the addition of the
  config option "DisableVersionFallback", see sshd2_config(5) for further
  details.
- Use sites from the official list of mirrors for MASTER_SITES.
- Adjust COMMENT to justify why this port is security/ssh2, not security/ssh3.
- Revise list of installed documentation. No longer install MANIFEST (list of
  source files) and INSTALL, install RFCs referenced in sshd2_config(5) and
  HOWTO.anonymous.sftp (patched to better fit FreeBSD).
- Remove WITH_STATIC_SFTP knob. Using the internal sftp-server instead of the
  external (static) one is much simpler to set up and maintain (using the
  external one requires to install a copy of it in the home directory of the
  anonymous sftp user which has to be manually updated when installing a newer
  version of the port).
- Remove WITHOUT_TCPWRAP knob, libwarp is part of FreeBSD since 3.2.
- Install examples scripts for the ExternalAuthorizationProgram and
  AuthKbdInt.Plugin config options in EXAMPLESDIR. See sshd2_config(5) for
  further information.
- Replace references to /etc/ssh2/* in config files with PREFIX/etc/ssh2/*.
- Add a pkg-message displaying the different methods to automatically start
  sshd2.
- Switch to the start-up script for Solaris which is part of the tarball, it
  handles the name of the pidfile better.
- Fix detection of X11 headers, this enables compilation with support for X11
  SECURITY extension. See TrustX11Applications in ssh2_config(5) for further
  information.
- Add a test target to the Makefile of the port, the tests seem a bit outdated
  and buggy but it's enough to e.g. do a bit of speed comparison when building
  with different compilers.
- Minor changes and clean-up (sort pkg-plist, don't add /usr/local/lib to
  the library search path when compiling, etc.).

Revive some local modifications lost with the update to 3.1.0:
- Use login_cap(3)/login_class(3) facilities to set environment variables,
  prority and shell, get motd, copyright, hushlogin and nologin, respect
  ignorenologin and requirehome. This changes are roughly based on former
  patch-ah and patch-ai and patches of security/openssh.
- Don't print "No mail.", it's not FreeBSD login style.

Submitted by:	maintainer
@
text
@d56 3
a58 3
@@unexec rmdir %D/etc/ssh2/hostkeys 2> /dev/null || true
@@unexec rmdir %D/etc/ssh2/knownhosts 2> /dev/null || true
@@unexec rmdir %D/etc/ssh2/subconfig 2> /dev/null || true
@


1.26
log
@Fix plist.

No PORTREVISION update because of the short timeframe between the commits.

Submitted by:	maintainer
@
text
@d1 1
a1 1
bin/ssh2
d3 1
d5 1
a5 6
bin/ssh-agent2
%%WITH_X11:%%bin/ssh-askpass2
bin/ssh-keygen2
bin/ssh-add2
bin/ssh-signer2
bin/ssh-probe2
a6 3
%%STATIC%%bin/sftp-server2.static
bin/ssh-dummy-shell
%%STATIC%%bin/ssh-dummy-shell.static
d8 2
d11 1
a11 1
bin/ssh-add
d13 2
d16 3
a18 3
bin/scp
bin/sftp
bin/sftp-server
d20 5
a24 2
bin/ssh-probe
etc/rc.d/sshd.sh
d38 3
a41 3
sbin/sshd-check-conf
sbin/sshd
@@exec if [ ! -f %D/etc/ssh2/hostkey ]; then umask 022; echo "Generating host key."; %D/bin/ssh-keygen2 -P -t dsa "DSA hostkey" %D/etc/ssh2/hostkey;  fi
d44 1
a44 1
%%PORTDOCS%%%%DOCSDIR%%/INSTALL
a45 1
%%PORTDOCS%%%%DOCSDIR%%/MANIFEST
d50 2
d53 3
@


1.25
log
@Update to 3.2.5:

        * Fixed a critical security bug with RSA signature
          verification. Mitigating factors: DSA is used by default (not
          vulnerable). Also, the attack requires that attacker has the
          public key and the attacker needs to precompute the signature
          data so, that it looks like a valid PKCS#1 signature. This is a
          non-trivial task to perform without the private
          key. Nonetheless, all users should update their servers and
          clients as soon as convenient. Workarounds are to not use RSA
          keys as host keys (though connecting to existing hosts with RSA
          hostkeys poses a serious risk with a vulnerable client), and
          disabling publickey authentication. Update your clients and
          servers.

 Update MASTER_SITES, remove sites that are down or no langer carry ssh2
  and add some new.
- Turn Kerberos and group writeability support into knobs so one hasn't to
  edit the Makefile.
- Remove dependency on security/tcp_wrapper for tcp-wrapper support on
  systems < FreeBSD 4.0, that port is no longer persistent.
- Fix pkg-plist for WITH_STATIC_SFTP case.
- Replace referneces to /etc/ssh2/* in man pages with references to
  PREFIX/etc/ssh2/* in order to better fit for FreeBSD.
- Replace "$(ETCDIR)" in ssh_dummy_shell.out with PREFIX/etc.
- Remove duplicated mechanism for generating the host key if an old one isn't
  found in the post-install target in the Makefile of the port, this is
  already done by the generate-host-key target in WRKSRC/apps/ssh/Makefile.
- Fix differences between the install action done when installing the
  package versus installing the port. I.e. make the package create the host
  key with what ever bits ssh-keygen2 defaults to (currently 2048) instead
  of 1024 bits, copy over the configuration files for ssh2 and sshd2 from
  the examples if not already existent and create the directories for the
  global host keys and known hosts files.
- Add some foo to pkg-plist to remove as much as possible from PREFIX/etc/ssh2,
  i.e. configuration files that don't differ from the corresponding examples
  and empty directories. Inform the user to remove what's left over if any.
- Use _PATH_STDPATH instead of _PATH_DEFPATH so that the default PATH gets
  set to "/usr/bin:/bin:/usr/sbin:/sbin:PREFIX/bin" instead of
  "/usr/bin:/bin:PREFIX/bin". Using _PATH_STDPATH is consistent with OpenSSH
  and seems more usefull. One might want to patch ssh2 to also use login_cap(3)
  so that e.g. PATH gets picked up from whatever is defined in /etc/login.conf.
- Change MAINTAINER.
- Replace "share/doc/ssh2" with %%DATADIR%% in pkg-plist.

Submitted by:	Marius Strobl <marius@@alchemy.franken.de>
Approved by:	maintainer
@
text
@d42 10
a51 10
%%PORTDOCS%%%%DATADIR%%/CHANGES
%%PORTDOCS%%%%DATADIR%%/FAQ
%%PORTDOCS%%%%DATADIR%%/INSTALL
%%PORTDOCS%%%%DATADIR%%/LICENSE
%%PORTDOCS%%%%DATADIR%%/MANIFEST
%%PORTDOCS%%%%DATADIR%%/NEWS
%%PORTDOCS%%%%DATADIR%%/README
%%PORTDOCS%%%%DATADIR%%/REGEX-SYNTAX
%%PORTDOCS%%%%DATADIR%%/SSH2.QUICKSTART
%%PORTDOCS%%@@dirrm %%DATADIR%%
@


1.24
log
@Update port: security/ssh2 3.2.2 -> 3.2.3

PR:		ports/48542
Submitted by:	Lars Eggert <larse@@isi.edu>
@
text
@d11 1
d13 1
d25 1
d27 2
d30 1
d36 2
d41 15
a55 11
@@exec if [ ! -f %D/etc/ssh2/hostkey ]; then umask 022; echo "Generating 1024 bit host key."; %D/bin/ssh-keygen2 -P -b 1024 -t dsa %D/etc/ssh2/hostkey;  fi
%%PORTDOCS%%share/doc/ssh2/CHANGES
%%PORTDOCS%%share/doc/ssh2/FAQ
%%PORTDOCS%%share/doc/ssh2/INSTALL
%%PORTDOCS%%share/doc/ssh2/LICENSE
%%PORTDOCS%%share/doc/ssh2/MANIFEST
%%PORTDOCS%%share/doc/ssh2/NEWS
%%PORTDOCS%%share/doc/ssh2/README
%%PORTDOCS%%share/doc/ssh2/REGEX-SYNTAX
%%PORTDOCS%%share/doc/ssh2/SSH2.QUICKSTART
%%PORTDOCS%%@@dirrm share/doc/ssh2
@


1.23
log
@Update to 3.2.0

PR:		39491
Submitted by:	maintainer
@
text
@a11 2
bin/ssh-pubkeymgr
bin/ssh-chrootmgr
d15 1
a15 1
bin/ssh-askpass
d23 2
a24 2
etc/ssh2/sshd2_config.sample
etc/ssh2/ssh2_config.sample
d26 4
@


1.22
log
@Install default config files as *.sample instead of overwriting existing ones.
Note:	The PR includes diffs to cope with WITHOUT_X11 env,
	but this was already committed by knu-san.
	So I just added CONFIGURE_ARGS line, please verify it.
PR:	ports/35385
Submitted by:	maintainer
@
text
@a9 1
bin/ssh-pam-client
a31 1
%%PORTDOCS%%share/doc/ssh2/BUG.REPORT
@


1.21
log
@ssh_askpass2 is built only when X11 is installed.  Support
{WITH,WITHOUT}_X11 and detect ${X11BASE}/lib/libX11.a.

Reported by:	bento
Obtained from:	security/ssh (partly)
@
text
@d5 1
a9 1
%%WITH_X11:%%bin/ssh-askpass2
d26 2
a27 4
etc/ssh2/hostkey
etc/ssh2/hostkey.pub
etc/ssh2/sshd2_config
etc/ssh2/ssh2_config
d32 1
a32 4
@@dirrm etc/ssh2/knownhosts
@@dirrm etc/ssh2/hostkeys
@@dirrm etc/ssh2
@@exec if [ ! -f %D/etc/ssh2/hostkey ]; then umask 022; echo "Generating 1024 bit host key."; %D/bin/ssh-keygen2 -P -b 1024 -t dsa -c "1024-bit dsa hostkey" -o %D/etc/ssh2/hostkey;  fi
@


1.20
log
@- Update to 3.1.0.

  PR:		ports/34740
  Submitted by:	larse@@ISI.EDU

- Add %%PORTDOCS%% to pkg-plist.

- Assign MAINTAINER to the submitter.

  Requested by:	issei (previous MAINTAINER)
@
text
@d9 1
a9 1
bin/ssh-askpass2
@


1.19
log
@Remove extra file from pkg-plist to fix package building
@
text
@d9 2
d26 2
d32 1
d34 3
a36 8
share/doc/ssh2/BUG.REPORT
share/doc/ssh2/CHANGES
share/doc/ssh2/FAQ
share/doc/ssh2/INSTALL
share/doc/ssh2/LICENSE
share/doc/ssh2/README
share/doc/ssh2/SSH2.QUICKSTART
@@dirrm share/doc/ssh2
d38 11
@


1.18
log
@Upgrade to ssh-2.3.0.

PR:	ports/20869
Submitted by:	Issei Suzuki <issei@@issei.org> (Maintainer)
@
text
@a8 1
bin/ssh-askpass2
@


1.17
log
@Update to version 2.1.0pl2.

PR:		18620
Submitted by:	maintainer
@
text
@a1 3
@@exec mv %D/bin/ssh %D/bin/ssh.old
bin/ssh
@@unexec mv -f %B/%f.old %B/%f
a2 3
@@exec mv %D/bin/scp %D/bin/scp.old
bin/scp
@@unexec mv -f %B/%f.old %B/%f
a3 3
bin/sftp
bin/sftp-server2
bin/sftp-server
a4 3
@@exec mv %D/bin/ssh-agent %D/bin/ssh-agent.old
bin/ssh-agent
@@unexec mv -f %B/%f.old %B/%f
a5 3
@@exec mv %D/bin/ssh-keygen %D/bin/ssh-keygen.old
bin/ssh-keygen
@@unexec mv -f %B/%f.old %B/%f
d7 9
a15 1
@@exec mv %D/bin/ssh-add %D/bin/ssh-add.old
a16 3
@@unexec mv -f %B/%f.old %B/%f
bin/ssh-askpass2
@@exec mv %D/bin/ssh-askpass %D/bin/ssh-askpass.old
d18 5
a22 3
@@unexec mv -f %B/%f.old %B/%f
bin/ssh-dummy-shell
bin/ssh-probe2
d24 2
a25 2
bin/ssh-signer2
bin/ssh-signer
a27 13
etc/ssh2/sshd2_config
@@exec mv %D/man/man1/ssh.1.gz %D/man/man1/ssh.old.1.gz
@@unexec mv -f %B/ssh.old.1.gz %B/%f
@@exec mv %D/man/man1/ssh-add.1.gz %D/man/man1/ssh-add.old.1.gz
@@unexec mv -f %B/ssh-add.old.1.gz %B/%f
@@exec mv %D/man/man1/ssh-agent.1.gz %D/man/man1/ssh-agent.old.1.gz
@@unexec mv -f %B/ssh-agent.old.1.gz %B/%f
@@exec mv %D/man/man1/ssh-keygen.1.gz %D/man/man1/ssh-keygen.old.1.gz
@@unexec mv -f %B/ssh-keygen.old.1.gz %B/%f
@@exec mv %D/man/man1/scp.1.gz %D/man/man1/scp.old.1.gz
@@unexec mv -f %B/scp.old.1.gz %B/%f
@@exec mv %D/man/man8/sshd.8.gz %D/man/man8/sshd.old.8.gz
@@unexec mv -f %B/sshd.old.8.gz %B/%f
a28 1
@@exec mv %D/sbin/sshd %D/sbin/sshd.old
a29 1
@@unexec mv -f %B/%f.old %B/%f
d34 1
a34 1
share/doc/ssh2/LICENSING
@


1.16
log
@upgrade to 2.0.13
XXXtgetent from original PR fixed

PR: 12279
Submitted by: Issei Suzuki <issei@@issei.org>
@
text
@d29 3
d35 1
a36 1
man/man1/sftp.1.gz
a37 1
man/man1/ssh.1.gz
a39 1
man/man1/ssh-add.1.gz
a41 1
man/man1/ssh-agent.1.gz
a43 1
man/man1/ssh-keygen.1.gz
a45 1
man/man1/scp.1.gz
a47 1
man/man8/sshd.8.gz
d53 1
d55 2
d59 1
@


1.15
log
@Secure shell client and server (remote login program).

PR:		ports/8204
Submitted by:	Issei Suzuki <issei@@jp.FreeBSD.ORG>
@
text
@d29 2
@


1.14
log
@The pkg_create(1) handles symlinks correctly.  Delist manpages.
@
text
@d1 6
a6 2
etc/rc.d/sshd.sh
bin/scp1
d8 15
a22 4
bin/ssh1
bin/ssh
bin/slogin
bin/ssh-add1
d24 3
a26 3
bin/ssh-agent1
bin/ssh-agent
bin/ssh-askpass1
d28 8
a35 8
bin/ssh-keygen1
bin/ssh-keygen
bin/make-ssh-known-hosts1
bin/make-ssh-known-hosts
etc/ssh_config
etc/sshd_config
man/man1/make-ssh-known-hosts.1.gz
man/man1/scp.1.gz
d37 2
d40 2
d43 5
a47 2
man/man1/ssh.1.gz
man/man1/slogin.1.gz
d49 3
a51 1
sbin/sshd1
d53 6
a58 1
@@exec if [ ! -f %D/etc/ssh_host_key ]; then echo "Generating a secret host key.." ; %D/bin/ssh-keygen -N "" -f %D/etc/ssh_host_key; fi
@


1.13
log
@Fix all *1 links
@
text
@d3 1
a3 2
@@exec ln -fs %f %B/scp
@@unexec rm -f %B/scp
d5 2
a6 4
@@exec ln -fs %f %B/ssh
@@unexec rm -f %B/ssh
@@exec ln -fs %f %B/slogin
@@unexec rm -f %B/slogin
d8 1
a8 2
@@exec ln -fs %f %B/ssh-add
@@unexec rm -f %B/ssh-add
d10 1
a10 2
@@exec ln -fs %f %B/ssh-agent
@@unexec rm -f %B/ssh-agent
d12 1
a12 2
@@exec ln -fs %f %B/ssh-askpass
@@unexec rm -f %B/ssh-askpass
d14 1
a14 2
@@exec ln -fs %f %B/ssh-keygen
@@unexec rm -f %B/ssh-keygen
d16 1
a16 2
@@exec ln -fs %f %B/make-ssh-known-hosts
@@unexec rm -f %B/make-ssh-known-hosts
d19 8
a26 23
man/man1/make-ssh-known-hosts1.1.gz
@@exec ln -fs %f %B/make-ssh-known-hosts.1.gz
@@unexec rm -f %B/make-ssh-known-hosts.1.gz
man/man1/scp1.1.gz
@@exec ln -fs %f %B/scp.1.gz
@@unexec rm -f %B/scp.1.gz
man/man1/ssh-add1.1.gz
@@exec ln -fs %f %B/ssh-add.1.gz
@@unexec rm -f %B/ssh-add.1.gz
man/man1/ssh-agent1.1.gz
@@exec ln -fs %f %B/ssh-agent.1.gz
@@unexec rm -f %B/ssh-agent.1.gz
man/man1/ssh-keygen1.1.gz
@@exec ln -fs %f %B/ssh-keygen.1.gz
@@unexec rm -f %B/ssh-keygen.1.gz
man/man1/ssh1.1.gz
@@exec ln -fs %f %B/ssh.1.gz
@@unexec rm -f %B/ssh.1.gz
@@exec ln -fs %f %B/slogin.1.gz
@@unexec rm -f %B/slogin.1.gz
man/man8/sshd1.8.gz
@@exec ln -fs %f %B/sshd.8.gz
@@unexec rm -f %B/sshd.8.gz
d28 1
a28 2
@@exec ln -fs %f %B/sshd
@@unexec rm -f %B/sshd
@


1.12
log
@1.2.22 -> 1.2.25

Somebody needs to go through patch-af to check it, since I'm not sure
about some of the stuff.

This version fixes a security flaw in previous version.
@
text
@a1 1
bin/scp
d3 2
a4 1
bin/ssh
d6 2
a9 1
bin/ssh-add
d11 2
a12 1
bin/ssh-agent
d14 2
a15 1
bin/ssh-askpass
d17 2
a18 1
bin/ssh-keygen
d20 2
a21 1
bin/make-ssh-known-hosts
d23 2
a26 1
man/man1/make-ssh-known-hosts.1.gz
d28 2
a29 1
man/man1/scp.1.gz
d31 2
a32 1
man/man1/ssh-add.1.gz
d34 2
a35 1
man/man1/ssh-agent.1.gz
d37 2
a38 1
man/man1/ssh-keygen.1.gz
d40 2
a41 1
man/man1/ssh.1.gz
d43 2
a46 2
@@unexec rm -f %B/slogin1.1.gz
man/man8/sshd.8.gz
d48 2
a49 1
sbin/sshd
d51 2
@


1.11
log
@Don't remove the host key on pkg_delete.  It is irreplaceable.
@
text
@d3 1
d5 1
d9 1
d11 1
d13 1
d15 1
d17 1
d21 1
d23 1
d25 1
d27 1
d29 1
d31 1
d34 1
d36 1
d38 1
@


1.10
log
@Back out previous patch, I got confused by an old sshd.conf file
@
text
@a23 1
@@unexec rm -f %D/etc/ssh_host_key
@


1.9
log
@Generate host key in /etc to match the port
@
text
@d23 2
a24 2
@@exec if [ ! -f /etc/ssh_host_key ]; then echo "Generating a secret host key.." ; %D/bin/ssh-keygen -N "" -f /etc/ssh_host_key; fi
@@unexec rm -f /etc/ssh_host_key
@


1.8
log
@Upgrade to official 1.2.16
Fix PLIST
@
text
@d23 2
a24 2
@@exec if [ ! -f %D/etc/ssh_host_key ]; then echo "Generating a secret host key.." ; %D/bin/ssh-keygen -N "" -f %D/etc/ssh_host_key; fi
@@unexec rm -f %D/etc/ssh_host_key
@


1.7
log
@Several fixes/improvements :-
 - protect the secret RSA etc/ssh_host_key.  It is now generated on install
   (either by pkg_add or make install) if not already present and is not
   ever added to a package since it's your host's credentials.  It should
   not be removed on pkg_delete, since you are in big trouble if you did
   this (for example) pkg_delete ssh-1.2.14; pkg_add ssh-1.2.15.tgz.
 - fix the broken manpage symlink when compressing man pages (slogin.1
   has been causing /etc/weekly to generate cron messages)
 - zlib 1.0.4 is now "blessed" again, the ssh working sources now use this
   instead of v0.95. The decompression problem was fixed in either 1.0.3
   or 1.0.4.  Also, the current version of cvs uses zlib 1.0.4 as well..
 - perl5.002 -> perl5.003

Reviewed by: torstenb
@
text
@a2 1
bin/slogin
d4 2
d19 2
d24 1
@


1.6
log
@Back out andrews change - 1.2.14.1 is not an official ssh release.
@
text
@a1 1
@@unexec rm %D/etc/rc.d/sshd.sh
d20 1
@


1.5
log
@Upgrade to 1.2.14.1
Misc bugfixes
@
text
@d4 1
a5 1
@@exec ln -fs %D/%F %B/slogin
a18 1
@@exec ln -fs %D/%F %B/slogin.1.gz
@


1.4
log
@Install an sshd.sh startup file.
@
text
@a3 1
bin/slogin
d5 1
d19 1
@


1.3
log
@Update ssh-1.2.13 -> ssh-1.2.14
ssh-askpass no longer uses wish, so chop the make rules that attempt to
locate it.
Go further to try and protect the ssh_host_key, since it's critical to
the operation and security of the machine.
@
text
@d1 2
@


1.2
log
@Upgrade to 1.2.12a (security bugfix)
Fix installation bug too (scripts not installed)
Fix PLIST (missing files)
@
text
@a9 2
etc/ssh_host_key
etc/ssh_host_key.pub
@


1.1
log
@Initial revision
@
text
@d8 1
@


1.1.1.1
log
@Ssh is a secure rlogin/rsh/rcp replacement with strong authentication
(.rhosts together with RSA based host authentication, and pure RSA
authentication) and improved privacy (all communications are automatically
and transparently encrypted).
@
text
@@
