aboutsummaryrefslogtreecommitdiffstats
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
* main/syncthing: upgrade to 0.10.1Carlo Landmeter2014-10-171-4/+4
|
* main/freeradius: fix configure check for TLSNatanael Copa2014-10-172-1/+56
| | | | | | | Fix the configure script to correctly detect if TLS is available. TLS is needed for rlm_unix to work without segfaulting. (cherry picked from commit d698c183c3183ce3772c4b833c0c4971394942fd)
* bind: Modify default config to be more secureHugo Landau2014-10-165-64/+177
| | | | | | | | | | | | | | | | | | | | | By default BIND will happily serve as both an authoritative nameserver and recursive resolver, but this is no longer a recommended or desirable configuration. The previous default configuration did not draw attention to this fact and the issues involved. Users are now made to rename one of two sample configuration files, named.conf.authoritative or named.conf.recursive. Comments inside either file advise DNS administrators of the most prevalent security issues. This ensures that users setting up an authoritative nameserver do not unwittingly also operate a resolver. In the previous default configuration, BIND would happily perform recursive resolution for localhost, which means that the local machine may receive non-authoritative data from what is supposed to be an authoritative nameserver. Both default configurations disable zone transfers by default, as BIND defaults to enabling them for any host (!).
* main/pciutils: build shared libNatanael Copa2014-10-161-2/+4
|
* main/pciutils: Added -fPIC flag to fix pci_malloc relocationk0r10n2014-10-162-2/+17
|
* main/gettext: upgrade to 0.19.3Natanael Copa2014-10-161-4/+4
|
* main/php: upgrade to 5.6.2Natanael Copa2014-10-161-5/+5
|
* main/php: install php-cli as default instead of php-cgiNatanael Copa2014-10-161-2/+2
| | | | | | | when you do 'apk add php' you will not get /usr/bin/php instead of /usr/bin/php-cgi This is more logic.
* main/php: build phpdbgNatanael Copa2014-10-161-1/+11
| | | | fixes #2683
* main/openjdk7: remove unused xulrunner from makedependsNatanael Copa2014-10-161-1/+1
|
* main/linux-vanilla: upgrade to 3.14.21Natanael Copa2014-10-161-5/+5
|
* main/openjdk7: security upgrade to icedtea 2.5.3Timo Teräs2014-10-161-28/+28
| | | | | | | | | | | | | | | | | | | | | | | | | | | S8015256: Better class accessibility S8022783, CVE-2014-6504: Optimize C2 optimizations S8035162: Service printing service S8035781: Improve equality for annotations S8036805: Correct linker method lookup. S8036810: Correct linker field lookup S8036936: Use local locales S8037066, CVE-2014-6457: Secure transport layer S8037846, CVE-2014-6558: Ensure streaming of input cipher streams S8038364: Use certificate exceptions correctly S8038899: Safer safepoints S8038903: More native monitor monitoring S8038908: Make Signature more robust S8038913: Bolster XML support S8039509, CVE-2014-6512: Wrap sockets more thoroughly S8039533, CVE-2014-6517: Higher resolution resolvers S8041540, CVE-2014-6511: Better use of pages in font processing S8041529: Better parameterization of parameter lists S8041545: Better validation of generated rasters S8041564, CVE-2014-6506: Improved management of logger resources S8041717, CVE-2014-6519: Issue with class file parser S8042609, CVE-2014-6513: Limit splashiness of splash images S8042797, CVE-2014-6502: Avoid strawberries in LogRecord S8044274, CVE-2014-6531: Proper property processing
* main/pcmanfm: upgrade to 1.2.3Natanael Copa2014-10-161-5/+5
|
* main/xtables-addons-grsec: rebuild against kernel 3.14.21-r0Natanael Copa2014-10-161-2/+2
|
* main/open-vm-tools-grsec: rebuild against kernel 3.14.21-r0Natanael Copa2014-10-161-2/+2
|
* main/ipfw-grsec: rebuild against kernel 3.14.21-r0Natanael Copa2014-10-161-2/+2
|
* main/dahdi-linux-grsec: rebuild against kernel 3.14.21-r0Natanael Copa2014-10-161-2/+2
|
* main/linux-grsec: upgrade to 3.14.21Natanael Copa2014-10-163-466/+318
|
* main/linux-grsec: enable RBACNatanael Copa2014-10-163-13/+15
|
* main/perl-sys-mmap: upgrade to 0.17Francesco Colista2014-10-161-4/+6
|
* main/perl-probe-perl: upgrade to 0.03Francesco Colista2014-10-161-5/+7
|
* main/perl-pathtools: upgrade to 3.47Francesco Colista2014-10-161-5/+5
|
* main/perl-path-class: upgrade to 0.35Francesco Colista2014-10-161-4/+4
|
* main/perl-package-stash: upgrade to 0.37Francesco Colista2014-10-161-4/+4
|
* main/perl-module-util: upgrade to 1.09Francesco Colista2014-10-161-2/+4
|
* main/perl-lwp-useragent-determined: upgrade to 1.07Francesco Colista2014-10-161-3/+5
|
* main/perl-devel-globaldestruction: upgrade to 0.13Francesco Colista2014-10-161-4/+4
|
* main/perl-io-tty: upgrade to 1.12Francesco Colista2014-10-161-4/+4
|
* main/perl-convert-asn1: upgrade to 0.27Francesco Colista2014-10-161-2/+4
|
* main/perl-capture-tiny: upgrade to 0.25Francesco Colista2014-10-161-4/+4
|
* testing/bam: move to mainBartłomiej Piotrowski2014-10-151-0/+27
|
* main/varnish: upgrade to 4.0.2Natanael Copa2014-10-151-4/+5
|
* main/openssl: upgrade to 1.0.1jNatanael Copa2014-10-151-5/+5
|
* main/beets: move to main including depsCarlo Landmeter2014-10-156-0/+237
|
* main/zsh: upgrade to 5.0.7Natanael Copa2014-10-151-4/+4
|
* main/cups-filters: upgrade to 1.0.61Natanael Copa2014-10-151-4/+4
|
* main/lua-zlib: rename to lua-lzlibNatanael Copa2014-10-151-8/+8
| | | | | | | this is to avoid name conflict with lua-zlib https://github.com/brimworks/lua-zlib ref #1853
* main/dovecot: upgrade to 2.2.14Natanael Copa2014-10-151-5/+4
|
* main/kamailio: replace sercmd (deprecated) with kamcmd in init.dLeonardo Arena2014-10-152-5/+5
|
* main/flac: enable cpplibsCarlo Landmeter2014-10-141-2/+1
|
* main/musl: upgrade to 1.1.5Timo Teräs2014-10-147-5480/+5
|
* main/mosh: rebuild with protobuf-2.6Natanael Copa2014-10-141-1/+1
|
* main/protobuf-c: upgrade to 1.0.2Natanael Copa2014-10-141-4/+4
|
* main/protobuf: upgrade to 2.6.0Natanael Copa2014-10-141-5/+5
|
* main/pcre: upgrade to 8.36Natanael Copa2014-10-141-4/+4
|
* main/mpd: upgrade to 0.19Natanael Copa2014-10-142-12/+16
|
* main/libnice: enable debuggingNatanael Copa2014-10-141-3/+3
|
* main/xf86-video-geode: upgrade to 2.11.16Natanael Copa2014-10-141-5/+5
|
* main/farstream: upgrade to 0.2.6Natanael Copa2014-10-141-4/+4
|
* main/libnice: upgrade to 0.1.8Natanael Copa2014-10-141-5/+7
|