Re: UPDATE net/sslh

2018-01-31 Thread Klemens Nanni
On Wed, Jan 31, 2018 at 11:01:20AM +0100, Björn Ketelaars wrote: > On Wed 31/01/2018 09:54, Klemens Nanni wrote: > > On Wed, Jan 31, 2018 at 06:34:19AM +0100, Björn Ketelaars wrote: > > > A new version of sslh is available that fixes an IPv6 parse bug. > > Which bug? Does it work for you now? > >

Re: UPDATE net/sslh

2018-01-31 Thread Klemens Nanni
On Wed, Jan 31, 2018 at 06:34:19AM +0100, Björn Ketelaars wrote: > A new version of sslh is available that fixes an IPv6 parse bug. Which bug? Does it work for you now? > Upstream has decided to remove the v1.19 tarball to avoid encouraging > use of a bad version, and has released v1.19b. They

Re: UPDATE net/sslh

2018-01-21 Thread Klemens Nanni
On Sun, Jan 21, 2018 at 09:47:44PM +, Stuart Henderson wrote: > On 2018/01/21 12:25, Daniel Jakots wrote: > > > > sslh supports OpenVPN. Our OpenVPN README says > > (tail -n1 /usr/ports/net/openvpn/pkg/README): > > chroot /var/empty > > > > So it's possible that users may run two software

Re: UPDATE net/sslh

2018-01-21 Thread Stuart Henderson
On 2018/01/21 12:25, Daniel Jakots wrote: > > sslh supports OpenVPN. Our OpenVPN README says > (tail -n1 /usr/ports/net/openvpn/pkg/README): > chroot /var/empty > > So it's possible that users may run two software both > chrooting /var/empty. Can't it be a security 'imperfectness'? And about 12

Re: UPDATE net/sslh

2018-01-21 Thread Björn Ketelaars
On Sun 21/01/2018 19:10, Klemens Nanni wrote: > On Sun, Jan 21, 2018 at 05:59:26PM +0100, Björn Ketelaars wrote: > > Enclosed a diff for bringing net/sslh to the latest version. From the > > release > > announcement: > > > > - Added 'syslog_facility' configuration option to specify where to

Re: UPDATE net/sslh

2018-01-21 Thread Klemens Nanni
On Sun, Jan 21, 2018 at 05:59:26PM +0100, Björn Ketelaars wrote: > Enclosed a diff for bringing net/sslh to the latest version. From the release > announcement: > > - Added 'syslog_facility' configuration option to specify where to log > - TLS now supports SNI and ALPN, including support for

Re: UPDATE net/sslh

2018-01-21 Thread Daniel Jakots
On Sun, 21 Jan 2018 17:59:26 +0100, Björn Ketelaars wrote: > diff --git net/sslh/patches/patch-basic_cfg > net/sslh/patches/patch-basic_cfg index b2971871443..bd0f31b1bad 100644 > --- net/sslh/patches/patch-basic_cfg > +++ net/sslh/patches/patch-basic_cfg > @@ -1,6

Re: UPDATE: net/sslh 1.18

2016-04-17 Thread Björn Ketelaars
On Wed 30/03/2016 19:08, Björn Ketelaars wrote: > net/sslh has been updated to 1.18. This version fixes a couple of issues and > adds support for RFC4366 SNI and RFC7301 ALPN. Changelog can be found at > https://github.com/yrutschle/sslh/blob/master/ChangeLog > > OK? Ping... diff --git

Re: UPDATE: net/sslh 1.17

2015-03-15 Thread Stuart Henderson
On 2015/03/15 12:36, Björn Ketelaars wrote: net/sslh has been updated to 1.17. This update fixes a potential privilege escalation. Comments? OK? Applied. If you don't send cvs diffs (which are preferred because *none* of the git conversions of the OpenBSD tree are reliable), can you at least

Re: [update] net/sslh 1.14 - 1.15

2013-08-30 Thread Björn Ketelaars
On 17/08/2013, Björn Ketelaars wrote: Update to sslh-1.15. From changelog: - Fixed bug in sslh-select: if number of opened file descriptor became bigger than FD_SETSIZE, bad things would happen - Fixed bug in sslh-select: if socket dropped while defered_data was present, sslh-select

Re: [update] net/sslh 1.11 - 1.14

2013-04-01 Thread Brad Smith
On Sat, Mar 30, 2013 at 07:31:04PM +0100, Bj?rn Ketelaars wrote: On Thu, Mar 21, 2013 at 09:04:40PM +0100, Bj?rn Ketelaars wrote: On Wed, Mar 06, 2013 at 09:07:05PM +0100, Bj?rn Ketelaars wrote: This update brings net/sslh from 1.11 to 1.14. Main changes: Added support for

Re: [update] net/sslh 1.11 - 1.14

2013-04-01 Thread Björn Ketelaars
On Mon, Apr 01, 2013 at 10:24:48AM -0400, Brad Smith wrote: On Sat, Mar 30, 2013 at 07:31:04PM +0100, Bj?rn Ketelaars wrote: On Thu, Mar 21, 2013 at 09:04:40PM +0100, Bj?rn Ketelaars wrote: On Wed, Mar 06, 2013 at 09:07:05PM +0100, Bj?rn Ketelaars wrote: This update brings net/sslh from

Re: [update] net/sslh 1.11 - 1.14

2013-03-30 Thread Björn Ketelaars
On Thu, Mar 21, 2013 at 09:04:40PM +0100, Björn Ketelaars wrote: On Wed, Mar 06, 2013 at 09:07:05PM +0100, Björn Ketelaars wrote: This update brings net/sslh from 1.11 to 1.14. Main changes: Added support for configuration file Corrected OpenVPN probe to support pre-shared secret mode

Re: [update] net/sslh 1.11 - 1.14

2013-03-21 Thread Björn Ketelaars
On Wed, Mar 06, 2013 at 09:07:05PM +0100, Björn Ketelaars wrote: This update brings net/sslh from 1.11 to 1.14. Main changes: Added support for configuration file Corrected OpenVPN probe to support pre-shared secret mode Added an actual TLS/SSL probe Full changelog can be found at