From owner-freebsd-ports-bugs@FreeBSD.ORG Sat Jun 14 05:40:10 2003 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 30C5837B401 for ; Sat, 14 Jun 2003 05:40:10 -0700 (PDT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7D3DC43FA3 for ; Sat, 14 Jun 2003 05:40:08 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.9/8.12.9) with ESMTP id h5ECe8Up031829 for ; Sat, 14 Jun 2003 05:40:08 -0700 (PDT) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.9/8.12.9/Submit) id h5ECe8mQ031828; Sat, 14 Jun 2003 05:40:08 -0700 (PDT) Resent-Date: Sat, 14 Jun 2003 05:40:08 -0700 (PDT) Resent-Message-Id: <200306141240.h5ECe8mQ031828@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Kirill Ponomarew Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D7C0E37B401 for ; Sat, 14 Jun 2003 05:32:33 -0700 (PDT) Received: from office.LF.net (office.LF.net [212.9.190.165]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3C3CD43FBF for ; Sat, 14 Jun 2003 05:32:33 -0700 (PDT) (envelope-from krion@voodoo.oberon.net) Received: from voodoo.oberon.net ([212.118.165.100]) by office.LF.net with esmtp (TLSv1:DES-CBC3-SHA:168) (Exim 4.10) id 19RACq-000OOu-00 for FreeBSD-gnats-submit@freebsd.org; Sat, 14 Jun 2003 14:32:28 +0200 Received: from krion by voodoo.oberon.net with local (Exim 4.20) id 19RACB-000G8x-H5 for FreeBSD-gnats-submit@freebsd.org; Sat, 14 Jun 2003 14:31:47 +0200 Message-Id: Date: Sat, 14 Jun 2003 14:31:47 +0200 From: Kirill Ponomarew Sender: Kirill Ponomarew To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Subject: ports/53314: New port: devel/privman X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Jun 2003 12:40:10 -0000 >Number: 53314 >Category: ports >Synopsis: New port: devel/privman >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Sat Jun 14 05:40:07 PDT 2003 >Closed-Date: >Last-Modified: >Originator: Kirill Ponomarew >Release: FreeBSD 4.8-STABLE i386 >Organization: Oberon.net >Environment: >Description: New port: devel/privman Library that makes it easy for programs to use privilege separation >How-To-Repeat: >Fix: # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # devel/privman # devel/privman/Makefile # devel/privman/distinfo # devel/privman/pkg-plist # devel/privman/pkg-descr # echo c - devel/privman mkdir -p devel/privman > /dev/null 2>&1 echo x - devel/privman/Makefile sed 's/^X//' >devel/privman/Makefile << 'END-of-devel/privman/Makefile' X# New ports collection makefile for: privman X# Date created: 14.06.2003 X# Whom: Kirill Ponomarew X# X# $FreeBSD$ X# X XPORTNAME= privman XPORTVERSION= 0.9.2 XCATEGORIES= devel security XMASTER_SITES= http://opensource.nailabs.com/privman/downloads/ X XMAINTAINER= ponomarew@oberon.net XCOMMENT= Library that makes it easy for programs to use privilege separation X XGNU_CONFIGURE= yes XUSE_LIBTOOL= yes XINSTALLS_SHLIB= yes XUSE_REINPLACE= yes XCONFIGURE_TARGET= --build=${MACHINE_ARCH}-portbld-freebsd${OSREL} X Xpost-patch: X @${REINPLACE_CMD} -e \ X 's|$$(PACKAGE).d|$$(PACKAGE)|g' \ X ${WRKSRC}/etc/Makefile.in X XMAN3= priv_bind.3 priv_custom.3 priv_daemon.3 priv_execve.3 \ X priv_fopen.3 priv_fork.3 priv_init.3 priv_invoke_cap_fn.3 \ X priv_invoke_info_fn.3 priv_open.3 priv_pam.3 \ X priv_pam_acct_mgmt.3 priv_pam_authenticate.3 priv_pam_chauthtok.3 \ X priv_pam_close_session.3 priv_pam_end.3 priv_pam_fail_delay.3 \ X priv_pam_get_item.3 priv_pam_getenv.3 priv_pam_open_session.3 \ X priv_pam_putenv.3 priv_pam_set_item.3 priv_pam_setcred.3 \ X priv_pam_start.3 priv_pclose.3 priv_popen.3 priv_register_cap_fn.3 \ X priv_register_info_fn.3 priv_rerunas.3 priv_respawn_as.3 \ X priv_wait4.3 X XMAN5= privman_conf.5 XMAN7= privman.7 X X.include END-of-devel/privman/Makefile echo x - devel/privman/distinfo sed 's/^X//' >devel/privman/distinfo << 'END-of-devel/privman/distinfo' XMD5 (privman-0.9.2.tar.gz) = ef2564db75b36a42e6c286f5fbb70170 END-of-devel/privman/distinfo echo x - devel/privman/pkg-plist sed 's/^X//' >devel/privman/pkg-plist << 'END-of-devel/privman/pkg-plist' Xetc/privman/check_user Xetc/privman/microb Xetc/privman/mycat Xetc/privman/myecho Xetc/privman/myexec Xetc/privman/mypopen Xetc/privman/myrerun Xetc/privman/privman.conf Xinclude/msghdr.h Xinclude/privman.h Xlib/libprivman.a Xlib/libprivman.la Xlib/libprivman.so Xlib/libprivman.so.2 X@dirrm etc/privman END-of-devel/privman/pkg-plist echo x - devel/privman/pkg-descr sed 's/^X//' >devel/privman/pkg-descr << 'END-of-devel/privman/pkg-descr' XPrivman is a library that makes it easy for programs to use Xprivilege separation, a technique that prevents the leak or Xmisuse of privilege from applications that must run with some Xelevated permissions. Applications that use the Privman library Xsplit into two halves, the half that performs valid privileged Xoperations, and the half that contains the application's logic. XThe Privman library simplifies the otherwise complex task of Xseparating the application, protecting the system from Xcompromise if an error in the application logic is found. The Xlibrary uses configuration files to provide fine-grained access Xcontrol for the privileged operations, limiting exposure in Xeven of an attack against the application. When the application Xis compromised, the attacker gains only the privileges of an Xunprivileged user and the specific privileges granted to the Xapplication by the application's Privman configuration file. X XWWW: http://opensource.nailabs.com/privman END-of-devel/privman/pkg-descr exit >Release-Note: >Audit-Trail: >Unformatted: