Ping Not sure who exactly clears new packages for the packages feed, but it would be great if we could get my patch for fwknopd applied. It is #1233 in patchwork. Several of the fwknop guys are looking forward to using this in openwrt, and it's easier for them to use it if it's in the packages feed. Let me know if you need anything from me.
~Jonathan Bennett On Wed, Jul 27, 2011 at 12:36 PM, Jonathan Bennett <jbscienc...@gmail.com> wrote: > Ping > > Any progress on getting this approved? Do I need to supply any > additional information? > > Thanks, > Jonathan Bennett > > On Thu, Jul 21, 2011 at 5:06 PM, Jonathan Bennett <jbscienc...@gmail.com> > wrote: >> That time was my fault. Should be fixed now. >> Signed off by Jonathan Bennett <jbscienc...@gmail.com> >> >> >> Index: net/fwknop/Makefile >> =================================================================== >> --- net/fwknop/Makefile (revision 0) >> +++ net/fwknop/Makefile (revision 0) >> @@ -0,0 +1,65 @@ >> +include $(TOPDIR)/rules.mk >> + >> +PKG_NAME:=fwknopd >> +PKG_VERSION:=2.0.0rc2 >> +PKG_RELEASE:=1 >> + >> +PKG_BUILD_DIR:=$(BUILD_DIR)/fwknop-$(PKG_VERSION) >> +PKG_SOURCE:=fwknop-$(PKG_VERSION).tar.gz >> +PKG_SOURCE_URL:=http://www.cipherdyne.org/fwknop/download >> +PKG_MD5SUM:=c78252216fa9627cacf61b453da915a8 >> +PKG_CAT:=zcat >> +include $(INCLUDE_DIR)/package.mk >> + >> +define Package/fwknopd >> + SECTION:=net >> + CATEGORY:=Network >> + DEFAULT:=n >> + TITLE:=Firewall Knock Operator Daemon >> + URL:=http://http://www.cipherdyne.org/fwknop/ >> + MAINTAINER:=Jonathan Bennett <jbscienc...@gmail.com> >> + DEPENDS:=+libpcap +libgdbm +iptables >> +endef >> + >> +define Package/fwknopd/description >> + Firewall Knock Operator Daemon >> + Fwknop implements an authorization scheme known as Single Packet >> + Authorization (SPA) for Linux systems running iptables. This >> + mechanism requires only a single encrypted and non-replayed >> + packet to communicate various pieces of information including >> + desired access through an iptables policy. The main application >> + of this program is to use iptables in a default-drop stance to >> + protect services such as SSH with an additional layer >> + of security in order to make the exploitation of vulnerabilities >> + (both 0-day and unpatched code) much more difficult. >> +endef >> + >> +define Package/Conffiles >> + fwknopd.conf >> +endef >> + >> +CONFIGURE_ARGS += \ >> + --disable-client \ >> + --without-gpgme \ >> + --with-iptables=/usr/sbin/iptables >> + >> + >> + >> +define Package/fwknopd/install >> + $(INSTALL_DIR) $(1)/usr/sbin >> + $(INSTALL_DIR) $(1)/etc/fwknop >> + $(INSTALL_DIR) $(1)/etc/init.d >> + $(INSTALL_DIR) $(1)/usr/lib >> + $(INSTALL_BIN) $(PKG_BUILD_DIR)/extras/fwknop.init.openwrt \ >> + $(1)/etc/init.d/fwknopd >> + $(INSTALL_BIN) $(PKG_BUILD_DIR)/server/.libs/fwknopd $(1)/usr/sbin/ >> + $(INSTALL_BIN) $(PKG_BUILD_DIR)/lib/.libs/libfko.so.0.0.2 \ >> + $(1)/usr/lib/libfko.so.0 >> + $(INSTALL_BIN) $(PKG_BUILD_DIR)/lib/.libs/libfko.so.0.0.2 \ >> + $(1)/usr/lib/libfko.so.0.0.2 >> + $(INSTALL_CONF) $(PKG_BUILD_DIR)/server/fwknopd.conf $(1)/etc/fwknop/ >> + $(INSTALL_CONF) $(PKG_BUILD_DIR)/server/access.conf $(1)/etc/fwknop/ >> + >> +endef >> + >> +$(eval $(call BuildPackage,fwknopd)) >> > _______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
