Date: Fri, 4 Jul 2008 03:55:56 GMT From: Steven Kreuzer <skreuzer@exit2shell.com> To: freebsd-gnats-submit@FreeBSD.org Subject: ports/125249: New Port: security/ratproxy Message-ID: <200807040355.m643tuTi023436@www.freebsd.org> Resent-Message-ID: <200807040400.m6440BpW091649@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 125249
>Category: ports
>Synopsis: New Port: security/ratproxy
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Fri Jul 04 04:00:11 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator: Steven Kreuzer
>Release: 7.0-STABLE
>Organization:
>Environment:
FreeBSD erdinger.lab.exit2shell.com 7.0-STABLE FreeBSD 7.0-STABLE #9: Mon Jun 30 14:28:58 EDT 2008 root@erdinger.lab.exit2shell.com:/usr/obj/usr/src/sys/ERDINGER i386
>Description:
Ratproxy is a semi-automated, largely passive web application security audit tool. It is meant to complement active crawlers and manual proxies more commonly used for this task, and is optimized specifically for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex web 2.0 environments.
>How-To-Repeat:
>Fix:
Patch attached with submission follows:
# This is a shell archive. Save it in a file, remove anything before
# this line, and then unpack it by entering "sh file". Note, it may
# create directories; files and directories will be owned by you and
# have default permissions.
#
# This archive contains:
#
# ./ratproxy
# ./ratproxy/Makefile
# ./ratproxy/pkg-descr
# ./ratproxy/pkg-plist
# ./ratproxy/distinfo
# ./ratproxy/files
# ./ratproxy/files/patch-Makefile
#
echo c - ./ratproxy
mkdir -p ./ratproxy > /dev/null 2>&1
echo x - ./ratproxy/Makefile
sed 's/^X//' >./ratproxy/Makefile << '1e1369e33b18e80f711189af13282a0d'
X# New ports collection makefile for: ratproxy
X# Date created: 3 July 2008
X# Whom: Steven Kreuzer <skreuzer@exit2shell.com>
X#
X# $FreeBSD$
X#
X
XPORTNAME= ratproxy
XPORTVERSION= 1.51
XCATEGORIES= security
XMASTER_SITES= ${MASTER_SITE_GOOGLE_CODE}
X
XMAINTAINER= skreuzer@exit2shell.com
XCOMMENT= Semi-automated, largely passive web application security audit tool
X
XUSE_OPENSSL= YES
XWRKSRC= ${WRKDIR}/${PORTNAME}
XPLIST_FILES= bin/ratproxy \
X bin/ratproxy-report.sh
X
Xdo-install:
X @${INSTALL_PROGRAM} ${WRKSRC}/ratproxy ${PREFIX}/bin
X @${INSTALL_SCRIPT} ${WRKSRC}/ratproxy-report.sh ${PREFIX}/bin
X
X.include <bsd.port.mk>
1e1369e33b18e80f711189af13282a0d
echo x - ./ratproxy/pkg-descr
sed 's/^X//' >./ratproxy/pkg-descr << '26ef8dfefd1287f58eac35e47e06fab4'
XRatproxy is a semi-automated, largely passive web application security audit
Xtool. It is meant to complement active crawlers and manual proxies more
Xcommonly used for this task, and is optimized specifically for an accurate and
Xsensitive detection, and automatic annotation, of potential problems and
Xsecurity-relevant design patterns based on the observation of existing,
Xuser-initiated traffic in complex web 2.0 environments.
X
XWWW: http://code.google.com/p/ratproxy/
26ef8dfefd1287f58eac35e47e06fab4
echo x - ./ratproxy/pkg-plist
sed 's/^X//' >./ratproxy/pkg-plist << '5e6e653f065113c1df557c4d5093dff6'
Xbin/ratproxy
Xbin/ratproxy-report.sh
5e6e653f065113c1df557c4d5093dff6
echo x - ./ratproxy/distinfo
sed 's/^X//' >./ratproxy/distinfo << '679301db26ec810d75ad202bdbdfe54d'
XMD5 (ratproxy-1.51.tar.gz) = 40e47c86c8beaf01dabe4eae9458cf13
XSHA256 (ratproxy-1.51.tar.gz) = f58a40d021988874c1bac177413c7b07b985721ff1282cd6734623c08fed634b
XSIZE (ratproxy-1.51.tar.gz) = 168409
679301db26ec810d75ad202bdbdfe54d
echo c - ./ratproxy/files
mkdir -p ./ratproxy/files > /dev/null 2>&1
echo x - ./ratproxy/files/patch-Makefile
sed 's/^X//' >./ratproxy/files/patch-Makefile << '71918dd08205674b0c916e2f39632363'
X--- Makefile.orig 2008-07-03 23:38:31.000000000 -0400
X+++ Makefile 2008-07-03 23:38:53.000000000 -0400
X@@ -23,18 +23,10 @@
X CFLAGS = -Wall -O3 -Wno-pointer-sign -D_GNU_SOURCE
X LDFLAGS = -lcrypto -lssl
X
X-all: $(PROGNAME) flare-check
X+all: $(PROGNAME)
X
X $(PROGNAME): $(PROGNAME).c http.c mime.c ssl.c http.h mime.h ssl.h nlist.h config.h debug.h types.h string-inl.h
X $(CC) $(PROGNAME).c -o $(PROGNAME) $(CFLAGS) http.c mime.c ssl.c $(LDFLAGS)
X
X-flare-check:
X- @flare-dist/flare 2>&1 | grep -qF Igor || ( \
X- echo; \
X- echo '*** WARNING: 'flare-dist/flare' bianry is not operational.'; \
X- echo '*** Please see flare-dist/README and update it for your OS.'; \
X- echo )
X-
X clean:
X rm -f $(PROGNAME) *.exe *.o *~ a.out core core.[1-9][0-9]* *.stackdump
X-
71918dd08205674b0c916e2f39632363
exit
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200807040355.m643tuTi023436>