Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 150208 - net-ftp/bftpd-1.5 (new ebuild)
Summary: net-ftp/bftpd-1.5 (new ebuild)
Status: CONFIRMED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: New packages (show other bugs)
Hardware: All Linux
: High enhancement (vote)
Assignee: Default Assignee for New Packages
URL:
Whiteboard: sunrise suggested
Keywords: EBUILD
Depends on:
Blocks:
 
Reported: 2006-10-05 13:58 UTC by Michael Lange
Modified: 2010-01-08 14:18 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments
bftpd-1.5.ebuild (bftpd-1.5.ebuild,721 bytes, application/octet-stream)
2006-10-05 14:00 UTC, Michael Lange
Details
bftpd-1.5.ebuild (bftpd-1.5.ebuild,721 bytes, text/plain)
2006-10-05 14:02 UTC, Michael Lange
Details
bftpd-1.5.ebuild (bftpd-1.5.ebuild,1.50 KB, text/plain)
2006-10-08 07:23 UTC, Michael Lange
Details
bftpd.xinetd (bftpd.xinetd,198 bytes, text/plain)
2006-10-08 07:25 UTC, Michael Lange
Details
bftpd.logrotate (bftpd.logrotate,52 bytes, text/plain)
2006-10-08 07:26 UTC, Michael Lange
Details
Ebuild for the latest stable release (bftpd-2.1.ebuild,1.52 KB, text/plain)
2008-03-14 14:10 UTC, Stefan Wimmer
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Lange 2006-10-05 13:58:46 UTC
new ebuild for bftpd-1.5

DESCRIPTION="easy configurable FTP server."
HOMEPAGE="http://www.bftpd.sourceforge.net/"
SRC_URI="http://bftpd.sourceforge.net/downloads/src/${P}.tar.gz"

LICENSE="GPL-2"


  bftpd is an FTP server for Linux, BSD/OS, FreeBSD, Solaris, DG-UX and
  Tru64. It runs either with inetd or standalone.

  It tries to be very configurable while being fast and small. You can
  make defaults for each configuration option, and then override these
  defaults in user-specific and directory-specific structures.

  Features of bftpd include:

  +  Easy configuration
  +  Speed
  +  Support for most RFC FTP commands
  +  tar.gz on-the-fly compression/archiving
  +  Security with chroot without special setup
  +  No need for files (sh, ls...) in a chroot environment
  +  Logging to wtmp and to a logfile or syslog
  +  PAM and passwd/shadow support
  +  Support for SITE CHOWN/CHMOD


this is my first public ebuild, so do your work and make it right
i don't have an init-script, because i don't know enough about this stuff
Comment 1 Michael Lange 2006-10-05 14:00:41 UTC
Created attachment 98881 [details]
bftpd-1.5.ebuild
Comment 2 Michael Lange 2006-10-05 14:02:37 UTC
Created attachment 98882 [details]
bftpd-1.5.ebuild
Comment 3 Michael Lange 2006-10-08 07:23:53 UTC
Created attachment 99121 [details]
bftpd-1.5.ebuild

new ebuild for bftpd-1.5

bftpd supports optional gzip-compressing on the fly with USE="gzip" (not tested)
optinal pam support with USE="pam" (not tested)
optinal xinetd support with USE="xinetd"
optinal logrotate support with USE="logrotate"

the init.d-script is furthermore missing
Comment 4 Michael Lange 2006-10-08 07:25:24 UTC
Created attachment 99122 [details]
bftpd.xinetd
Comment 5 Michael Lange 2006-10-08 07:26:23 UTC
Created attachment 99123 [details]
bftpd.logrotate
Comment 6 Stefan Wimmer 2008-03-14 14:10:28 UTC
Created attachment 146121 [details]
Ebuild for the latest stable release

Changed HOMEPAGE and SRC_URI to the correct URLs ... furthermore I had to repeat the cd to ${WORKDIR}/${PN} in every function otherwise I got errors in the build/install proces. Perhaps someone with more ebuild building experience can have a look at it? ;-)
Comment 7 Jeremy Olexa (darkside) (RETIRED) archtester gentoo-dev Security 2009-03-24 13:06:01 UTC
(this is an automated message based on filtering criteria that matched this bug)
'EBUILD' is in the KEYWORDS which should mean that there is a ebuild attached 
to this bug.
This bug is assigned to maintainer-wanted which means that it is not in the 
main tree.
Heuristics show that no Gentoo developer has commented on your ebuild.

Hello, The Gentoo Team would like to firstly thank you for your ebuild 
submission. We also apologize for not being able to accommodate you in a timely
manner. There are simply too many new packages.

Allow me to use this opportunity to introduce you to Gentoo Sunrise. The 
sunrise overlay[1] is a overlay for Gentoo which we allow trusted users to 
commit to and all users can have ebuilds reviewed by Gentoo devs for entry 
into the overlay. So, the sunrise team is suggesting that you look into this 
and submit your ebuild to the overlay where even *you* can commit to. =)

Because this is a mass message, we are also asking you to be patient with us. 
We anticipate a large number of requests in a short time. 

Thanks,
On behalf of the Gentoo Sunrise Team,
Jeremy.

[1]: http://www.gentoo.org/proj/en/sunrise/
[2]: http://overlays.gentoo.org/proj/sunrise/wiki/SunriseFaq
Comment 8 Alex Legler (RETIRED) archtester gentoo-dev Security 2010-01-08 14:18:08 UTC
There has been a vulnerability report for bftpd:

Name:      CVE-2009-4593
URL:       http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4593
Published: 2010-01-07
Severity:  
Description: 

The bftpdutmp_log function in bftpdutmp.c in Bftpd before 2.4 does not
place a '\0' character at the end of the string value of the ut.bu_host
structure member, which might allow remote attackers to cause a denial
of service (daemon crash) via unspecified vectors. NOTE: some of these
details are obtained from third party information.

Please consider updating the ebuilds here to a fixed version. Note that the initial importer to gentoo-x86 has to make sure that the issue is fixed before adding the package to the tree. Thanks