This is a fake IKE daemon supporting just enough of the standards and Cisco extensions to attack commonly found insecure Cisco PSK+XAUTH VPN setups. Basically, if you know the pre-shared key, also known as shared secret or group password, you can impersonate the VPN gateway in IKE phase 1, and learn XAUTH user credentials in phase 2.
Class Changed From-To: update->change-request Fix category (new ports should be change-requests)
Responsible Changed From-To: freebsd-ports-bugs->ehaupt Take.
Port does not build on 4.x. Do you think you can fix it? --- build.err begins here --- ===> WARNING: Vulnerability database out of date, checking anyway => fiked-0.0.2.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/. => Attempting to fetch from http://dragon.roe.ch/bitsnpieces/fiked/. fiked-0.0.2.tar.bz2 100% of 105 kB 13 kBps ===> Extracting for fiked-0.0.2 => MD5 Checksum OK for fiked-0.0.2.tar.bz2. ===> Patching for fiked-0.0.2 ===> fiked-0.0.2 depends on package: libnet*>=1.1.2,1 - found ===> fiked-0.0.2 depends on executable: gmake - found ===> fiked-0.0.2 depends on shared library: gcrypt.13 - found ===> Configuring for fiked-0.0.2 ===> Building for fiked-0.0.2 cc -O -pipe -std=c99 -I/usr/local/include -c -o config.o config.c cc1: unknown C standard `c99' config.c: In function `psk_get_key': config.c:30: syntax error before `psk' config.c:30: `p' undeclared (first use in this function) config.c:30: (Each undeclared identifier is reported only once config.c:30: for each function it appears in.) config.c:30: syntax error before `)' gmake: *** [config.o] Error 1 *** Error code 2 Stop in /usr/home/ehaupt/fiked. --- build.err ends here --- Emanuel -- GnuPG key id: 0x55E67774 Download: http://pgp.mit.edu:11371 Key fingerprint: 17B3 FD8F BA68 4AB4 10FD A9D1 AD52 6588 55E6 7774
State Changed From-To: open->feedback Ask for maintainer fix.
Emanuel Haupt <ehaupt@FreeBSD.org> 2005-12-15: > Port does not build on 4.x. Do you think you can fix it? Fixing it would involve moving from C99 to C89, and making libnet support optional (the libnet headers don't seem to compile in C89 mode). Doing so is on my TODO list, but I'd prefer to just mark the port BROKEN on 4.x for now: .if ${OSVERSION} < 500000 BROKEN= "Does not compile on FreeBSD 4.x" .endif Thanks! -- Daniel Roethlisberger
State Changed From-To: feedback->open Feedback received.
> Fixing it would involve moving from C99 to C89, and making libnet > support optional (the libnet headers don't seem to compile in C89 > mode). Doing so is on my TODO list, but I'd prefer to just mark the > port BROKEN on 4.x for now: > > .if ${OSVERSION} < 500000 > BROKEN= "Does not compile on FreeBSD 4.x" > .endif Thanks for clarifying. I noticed that the download of the distfile is quite slow. Do you maybe have an addidional master site where you could mirror a copy of the distfile? Thanks in advance, Emanuel -- GnuPG key id: 0x55E67774 Download: http://pgp.mit.edu:11371 Key fingerprint: 17B3 FD8F BA68 4AB4 10FD A9D1 AD52 6588 55E6 7774
Emanuel Haupt <ehaupt@FreeBSD.org> 2005-12-16: > Do you maybe have an addidional master site where you could mirror a > copy of the distfile? Yes, you may add http://home.tiscalinet.ch/roe/fiked/ to the port's MASTER_SITES. -- Daniel Roethlisberger
State Changed From-To: open->closed New port added. Thanks!