Bug 194491

Summary: www/rubygem-httpclient: Bump to version 2.5.1
Product: Ports & Packages Reporter: robmessick
Component: Individual Port(s)Assignee: Po-Chuan Hsieh <sunpoet>
Status: Closed Overcome By Events    
Severity: Affects Some People CC: robmessick
Priority: --- Flags: robmessick: maintainer-feedback? (ruby)
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
Update to version 2.5.3.3 none

Description robmessick 2014-10-20 17:26:55 UTC 
There are some changes to defaults in httpclient 2.5.0+ to mitigate susceptibility to some recent(ish) SSL atack vectors.

See: https://github.com/nahi/httpclient/blob/master/CHANGELOG.md

Relevant changes in 2.5.0:
"""
    Disabled SSLv3 in favor of POODLE Attack prevention.
    Enabled 1/n-1 fragment in favor of BEAST Attack prevention.
    No TLS compression in favor of CRIME Attack prevention.
"""
Comment 1 Bugzilla Automation freebsd_committer freebsd_triage 2014-10-20 17:26:55 UTC 
Auto-assigned to maintainer ruby@FreeBSD.org
Comment 2 robmessick 2014-11-25 17:23:25 UTC 
Created attachment 149831 [details]
Update to version 2.5.3.3
Comment 3 Po-Chuan Hsieh freebsd_committer freebsd_triage 2015-06-21 10:16:10 UTC 
I've updated this port to 2.6.0.1 in r387573. Thanks for your submission.