From owner-svn-ports-head@freebsd.org Wed Dec 2 16:31:08 2015 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 64150A3F336; Wed, 2 Dec 2015 16:31:08 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 3F09D1A1A; Wed, 2 Dec 2015 16:31:08 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id tB2GV7np038330; Wed, 2 Dec 2015 16:31:07 GMT (envelope-from feld@FreeBSD.org) Received: (from feld@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id tB2GV6Zi038322; Wed, 2 Dec 2015 16:31:06 GMT (envelope-from feld@FreeBSD.org) Message-Id: <201512021631.tB2GV6Zi038322@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: feld set sender to feld@FreeBSD.org using -f From: Mark Felder Date: Wed, 2 Dec 2015 16:31:06 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r402836 - in head: . security security/titus security/titus/files X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 02 Dec 2015 16:31:08 -0000 Author: feld Date: Wed Dec 2 16:31:06 2015 New Revision: 402836 URL: https://svnweb.freebsd.org/changeset/ports/402836 Log: New port: security/titus titus is a TLS/SSL proxy server (like stunnel or stud) that protects you from vulnerabilities in the TLS implementation such as Heartbleed (or worse). titus requires FreeBSD 10.2 or newer due to PROC_TRACE_CTL which was introduced at r277322 Added: head/security/titus/ head/security/titus/Makefile (contents, props changed) head/security/titus/distinfo (contents, props changed) head/security/titus/files/ head/security/titus/files/titus.in (contents, props changed) head/security/titus/pkg-descr (contents, props changed) head/security/titus/pkg-plist (contents, props changed) Modified: head/GIDs head/UIDs head/security/Makefile Modified: head/GIDs ============================================================================== --- head/GIDs Wed Dec 2 16:18:26 2015 (r402835) +++ head/GIDs Wed Dec 2 16:31:06 2015 (r402836) @@ -179,6 +179,7 @@ varnish:*:429: quasselcore:*:442: callweaver:*:444: ecartis:*:450: +dqcache:*:453: courier:*:465: condor:*:466: netmon:*:467: Modified: head/UIDs ============================================================================== --- head/UIDs Wed Dec 2 16:18:26 2015 (r402835) +++ head/UIDs Wed Dec 2 16:31:06 2015 (r402836) @@ -186,6 +186,7 @@ varnishlog:*:430:429::0:0:Varnish Log Us quasselcore:*:442:442::0:0:Quassel IRC User:/nonexistent:/usr/sbin/nologin callweaver:*:444:444::0:0:Callweaver account:/var/lib/callweaver:/usr/sbin/nologin ecartis:*:450:450::0:0:Ecartis Listserver:/usr/local/ecartis:/usr/sbin/nologin +dqcache:*:453:453::0:0:Dqcache Resolver:/nonexistent:/usr/sbin/nologin courier:*:465:465::0:0:Courier Mail Server:/nonexistent:/usr/sbin/nologin condor:*:466:466::0:0:& user:/home/condor:/usr/sbin/nologin netmon:*:467:467::0:0:Network monitor account:/var/netmon:/usr/sbin/nologin @@ -241,6 +242,8 @@ jenkins:*:818:818::0:0:Jenkins CI:/usr/l rundeck:*:819:819::0:0:Rundeck:/usr/local/rundeck:/bin/sh openacs:*:820:820::0:0:OpenACS Daemon User:/nonexistent:/usr/sbin/nologin dotlrn:*:821:821::0:0:.LRN Daemon User:/nonexistent:/usr/sbin/nologin +titus:*:822:65533::0:0:Titus Daemon User:/nonexistent:/usr/sbin/nologin +titus-keys:*:823:65533::0:0:Titus Keyserver User:/nonexistent:/usr/sbin/nologin polw:*:825:825::0:0:Policyd-weight Cache Owner:/nonexistent:/sbin/nologin statsd:*:826:826::0:0:Statsd Daemon:/nonexistent:/sbin/nologin netdisco:*:840:840::0:0:netdisco daemon:/nonexistent:/usr/sbin/nologin Modified: head/security/Makefile ============================================================================== --- head/security/Makefile Wed Dec 2 16:18:26 2015 (r402835) +++ head/security/Makefile Wed Dec 2 16:31:06 2015 (r402836) @@ -1061,6 +1061,7 @@ SUBDIR += tcpcrypt SUBDIR += tinc SUBDIR += tinyca + SUBDIR += titus SUBDIR += tlswrap SUBDIR += tmux-cssh SUBDIR += tor Added: head/security/titus/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/titus/Makefile Wed Dec 2 16:31:06 2015 (r402836) @@ -0,0 +1,38 @@ +# Created by: Mark Felder +# $FreeBSD$ + +PORTNAME= titus +PORTVERSION= 0.3 +CATEGORIES= security + +MAINTAINER= feld@FreeBSD.org +COMMENT= TLS/SSL proxy server + +LICENSE= MIT + +USES= compiler:c++11-lang +USE_RC_SUBR= titus + +USE_OPENSSL= yes + +USE_GITHUB= yes +GH_ACCOUNT= AGWA + +USERS= titus titus-keys +GROUPS= nogroup + +MAKE_ENV+= MANDIR=${MANPREFIX}/man + +.include + +.if ${OSVERSION} < 1002000 +BROKEN= Requires FreeBSD 10.2 or higher +.endif + +post-patch: + ${REINPLACE_CMD} 's|/var/lib/titus/empty|/var/empty|' ${WRKSRC}/titus.conf.example + +post-install: + ${INSTALL_DATA} ${WRKSRC}/titus.conf.example ${STAGEDIR}${PREFIX}/etc/titus.conf.sample + +.include Added: head/security/titus/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/titus/distinfo Wed Dec 2 16:31:06 2015 (r402836) @@ -0,0 +1,2 @@ +SHA256 (AGWA-titus-0.3_GH0.tar.gz) = 2b10e4a4e4df2b577465813b748e5d5f05e4e96cd5b48d64e3a148ab80c275bf +SIZE (AGWA-titus-0.3_GH0.tar.gz) = 29521 Added: head/security/titus/files/titus.in ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/titus/files/titus.in Wed Dec 2 16:31:06 2015 (r402836) @@ -0,0 +1,34 @@ +#!/bin/sh +# +# $FreeBSD$ +# + +# PROVIDE: titus +# REQUIRE: NETWORKING SERVERS +# BEFORE: DAEMON +# KEYWORD: shutdown + +# +# Add some of the following variables to /etc/rc.conf to configure titus: +# titus_enable (bool): Set to "NO" by default. +# Set it to "YES" to enable titus. +# titus_config (str): Default "%%ETCDIR%%/titus.conf" +# + +. /etc/rc.subr + +name="titus" +rcvar=titus_enable + +load_rc_config $name + +: ${titus_enable="NO"} +: ${titus_config="%%PREFIX%%/etc/${name}.conf"} + +pidfile=/var/run/titus.pid +command="%%PREFIX%%/bin/titus" +command_args="--daemon yes --pid-file ${pidfile} --config ${titus_config}" + +required_files="${titus_config}" + +run_rc_command "$1" Added: head/security/titus/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/titus/pkg-descr Wed Dec 2 16:31:06 2015 (r402836) @@ -0,0 +1,5 @@ +titus is a TLS/SSL proxy server (like stunnel or stud) that protects you +from vulnerabilities in the TLS implementation such as Heartbleed (or +worse). + +WWW: https://opsmate.com/titus/ Added: head/security/titus/pkg-plist ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/titus/pkg-plist Wed Dec 2 16:31:06 2015 (r402836) @@ -0,0 +1,3 @@ +bin/titus +@sample etc/titus.conf.sample +man/man8/titus.8.gz