From owner-freebsd-ports-bugs@FreeBSD.ORG  Tue Dec  9 03:13:26 2003
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 963A516A4F2; Tue,  9 Dec 2003 03:13:26 -0800 (PST)
Received: from ns.crs.co.jp (ns.crs.co.jp [202.214.152.13])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A020643D37; Tue,  9 Dec 2003 03:13:01 -0800 (PST)
	(envelope-from ta.nakamura@crs.co.jp)
Received: from inns.ycc.crs.co.jp ([192.168.30.202])
	by ns.crs.co.jp (8.11.3/8.11.3) with ESMTP id hB9B5Ys13104;
	Tue, 9 Dec 2003 20:05:34 +0900
Received: from [192.168.31.117] (localhost [127.0.0.1])
	by inns.ycc.crs.co.jp (8.11.3/8.11.3) with ESMTP id hB9BCpG14717;
	Tue, 9 Dec 2003 20:12:51 +0900
Date: Tue, 09 Dec 2003 20:12:51 +0900
From: NAKAMURA Takeshi <ta.nakamura@crs.co.jp>
To: pav@FreeBSD.org
In-Reply-To: <1070641079.26994.9.camel@pav.hide.vol.cz>
References: <1070641079.26994.9.camel@pav.hide.vol.cz>
X-Mailer-Plugin: AntiSpam for Becky!2 Ver.1.004
Message-Id: <20031209200349.6A3D.TA.NAKAMURA@crs.co.jp>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver. 2.07.04 [ja]
cc: 1yen@sh.rim.or.jp
cc: freebsd-ports-bugs@FreeBSD.org
cc: freebsd-gnats-submit@FreeBSD.org
Subject: Re: ports/59505: ports update net/delegate
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>,
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>,
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Dec 2003 11:13:26 -0000


I understand the security problem now.
It is surmised that the problem is not corrected yet.

I made new patch. Replace this one.

==============
diff -u -r1.42 Makefile
--- ports/net/delegate/Makefile	27 Sep 2003 01:01:02 -0000
+++ ports/net/delegate/Makefile	8 Dec 2003 02:15:00 -0000
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	delegate
-PORTVERSION=	8.5.5
+PORTVERSION=	8.7.8
 CATEGORIES=	net www
 MASTER_SITES=	ftp://www.delegate.org/pub/DeleGate/ \
 		ftp://ftp.delegate.org/pub/DeleGate/
@@ -23,14 +23,14 @@
 .if !defined(FORCE_BUILD) || ${FORCE_BUILD}!="YES"
 	@${ECHO_MSG} "*********************************************************************"
 	@${ECHO_MSG} "*   WARNING!     WARNING!     WARNING!     WARNING!     WARNING!    *"
-	@${ECHO_MSG} "* This program has known security problems which may allow a remote  *"
+	@${ECHO_MSG} "* This program has known security problems which may allow a remote *"
 	@${ECHO_MSG} "* attacker to take control of your machine.                         *"
 	@${ECHO_MSG} "* See FreeBSD security advisory 00:04 for more information.         *"
 	@${ECHO_MSG} "*                                                                   *"
 	@${ECHO_MSG} "* It is strongly recommended that you avoid using this program.     *"
 	@${ECHO_MSG} "*                                                                   *"
 	@${ECHO_MSG} "* If you would like to use this program despite the danger, run     *"
-	@${ECHO_MSG} "* make with ``FORCE_BUILD=YES''                                     *"
+	@${ECHO_MSG} "* make with \`\`FORCE_BUILD=YES''                                     *"
 	@${ECHO_MSG} "*   WARNING!     WARNING!     WARNING!     WARNING!     WARNING!    *"
 	@${ECHO_MSG} "*********************************************************************"
 	@${FALSE}
@@ -38,7 +38,7 @@
 	@${ECHO_MSG} "*********************************************************************"
 	@${ECHO_MSG} "*   WARNING!     WARNING!     WARNING!     WARNING!     WARNING!    *"
 	@${ECHO_MSG} "* You have chosen to build an insecure program.                     *"
-	@${ECHO_MSG} "* This program has known security problems which may allow a remote  *"
+	@${ECHO_MSG} "* This program has known security problems which may allow a remote *"
 	@${ECHO_MSG} "* attacker to take control of your machine.                         *"
 	@${ECHO_MSG} "* See FreeBSD security advisory 00:04 for more information.         *"
 	@${ECHO_MSG} "*********************************************************************"
diff -u -r1.31 distinfo
--- ports/net/delegate/distinfo	27 Jun 2003 05:21:01 -0000
+++ ports/net/delegate/distinfo	8 Dec 2003 02:12:59 -0000
@@ -1 +1 @@
-MD5 (delegate8.5.5.tar.bz2) = aec6bad25d63e8e857eed3ae28dcf1a1
+MD5 (delegate8.7.8.tar.bz2) = 0fc4091e33e3be53e9d4b0a9877b3709
==============


On Fri, 05 Dec 2003 17:18:00 +0100,
 Pav Lucistnik <pav@FreeBSD.org> wrote:

> Do you have any evidence (website article, changelog entries...) that
> this program is no longer a big security problem?