From owner-freebsd-ports Sun Mar 25 4:10:28 2001 Delivered-To: freebsd-ports@hub.freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 6EA7437B71B for ; Sun, 25 Mar 2001 04:10:04 -0800 (PST) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.1/8.11.1) id f2PCA4n00707; Sun, 25 Mar 2001 04:10:04 -0800 (PST) (envelope-from gnats) Received: from totem.fix.no (totem.fix.no [213.142.66.130]) by hub.freebsd.org (Postfix) with ESMTP id 80EE437B718 for ; Sun, 25 Mar 2001 04:08:56 -0800 (PST) (envelope-from anders@totem.fix.no) Received: by totem.fix.no (Postfix, from userid 1000) id 735513CCD; Sun, 25 Mar 2001 14:08:55 +0200 (CEST) Message-Id: <20010325120855.735513CCD@totem.fix.no> Date: Sun, 25 Mar 2001 14:08:55 +0200 (CEST) From: Anders Nordby Reply-To: Anders Nordby To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.2 Subject: ports/26067: New port: security/vpnd Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Number: 26067 >Category: ports >Synopsis: New port: security/vpnd >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Sun Mar 25 04:10:03 PST 2001 >Closed-Date: >Last-Modified: >Originator: Anders Nordby >Release: FreeBSD 4.2-STABLE i386 >Organization: Fluxpod Information eXchange >Environment: Tested and working fine between: FreeBSD eggsilo.localnet 4.2-STABLE FreeBSD 4.2-STABLE #0: Sat Feb 3 23:01:01 CET 2001 root@eggsilo.localnet:/space/tmp/obj/usr/src/sys/EGGSILO i386 FreeBSD current.localnet 5.0-20010116-CURRENT FreeBSD 5.0-20010116-CURRENT #0: Tue Jan 16 16:30:03 GMT 2001 root@usw2.freebsd.org:/usr/src/sys/compile/GENERIC i386 >Description: New port of vpnd, a VPN daemon offering transparent blowfish encryption between networks. >How-To-Repeat: >Fix: # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # vpnd # vpnd/pkg-comment # vpnd/Makefile # vpnd/distinfo # vpnd/pkg-descr # vpnd/pkg-plist # vpnd/files # vpnd/files/patch-aa # vpnd/files/patch-ab # vpnd/files/patch-ac # vpnd/files/patch-ad # vpnd/files/patch-ae # echo c - vpnd mkdir -p vpnd > /dev/null 2>&1 echo x - vpnd/pkg-comment sed 's/^X//' >vpnd/pkg-comment << 'END-of-vpnd/pkg-comment' XVPN daemon offering transparent blowfish encryption between networks END-of-vpnd/pkg-comment echo x - vpnd/Makefile sed 's/^X//' >vpnd/Makefile << 'END-of-vpnd/Makefile' X# New ports collection makefile for: vpnd X# Date created: 25 March 2001 X# Whom: Anders Nordby X# X# $FreeBSD$ X# X XPORTNAME= vpnd XPORTVERSION= 1.1.0 XCATEGORIES= security XMASTER_SITES= http://sunsite.dk/vpnd/archive/ \ X http://www.freenix.no/~anders/ X XMAINTAINER= anders@fix.no X XWRKSRC= ${WRKDIR}/${PORTNAME} XHAS_CONFIGURE= yes X XDOCFILES= README FAQ.TXT SPEED.TXT VERSIONS X Xpost-patch: X @${MV} ${WRKSRC}/Makefile.FreeBSD.in ${WRKSRC}/Makefile.FreeBSD.in_tmp X @${SED} -e "s:^ETC_DIR=:ETC_DIR= ${PREFIX}/etc:" \ X < ${WRKSRC}/Makefile.FreeBSD.in_tmp > ${WRKSRC}/Makefile.FreeBSD.in X Xdo-install: X @${INSTALL_PROGRAM} ${WRKSRC}/vpnd ${PREFIX}/sbin/vpnd X @${INSTALL_DATA} ${WRKSRC}/vpnd.conf ${PREFIX}/etc/vpnd.conf.sample X @${INSTALL_DATA} ${WRKSRC}/vpnd.chat ${PREFIX}/etc/vpnd.chat.sample X.if !defined(NOPORTDOCS) X ${INSTALL} -d -m 555 ${PREFIX}/share/doc/vpnd X.for i in ${DOCFILES} X @${INSTALL_DATA} ${WRKSRC}/${i} ${PREFIX}/share/doc/vpnd X.endfor X.endif X Xpost-install: X @${ECHO} "================================================================================" X @${ECHO} "Make sure you set up a few IRQ's for random generation with rndcontrol before" X @${ECHO} "trying to generate a master key file." X @${ECHO} "================================================================================" X X.include END-of-vpnd/Makefile echo x - vpnd/distinfo sed 's/^X//' >vpnd/distinfo << 'END-of-vpnd/distinfo' XMD5 (vpnd-1.1.0.tar.gz) = 6ca958fb5471faf3ebebe4caa75154e7 END-of-vpnd/distinfo echo x - vpnd/pkg-descr sed 's/^X//' >vpnd/pkg-descr << 'END-of-vpnd/pkg-descr' XThe virtual private network daemon vpnd is a daemon which connects two networks Xon network level either via TCP/IP or a (virtual) leased line attached to a Xserial interface. All data transfered between the two networks are encrypted Xusing the unpatented free Blowfish encryption algorithm. X Xvpnd is not intended as a replacement of existing secured communications Xsoftware like ssh or tunneling facilities of the operating system. It is, Xhowever, intended as a means of securing transparent network interconnection Xacross potentially insecure channels. X XWWW: http://sunsite.dk/vpnd/ END-of-vpnd/pkg-descr echo x - vpnd/pkg-plist sed 's/^X//' >vpnd/pkg-plist << 'END-of-vpnd/pkg-plist' Xsbin/vpnd Xetc/vpnd.conf.sample Xetc/vpnd.chat.sample Xshare/doc/vpnd/README Xshare/doc/vpnd/FAQ.TXT Xshare/doc/vpnd/SPEED.TXT Xshare/doc/vpnd/VERSIONS X@dirrm share/doc/vpnd END-of-vpnd/pkg-plist echo c - vpnd/files mkdir -p vpnd/files > /dev/null 2>&1 echo x - vpnd/files/patch-aa sed 's/^X//' >vpnd/files/patch-aa << 'END-of-vpnd/files/patch-aa' X--- globals.c.old Sun Mar 25 01:19:51 2001 X+++ globals.c Sun Mar 25 01:20:58 2001 X@@ -69,9 +69,9 @@ X anchor->pty=anchor->tty=anchor->peer=anchor->server=anchor->ping= X anchor->serial=anchor->lock=-1; X anchor->speed=B115200; X- anchor->conffile="/etc/vpnd.conf"; X+ anchor->conffile=ETC_DIR "/vpnd.conf"; X anchor->randomdev="/dev/random"; X- anchor->keyfile="/etc/vpnd.key"; X+ anchor->keyfile=ETC_DIR "/vpnd.key"; X anchor->lkeyfile="vpnd.lcl.key"; X anchor->rkeyfile="vpnd.rmt.key"; X anchor->cipher=BLOWFISH; END-of-vpnd/files/patch-aa echo x - vpnd/files/patch-ab sed 's/^X//' >vpnd/files/patch-ab << 'END-of-vpnd/files/patch-ab' X--- Makefile.FreeBSD.in.orig Fri Nov 19 17:50:24 1999 X+++ Makefile.FreeBSD.in Sun Mar 25 01:39:56 2001 X@@ -5,7 +5,9 @@ X CRYPTOFLG= X .endif X X-CFLAGS=-c $(CBASE) $(DEBUG) $(CRYPTOFLG) -DMD5_HMAC_FAST -DSHA1_HMAC_FAST -DRMD160_HMAC_FAST X+ETC_DIR= X+ X+CFLAGS=-c $(CBASE) $(DEBUG) $(CRYPTOFLG) -DMD5_HMAC_FAST -DSHA1_HMAC_FAST -DRMD160_HMAC_FAST -DETC_DIR=\"$(ETC_DIR)\" X X OBJS1=vpnd.o globals.o parse.o slip.o route.o chatter.o serial.o die.o \ X signal.o tcp.o external.o syslog.o sequencer.o icmp.o rxtx.o crypto.o \ END-of-vpnd/files/patch-ab echo x - vpnd/files/patch-ac sed 's/^X//' >vpnd/files/patch-ac << 'END-of-vpnd/files/patch-ac' X--- vpnd.c.old Sun Mar 25 01:58:06 2001 X+++ vpnd.c Sun Mar 25 03:02:26 2001 X@@ -41,7 +41,8 @@ X " vpnd -c \n" \ X USAGE1 \ X " -h prints this info\n" \ X- " -m creates master key file (default is /etc/vpnd.key),\n" \ X+ " -m creates master key file (default is " ETC_DIR \ X+ "/vpnd.key),\n" \ X " note that the file must not yet exist\n" \ X " -x creates extended master key files named vpnd.lcl.key\n" \ X " and vpnd.rmt.key in the given directory,\n" \ X@@ -65,7 +66,7 @@ X " -l allow dns lookups so host names can be used\n" \ X " -n do not become daemon\n" \ X " -t do modem init chat test\n" \ X- " -f use configfile instead of /etc/vpnd.conf\n" \ X+ " -f use configfile instead of " ETC_DIR "/vpnd.conf\n" \ X COMPRESSINFO X X /* END-of-vpnd/files/patch-ac echo x - vpnd/files/patch-ad sed 's/^X//' >vpnd/files/patch-ad << 'END-of-vpnd/files/patch-ad' X--- vpnd.conf.old Sun Mar 25 03:04:06 2001 X+++ vpnd.conf Sun Mar 25 03:04:43 2001 X@@ -121,7 +121,7 @@ X # which is called asynchonously when the vpn X # link is established X # X-# example: linkup /etc/vpnd.linkup X+# example: linkup /usr/local/etc/vpnd.linkup X # X # linkdown X # X@@ -129,7 +129,7 @@ X # which is called asynchonously when the vpn X # link is terminated X # X-# example: linkdown /etc/vpnd.linkdown X+# example: linkdown /usr/local/etc/vpnd.linkdown X # X # --------------------------------------------------- X # basic operation mode X@@ -170,7 +170,7 @@ X # X # optional, defines the pathname of the shared secret file which X # must be created with the -m option of vpnd, if not given default X-# of /etc/vpnd.key is used X+# of /usr/local/etc/vpnd.key is used X # X # example: keyfile /var/adm/mysecret.key X # X@@ -285,7 +285,7 @@ X # interface is established, the SLIP interface X # name is the parameter for the process X # X-# example: slipup /etc/vpnd.slipup X+# example: slipup /usr/local/etc/vpnd.slipup X # X # slipdown X # X@@ -294,7 +294,7 @@ X # link is terminated, the SLIP interface X # name is the parameter for the process X # X-# example: slipdown /etc/vpnd.slipdown X+# example: slipdown /usr/local/etc/vpnd.slipdown X # X # X # --------------------------------------------------- X@@ -334,7 +334,7 @@ X # optional, pathname of file containing modem initialization X # chat sequence, default is not to perform init chat X # X-# example: modemchat /etc/vpnd.chat X+# example: modemchat /usr/local/etc/vpnd.chat X # X # --------------------------------------------------- X # TCP/IP parameters (available with version 1.0.2) END-of-vpnd/files/patch-ad echo x - vpnd/files/patch-ae sed 's/^X//' >vpnd/files/patch-ae << 'END-of-vpnd/files/patch-ae' X--- README.old Sun Mar 25 03:05:42 2001 X+++ README Sun Mar 25 03:06:04 2001 X@@ -370,8 +370,8 @@ X ======== X X Copy vpnd (and randomd if it is required) to any directory you like. X-Copy vpnd.conf and vpnd.chat to /etc or copy those files to any other X-directory when you use the -f option of vpnd (see later). Note that X+Copy vpnd.conf and vpnd.chat to /usr/local/etc or copy those files to any X+other directory when you use the -f option of vpnd (see later). Note that X vpnd.conf and vpnd.chat must be at least mode 644 and be owned by X root:root. END-of-vpnd/files/patch-ae exit >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message