From owner-svn-ports-all@freebsd.org Sun Feb 3 11:15:44 2019 Return-Path: Delivered-To: svn-ports-all@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3B04C14C410F; Sun, 3 Feb 2019 11:15:44 +0000 (UTC) (envelope-from tcberner@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 047218FF86; Sun, 3 Feb 2019 11:15:44 +0000 (UTC) (envelope-from tcberner@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id E7C281DD64; Sun, 3 Feb 2019 11:15:43 +0000 (UTC) (envelope-from tcberner@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id x13BFhFG002572; Sun, 3 Feb 2019 11:15:43 GMT (envelope-from tcberner@FreeBSD.org) Received: (from tcberner@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id x13BFg7h002568; Sun, 3 Feb 2019 11:15:42 GMT (envelope-from tcberner@FreeBSD.org) Message-Id: <201902031115.x13BFg7h002568@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: tcberner set sender to tcberner@FreeBSD.org using -f From: "Tobias C. Berner" Date: Sun, 3 Feb 2019 11:15:42 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r492047 - in head/security: . py-pass-audit X-SVN-Group: ports-head X-SVN-Commit-Author: tcberner X-SVN-Commit-Paths: in head/security: . py-pass-audit X-SVN-Commit-Revision: 492047 X-SVN-Commit-Repository: ports MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 047218FF86 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org X-Spamd-Result: default: False [-2.98 / 15.00]; local_wl_from(0.00)[FreeBSD.org]; NEURAL_HAM_MEDIUM(-1.00)[-0.999,0]; NEURAL_HAM_SHORT(-0.98)[-0.978,0]; NEURAL_HAM_LONG(-1.00)[-0.999,0]; ASN(0.00)[asn:11403, ipnet:2610:1c1:1::/48, country:US] X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 03 Feb 2019 11:15:44 -0000 Author: tcberner Date: Sun Feb 3 11:15:42 2019 New Revision: 492047 URL: https://svnweb.freebsd.org/changeset/ports/492047 Log: [NEW PORT] security/py-pass-audit: Extension to audit your password-store password repository pass audit is a password-store extension for auditing your password repository. Passwords will be checked against the Python implementation of Dropbox' zxcvbn algorithm and Troy Hunt's Have I Been Pwned Service. It supports safe breached password detection from haveibeenpwned.com using a K-anonymity method. Using this method, you do not need to (fully) trust the server that stores the breached password. You should read the security consideration section for more information. PR: 235454 Submitted by: Tobias Rehbein Added: head/security/py-pass-audit/ head/security/py-pass-audit/Makefile (contents, props changed) head/security/py-pass-audit/distinfo (contents, props changed) head/security/py-pass-audit/pkg-descr (contents, props changed) head/security/py-pass-audit/pkg-plist (contents, props changed) Modified: head/security/Makefile Modified: head/security/Makefile ============================================================================== --- head/security/Makefile Sun Feb 3 10:53:43 2019 (r492046) +++ head/security/Makefile Sun Feb 3 11:15:42 2019 (r492047) @@ -984,6 +984,7 @@ SUBDIR += py-ospd SUBDIR += py-paramiko SUBDIR += py-paramiko1 + SUBDIR += py-pass-audit SUBDIR += py-passlib SUBDIR += py-pbkdf2 SUBDIR += py-pgpdump Added: head/security/py-pass-audit/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/py-pass-audit/Makefile Sun Feb 3 11:15:42 2019 (r492047) @@ -0,0 +1,42 @@ +# $FreeBSD$ + +PORTNAME= pass-audit +PORTVERSION= 1.0.1 +CATEGORIES= security +MASTER_SITES= https://github.com/roddhjav/${PORTNAME}/releases/download/v${PORTVERSION}/ +PKGNAMEPREFIX= ${PYTHON_PKGNAMEPREFIX} + +MAINTAINER= tobias.rehbein@web.de +COMMENT= Extension to audit your password-store password repository + +LICENSE= GPLv3 +LICENSE_FILE= ${WRKSRC}/LICENSE + +BUILD_DEPENDS= ${PYTHON_PKGNAMEPREFIX}requests>0:www/py-requests@${PY_FLAVOR} \ + ${PYTHON_PKGNAMEPREFIX}zxcvbn>0:security/py-zxcvbn@${PY_FLAVOR} +RUN_DEPENDS= ${PYTHON_PKGNAMEPREFIX}requests>0:www/py-requests@${PY_FLAVOR} \ + ${PYTHON_PKGNAMEPREFIX}zxcvbn>0:security/py-zxcvbn@${PY_FLAVOR} \ + password-store>=1.7.3_1:sysutils/password-store + +USES= python:3.4+ shebangfix +USE_PYTHON= distutils + +NO_ARCH= yes +NO_BUILD= yes + +SHEBANG_FILES= ${WRKSRC}/pass_audit.py + +pre-install: + ${INSTALL_MAN} ${WRKSRC}/pass-audit.1 \ + ${STAGEDIR}${MANPREFIX}/man/man1/pass-audit.1 + @${MKDIR} ${STAGEDIR}${LOCALBASE}/libexec/password-store/extensions + ${INSTALL_SCRIPT} ${WRKSRC}/audit.bash \ + ${STAGEDIR}${LOCALBASE}/libexec/password-store/extensions/audit.bash + @${MKDIR} ${STAGEDIR}${PREFIX}/etc/bash_completion.d + ${INSTALL_DATA} ${WRKSRC}/completion/pass-audit.bash \ + ${STAGEDIR}${PREFIX}/etc/bash_completion.d/pass-audit + @${MKDIR} ${STAGEDIR}${PREFIX}/share/zsh/site-functions + ${INSTALL_DATA} ${WRKSRC}/completion/pass-audit.zsh \ + ${STAGEDIR}${PREFIX}/share/zsh/site-functions/_pass-audit + +.include Added: head/security/py-pass-audit/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/py-pass-audit/distinfo Sun Feb 3 11:15:42 2019 (r492047) @@ -0,0 +1,3 @@ +TIMESTAMP = 1549124026 +SHA256 (pass-audit-1.0.1.tar.gz) = a0b69164a6f467abd395076d18c950cd49e332aed11a1e5ecae746167728c050 +SIZE (pass-audit-1.0.1.tar.gz) = 62341 Added: head/security/py-pass-audit/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/py-pass-audit/pkg-descr Sun Feb 3 11:15:42 2019 (r492047) @@ -0,0 +1,9 @@ +pass audit is a password-store extension for auditing your password repository. +Passwords will be checked against the Python implementation of Dropbox' zxcvbn +algorithm and Troy Hunt's Have I Been Pwned Service. It supports safe breached +password detection from haveibeenpwned.com using a K-anonymity method. Using +this method, you do not need to (fully) trust the server that stores the +breached password. You should read the security consideration section for more +information. + +WWW: https://github.com/roddhjav/pass-audit Added: head/security/py-pass-audit/pkg-plist ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/py-pass-audit/pkg-plist Sun Feb 3 11:15:42 2019 (r492047) @@ -0,0 +1,7 @@ +%%PYTHON_SITELIBDIR%%/__pycache__/pass_audit.cpython-%%PYTHON_SUFFIX%%.%%PYTHON_PYOEXTENSION%% +%%PYTHON_SITELIBDIR%%/__pycache__/pass_audit.cpython-%%PYTHON_SUFFIX%%.pyc +%%PYTHON_SITELIBDIR%%/pass_audit.py +libexec/password-store/extensions/audit.bash +etc/bash_completion.d/pass-audit +share/zsh/site-functions/_pass-audit +man/man1/pass-audit.1.gz