On Thu, Apr 9, 2015, at 09:27, Marko Cupać wrote:
> On Thu, 09 Apr 2015 09:05:19 -0500
> Mark Felder wrote:
>
> >
> >
> > On Thu, Apr 9, 2015, at 08:26, Mark Martinec wrote:
> > >
> > > Perhaps the haproxy port maintainer can be persuaded to ass
On Wed, May 13, 2015, at 06:11, Carmel NY wrote:
> On Wed, 13 May 2015 01:24:35 +0200, Dr. Peter Voigt stated:
>
> [Truncated]
>
> The most reliable method to eliminate this, for lack of a better word
> "bullshit", would be for FreeBSD to keep the "base" system "openssl"
> version" up-to-date.
On Wed, May 20, 2015, at 17:48, Xin Li wrote:
]>
> Well, currently OpenSSL do accept weak DH so _arguably_ it does affect
> FreeBSD, and it's likely to break existing applications if we enforce
> such restrictions (namely, Java 6).
>
AFAIK, Java doesn't support >1024 DH key until Java 8.
_
On Sat, May 23, 2015, at 10:30, Roger Marquis wrote:
>
> If you find a vulnerability such as a new CVE or mailing list
> announcement please send it to the port maintainer and
> as quickly as possible. They are whoefully
> understaffed and need our help.
Who is "ports-secteam"? There has bee
On Wed, May 27, 2015, at 12:40, Roger Marquis wrote:
>
> * perhaps as a result the vuln.xml database is no longer reliable, and
> by extension,
>
> * operators of FreeBSD servers (unlike Debian, Ubuntu, RedHat, Suse and
> OpenBSD server operators) have no assurance that their systems ar
On Thu, May 28, 2015, at 11:57, Bryan Drewery wrote:
> On 5/28/2015 11:47 AM, Bryan Drewery wrote:
> > On 5/27/2015 12:40 PM, Roger Marquis wrote:
> ...
>
> > This php one came up in the week and I almost
> > "just fixed it", but doing those things burns me out as I have my own
> > priorities.
>
On Thu, May 28, 2015, at 11:47, Bryan Drewery wrote:
>
> I think the VUXML database needs to be simpler to contribute to. Only a
> handful of committers feel comfortable touching the file.
We could use a very friendly user-facing form that they can fill out to
create a valid vuxml entry. And th
On Thu, May 28, 2015, at 11:47, Bryan Drewery wrote:
>
> Personally I agree on all points. Our ports security regime is not
> working.
I already communicated further with Roger off-list, but would like to
point out that I *do* think there is a problem, but I don't think it's
"the sky is fallin
On Mon, Jun 8, 2015, at 15:55, Roger Marquis wrote:
> > On Fri, May 29, 2015 at 5:15 PM, Robert Simmons wrote:
> > Crickets.
> >
> > May I ask again:
> >
> > How do we find out who the members of the Ports Secteam are?
> >
> > How do we join the team?
>
> Anyone?
>
I really hope this can
> On Jul 18, 2015, at 06:17, Ion-Mihai Tetcu wrote:
>
> Hi,
>
>
> I have some machines on which, for various reasons, only ports are used.
>
> On upgrading ports, I keep running into the the fact that
> /var/db/pkg/vuln.xml is lagging behind /usr/ports/security/vuxml/vuln.xml
> which is updat
On Sat, Jul 18, 2015, at 20:35, Ion-Mihai Tetcu wrote:
> On Sat, 18 Jul 2015 17:30:52 -0500
> Mark Felder wrote:
>
> >
> > > On Jul 18, 2015, at 06:17, Ion-Mihai Tetcu
> > > wrote:
> > >
> > > Hi,
> > >
> > >
>
On Wed, Sep 2, 2015, at 10:36, Rob Belics wrote:
> I have a server and my workstation. Both run FreeBSD 10.2-RELEASE. Both
> had
> lang/go version 1.4 on them. lang/go version 1.5 was released in ports
> and
> it builds on my local workstation, including reinstalling version 1.4.2
> but, on the s
how_bug.cgi?id=203189
> - textproc/py-sphinxcontrib-programoutput
> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203190
>
These have now landed in the tree.
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
freebsd-ports@
t; available at https://nuos.org/security_libssh2.diff . if this link is
> > broken it's because a fix has been committed to ports tree.
> >
>
> devel/libvirt was affected by this too.
>
Thanks for the report and patch Chad. I am testing builds now to
reproduce and prove the p
On Thu, Sep 24, 2015, at 12:07, Mark Felder wrote:
>
>
> On Thu, Sep 24, 2015, at 11:52, Bryan Drewery wrote:
> > On 9/23/2015 2:07 AM, Chad J. Milios wrote:
> > > one thing i noticed this break is the LIBSSH2 option on multimedia/vlc.
> > >
> > > fi
if it does it
would be great to integrate pkg.
* This is described in greater detail in the following BAFUG talk:
http://www.nextbsd.org/jordan-hubbard-visits-bafug/
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
freebsd-ports@f
well which -- rumor has it -- can do a decent job of programmatically
detecting licenses.
http://blog.feld.me/posts/2014/12/bsd-license-audit/
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
freebsd-ports@freebsd.org mailing list
https://
then I started filling out the proper dependencies and ran into
python-pyinotify. I have a feeling this will cause the program to break
in some situations because we don't have inotify on FreeBSD.
--
Mark Felder
ports-secteam member
f...@freebsd.org
if there are edge cases where
distfiles aren't cached eg due to the MASTER_SITES being CHEESESHOP
(pypi), etc.
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
freebsd-ports@freebsd.org mailing list
https://lists.freebsd.org/mailman/lis
had to update and build some stuff that
> wasn't in ports and then I couldn't get it working so I gave up..
>
> Looking again I think you would need to create a port for
> https://developer.gnome.org/libtracker-sparql/stable/
>
We alre
oying.
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
freebsd-ports@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
flib update was security related so this is a regression due to
the update I pushed. I am very pleased you were able to identify the
issue at hand.
Please keep me / ports-secteam in the loop.
Thank you!
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
//github.com/ricochet-im/ricochet/releases
>
I'll take care of this. If you see something like like this in the
future please assign the issue to ports-secteam@ which will help it get
prompt attention.
Cheers!
--
Mark Felder
ports-s
On Fri, Mar 18, 2016, at 06:28, Stefan Ehmann wrote:
> On 06.03.2016 19:13, Mark Felder wrote:
> >
> >
> > On Sun, Mar 6, 2016, at 04:15, Stefan Ehmann wrote:
> >> On 29.02.2016 18:25, Patrick Hess wrote:
> >>> Hi,
> >>>
> >>>
difficult thing to
do reliably as a complex firewall ruleset may need this deny rule
somewhere different than the very first rule. I certainly don't have it
as the first rule for my firewall.
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
On Thu, Oct 2, 2014, at 15:18, Kimmo Paasiala wrote:
> I’m the maintainer of level/bin86 (more out of general interest in
> learning the ropes of port maintainance rather than the port itself).
>
> I have submitted a PR to update the port to use a bit more modern
> practices:
>
> https://bugs.f
On Fri, Oct 10, 2014, at 04:37, Mathieu Arnold wrote:
>
>
> +--On 10 octobre 2014 09:11:10 +0200 Jakob Breivik Grimstveit
> wrote:
> | Hi there, fellows!
> |
> | I'm looking at jumping from php5.5 to php5.6, but I'm wondering whether
> | anyone have any experience on this, and any accompanyin
On Fri, Oct 10, 2014, at 13:29, Auld Besom wrote:
>
> I had it as ${ABI} to begin with, but had no luck that way either
> (see below). Then I changed it, unaware that that first 8 was
> the version, or even that there are o/s version-dependent
> versions of pkg.
>
Pkg itself is compiled, not int
On Fri, Oct 10, 2014, at 14:47, Bryan Drewery wrote:
> On 10/10/2014 1:12 PM, scratch65...@att.net wrote:
> > On Fri, 10 Oct 2014 12:57:42 -0500, Brian Drewery wrote:
> >
> >> find /usr/share/keys/pkg -exec sha256 {} +
> >
> > No such file
>
> That's your problem. You are missing the signature
On Wed, Oct 29, 2014, at 07:13, Slawa Olhovchenkov wrote:
> On Wed, Oct 29, 2014 at 12:19:33AM +0100, Baptiste Daroussin wrote:
>
> > Hi all,
> >
> > We are starting the release process of pkg 1.4, we want to have a better
> > release
> > process than with every single previous version of pkg.
On Wed, Nov 5, 2014, at 10:16, Roger Marquis wrote:
>
> Was a time when FreeBSD was believed to be a more stable and compatible
> platform than Linux. Of course all that backwards compatibility was
> thrown out the window with this year's make and pkg updates, which made
> management at my busin
On Wed, Nov 5, 2014, at 18:01, Jeffrey Bouquet wrote:
>
> On 11/05/14 13:30, Mark Felder wrote:
> >
> > - duplicate packages registered in pkg_info
> I could simply /bin/rm -rf the duplicate subdirectory.
>
Your're treating the symptom not the problem. T
On Thu, Nov 6, 2014, at 03:24, Anton Shterenlikht wrote:
>
> I'm not sure what you mean here.
> I've systems where I install 99% of packages
> from official repo servers, and then rebuild
> 1% from ports where the default options are
> no good for me. Is this not supported?
> Or do you mean some
On Sun, Nov 16, 2014, at 07:43, Kurt Jaeger wrote:
> Hi!
>
> > | Thanks for the hint. I'll compare them at the next opportunity.
>
> > Well, you don't need to compare them, we build packages for branches on the
> > oldest supported release, so 8.4 built on 8.4, the packages for 9.1, 9.2
> > and
On Mon, Dec 22, 2014, at 03:46, Matt Smith wrote:
> On Dec 22 22:33, Jonathan Chen wrote:
> >Hi,
> >
> >Once upon a time, installing gnupg didn't require pinentry, and I
> >could run it quite happily on the command line. However, nowadays if I
> >install the port it drags in pinentry and a whole
scribe sshguard
functions in a while.
sshguard_safety_thresh -> sshguard_danger_thresh
sshguard_pardon_min_interval -> sshguard_release_interval
sshguard_prescribe_interval -> sshguard_reset_interval
Cheers,
--
Mark Felder
d)) for coordinating the
> multiple vulnerable ports is:
>
> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=211248
>
>
From what I can see MariaDB hasn't released an update to address these
issues yet. I believe Oracles does not coordinate release of security
iss
> On Aug 8, 2016, at 05:02, Bernard Spil wrote:
>
>> On 2016-08-06 23:17, Mark Felder wrote:
>>> On Sat, Aug 6, 2016, at 07:34, Kubilay Kocak wrote:
>>> On 6/08/2016 7:23 AM, Michael Grimm wrote:
>>> > Hi —
>>> >
>>> > Kub
gations that do not
> require patches.
>
I already solved your #2 problem:
https://blog.feld.me/posts/2016/08/monitoring-freebsd-base-system-vulnerabilities-with-pkg-audit/
#3 is being reviewed by secteam/core, so I think we're well on our way
to solving these concerns.
--
Ma
d out yet how to roll in the
> snappy 1.1.3 requirement correctly -
> https://github.com/skunkwerks/ports/commit/84aa6e4c9b0fccac97f4ff6870aaed6ab5d8bd80
> is as far as I'll get for a couple of weeks now.
>
Hmmm, I'll have to lo
etails about how you're trying to build it? It builds
with clang, not gcc. It should not be attempting to use gcc at all.
Here is the cluster build log for 10.1 amd64 (10.1 is build target for
all packages used for 10.1, 10.2, and 10.3)
http://beefy2.nyi.freebsd.org/data/101amd64-quarterly
On Wed, Sep 21, 2016, at 16:21, Naram Qashat wrote:
> On 2016-09-21 15:26, Mark Felder wrote:
> > On Wed, Sep 21, 2016, at 12:52, Naram Qashat wrote:
> >> I can't seem to get the phantomjs port to build for me under FreeBSD
> >> 10.3. I have lang/gcc installed
regards
>
> Miroslav Lachman
Per your request I have made this an option "X11" disabled by default.
--
Mark Felder
ports-secteam member
f...@freebsd.org
___
freebsd-ports@freebsd.org mailing list
https://lists.freebsd.org/mailm
update and it's no longer blocking abusers...
that would be bad.
--
Mark Felder
ports-secteam & portmgr member
f...@freebsd.org
___
freebsd-ports@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"
ents locally. I'm not up to speed on that
and am discussing it with the maintainer right now.
tl;dr in progress, but want to be sure the update won't break the
ability to adopt APs or cause any other issues related to snappy
--
Mark Felder
ports-secteam & portmgr member
f...@freebs
,
--
Mark Felder
ports-secteam & portmgr member
f...@freebsd.org
signature.asc
Description: PGP signature
ome up with
> new branding I can also help with this.
>
> Peace.
>
>
> *Matt A. Tobin*
> @mattatobin <http://twitter.com/mattatobin> on Twitter
>
> On Tue, Feb 6, 2018 at 5:49 PM, Mark Felder wrote:
>
> >
> >
> > On Tue, Feb 6, 2018, at
see which extra copy of those libraries are
being used.
Building with your libraries is the wrong way to ship this software for our
users.
Do we need to disable your branding only or also stop using the name? If both,
we will likely remove the port
/listinfo/freebsd-elastic
The current list of team members:
Mark Felder
Dan Langille
Tom Judge
Palle Girgensohn
Please subscribe if you'd like to discuss all things related to ElasticSearch
products on FreeBSD.
Thanks!
--
Mark Felder
ports-secteam & portmgr member
f...@fr
It was frozen because the new version required Python 3.x and we couldn't have
2.x and 3.x packages at the same time. That problem is gone now, but I haven't
updated it quite yet. I'll look at it some more today.
--
Mark Felder
port
ns about overcoming issues in your environment
are welcome. We also have a list for elastic now called
"freebsd-elas...@freebsd.org".
Hope that helps,
--
Mark Felder
ports-secteam & portmgr member
f...@freebsd.org
___
free
ava on the system
and you are trying to tell ElasticSearch to use a different one?
> Can I post your replies in the FreeBSD forum? Might be useful for others
> as well ;)
>
> Thanks a lot
>
Certainly
--
Mark Felder
ports-secteam & portmgr member
f...@freebsd.org
_
kaged in our public
repository, but I cannot test the updates at this time.
Thanks!
--
Mark Felder
ports-secteam & portmgr member
f...@freebsd.org
___
freebsd-ports@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd
t; Done.
>
> thanks a lot, I committed them.
> I will roll now all my production servers to the new version and will
> tomorrow MFH it.
>
> @ports-secteam
> could you please approve the MFH of r468821.
>
MFH approved
--
Mark Felder
ports-secteam & portmg
On Thu, May 3, 2018, at 11:50, Matthias Fechner wrote:
> Am 02.05.2018 um 16:12 schrieb Mark Felder:
> > MFH approved
> >
> I just saw while doing the MFH that we have an older version in Q2.
> I try to prepare a list of commits we would need to merge and will send
>
On Thu, Jan 23, 2014, at 5:54, Rod Person wrote:
> Hi,
>
> I'm currently the maintainer of graphics/fotoxx and I want to stop
> maintaining that since I no longer use it and wish to concentrate on
> other things that I actually use. What is the official procedure, if
> any, for be dropped as
On Thu, Feb 13, 2014, at 12:22, Beeblebrox wrote:
> I recently switched to mariadb55-client from mysql55-client (because of
> server switch).
>
> The problem is that after a full (all installed ports) poudriere run,
> "pkg
> upgrade" wants to install mysql55-client, which then of course fails
>
On Fri, Feb 14, 2014, at 6:31, Beeblebrox wrote:
>
> >> DEFAULT_VERSIONS= mysql=55m
> I had not seen such a syntax in Mk/bsd.default-versions.mk, but I gave it
> a
> try.
> Does not work unfortunatley. Neither does this:
> MYSQL_DEFAULT?=5.5m
> Build was a full poudriere run on all inst
On Fri, Feb 14, 2014, at 3:45, Павел Новиков wrote:
> Hello!
>
>
>
> During the installation the port we found that phplist requires the
> php5-hash port. In case of phplist was installed without php5-hash only
> blank screen is displayed. Could you please add a dependency on php5-hash
> into t
Due to the fact that this port also needed STAGE support it fell under
the committer's blanket approval. I was able to successfully test and
resolve your issue. The requirement of php hash has been added to this
port.
Thanks for your report!
___
freebsd-
On Fri, Feb 14, 2014, at 8:07, Beeblebrox wrote:
> > Although I suspect you could have a different problem. Are you mixing
> > FreeBSD and your private repository?
>
> No. When I upgrade, I specify the repo: # pkg upgrade -r myrepo
> On the other hand, I'm merging gnome3 from the marcuscom-dev
Thanks for your patches. It would be nice if they were separate PRs, but
I understand that can be painful when you have so many different
patches/ports.
Hopefully we can get several committers to pick these apart and get them
into the tree before they rot.
_
On Tue, Feb 25, 2014, at 2:42, Dewayne Geraghty wrote:
> Has support for the pkg_* suite of tools gone away? After performing an
> svn update of my ports tree last night; both openssl and monit failed to
> build packages, due to missing man pages
>
Port committers are advised to test ports again
Hi Darren,
I'm trying to understand exactly what we're looking at here. Is the problem:
"nginx always builds against OpenSSL in base (for FreeBSD 10+?)" ?
If so, that's correct; it should not build against OpenSSL from ports just
because the version from ports happens to be installed. It shou
On Fri, Mar 7, 2014, at 1:49, Scot Hetzel wrote:
>
> Darren is correct, the intent of bsd.openssl.mk is to build using the
> security/openssl port when WITH_OPENSSL_PORT is defined in
> /etc/make.conf by the local administrator. What the www/nginx port
> does is it forces the build to always use
On 2014-03-18 18:36, Kaya Saman wrote:
Hi,
I'm experiencing 3 issues with the Plex Media Server
My configuration is running FreeBSD 10.0 x64 with the ports tree up to
date.
Issue 1: Upon first installing the port everything went fine however,
PMS wouldn't start and kept complaining about
Hi all,
Any users out there running Mumble that can test 1.2.5 for me?
I can prove it builds and *runs* on 8, 9, and 10 but the desktop machine I
historically ran mumble from is not available at the moment so I cannot
actually test the *audio*.
If someone could give this a shot and let me kno
On Mar 27, 2014, at 18:51, Darren Pilgrim wrote:
>
> I hate to nag about this, but can we get this fixed sometime soon? In the
> three weeks since Mark's email, osa updated the port to 1.4.7, but didn't
> bother fixing this issue. What happened to this being a showstopper in a
> major port?
On 2014-05-18 23:11, Kevin Oberman wrote:
I have a problem installing net-im/libpurple. I get the following
error:
===> Registering installation for libpurple-2.10.9_2
pkg-static:
lstat(/usr/ports/net-im/libpurple/work/stage/usr/local/lib/purple-2/libjabber.so.0):
No such file or directory
pkg
On 2014-05-19 08:47, Lev Serebryakov wrote:
Problem is, this is NOT a github :) git != github, you know?
Roll your own tarball and host it on freefall in your ~/public_distfiles
http://www.freebsd.org/doc/en/books/porters-handbook/slow-sources.html
___
On 2014-05-20 03:18, Pete Carah wrote:
PLEASE don't automatically install pkg during the build of ANY other
package; if this happens in the middle of a portupgrade -a on a system
without pkgng, the result is not pretty; all packages built after
net-snmp have a duplicated origin, among other thing
On 2014-06-05 15:51, Dewayne Geraghty wrote:
On 6/06/2014 6:09 AM, Paul Schmehl wrote:
That decided it was a good idea to completely break ports to force
people to upgrade? You couldn't come up with a warning system instead
of outright breaking ports? The idiots are apparently running the
asyl
101 - 172 of 172 matches
Mail list logo
