Date: Mon, 12 Mar 2007 21:39:44 -0400 From: Kris Kennaway <kris@obsecurity.org> To: crs@swcp.com Cc: ports@FreeBSD.org Subject: Re: file://localhost/usr/ports/security/crack/README.html Message-ID: <20070313013943.GA76259@xor.obsecurity.org> In-Reply-To: <200703122255.l2CMtd9D025363@sorsby.org> References: <200703122255.l2CMtd9D025363@sorsby.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Mar 12, 2007 at 04:55:39PM -0600, crs@swcp.com wrote: > Hello, > > Something strange is going on. > > I've used crack in past to check for weak passwords among my users > when I was sysadmin for a small network of Sun workstations used by > physicists for computation. > > So, I decided to install it on my current system to verify that I'm > using reasonably good passwords. I tried to install it from the > ports collection and it complained that it (a) couldn't find it in > /usr/ports//usr/ports/distfiles -- therefore I fetched a copy of > the same version that *should* have been in /usr/ports, installed > it in /usr/ports/distfiles and tried again. And again. And ran > rehash and tried again. And again. And again a few minutes ago. > > Here's what make had to say: > > ===> Vulnerability check disabled > ===> Extracting for crack-5.0 > => Checksum mismatch for crack5.0.tar.gz. > ===> Refetch for 1 more times files: crack5.0.tar.gz > ===> Vulnerability check disabled > => crack5.0.tar.gz doesn't seem to exist in /usr/ports/distfiles/. > => Attempting to fetch from > ftp://ftp.cerias.purdue.edu/pub/tools/unix/pwdutils/crack/. > fetch: > ftp://ftp.cerias.purdue.edu/pub/tools/unix/pwdutils/crack/crack5.0.tar.gz: > size unknown > fetch: > ftp://ftp.cerias.purdue.edu/pub/tools/unix/pwdutils/crack/crack5.0.tar.gz: > size of remote file is not known > ^C > > And here's what ls has to say: > > PC% ls -gl /usr/ports/distfiles//crack* > -rw-r--r-- 1 root wheel 2945388 Mar 11 22:28 > /usr/ports/distfiles//crack5.0.tar.gz > > Can you explain to me why it is that the port cannot find something > that's there? It doesn't say it can't find it, it says it has an incorrect checksum. Kris
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070313013943.GA76259>