From owner-freebsd-ports Thu Oct 18 2:20:28 2001 Delivered-To: freebsd-ports@hub.freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 0DC8737B40C for ; Thu, 18 Oct 2001 02:20:01 -0700 (PDT) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.4/8.11.4) id f9I9K1n36174; Thu, 18 Oct 2001 02:20:01 -0700 (PDT) (envelope-from gnats) Received: from c0re.rc23.cx (c0re.bewaff.net [62.159.58.132]) by hub.freebsd.org (Postfix) with SMTP id 8C50E37B403 for ; Thu, 18 Oct 2001 02:13:13 -0700 (PDT) Received: (qmail 25343 invoked by uid 0); 18 Oct 2001 09:12:27 -0000 Message-Id: <20011018091227.25342.qmail@c0re.rc23.cx> Date: 18 Oct 2001 09:12:27 -0000 From: drt@un.bewaff.net Reply-To: drt@un.brewaff.net To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.2 Subject: ports/31349: new port Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 31349 >Category: ports >Synopsis: new port >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Thu Oct 18 02:20:00 PDT 2001 >Closed-Date: >Last-Modified: >Originator: D. T. Tzeck >Release: FreeBSD 4.2-STABLE i386 >Organization: c0re GmbH >Environment: >Description: This is a new port for didentd, an RfC1423 (identd) server for FreeBSD and Linux written with security and privacy in mind. The port itself respects PREFIX when building and installing, but some programms in the didentd package which are for creating configuration files are assuming always /usr/local for PREFIX. >How-To-Repeat: >Fix: # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # didentd/ # didentd/pkg-comment # didentd/Makefile # didentd/distinfo # didentd/pkg-descr # didentd/pkg-plist # didentd/files # didentd/files/patch-aa # echo c - didentd/ mkdir -p didentd/ > /dev/null 2>&1 echo x - didentd/pkg-comment sed 's/^X//' >didentd/pkg-comment << 'END-of-didentd/pkg-comment' XModular RfC1423 (identd) server sending encrypted audit tokens. END-of-didentd/pkg-comment echo x - didentd/Makefile sed 's/^X//' >didentd/Makefile << 'END-of-didentd/Makefile' X# New ports collection makefile for: publicfile X# Date created: 15 Oct 2001 X# Whom: Doobee R. Tzeck X# X# $FreeBSD$ X# X XPORTNAME= didentd XPORTVERSION= 0.2 XCATEGORIES= net XMASTER_SITES= http://untergrund.bewaff.net/~drt/c0re.jp/c0de/didentd/ http://c0re.jp/c0de/didentd/ X XMAINTAINER= drt@un.bewaff.net X XRUN_DEPENDS= tcpserver:${PORTSDIR}/sysutils/ucspi-tcp X XALL_TARGET= all XINSTALL_TARGET= install X Xpost-install: X.if !defined(NOPORTDOCS) X ${MKDIR} ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/BLURB ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/INSTALL ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/INTERNALS ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/README ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/THANKS ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/TODO ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/WHY-ENCRYPT ${PREFIX}/share/doc/didentd X ${INSTALL_MAN} ${WRKSRC}/WHY-TAP ${PREFIX}/share/doc/didentd X.endif X X.include END-of-didentd/Makefile echo x - didentd/distinfo sed 's/^X//' >didentd/distinfo << 'END-of-didentd/distinfo' XMD5 (didentd-0.2.tar.gz) = 57dcf69b4a3dce6324e14aa29938ba13 END-of-didentd/distinfo echo x - didentd/pkg-descr sed 's/^X//' >didentd/pkg-descr << 'END-of-didentd/pkg-descr' Xdidentd is a modular RfC1423 (identd) server for FreeBSD and Linux written Xwith security in mind. The Server normally runs chrooted under /proc/net on Xan unprivileged id. X XNormally didentd does not send an username but an encrypted audit token to Xthe client. This token contains all information about the requested Xconnection: userid owning the connection, source ip:port, destination ip:port, Xa timestamp. X XIf a remote admin has a complaint about something from your machine he can Xsend this audit token back to you, you can pipe it through didentd-decrypt Xand find out which user did the connection. didentd-decrypt outputs all the Xinformation from the audit token. So you can have the benefit of ident Xwithout revealing internal information from your system. X XThere is also didentd-name which is a server returning the username of the Xuid owning the requested connection. This is the classic ident approach. X Xdidentd-static is a server which delivers a fixed reply defined by the Xadministrator to every request. X XWWW: http://c0re.jp/c0de/didentd/ END-of-didentd/pkg-descr echo x - didentd/pkg-plist sed 's/^X//' >didentd/pkg-plist << 'END-of-didentd/pkg-plist' Xbin/didentd Xbin/didentd-name Xbin/didentd-static Xbin/didentd-conf Xbin/didentd-name-conf Xbin/didentd-static-conf Xbin/didentd-decrypt Xman/man8/didentd.8 Xman/man8/didentd-name.8 Xman/man8/didentd-decrypt.8 X%%PORTDOCS%%share/doc/didentd/BLURB X%%PORTDOCS%%share/doc/didentd/INSTALL X%%PORTDOCS%%share/doc/didentd/INTERNALS X%%PORTDOCS%%share/doc/didentd/README X%%PORTDOCS%%share/doc/didentd/THANKS X%%PORTDOCS%%share/doc/didentd/THANKS X%%PORTDOCS%%share/doc/didentd/THANKS X%%PORTDOCS%%share/doc/didentd/WHY-TAP X%%PORTDOCS%%@dirrm share/doc/didentd END-of-didentd/pkg-plist echo c - didentd/files mkdir -p didentd/files > /dev/null 2>&1 echo x - didentd/files/patch-aa sed 's/^X//' >didentd/files/patch-aa << 'END-of-didentd/files/patch-aa' X--- /home/drt/didentd/Makefile Thu Oct 18 00:41:53 2001 X+++ work/didentd-0.2/Makefile Sun Oct 14 07:58:33 2001 X@@ -2,7 +2,7 @@ X X PROGS = didentd didentd-decrypt didentd-name didentd-static didentd-conf didentd-name-conf didentd-static-conf X X-CFLAGS += -g -Wall -Idjblib X+CFLAGS = -g -Wall -Idjblib X X all: djblib.a $(PROGS) X X@@ -64,10 +64,10 @@ X ranlib djblib.a X X install: $(PROGS) X- install -c -m 755 -s didentd didentd-name didentd-static /usr/local/bin X- install -c -m 755 -s didentd-conf didentd-name-conf didentd-static-conf /usr/local/bin X- install -c -m 755 -s didentd-decrypt /usr/local/bin X- install -c -m 644 didentd.8 didentd-name.8 didentd-decrypt.8 /usr/local/man/man8 X+ install -m 755 -s didentd didentd-name didentd-static /usr/local/bin X+ install -m 755 -s didentd-conf didentd-name-conf didentd-static-conf /usr/local/bin X+ install -m 755 -s didentd-decrypt /usr/local/bin X+ install -m 644 didentd.8 didentd-name.8 didentd-decrypt.8 /usr/local/man/man8 X X clean: X rm -f $(PROGS) *.o END-of-didentd/files/patch-aa exit >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message