On Wed, May 8, 2019 at 5:05 PM Stuart Henderson <[email protected]> wrote:
> On 2019/05/08 17:00, sven falempin wrote:
> > ( tab less diff !! warning )
> > Shall wait for merge and cleaning from a better port maintainer
>
> Really...
>
>
>
Yes this is not a proposition just information.
I want to Kudo all the ports maintainer because patching libnet show me how
much work this is .
First of all after review of depends getting rid of libnet 1.0 would remove
some legacy
'historical' software mostly unmaintained
See TL;DR below if you want to see the list of tools using libnet 1.0 and
what is happening with them
I should have guessed than a Raw packet manipulation tool would have many
'blackhat' style fun tool.
Anyway 1.2 is compatible with 1.1 so the fix regarding interface
enumeration would be push as a regular update.
I also compiled tcptraceroute/used with it.
It is nevertheless not reassuring that popular tool are using the libnet
like that , which need root access and is , well,
behaving. 1.0 was tested and 'hardened' 1.1+ is apparently not as much.
How do the ports tree with 'old' software : currently I know source is
copied to a mirror and its left there with a port, is it sustainable ?
Meanwhile I tested the HOMEPAGE var, ( seeing all those Symantec redirect )
using this :
--- /usr/src/share/mk/bsd.port.mk Sat Sep 24 03:26:01 2011
+++ /usr/share/mk/bsd.port.mk Tue May 14 08:36:10 2019
@@ -3,3 +3,16 @@
.endif
PORTSDIR?= /usr/ports
.include "${PORTSDIR}/infrastructure/mk/bsd.port.mk"
+
+homepage:
+ @curl -s -o /dev/null -w '%{HTTP_CODE}@{redirect_url}\n'
${HOMEPAGE} | while read p; do\
+ [ $${p%@*} = 301 ] && continue; \
+ [ $${p%@*} = 200 ] && continue; \
+ if [ $${p%@*} = 302 ]; then \
+ echo "${HOMEPAGE}" | sed -e 's/http:/https:/' | sed -e
's/:443//' | while read h; do \
+ [ "$${h}" != "${HOMEPAGE}" ] || echo ${CATEGORIES}
${PKGSPEC}${VERSION} ${DISTNAME} ${HOMEPAGE} is $${p%@*} Broken; \
+ done \
+ else \
+ echo ${CATEGORIES} ${PKGSPEC}${VERSION} ${DISTNAME}
${HOMEPAGE} is $${p%@*} Broken; \
+ fi \
+ done
many HOMEPAGE failed the DNS resolution, this can slow down script quite a
lot if a request is one day made ( to extract so http meta for a freshports
fancy front )
I dont think I know how to do that with base FTP.
- -
TL;DR
../../net/angst/Makefile = never released , inactive since 2004
../../net/firewalk/Makefile = OPENBSD_4_7 last active, no maintainer 15
years ago
../../net/libnids/Makefile = 2010, DEAD HOMEPAGE, 1.24 out , looks dead
https://github.com/MITRECND/libnids/commits/master
../../net/nemesis/Makefile =
*1999: Nemesis was created by Mark Grimes
* 2001: Jeff Nathan took over maintainership
* 2018: Project resurrected by Joachim Nilsson
~1.5
../../net/sing/Makefile
* https://www.cvedetails.com/cve/CVE-2007-6211/
* RIP writer :-( looks like a dangerous legit tool with no plan to use
updated libnet !
SAAAAAD
../../net/thcrut/Makefile
FREEBSD WWW: http://thc.org.segfault.net/ DEAD
HOMEPAGE = 'FISHING' ( the hackr choice lol )
IS that an upgrade ? : https://packetstormsecurity.com/files/31909/
uthored by thc, anonymous | Site thc.org
https://github.com/vanhauser-thc/THC-Archive/blob/master/Tools/thcrut-0.1.tar.gz
'
Actually not supported but not 'dead', note the package is using a
completely deprecated MAC fingerprinting file instead of oui/aib
../../security/despoof/Makefile
RDR to : https://www.symantec.com/products/control-compliance-suite
https://github.com/raphaelr/despoof
14 DEPRECATED= Depends on expired net/libnet10
15 EXPIRATION_DATE= 2014-09-30
../../security/dsniff/Makefile
is ../../net/libnids/Makefile use
../../security/rdp/Makefile
http://www.atstake.com/research/tools/ => symantec
../../security/scanlogd/Makefile
is ../../net/libnids/Makefile use
* local copy of libnet 1.1.3 release candidate (1129 KB)
* local copy of libnet 1.0.2a (137 KB) - much smaller, but also works
with libnids and scanlogd
Actually alive people
../../security/sentinel/Makefile
no comment, the cat is adleiavde
../../security/zebedee/Makefile
if libnet is not amintained how can they do a vpn with it
http://www.packetfactory.net/libnet/dist/deprecated
--
--
---------------------------------------------------------------------------------------------------------------------
Knowing is not enough; we must apply. Willing is not enough; we must do
