Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

pure-ftpd-1.0.51-bp155.1.1 RPM for armv7hl

From OpenSuSE Ports Leap 15.5 for armv7hl

Name: pure-ftpd Distribution: SUSE Linux Enterprise 15 SP5
Version: 1.0.51 Vendor: openSUSE
Release: bp155.1.1 Build date: Thu Aug 18 23:58:34 2022
Group: Productivity/Networking/Ftp/Servers Build host: armbuild24
Size: 582448 Source RPM: pure-ftpd-1.0.51-bp155.1.1.src.rpm
Packager: https://bugs.opensuse.org
Url: https://www.pureftpd.org
Summary: A Lightweight, Fast, and Secure FTP Server
 
Pure-FTPd is a fast, production-quality, and standard-conforming FTP
server, based-on Troll-FTPd. Unlike other popular FTP servers, it has
no known security flaws, is trivial to set up, and is especially
designed for modern Linux kernels (setfsuid and sendfile capabilities)
. Features include: PAM support, IPv6, chroot()ed home directories,
virtual domains, built-in LS, anti-warez system, bandwidth throttling,
FXP, bounded ports for passive downloads, upload and download ratios,
Apache log files, and more.

Provides

Requires

License

BSD-3-Clause

Changelog

* Mon Aug 01 2022 Dirk Müller <[email protected]>
  - update to 1.0.51:
    * Compatibility with OpenSSL 1.1.0 was improved.
    * PostgreSQL: the port number is not escaped any more in connection
      strings.
    * TLS tickets are issued but not renewed - This fixes compatibility
      issues with some clients.
    * PureDB: additional checks for corrupted databases have been added,
      and synchronization to disk uses F_FULLFSYNC on macOS X.
* Wed Jan 19 2022 Antoine Belvire <[email protected]>
  - Update to version 1.0.50:
    * Support for MD5, SHA1 and MySQL PASSWORD() function were removed for
      password hashing. You should now use scrypt, argon2 or the system crypt(3)
      function.
    * Soft fail if a USER command is received without TLS and the server is
      configured to enforce TLS. Previously, the session was immediately closed,
      but that was too brutal for some clients.
    * Allow connections from the class E network range -- apparently
      required in some cases when using Linux containers.
    * Large file listings used to require way more stack allocations than
      necessary, possibly reaching hard-coded limits and causing a forced
      session close. This has been fixed. (boo#1160111, CVE-2019-20176)
    * The SPSV command has been removed.
    * Under some circunstances, the server would not start when configured
      with directory aliases. This has been fixed.
    * PostgreSQL: hard-coded global configuration strings were not escaped.
      This has been fixed.
    * A warning is now printed when a transfer happens in ASCII mode, as
      this is rarely intentional.
    * Compilation with --without-ascii is now possible again.
    * Configuration options for features that have been disabled at
      compile-time are not parsed any more.
    * When virtual quotas were configured, files were removed after an
      upload if the size quota was exceeded, but not during the upload. This
      has been fixed. (boo#1190205, CVE-2021-40524)
    * A configuration file can now include other files with the `Include`
      directive.
    * Fix an out-of-bound read (boo#1164805, CVE-2020-9365).
    * Fix a potential uninitialized pointer vulnerability (boo#1165134,
      CVE-2020-9274).
  - Build with libsodium-devel to support Argon password scheme.
  - Remove obsolete `---with-rfc2640`: Support for RFC 2640 has been removed in
    version 1.0.48.
  - Rebase patch for bnc#407363:
    * Remove pure-ftpd-1.0.32-default_tcp_sedrcv_buffer_size.patch
    * Add pure-ftpd-1.0.50-default_tcp_sedrcv_buffer_size.patch
* Wed Oct 20 2021 Johannes Segitz <[email protected]>
  - Added hardening to systemd service(s) (bsc#1181400). Modified:
    * pure-ftpd.service
* Mon May 03 2021 Luigi Baldoni <[email protected]>
  - Small cleanup
* Sat May 01 2021 Luigi Baldoni <[email protected]>
  - Fix build
* Wed May 06 2020 Peter Simons <[email protected]>
  - Update to version 1.0.49.
    * Refresh pure-ftpd-1.0.20_ftpwho_path.patch to
      pure-ftpd-1.0.49_ftpwho_path.patch.
* Tue Mar 17 2020 Max Lin <[email protected]>
  - BuildRequires postgresql-server-devel on Leap version >= 15.2
* Thu Dec 05 2019 Josef Möllers <[email protected]>
  - Add pam_keyinit.so to PAM config file.
    [pure-ftpd.pamd, bsc#1144058]
* Fri Jul 26 2019 [email protected]
  - removal of version checks for outdated distributions
* Thu Jul 25 2019 [email protected]
  - removal of SuSEfirewall2 service, since SuSEfirewall2 has been replaced by
    firewalld, see [1].
    [1]: https://lists.opensuse.org/opensuse-factory/2019-01/msg00490.html
* Tue Jun 18 2019 Peter Simons <[email protected]>
  - Add missing run-time dependency on system-user-ftp to ensure that
    user exits. [boo#1136997]
  - Processed the spec file with spec-cleaner version 1.1.3.
* Tue Apr 09 2019 Christophe Giboudeaux <[email protected]>
  - Add the missing build dependency for Tumbleweed.
* Fri Mar 01 2019 [email protected]
  - Apply "pure-ftpd-malloc-limit.patch" to add a configuration
    option that sets the process memory limit used by "ls" for
    globbing. The value can be specified as optional third argument
    to "-L" (or LimitRecursion in config file). Because it's
    optional, the old configuration files will still work without
    change with new binaries and update will be smooth. This change
    allows sites that store an extremely large set of files inside a
    single directory to tune their installation so that the "ls"
    command in that directory will succeed without exceeding the ftpd
    process memory limit. [bsc#1119187]
* Sun Feb 18 2018 [email protected]
  - Version update to 1.0.47:
    * If TLS was only enabled on the control channel (-Y 1), the STAT
      command would send its output as other directory listing
      commands, breaking the TLS stream. This has been fixed.
    * The system user “_ftp” can be used as an alternative to “ftp”
      for anonymous sessions.
    * Compatibility with libsodium > 1.0.12 was added (including
      minimal mode).
    * The prefix for Argon2-hashed passwords in LDAP has been changed
      to “{argon2}” (from “{argon2i}”). Ditto for MySQL and
      PostgreSQL: the authentication method is now called “argon2”
      instead of “argon2i”, and includes both Argon2i and Argon2id.
  - use https for main site and source download
  - switch to bz2 tarball (smaller)
* Thu Jun 15 2017 [email protected]
  - Version update to 1.0.46:
    * Fix build with openssl-1.1
    * The Perl and Python wrappers are gone
    * TLS v1.0 sessions are now refused
    * Unmaintained contributions have been removed
    * File globbing could take up to `GLOB_TIMEOUT` seconds
      (17 seconds by default) when matching some patterns, no matter what the
      configured recursion level was.
  - Refresh patches:
    * pure-ftpd-1.0.20_config.patch
    * pure-ftpd-1.0.20_doc.patch
  - Drop patch pure-ftpd-1.0.32-portrange.patch
    * The upstream no longer provide pure-config.pl/py scripts for launching
    * This also means the initscript and service were tweaked to reflect this
  - Disable xinetd on systemd having versions where we can stick to socket
    based services instead
    * By default it does not make sense to have this service socket activated
      tho so leave it to user to provide this
* Wed Jun 14 2017 [email protected]
  - Fix broken pure-ftpd.init script. We cannot use startproc to run
    /usr/sbin/pure-config.pl, because the utility assumes that the
    name of that executable matches the name of the started process,
    which it does not in our case. Furthermore, the start script will
    write a status message to stdout, so we don't have to do it in
    the init script. [bsc#1042690]
* Sat May 27 2017 [email protected]
  - Fix build on SUSE:SLE-11, which doesn't define the RPM variable
    %{_initddir}, so we have to use %{_sysconfdir}/init.d instead.
* Fri May 19 2017 [email protected]
  - pure-ftpd-apparmor.patch: Add an AppArmor profile (based on the
    one from SLE11).
  - The Factory version of pure-ftp will replace the older package in
    SLE-11 as per fate#321125. That update brings the following
    changes:
    * These patches have been updated and renamed in the process:
    * pure-ftpd-1.0.22-default_tcp_sedrcv_buffer_size.patch is now
      in pure-ftpd-1.0.32-default_tcp_sedrcv_buffer_size.patch.
    * pure-ftpd-1.0.21-portrange.patch is now in
      pure-ftpd-1.0.32-portrange.patch.
    * pure-ftpd-1.0.32-cap-audit-write.patch is now in
      pure-ftpd-1.0.36-cap-audit-control.patch.
    * These patches are obsolete now and have been removed:
    * 0001-Act-like-a-server-even-in-TLS-mode-when-in-active-mo.patch
    * 0002-Init-a-TLS-data-session-after-having-sent-the-go-ahe.patch
    * 0003-add-opt_a-to-donlist.patch
    * 0004-support-stat-over-tls.patch
    * 0005-speedup-TLS-listing.patch
    * pure-ftpd-1.0.20_config_minuid.patch
    * pure-ftpd-1.0.22-fix-listing-if-directory-has-white-space-in-it.patch
    * pure-ftpd-1.0.22-flush-cmd-after-tls.patch
    * pure-ftpd-1.0.22-oes-bugfix-1.patch
    * pure-ftpd-1.0.22-oes-bugfix-2.patch
    * pure-ftpd-1.0.22-oes-bugfix.patch
    * pure-ftpd-1.0.22-oes-disable-ascii.patch
    * pure-ftpd-1.0.22-oes_remote_server.patch
    * pure-ftpd-1.0.22-wait-on-tls-handshake.patch
    * pure-ftpd-allow-crypto-settings.patch
    * pure-ftpd-remove-gpl-code.patch
* Fri Aug 05 2016 [email protected]
  - Kill omc xml file useless nowdays
  - Version update to 1.0.43:
    * -J switch has been fixed
    * openBSD compat changes
    * Passwords are now hashed using Argon2i, default for puredb accounts now
* Tue May 10 2016 [email protected]
  - fix systemd unit file so the service actually starts (boo#872430)
* Thu Apr 14 2016 [email protected]
  - Add -fvisibility=hidden for bnc#971980
* Sat Jan 16 2016 [email protected]
  - Add gpg signature
* Fri Jan 08 2016 [email protected]
  - Version update to 1.0.42:
    - Compilation fix for OpenBSD and Bitrig when Pure-FTPd is not
      compiled with libsodium.
    - The connection is now dropped if HTTP commands are received.
    - LDAP force_default_gid and force_default_uid now work as documented.
    - The ONLY_ACCEPT_REUSED_SSL_SESSIONS switch (introduced in Pure-FTPd
      1.0.22 circa 2009, but disabled back then due to client compatibility
      concerns) is now on by default, except in broken clients compatibility mode.
    - libmariadb is looked for in addition to libmysqlclient
    - MySQL: my_make_scrambled_password() is not always an exported
      symbol any more, so pure-ftpd now ships a reimplementation.
    - openssl/ec.h is not available on some Linux distributions that
      disable EC in OpenSSL. This is being tested by autoconf.
    - New command-line switch: -2/--certfile= to set the path to the
      certificate file when using TLS.
    - Support for TCP_FASTOPEN added on Linux
    - The LDAP configuration file didn't allow a default gid without also
      defining a default uid. This is no longer the case.
    - OpenBSD's glob() left the glob_t structure uninitialized if the
      pattern was larger than PATH_MAX, causing globfree() to free() an
      unwanted pointer. The bug was introduced in Pure-FTPd 1.0.34.
  - Refresh patch:
    * pure-ftpd-1.0.20_config.patch
* Fri Jun 05 2015 [email protected]
  - Reenable sle11 builds I need for testing.
* Fri Jun 05 2015 [email protected]
  - Remove gpg/keyring, not provided now by upstream
  - Cleanup with spec-cleaner
  - Update to latest upstream 1.0.39:
    * Explicitly include openssl/ec.h for OpenSSL 0.9.8 (CentOS 5)
    * Retry if SSL_shutdown() returns -1 and SSL_ERROR_WANT_(READ|WRITE)
    * The default cipher suite is now
      ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SH
    * TLS forward secrecy support was added. DH parameters are loaded from
      TLS_DHPARAMS_FILE, if present. ECDH is also supported - Default curve
      is prime256v1 (TLS_DEFAULT_ECDH_CURVE). The best curve is automatically
      selected when using LibreSSL.
    * scrypt hashed passwords can be used in the MySQL, PostgreSQL and
      LDAP backends.
    * The -C: prefix can be added to the cipher suite in order to make valid
      client certificates mandatory. This is no longer a compile-time option.
    * The Clear Command Channel (CCC) command is now supported.
    * pure-config.py is compatible with Python 3.
    * SSL (v2, v3) is refused by default.
    * The PureDB backend supports the scrypt function in order to hash
      passwords. This is the preferred algorithm, but requires the presence
      of libsodium.
    * DES-hashed passwords are not supported any more.
    * LDAP uid and gid values can over overridden in the LDAP configuration file.
    * RC4 was killed.
  - Refreshed patches:
    * pure-ftpd-1.0.20_config.patch
    * pure-ftpd-1.0.20_doc.patch
    * pure-ftpd-1.0.20_ftpwho_path.patch

Files

/etc/apparmor
/etc/apparmor/profiles
/etc/apparmor/profiles/extras
/etc/apparmor/profiles/extras/usr.sbin.pure-ftpd
/etc/openldap
/etc/openldap/schema
/etc/openldap/schema/pureftpd.schema
/etc/pam.d/pure-ftpd
/etc/pure-ftpd
/etc/pure-ftpd/pure-ftpd.conf
/etc/pure-ftpd/vhosts
/usr/bin/pure-pw
/usr/bin/pure-pwconvert
/usr/bin/pure-statsdecode
/usr/lib/systemd/system/pure-ftpd.service
/usr/sbin/pure-authd
/usr/sbin/pure-certd
/usr/sbin/pure-ftpd
/usr/sbin/pure-ftpwho
/usr/sbin/pure-mrtginfo
/usr/sbin/pure-quotacheck
/usr/sbin/pure-uploadscript
/usr/sbin/rcpure-ftpd
/usr/share/doc/packages/pure-ftpd
/usr/share/doc/packages/pure-ftpd/AUTHORS
/usr/share/doc/packages/pure-ftpd/FAQ
/usr/share/doc/packages/pure-ftpd/HISTORY
/usr/share/doc/packages/pure-ftpd/NEWS
/usr/share/doc/packages/pure-ftpd/README
/usr/share/doc/packages/pure-ftpd/README.AppArmor
/usr/share/doc/packages/pure-ftpd/README.Authentication-Modules
/usr/share/doc/packages/pure-ftpd/README.Configuration-File
/usr/share/doc/packages/pure-ftpd/README.Donations
/usr/share/doc/packages/pure-ftpd/README.LDAP
/usr/share/doc/packages/pure-ftpd/README.MySQL
/usr/share/doc/packages/pure-ftpd/README.PGSQL
/usr/share/doc/packages/pure-ftpd/README.TLS
/usr/share/doc/packages/pure-ftpd/README.Virtual-Users
/usr/share/doc/packages/pure-ftpd/THANKS
/usr/share/doc/packages/pure-ftpd/pureftpd-ldap.conf
/usr/share/doc/packages/pure-ftpd/pureftpd-mysql.conf
/usr/share/doc/packages/pure-ftpd/pureftpd-pgsql.conf
/usr/share/licenses/pure-ftpd
/usr/share/licenses/pure-ftpd/COPYING
/usr/share/man/man8/pure-authd.8.gz
/usr/share/man/man8/pure-certd.8.gz
/usr/share/man/man8/pure-ftpd.8.gz
/usr/share/man/man8/pure-ftpwho.8.gz
/usr/share/man/man8/pure-mrtginfo.8.gz
/usr/share/man/man8/pure-pw.8.gz
/usr/share/man/man8/pure-pwconvert.8.gz
/usr/share/man/man8/pure-quotacheck.8.gz
/usr/share/man/man8/pure-statsdecode.8.gz
/usr/share/man/man8/pure-uploadscript.8.gz

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 18:42:22 2024