Re: how to output yara rule file information in C language

metas is a pointer to a YR_META structure (https://github.com/VirusTotal/yara/blob/master/libyara/include/yara/types.h#L225). You can see how yara handles it when printing metadata about a rule here: https://github.com/VirusTotal/yara/blob/master/cli/yara.c#L1004 -- WXS > On May 22, 2021, at

Re: Yara rule: how to detect unsupported PE file for Windows 10?

The string you are highlighting is not indicative of a file running on Windows 10 or not. That string is in the DOS stub, which is executed when you try to run the program under DOS. Why this particular file is not running on your system is a different issue but it has nothing to do with that

Re: Learning YARA - hashes not being recognized?

or yara? > > > Jonathan > > On Mon, Feb 22, 2021 at 11:33 AM Wesley Shields <mailto:w...@atarininja.org>> wrote: > See the warning at the top of > https://yara.readthedocs.io/en/stable/modules/hash.html > <https://yara.readthedocs.io/en/stable/modules/has

Re: Learning YARA - hashes not being recognized?

See the warning at the top of https://yara.readthedocs.io/en/stable/modules/hash.html - all hashes are returned in lowercase. -- WXS > On Feb 22, 2021, at 11:30 AM, Jonathan Livolsi wrote: > > Hi, > > I am going through a lab to learn yara rules and have a simple problem but I > am not

Re: Machine Learning

I'm far from an expert but "these samples cluster around this rule or this subset of rules" is far from machine learning. There's no learning there at all. We have used YARA to extract out features from various documents (specifically things like RTF where you can easily count the number of

Re: Hopefully a simple question

something being detected? > > On Tuesday, 11 August 2020 10:41:48 UTC+10, Wesley Shields wrote: > The format is . > > In your case, YARA matched two rules on the file c:\Temp\yarfile.yar > > -- WXS > >> On Aug 10, 2020, at 8:33 PM, Michael Fry > wrote: >>

Re: Hopefully a simple question

The format is . In your case, YARA matched two rules on the file c:\Temp\yarfile.yar -- WXS > On Aug 10, 2020, at 8:33 PM, Michael Fry wrote: > > Hi All, > > So I have recently been asked to use Yara to scan some servers for some IOCs > and I am using the command line version. > > The yar

Re: Issues - Win2K3 w/ PS Ver:2.0 + YARA 4.0.2

It looks like yara64 won't run because you have a 32bit install of Windows, that can't run 64bit binaries. The problem with yara32 looks like it is permissions, and you don't have access to execute it. Without further information this looks like it has nothing to do with YARA, and is a local

Re: PE rule matches when run under yara-python but not in yara ??!

I can't replicate this - it does not match on 4.0.2 on my system. There is no rule parsing bug here - the same C code is used when compiling rules using yara on the command line or via python. I've had a couple of people tell me something weird is going on when using pip to install yara-python,

Re: Matching only fullword standalone base64 strings (ending in '==') ?

I don't think fullword makes sense here, given that the base64 modifiers are meant to work when the string you're searching for is embedded anywhere in a base64 encoded string. This requires that it strip some leading and trailing bytes. If you want to find it without this behavior just put the

Re: PE module: 'not' logic conditions will match on non-PE files - should pe functions first check if file is PE ?

This is likely due to the change made recently where comparing with UNDEFINED values now evaluates to false. It used to evaluate to UNDEFINED. > But shouldn't pe module conditions check first if the file is a PE header or > valid base PE, then fail if the file isn't ? Functions in the pe

Re: Match On Export Directory Name

a to find samples with the same Export > name, not the name of an exported function. > > Cheers, > Schrodinger. > > On Thursday, June 27, 2019 at 12:40:03 AM UTC+1, Wesley Shields wrote: > Not sure where you got "pilot.dll" from but the file you referenced has one

Re: Match On Export Directory Name

> rule export_name > { > condition: > uint16(0) == 0x5A4D > and > pe.exports("pilot.dll") > } > > Sample I tested with d5c679df69751936d0fa380f2e4bf017 can provide the sample > if you need. > > Cheers. > > On Wednesday,

Re: Match On Export Directory Name

For now you can do: pe.exports("pilot.dll"). -- WXS > On Jun 25, 2019, at 6:21 PM, Schrodinger wrote: > > Hi everyone, > > I was wondering if there is a way to perform matching on the name in the > DIRECTORY_ENTRY_EXPORT in a Portable Executable. Example from the Python > pefile module: >

Re: Yara configure statically with modules

What about: ./configure --enable-static --enable-cuckoo --enable-magic --enable-dotnet -- WXS > On May 3, 2019, at 5:22 AM, Shakarim Utepbergenov > wrote: > > Hello guys, I need to build a executable binary file on Ubuntu 18.04 > i've tried configure with static libs > ./configure

Re: YARA rule to search for a file with a certain name

Filename is not something YARA knows about, nor should it IMO. The filename is a property of the filesystem upon which the file resides, and has no bearing on the content of the file. If you want to use filename in your rule you have to pass it in as an external variable. Check out

Re: './configure --dotnet' doesn't work - 'import dotnet' returns error

It should be —enable-dotnet — WXS On Wed, Nov 7, 2018 at 2:09 PM wrote: > > Newbie question - The instructions to get .net rules appear to be > straight-forward, but it doesn't appear to be working. > > > I've followed the install and configure instructions: > > ./bootstrap.sh > ./configure

Re: error: syntax error, unexpected '=', expecting _STRING_IDENTIFIER_

The inner quotes are not escaped. — WXS On Sun, Mar 18, 2018 at 8:24 PM wrote: > Hi > > I ran this rule while learning: > echo "rule a { strings: $h = "arnav" condition: $h } > a > > but when I run > yara a a > > it gives me this error: > error: syntax error, unexpected

Re: Using module_callback more than once

This should show you what is going on: >>> f = open('/bin/ls') >>> data = f.read() >>> f.close() >>> import yara >>> rules = yara.compile(source='import "pe" rule a { condition: false }') >>> def foo(data): ... global resources ... resources = data.get('number_of_resources') ... >>>

Re: Getting information about PE using yara-python

Sure, I've been using it to unpack and handle config blocks from .NET binaries using this technique: https://gist.github.com/wxsBSD/1e518cef545fee7bb991a9dc6c14a0f7 Substitute the dotnet module for the pe module and you will get access to all the information exposed via the PE module (you

Re: Yara-python and Warning for RegEx Resonable Value for N

You will need to provide an example. Please include the rule and exact commands and outputs you're getting when running things. Also, please include versions of things you're using. -- WXS > On Feb 23, 2018, at 9:47 AM, Binaries 4 Breakfast > wrote: > > Sorry,

Re: Yara-python and Warning for RegEx Resonable Value for N

Can you share the rule and the version of YARA you're using? If true it is a bug but I suspect it isn't true. I think you may have a local problem. -- WXS > On Feb 23, 2018, at 9:45 AM, Binaries 4 Breakfast > wrote: > > Folks, I recently found that a yara-python

Re: problem compiling yara rules downloaded from yara-rules repository also doing this in Python2.7 using yara-python

The first one is because you don't have the androguard module compiled. The second one is because you don't have the cuckoo module compiled. The androguard requirement, which isn't part of YARA (yet?), is documented in their README. The cuckoo module can be enabled with ./configure

Re: Are raw files necessary for Yara? Can the outputs of "strings" be fed to the yara processor?

You could do that. You would lose any capabilities based upon most of the modules (PE, elf, etc). The math module would still work but I'm not sure how relevant it would be. More importantly I'm not sure what doing this would get you that running YARA on the original files wouldn't also get

Re: Yara not using global rules

I'm afraid I cannot post the exact files. I'll create a working >> environment that replicates all the variables required, and I'll post it >> here when I've gotten this done. >> >> Den onsdag den 16. august 2017 kl. 16.31.35 UTC+2 skrev Wesley Shields: >>> >>

Re: Yara not using global rules

I've attempted to replicate it using my own instructions, coupled with your > misc.yar, and the result is that it works just fine. > > So I'm guessing the issue is with my own setup, and I'll continue evaluating > the specifics and return with a response when I've found the culprit. > > Den m

Re: Yara not using global rules

I can't replicate this behavior using 3.5.0 or latest master. wxs@wxs-mbp yara % cat foo include "./global.yar" include "./misc.yar" wxs@wxs-mbp yara % cat global.yar global rule fileSizeLimit { condition: filesize < 1KB } wxs@wxs-mbp yara % cat misc.yar rule foo { condition: true } wxs@wxs-mbp

Re: yara python callback function , slow performance

Based upon my understanding I don't think this is expected behavior. Can you share a minimal proof of concept which shows this happening? -- WXS > On May 17, 2017, at 8:18 AM, tofbaas...@gmail.com wrote: > > Hello again , > > I'm using yara python to match rules against a lot of files . The

Re: determining which strings causes a rule to fail

What about this: wxs@wxs-mbp yara % cat foo foo wxs@wxs-mbp yara % cat bar rule test { strings: $a = "foo" $b = "bar" condition: all of them } wxs@wxs-mbp yara % ./yara -ns bar foo test foo 0x0:$a: foo wxs@wxs-mbp yara % This prints all rules that DO NOT match and the strings in

Re: Yara needs overlay offset

I haven't looked at the code, but there is precedent to use pe.overlay.offset and pe.overlay.size. -- WXS > On Aug 15, 2016, at 12:02 AM, Fernando Mercês wrote: > > Sorry to reply to an old thread but I had the same need and decided to create > a patch (discussion at

Re: How about importing yara into kernel space ?

If you are infected with a rootkit moving YARA into the kernel is not an answer since the rootkit has full access to muck around with YARA even if it is in the kernel. My recommendation is don't run YARA on a system which is potentially compromised with a rootkit like you describe. If the

Re: How about importing yara into kernel space ?

> > Yara rules with jump constructs would make it easy to get code execution in > the kernel. > > On Fri, Mar 18, 2016 at 6:03 AM Wesley Shields <wshie...@gmail.com> wrote: > If you are infected with a rootkit moving YARA into the kernel is not an > answer since the ro

Re: Yara - Bus error: 10

What happens if you move the crashing folders off CIF and onto local disk? If it still crashes can you narrow it down to a single file and rule (or set of rules) that crash? If you can do that then I can try to replicate and debug from there. -- WXS > On Mar 1, 2016, at 6:19 PM, Patrick Olsen

Re: [yara-python] How to get the rule name of every compiled rule?

I don't recall exactly when it was added but probably is in newer versions than what you have. -- WXS On Friday, March 4, 2016, Robert Giczewski <robert.giczew...@gmail.com> wrote: > yara 3.2.0 > yara-python 2.0 > > Am Freitag, 4. März 2016 14:35:21 UTC+1 schrieb Wesley S

Re: [yara-python] How to get the rule name of every compiled rule?

g, 4. März 2016 13:59:11 UTC+1 schrieb Wesley Shields: >> >> I believe there is support for this that was added a while back. Totally >> untested but I believe it goes like this: >> >> for rule in rules: >> print rule.identifier >> >> -- WXS >&g

Re: No yara-python after make installing

I think the documentation applies to the most recent release, and it looks like you may be using the latest master. If that is the case, the yara-python code now lives in a separate repository. -- WXS > On Feb 11, 2016, at 10:26 AM, Geoffrey Van Den Berge > wrote:

Re: Ports Secteam

@); Wesley Shields (wxs@); Ryan Steinmetz (zi@); How does one join the Ports Secteam? Per previous discussion with portmgr@, members are volunteers selected by the Security Officer from active ports committers who have made commits in the ports tree in the last 90 days. Cheers, -- Xin LI

Re: [tcpdump-workers] [tcpdump] New feature to limit capture file size (#464)

On Jun 10, 2015, at 7:35 AM, Darren Reed darr...@netbsd.org wrote: On 10/06/2015 5:42 AM, Michael Richardson wrote: re: https://github.com/the-tcpdump-group/tcpdump/pull/464 Guy writes: We have the -C option, giving a file size in megabytes (real megabytes, i.e. 1,000,000 bytes, not

Re: [tcpdump-workers] -C option not working? FreeBSD 10.1

I've got a patch for this at https://github.com/wxsBSD/tcpdump/commit/84998745a29a0ffb3a680c29692c15426a1ce960. Seems to work well but I would appreciate any testing anyone can do. I'm also going to make sure this is right from the capsicum perspective as I have no experience with that. Once I

Re: [tcpdump-workers] -C option not working? FreeBSD 10.1

it is supposed to work so I can try and make sure that is true would be appreciated. -- WXS On Feb 18, 2015, at 4:23 PM, Guy Harris g...@alum.mit.edu wrote: On Feb 18, 2015, at 10:18 AM, Wesley Shields w...@freebsd.org wrote: I've got a patch for this at https://github.com/wxsBSD

Re: [tcpdump-workers] -C option not working? FreeBSD 10.1

Looks like the call to pcap_dump_ftell() is always returning -1 and setting errno to 93 (ENOTCAPABLE). This makes sense since I can only trigger it on FreeBSD, and if I disable capsicum support in config.h and rebuild then -C works as expected. I'll take a look at this and send a PR, but you

Re: [tcpdump-workers] -C option not working? FreeBSD 10.1

I don't have an answer to your original question other than to say I just duplicated it on a FreeBSD host but not on OS X. Smells like a bug to me. I've done something similar in the past using -G and writing to something like /packets/%Y/%m/%d/%H%M%S.pcap (assuming those directories exist).

Re: [tcpdump-workers] File rotation every x seconds AND max file count

I believe daemonlogger can do this. It's been a while since I looked at it but I believe that is what I added support for years ago. http://sourceforge.net/projects/daemonlogger/ -- WXS On Thu, Oct 16, 2014 at 01:21:57AM -0700, Cosmin T wrote: Hello, I wanted to create a pcap buffer of 2

Re: FreeBSD Port: git-2.0.1 unable to load http://docbook.sourceforge.net/release/xsl/current/manpages/docbook.xsl

This comes up from time to time. I think most people solve it by rebuilding docbook. -- WXS On Fri, Jul 18, 2014 at 02:06:40AM +0200, David wrote: Path: . Working Copy Root Path: /usr/ports URL: https://svn0.eu.freebsd.org/ports/head Relative URL: ^/head Repository Root:

Re: FreeBSD Port: git-2.0.1 unable to load http://docbook.sourceforge.net/release/xsl/current/manpages/docbook.xsl

, Gary J. Hayers wrote: I get this error all the time, could you expand on reinstalling docbook as I did this and still get the same error. Many thanks, Gary On 22/07/2014 14:01, Wesley Shields wrote: This comes up from time to time. I think most people solve it by rebuilding docbook

[tcpdump-workers] Extend libpcap tcpflags definition

I've been trying to come up with a good way to finish the work done in this pull request: https://github.com/the-tcpdump-group/libpcap/pull/300 I've been having a hard time coming up with a way that works, and I'm curious if anyone else has suggestions. We can always commit the definitions for

[tcpdump-workers] website not updated

If tcpdump 4.4.0 and libpcap 1.4.0 are done should the webpage be updated or are they in some kind of beta form? I'll happily fix it on github if that's the right place to do it. -- WXS ___ tcpdump-workers mailing list tcpdump-workers@lists.tcpdump.org

Re: [tcpdump-workers] tcpdump 4.4 release candidate 1

On Mon, Mar 25, 2013 at 02:42:07PM -0400, Wesley Shields wrote: On Sun, Mar 24, 2013 at 05:52:51PM -0400, Michael Richardson wrote: Romain == Romain Francoise rom...@orebokech.com writes: please expect a new release candidate on 2013-03-09, assuming I can get enough Internet

Re: [tcpdump-workers] tcpdump 4.4 release candidate 1

On Sun, Mar 24, 2013 at 05:52:51PM -0400, Michael Richardson wrote: Romain == Romain Francoise rom...@orebokech.com writes: please expect a new release candidate on 2013-03-09, assuming I can get enough Internet in St.Johns. Romain Not sure if this was St John's in Antigua

Re: [tcpdump-workers] why the ethernet and ip header of packets, which are captured by libpcap function, are distorted

On Thu, Mar 21, 2013 at 01:03:56PM -0400, Bill Fenner wrote: On Mon, Mar 18, 2013 at 11:08 PM, Wesley Shields w...@freebsd.org wrote: On Fri, Mar 15, 2013 at 06:37:25PM -0700, Guy Harris wrote: On Mar 15, 2013, at 2:45 PM, Michael Richardson m...@sandelman.ca wrote: wen == wen lui

Re: [tcpdump-workers] why the ethernet and ip header of packets, which are captured by libpcap function, are distorted

On Fri, Mar 15, 2013 at 06:37:25PM -0700, Guy Harris wrote: On Mar 15, 2013, at 2:45 PM, Michael Richardson m...@sandelman.ca wrote: wen == wen lui esolvepol...@gmail.com writes: wen I used libpcap function pcap_next() to capture some tcp packets wen I checked the bytes of the

Re: I need help with git

On Tue, Feb 05, 2013 at 11:30:43AM +1030, Shane Ambler wrote: GH_COMMIT= 4dfdc80 Probably not needed if you specify a tag other than master. If I pull master, I get commit f57e464. That's not what I want. Why doesn't this thing pull the commit I'm telling it to pull? I

Re: Problems with GITHUB pulls

On Tue, Jan 29, 2013 at 03:24:31PM -0600, Paul Schmehl wrote: I maintain the security/barnyard2 port. It pulls the software from git, which is the only place where it's available. Here's the relevant portion of the port's Makefile: USE_GITHUB= yes GH_ACCOUNT= firnsy GH_PROJECT=

Re: Problems with GITHUB pulls

On Tue, Jan 29, 2013 at 10:10:13PM -0500, Wesley Shields wrote: On Tue, Jan 29, 2013 at 03:24:31PM -0600, Paul Schmehl wrote: I maintain the security/barnyard2 port. It pulls the software from git, which is the only place where it's available. Here's the relevant portion of the port's

Re: databases/mongodb fails to start, assertion failure in unit test

On Sat, Jan 26, 2013 at 07:06:21AM -0800, Waitman Gobble wrote: Waitman Gobble uzi...@da3m0n8t3r.com wrote .. Hi, I've installed databases/mongodb and get an error when starting. # /usr/local/etc/rc.d/mongod start Starting mongod. forked process: 59576 all output going to:

Re: [tcpdump-workers] Decoding the unencrypted part(s) of SSL/TLS?

On Mon, Dec 10, 2012 at 11:38:29PM -0500, Michael Richardson wrote: Rick == Rick Jones rick.jon...@hp.com writes: Rick Is there a version of tcpdump in the works which will decode Rick the unecrypted Rick portions of an SSL/TLS session? Or do I need to look Rick

Re: Fwd: FreeBSD ports you maintain which are out of date

On Wed, Dec 05, 2012 at 01:59:49AM +0800, Yanhui Shen wrote: -- Forwarded message -- From: Yanhui Shen shen@gmail.com Date: 2012/12/5 Subject: Re: FreeBSD ports you maintain which are out of date To: portsc...@portscout.freebsd.org Hi, According to this page

Re: databases/mongodb on FreeBSD 9

On Fri, Nov 30, 2012 at 06:22:28AM -0800, Patrick wrote: Has anyone had any issues building the mongodb port on FreeBSD 9? I'm running 9.0-RELEASE-p5 on i386: It's bailing for me here: c++ -o build/freebsd/cpppath_cpp/cxx_c++/ssl/use-system-all/usesm/mongo/shell/linenoise.o -c

Re: was: portsnap down.. cvs broken?

On Tue, Nov 13, 2012 at 09:45:51AM -0800, Jeffrey Bouquet wrote: Reply below...? --- On Mon, 11/12/12, Christoph Moench-Tegeder c...@burggraben.net wrote: From: Christoph Moench-Tegeder c...@burggraben.net Subject: portsnap down? To: freebsd-ports@FreeBSD.org Date: Monday, November 12,

[HEADS UP]: CVE-2012-4929 (CRIME)

I think there is nothing FreeBSD can do about this besides making sure our users are aware of it. The situation in which this is a problem is specific but one you should consider if you are using TLS with compression. TLS 1.2 and earlier are vulnerable to an attack commonly known as CRIME. The

[HEADS UP]: CVE-2012-4929 (CRIME)

I think there is nothing FreeBSD can do about this besides making sure our users are aware of it. The situation in which this is a problem is specific but one you should consider if you are using TLS with compression. TLS 1.2 and earlier are vulnerable to an attack commonly known as CRIME. The

Re: Failed upgrade sudo-1.8.5.p3 to sudo-1.8.6.p3 running stable/9

On Wed, Sep 26, 2012 at 02:05:57PM -0700, David Wolfskill wrote: On Wed, Sep 26, 2012 at 04:59:28PM -0400, Wesley Shields wrote: On Wed, Sep 26, 2012 at 04:43:57AM -0700, David Wolfskill wrote: This is a FreeBSD/i386 stable/9 system: FreeBSD freebeast.catwhisker.org 9.1-PRERELEASE

Re: redports - should I rename the updated distfile (tarball)?

On Thu, Sep 27, 2012 at 12:55:51PM +0100, Anton Shterenlikht wrote: redports.org is good, thank you to whoever worked on it. One question: the upstream for my port is non-existent, so rather then patch it, I'm updating the code itself. I then create a new tarball. It seems redports doesn't

Re: Failed upgrade sudo-1.8.5.p3 to sudo-1.8.6.p3 running stable/9

On Wed, Sep 26, 2012 at 04:43:57AM -0700, David Wolfskill wrote: This is a FreeBSD/i386 stable/9 system: FreeBSD freebeast.catwhisker.org 9.1-PRERELEASE FreeBSD 9.1-PRERELEASE #485 240956M: Wed Sep 26 04:19:48 PDT 2012 r...@freebeast.catwhisker.org:/usr/obj/usr/src/sys/GENERIC i386

Re: security/sudo: make fails after update to 1.8.6p3

On Wed, Sep 26, 2012 at 09:43:06PM +0900, Yasuhiro KIMURA wrote: From: ??ukasz W??sikowski luk...@wasikowski.net Subject: Re: security/sudo: make fails after update to 1.8.6p3 Date: Wed, 26 Sep 2012 14:14:37 +0200 W dniu 2012-09-26 13:57, Herbert J. Skuhra pisze: After update of

Re: [tcpdump-workers] Multifile patch

On Thu, Sep 06, 2012 at 02:46:30PM -0400, Wesley Shields wrote: On Mon, Sep 03, 2012 at 10:13:57PM -0400, Michael Richardson wrote: Wesley, is fopen(/dev/stdin) really the most portal way to get a reference to stdin? I'd have thought that doing: VFile=stdin; was the best way

Re: [tcpdump-workers] Multifile patch

On Mon, Sep 03, 2012 at 10:13:57PM -0400, Michael Richardson wrote: Wesley, is fopen(/dev/stdin) really the most portal way to get a reference to stdin? I'd have thought that doing: VFile=stdin; was the best way? I fixed this and your other comment about refactoring reading from the

Re: [tcpdump-workers] Multifile patch

On Thu, Aug 23, 2012 at 01:27:33PM -0400, Michael Richardson wrote: Wesley == Wesley Shields w...@freebsd.org writes: Since pcap files have no end of file marker, and each file has a header on it, do you look at the beginning of each packet, and see if there is a pcap magic

Re: [tcpdump-workers] Multifile patch

On Tue, Aug 21, 2012 at 08:36:12PM -0400, Michael Richardson wrote: Wesley, it seems like a good idea. I can't look at your patch from the cottage, since I squirt out bits only once a day by walking down the road to where there is some wifi. No worries, I'm in no rush on this. Enjoy your

Re: Qestion about patching

On Mon, Aug 20, 2012 at 10:03:54AM +0800, HU Dong wrote: Hi! The porter's handbook says that Note that if the path of a patched file contains an underscore (_) character, the patch needs to have two underscores instead in its name. For example, to patch a file named

Re: [Full-disclosure] nvidia linux binary driver priv escalation exploit

On Wed, Aug 08, 2012 at 10:34:06AM +, Alexey Dokuchaev wrote: On Mon, Aug 06, 2012 at 01:49:50PM +0200, Rainer Hurling wrote: Am 06.08.2012 10:03 (UTC+1) schrieb Doug Barton: On 08/01/2012 05:09, Oliver Pinter wrote: I found this today on FD:

Re: net/mosh conflicts with lang/mosh

On Thu, Aug 09, 2012 at 12:12:32AM +0800, Yanhui Shen wrote: Hi, net/mosh is a mobile terminal, while lang/mosh is a R6RS scheme interpreter, and both of them have bin/mosh. So is there any way to make both of them installed? Or actually, one of which needs to be renamed? No decent way

cvs commit: ports/databases/mongodb Makefile distinfo ports/databases/mongodb/files patch-SConstruct

wxs 2012-07-13 20:48:50 UTC FreeBSD ports repository Modified files: databases/mongodbMakefile distinfo databases/mongodb/files patch-SConstruct Log: Update to 2.0.6. Convert to optionsNG PR: ports/169548 Approved by:m...@derzinn.de

cvs commit: ports/devel/arduino Makefile distinfo pkg-descr pkg-plist

wxs 2012-07-12 18:50:36 UTC FreeBSD ports repository Modified files: devel/arduinoMakefile distinfo pkg-descr pkg-plist Log: Update to 1.0.1. Convert to optionsNG. PR: ports/169790 Submitted by: wblock@ (maintainer) Revision Changes

cvs commit: ports/devel/arduino/files patch-hardware-arduino-cores-arduino-Print.cpp

wxs 2012-07-13 00:48:08 UTC FreeBSD ports repository Removed files: devel/arduino/files patch-hardware-arduino-cores-arduino-Print.cpp Log: Remove file that should have been removed in previous commit. Approved by:wblock@ (maintainer)

cvs commit: ports/mail/dovecot2 Makefile

wxs 2012-07-10 12:57:48 UTC FreeBSD ports repository Modified files: mail/dovecot2Makefile Log: Remove unnecessary gssapi replacement. Approved by:Attila Nagy b...@fsn.hu Revision ChangesPath 1.20 +0 -5 ports/mail/dovecot2/Makefile

cvs commit: ports/mail/dovecot Makefile

wxs 2012-07-09 19:24:21 UTC FreeBSD ports repository Modified files: mail/dovecot Makefile Log: Don't check WITH_FOO !WITHOUT_FOO. [1] Remove gssapi patch that is no longer needed. [2] These both apply to mail/dovecot2 also. I will be working with the

cvs commit: ports/devel/git Makefile distinfo pkg-plist

wxs 2012-07-07 03:07:57 UTC FreeBSD ports repository Modified files: devel/gitMakefile distinfo pkg-plist Log: Update to 1.7.11.1 Convert to optionsNG Fix updating /etc/shells when using the package [1] Submitted by: Marin Atanasov Nikolov [1]

cvs commit: ports/devel/php-xdebug Makefile distinfo

wxs 2012-07-02 19:51:24 UTC FreeBSD ports repository Modified files: devel/php-xdebug Makefile distinfo Log: Update to 2.2.0 and work on php54. PR: ports/168583 Submitted by: Oleg Ginzburg olev...@olevole.ru Approved by:Bill Moran

cvs commit: ports/security/vuxml vuln.xml

wxs 2012-07-02 20:05:25 UTC FreeBSD ports repository Modified files: security/vuxml vuln.xml Log: Document phplist SQL injection and XSS. Submitted by: Krzysztof Stryjek w...@bsdserwis.com Revision ChangesPath 1.2748+35 -1

cvs commit: ports/mail/phplist Makefile distinfo

wxs 2012-07-03 02:06:24 UTC FreeBSD ports repository Modified files: mail/phplist Makefile distinfo Log: Update to 2.10.18 PR: ports/169600 Submitted by: Krzysztof Stryjek po...@bsdserwis.com (maintainer) Security:

Re: Can I get some love on this PR?

On Mon, Jul 02, 2012 at 12:55:28PM -0400, Bill Moran wrote: http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/168583 This bugger is about a month old at this point. Of course, part of that is my fault for being slow to respond, so I'm just putting a heads-up out -- if anyone is able to

Re: cvs commit: ports/security/vuxml vuln.xml

On Wed, Jun 27, 2012 at 03:34:44PM +, Ryan Steinmetz wrote: zi 2012-06-27 15:34:44 UTC FreeBSD ports repository Modified files: security/vuxml vuln.xml Log: - Document recent FreeBSD SA's for 2012: SA-12:04.sysret, SA-12:03.bind, SA-12:02.crypt,

cvs commit: ports/ports-mgmt/psearch Makefile distinfo

wxs 2012-06-25 16:44:28 UTC FreeBSD ports repository Modified files: ports-mgmt/psearch Makefile distinfo Log: Update to 2.0.2 PR: ports/169078 Submitted by: Kimmo Paasiala kpaas...@gmail.com Approved by:Benjamin Lutz m...@maxlor.com (maintainer)

Re: ports/169078

On Mon, Jun 25, 2012 at 06:24:22PM +0300, Kimmo Paasiala wrote: Hi, I wrote a small fix for ports-mgmt/psearch some time ago and I submitted a bug report http://www.freebsd.org/cgi/query-pr.cgi?pr=169078 and the maintainer of the port rolled out a new distfile for a new version but the fix

cvs commit: ports/sysutils Makefile ports/sysutils/bsdinfo Makefile distinfo pkg-descr

wxs 2012-06-22 13:54:24 UTC FreeBSD ports repository Modified files: sysutils Makefile Added files: sysutils/bsdinfo Makefile distinfo pkg-descr Log: This is a FreeBSD attempt to implement archey-like terminal system information display utility. It

cvs commit: ports/security/sudo Makefile

wxs 2012-06-21 13:01:13 UTC FreeBSD ports repository Modified files: security/sudoMakefile Log: Fix typo. PR: ports/169284 Submitted by: From: Bryan Drewery br...@shatow.net Revision ChangesPath 1.149 +1 -1

cvs commit: ports/x11/etoile Makefile

wxs 2012-06-21 16:43:20 UTC FreeBSD ports repository Modified files: x11/etoile Makefile Log: Adjust deprecation message as discussed on ports@. Revision ChangesPath 1.22 +1 -1 ports/x11/etoile/Makefile

cvs commit: ports/sysutils/bsdconfig Makefile distinfo

wxs 2012-06-21 16:58:23 UTC FreeBSD ports repository Modified files: sysutils/bsdconfig Makefile distinfo Log: Update to 0.7.1. PR: ports/169280 Submitted by: dteske@ (maintainer) Revision ChangesPath 1.2 +2 -2

cvs commit: ports/sysutils/bsdconfig Makefile distinfo

wxs 2012-06-22 01:46:16 UTC FreeBSD ports repository Modified files: sysutils/bsdconfig Makefile distinfo Log: Update to 0.7.2. When editing a user's password or account expiration property, choosing cancel or pressing ESC while editing the value manually would

cvs commit: ports/emulators/dynagen Makefile pkg-deinstall pkg-install pkg-plist ports/emulators/dynagen/files patch-setup.py

wxs 2012-06-22 01:49:00 UTC FreeBSD ports repository Modified files: emulators/dynagenMakefile emulators/dynagen/files patch-setup.py Added files: emulators/dynagenpkg-deinstall pkg-install Removed files: emulators/dynagenpkg-plist Log: Fix

Re: etoile ports dropped for strange reason (Re: freebsd-ports Digest, Vol 474, Issue 7)

On Thu, Jun 21, 2012 at 11:40:15AM +, Michael Scheidell wrote: Sorry if I confused you with more than one comment in one email. Next time I will send multiple emails with just one comment in each email. I hope this helps. Please try to be civil. -Original message- From:

Re: etoile ports dropped for strange reason (Re: freebsd-ports Digest, Vol 474, Issue 7)

On Thu, Jun 21, 2012 at 12:27:04PM -0400, Mikhail T. wrote: On 21.06.2012 11:37, Wesley Shields wrote: The release in our ports tree is not recommended upstream anymore. Quoting the upstream webpage: Take note they [old releases] won't usually work with recent LLVM and GNUstep releases. Do

cvs commit: ports/sysutils Makefile ports/sysutils/bsdconfig Makefile distinfo pkg-descr

wxs 2012-06-20 16:58:13 UTC FreeBSD ports repository Modified files: sysutils Makefile Added files: sysutils/bsdconfig Makefile distinfo pkg-descr Log: bsdconfig is a robust utility for configuring/managing various aspects of the FreeBSD Operating

cvs commit: ports/security/sudo Makefile

wxs 2012-06-19 01:38:09 UTC FreeBSD ports repository Modified files: security/sudoMakefile Log: Add option to enable OPIE support (off by default). [1] While here, convert to new-style options. PR: ports/168812 [1] Submitted by: Zak Blacher

cvs commit: ports/net/libpcap Makefile distinfo

wxs 2012-06-19 01:38:43 UTC FreeBSD ports repository Modified files: net/libpcap Makefile distinfo Log: Update to 1.3.0. While here convert to new-style options. Revision ChangesPath 1.27 +14 -5 ports/net/libpcap/Makefile 1.13 +2 -2

cvs commit: ports/net/tcpdump Makefile distinfo

wxs 2012-06-19 01:39:43 UTC FreeBSD ports repository Modified files: net/tcpdump Makefile distinfo Log: Update to 4.3.0. Don't specify major version for libpcap dependency. While here convert to new-style options. Revision ChangesPath 1.32 +24

cvs commit: ports/security/vuxml vuln.xml

wxs 2012-06-13 20:16:44 UTC FreeBSD ports repository Modified files: security/vuxml vuln.xml Log: Update 55587adb-b49d-11e1-8df1-0004aca374af with more information. Revision ChangesPath 1.2735+20 -4 ports/security/vuxml/vuln.xml

cvs commit: ports/security/vuxml vuln.xml

wxs 2012-06-12 15:27:21 UTC FreeBSD ports repository Modified files: security/vuxml vuln.xml Log: Document mantis vulnerabilities. The information is a bit light on details but I'm unable to track down better. PR: ports/168984 Submitted by: Dan

cvs commit: ports/databases/mantis Makefile distinfo pkg-plist

wxs 2012-06-13 01:39:39 UTC FreeBSD ports repository Modified files: databases/mantis Makefile distinfo pkg-plist Log: Update to 1.2.11. PR: ports/168983 Submitted by: Dan Langille d...@langille.org (maintainer) Security:

  1   2   3   4   5   6   7   8   9   10   >