Subject: CVS commit: [pkgsrc-2008Q3] pkgsrc/net/tnftpd
From: Matthias Scheler
Date: 2008-10-09 13:50:35
Message id: 20081009115035.DAAF3175D0@cvs.netbsd.org

Log Message:
Pullup ticket #2549 - requested by lukem
tnftpd: security update

Revisions pulled up:
- net/tnftpd/Makefile		1.18
- net/tnftpd/PLIST		1.3
- net/tnftpd/distinfo		1.10
- net/tnftpd/options.mk		1.2
- net/tnftpd/patches/patch-aa	delete
---
Module Name:	pkgsrc
Committed By:	lukem
Date:		Thu Oct  9 04:14:29 UTC 2008

Modified Files:
	pkgsrc/net/tnftpd: Makefile PLIST distinfo options.mk
Removed Files:
	pkgsrc/net/tnftpd/patches: patch-aa

Log Message:
Update to tnftpd 20081009.  Notable changes since 20061217:

* Don't split large commands into multiple commands; just fail on them.
  This prevents cross-site request forgery (CSRF)-like attacks,
  when a web browser is used to access an ftp server.
* Enhance -C to support an optional @host ('-C user[@host]'):
  checks whether user as connecting from host would be granted
  access by ftpusers(5).
* Support IPv6 in the host directive of ftpusers(5).
* Implement -n to disable hostname lookups.

* Disable SOCKS support; I don't have the ability to test it,
  and the autoconf checks were very out of date.
* Add configure --with-pam to enable PAM authentication support.
  Defaults to checking for PAM.
* Add configure --with-skey to enable S/Key authentication support.
  Incompatible with --with-pam, defaults to no.
* Fix pathnames in the installed manual pages to contain
  the appropriate $(prefix) substitution.
* Use fcntl(3) locking instead of flock(3) or lockf(3).
* Various other portability improvements.

Files:
RevisionActionfile
1.17.18.1modifypkgsrc/net/tnftpd/Makefile
1.2.42.1modifypkgsrc/net/tnftpd/PLIST
1.9.18.1modifypkgsrc/net/tnftpd/distinfo
1.1.28.1modifypkgsrc/net/tnftpd/options.mk
1.5removepkgsrc/net/tnftpd/patches/patch-aa