Date: Wed, 19 Feb 2014 17:52:01 -0500 (EST) From: Garrett Wollman <wollman@csail.mit.edu> To: FreeBSD-gnats-submit@freebsd.org Subject: ports/186903: new port: security/krb5-strength Message-ID: <201402192252.s1JMq1jh096237@xyz.csail.mit.edu> Resent-Message-ID: <201402192300.s1JN00D5037775@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 186903 >Category: ports >Synopsis: new port: security/krb5-strength >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Wed Feb 19 23:00:00 UTC 2014 >Closed-Date: >Last-Modified: >Originator: Garrett Wollman >Release: FreeBSD 9.2-RELEASE-p3 amd64 >Organization: MIT Computer Science & Artificial Intelligence Lab >Environment: System: FreeBSD xyz.csail.mit.edu 9.2-RELEASE-p3 FreeBSD 9.2-RELEASE-p3 #3 r260650M: Tue Jan 14 17:08:30 EST 2014 wollman@xyz.csail.mit.edu:/usr/obj/usr/src/sys/CSAIL amd64 >Description: krb5-strength is a policy plugin for Kerberos KDCs that provides improved password quality checking as compared to the built-in policy mechanisms. This port requires the MIT implementation (because that's what we use and I don't have a test environment for Heimdal) but it could easily be enhanced to allow selection of Kerberos implementations. (The port builds and installs a Heimdal plugin, which does not require Heimdal libraries or headers, but the MIT implementation is unconditionally required as a build-time and run-time dependency.) I have not provided a LICENSE= as the package is composed of numerous different files of disparate authorship under multiple licenses, some of which are one-offs. The license covering the package as a whole is BSD-flavored. >How-To-Repeat: >Fix: #!/bin/sh # This is a shell archive echo x krb5-strength mkdir -p krb5-strength > /dev/null 2>&1 echo x krb5-strength/pkg-descr sed 's/^X//' > krb5-strength/pkg-descr << 'SHAR_END' Xkrb5-strength is a plugin to provide additional password-quality Xchecking for MIT Kerberos and Heimdal KDCs. It can use either a Xcracklib dictionary (made with the cracklib packer tool) or a XTinyCDB database (a helper utility is provided for creating these). X XWWW: http://www.eyrie.org/~eagle/software/krb5-strength/ SHAR_END echo x krb5-strength/distinfo sed 's/^X//' > krb5-strength/distinfo << 'SHAR_END' XSHA256 (krb5-strength-2.2.tar.gz) = b3e4f742ec4cebbc66ac139d88dd650bf51a19f5de6de0bc10b836e28f9d6cb7 XSIZE (krb5-strength-2.2.tar.gz) = 478628 SHAR_END echo x krb5-strength/Makefile sed 's/^X//' > krb5-strength/Makefile << 'SHAR_END' X# $FreeBSD$ X XPORTNAME= krb5-strength XPORTVERSION= 2.2 XCATEGORIES= security XMASTER_SITES= http://archives.eyrie.org/software/kerberos/ X XMAINTAINER= wollman@csail.mit.edu XCOMMENT= Password-quality-checking plugin for Kerberos X X# XXX should allow selection of Kerberos implementation, since X# the package supports both Heimdal and MIT. XLIB_DEPENDS= libkrb5.so.3:${PORTSDIR}/security/krb5 X XOPTIONS_DEFINE= CDB XCDB_DESC= Use a TinyCDB wordlist database in addition to cracklib XCDB_LIB_DEPENDS=libcdb.so:${PORTSDIR}/databases/tinycdb XCDB_RUN_DEPENDS=cdb:${PORTSDIR}/databases/tinycdb X XOPTIONS_DEFAULT=CDB X X.include <bsd.port.options.mk> X XGNU_CONFIGURE= yes XUSES= perl5 X XPLIST_FILES= bin/heimdal-strength \ X lib/krb5/plugins/pwqual/strength.la \ X lib/krb5/plugins/pwqual/strength.so \ X man/man1/heimdal-strength.1.gz X X.if ${PORT_OPTIONS:MCDB} XPLIST_FILES+= bin/cdbmake-wordlist man/man1/cdbmake-wordlist.1.gz X.else XCONFIGURE_ARGS+=--without-cdb X.endif X X.include <bsd.port.mk> SHAR_END exit >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201402192252.s1JMq1jh096237>