head	1.8;
access;
symbols
	RELEASE_5_4_0:1.7
	RELEASE_4_11_0:1.7
	RELEASE_5_3_0:1.6
	RELEASE_4_10_0:1.6
	RELEASE_5_2_1:1.6
	RELEASE_5_2_0:1.6
	RELEASE_4_9_0:1.6
	RELEASE_5_1_0:1.5
	RELEASE_4_8_0:1.5
	RELEASE_5_0_0:1.5
	RELEASE_4_7_0:1.3
	RELEASE_4_6_2:1.2
	RELEASE_4_6_1:1.2
	RELEASE_4_6_0:1.2
	old_RELEASE_5_0_DP1:1.1
	old_RELEASE_4_5_0:1.1;
locks; strict;
comment	@# @;


1.8
date	2005.06.10.09.08.32;	author trevor;	state dead;
branches;
next	1.7;

1.7
date	2004.11.09.10.13.39;	author trevor;	state Exp;
branches;
next	1.6;

1.6
date	2003.07.03.09.55.03;	author trevor;	state Exp;
branches;
next	1.5;

1.5
date	2002.10.15.09.49.09;	author trevor;	state Exp;
branches;
next	1.4;

1.4
date	2002.10.14.13.50.21;	author trevor;	state Exp;
branches;
next	1.3;

1.3
date	2002.09.08.05.06.45;	author trevor;	state Exp;
branches;
next	1.2;

1.2
date	2002.05.24.00.21.47;	author trevor;	state Exp;
branches;
next	1.1;

1.1
date	2001.11.13.21.52.15;	author trevor;	state Exp;
branches;
next	;


desc
@@


1.8
log
@Remove the netscape7 port due to multiple security bugs.
Netscape 8.0 is available only for Windows.
@
text
@* WARNINGS *******************************************************************
* Using the same profile for Netscape 7 and Mozilla is strongly discouraged. *
* See <URL:http://wp.netscape.com/eng/mozilla/ns7/relnotes/7.html#prefs>.    *
* When working with sensitive information, visit only the site you trust     *
* with that information, not other sites (or turn off Javascript).  See      *
* <URL:http://secunia.com/advisories/12712/>.                                *
******************************************************************************
@


1.7
log
@Update the English-language Netscape to 7.2.  Add a security warning
about cross-site scripting.
@
text
@@


1.6
log
@Security fix:  update to the latest versions:  7.1 for American
English; and 7.02 for French, German, Japanese, and Brazilian
Portuguese.  These are reportedly free of the onunload referrer bug
(#145579 in bugzilla).

The Sun Java plugin is no longer available from the same places.
AIM is needed by the 7.02 versions.  The DOM inspector and "venkman"
JavaScript debugger are available for 7.1.

Compress generated files with bzip2; omit "linux-" from their names.

The RDF files provided by the ports are no longer needed.

Update references to Netscape 6.

Run chmod to fix permissions on extracted files (for the Portuguese
slave port).

Remove unneeded XXXchecksum target.

Change the configuration process, so that extraneous files are not
downloaded.  This resolves PR 44101, submitted by Fernan Aguero.
@
text
@d1 1
a1 1
* WARNING ********************************************************************
d4 3
@


1.5
log
@The release notes say:

	Do not share a profile between Netscape and Mozilla builds.  Doing
	this can lead to unpredictable results, some of which may include
	loss of Search settings and preferences and unchecked growth of
	the Bookmarks file (large enough to freeze your system).  It is
	best to create a new profile for each or manually copy (and change
	the name [of]) an existing profile.

Warn users about this.
@
text
@d1 4
a4 17
* WARNING **********************************************************************
* Using the same profile for Netscape 7 and Mozilla is strongly discouraged.   *
* See <URL:http://wp.netscape.com/eng/mozilla/ns7/relnotes/7.html#prefs>.      *
*                                                                              *
* This port has a security bug.  If a user enables Javascript, hostile Web     *
* sites can track the URLs which the user visits after leaving the site.  Such *
* URLs could contain passwords or other sensitive information.  To avoid this  *
* bug, users can add the line:                                                 *
*                                                                              *
*       user_pref("capability.policy.default.Window.onunload", "noAccess");    *
*                                                                              *
* to their prefs.js files under ~/.mozilla/ (thanks to Sven Neuhaus for        *
* reporting the bug, and to MadMaverick9 at Mozillazine for the work-around).  *
*                                                                              *
* See <URL:http://members.ping.de/~sven/mozbug/refcook.html> for a             *
* demonstration and other work-arounds.                                        *
********************************************************************************
@


1.4
log
@I remove the linux-netscape6 ports from ports/french, ports/german,
ports/japanese and ports/www.  In their place, I add corresponding netscape7
ports, after repo copies.  Now ports/www/netscape7 will no longer be a slave
port.  Instead it is the master port for the others.

The French, German, and Japanese ports now have AIM, because I had trouble
getting them to work without it.

I add a security warning to all these ports, about the "forward referrer" bug
(Mozilla bug 145579).
@
text
@d2 3
@


1.3
log
@security fix:  update Netscape 7 to 7.0 (Netscape 6.2.3 ports remain
forbidden)
@
text
@d1 14
a14 4
* WARNING *****************************
* Users should back up their bookmark *
* files before running Netscape.      *
***************************************
@


1.2
log
@Add new port of Netscape 7 Preview Release 1 after repo copy.
@
text
@d1 4
a4 4
* WARNING ************************************
* This is a beta version of Netscape.        *
* Users should back up their bookmark files. *
**********************************************
@


1.1
log
@Add warning about bookmark files getting clobbered.
@
text
@d1 4
a4 5
* WARNING ************************************************
* Users should back up their bookmark files.  There have *
* been reports that the bookmark file can be clobbered   *
* the first time this version of Netscape is run.        *
**********************************************************
@

