From owner-freebsd-ports-bugs@FreeBSD.ORG Fri Jun 24 16:20:24 2005 Return-Path: X-Original-To: freebsd-ports-bugs@hub.freebsd.org Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 320DF16A41C for ; Fri, 24 Jun 2005 16:20:24 +0000 (GMT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1287643D48 for ; Fri, 24 Jun 2005 16:20:24 +0000 (GMT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.3/8.13.3) with ESMTP id j5OGKNL4032614 for ; Fri, 24 Jun 2005 16:20:23 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.13.3/8.13.1/Submit) id j5OGKNNt032613; Fri, 24 Jun 2005 16:20:23 GMT (envelope-from gnats) Date: Fri, 24 Jun 2005 16:20:23 GMT Message-Id: <200506241620.j5OGKNNt032613@freefall.freebsd.org> To: freebsd-ports-bugs@FreeBSD.org From: db Cc: Subject: Re: ports/82614: Update port: security/lockdown 1.0.1 -> 2.0.0 X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: db List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jun 2005 16:20:24 -0000 The following reply was made to PR ports/82614; it has been noted by GNATS. From: db To: bug-followup@FreeBSD.org, db@trunet.dk Cc: Subject: Re: ports/82614: Update port: security/lockdown 1.0.1 -> 2.0.0 Date: Fri, 24 Jun 2005 18:11:42 +0000 --Boundary-00=_fzEvCMsaxU7tKY9 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Content-Disposition: inline Hi Forgot to remove some compiled objects, so please use this fix instead. br db --Boundary-00=_fzEvCMsaxU7tKY9 Content-Type: text/x-diff; charset="us-ascii"; name="fix" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="fix" diff -ruN /usr/ports/security/lockdown/Makefile security/lockdown/Makefile --- /usr/ports/security/lockdown/Makefile Mon May 10 13:14:21 2004 +++ security/lockdown/Makefile Fri Jun 24 17:55:33 2005 @@ -6,21 +6,36 @@ # PORTNAME= lockdown -PORTVERSION= 1.0.1 +PORTVERSION= 2.0.0 CATEGORIES= security MASTER_SITES= http://lockdown.trunet.dk/ \ http://lockdown.loproc.dk/ MAINTAINER= db@TruNet.dk -COMMENT= Hardening system for FreeBSD +COMMENT= Hardening script for FreeBSD -MAN1= lockdown.1 +MAN1= editfile.1 +MAN1= editfstab.1 +MAN1= editkernel.1 +MAN1= editlogin.1 +MAN1= editttys.1 + +INSTALLS_SHLIB= yes WRKSRC= ${WRKDIR}/lockdown do-install: - ${INSTALL_PROGRAM} ${WRKSRC}/lockdown ${PREFIX}/bin/lockdown - ${INSTALL_MAN} ${WRKSRC}/lockdown.1 ${PREFIX}/man/man1/lockdown.1 - ${INSTALL_DATA} ${WRKSRC}/lockdown.conf.sample ${PREFIX}/etc/lockdown.conf.sample + ${INSTALL_DATA} ${WRKSRC}/cppe/src/libcppe.so ${PREFIX}/lib/libcppe.so + ${INSTALL_PROGRAM} ${WRKSRC}/edittools/editfile/src/editfile ${PREFIX}/bin/editfile + ${INSTALL_MAN} ${WRKSRC}/edittools/editfile/doc/editfile.1 ${PREFIX}/man/man1/editfile.1 + ${INSTALL_PROGRAM} ${WRKSRC}/edittools/editfstab/src/editfstab ${PREFIX}/bin/editfstab + ${INSTALL_MAN} ${WRKSRC}/edittools/editfstab/doc/editfstab.1 ${PREFIX}/man/man1/editfstab.1 + ${INSTALL_PROGRAM} ${WRKSRC}/edittools/editkernel/src/editkernel ${PREFIX}/bin/editkernel + ${INSTALL_MAN} ${WRKSRC}/edittools/editkernel/doc/editkernel.1 ${PREFIX}/man/man1/editkernel.1 + ${INSTALL_PROGRAM} ${WRKSRC}/edittools/editlogin/src/editlogin ${PREFIX}/bin/editlogin + ${INSTALL_MAN} ${WRKSRC}/edittools/editlogin/doc/editlogin.1 ${PREFIX}/man/man1/editlogin.1 + ${INSTALL_PROGRAM} ${WRKSRC}/edittools/editttys/src/editttys ${PREFIX}/bin/editttys + ${INSTALL_MAN} ${WRKSRC}/edittools/editttys/doc/editttys.1 ${PREFIX}/man/man1/editttys.1 + ${INSTALL_SCRIPT} ${WRKSRC}/lockdown ${PREFIX}/bin/lockdown .include diff -ruN /usr/ports/security/lockdown/distinfo security/lockdown/distinfo --- /usr/ports/security/lockdown/distinfo Mon May 10 13:14:21 2004 +++ security/lockdown/distinfo Fri Jun 24 18:04:54 2005 @@ -1,2 +1,2 @@ -MD5 (lockdown-1.0.1.tar.gz) = c8b0a81e691c11bf75699ec270b780fa -SIZE (lockdown-1.0.1.tar.gz) = 13532 +MD5 (lockdown-2.0.0.tar.gz) = e174c016c1980e1c80581da2d42d491b +SIZE (lockdown-2.0.0.tar.gz) = 38792 diff -ruN /usr/ports/security/lockdown/pkg-descr security/lockdown/pkg-descr --- /usr/ports/security/lockdown/pkg-descr Mon May 10 13:14:21 2004 +++ security/lockdown/pkg-descr Fri Jun 24 17:27:25 2005 @@ -1,12 +1,4 @@ -Lockdown is a hardening system written in C++ for FreeBSD -and released under the BSD license. - -Lockdown was designed to harden FreeBSD's base system. It does -so by editing the systems configuration files and set -permissions, flags and ownership on SUID, GID and "information" -files. Lockdown was meant to be run only once (after a system -install or upgrade), so you can quickly and without forgetting -something, get a secure system. +Lockdown is a script designed to harden a FreeBSD system by editing the system's configuration files and set permissions, flags and ownership on SUID, GID and "information" files. However, the main goal of lockdown is to centralize knowledge on how much you can harden the system without breaking it. Mirror: http://lockdown.loproc.dk/ WWW: http://lockdown.TruNet.dk/ diff -ruN /usr/ports/security/lockdown/pkg-plist security/lockdown/pkg-plist --- /usr/ports/security/lockdown/pkg-plist Sun Feb 29 23:22:12 2004 +++ security/lockdown/pkg-plist Thu Jun 23 00:48:29 2005 @@ -1,3 +1,7 @@ @comment $FreeBSD: ports/security/lockdown/pkg-plist,v 1.1 2004/02/29 23:22:12 sergei Exp $ bin/lockdown -etc/lockdown.conf.sample +bin/editfile +bin/editfstab +bin/editkernel +bin/editlogin +bin/editttys --Boundary-00=_fzEvCMsaxU7tKY9--