--- cryptcat-20031202.orig/debian/copyright +++ cryptcat-20031202/debian/copyright @@ -0,0 +1,41 @@ +This package was debianized by Lars Bahner on +Wed, 11 Jul 2001 15:58:38 +0200. + +It was downloaded from http://farm9.com/content/Free_Tools/cryptcat_linux2.tar + +Upstream Author: farm9 + +Contributors: Dan F, Jeff Nathan, Matt W, Frank Knobbe, Dragos, Bill Weiss, +Jimmy + +Copyright: + +The Gnu Public License v2 is available from /usr/share/common-licenses/GPL-2 +on a Debian system http://www.fsf.org/licenses/info/GPLv2orLater.html. + +Netcat +====== + +``Netcat is entirely my own creation, although plenty of other code was used +as examples. It is freely given away to the Internet community in the hope +that it will be useful, with no restrictions except giving credit where it is +due. No GPLs, Berkeley copyrights or any of that nonsense. The author assumes +NO responsibility for how anyone uses it. If netcat makes you rich somehow +and you're feeling generous, mail me a check. If you are affiliated in any +way with Microsoft Network, get a life. Always ski in control. Comments, +questions, and patches to hobbit@avian.org.'' + +Twofish +======= + +``Twofish is a block cipher by Counterpane Labs. It was one of the five +Advanced Encryption Standard (AES) finalists. Twofish is unpatented, and the +source code is uncopyrighted and license-free; it is free for all uses.'' + +Ref. http://www.counterpane.com/twofish.html + +Cryptcat +======== + +Cryptcat is licensed under the the GNU General Public License, Version 2 or +later in conformance with the original NetCat license. --- cryptcat-20031202.orig/debian/compat +++ cryptcat-20031202/debian/compat @@ -0,0 +1 @@ +5 --- cryptcat-20031202.orig/debian/dirs +++ cryptcat-20031202/debian/dirs @@ -0,0 +1 @@ +usr/bin --- cryptcat-20031202.orig/debian/changelog +++ cryptcat-20031202/debian/changelog @@ -0,0 +1,97 @@ +cryptcat (20031202-4) unstable; urgency=low + + * Removed "-s" in original Makefile to accomodate + DEB_BUILD_OPTIONS=nostrip (closes: #436674) + * Corrected typo in standards definition. + * Corrected clean-target in debian/rules + * Explained why I won't upgrade to newer upstream version in + README.Debian (closes: #390033) + + -- Lars Bahner Sat, 23 Aug 2008 19:28:22 +0000 + +cryptcat (20031202-3) unstable; urgency=low + + * Acknowledge NMU-patch (closes: #452795) + * Changed description (closes: #366383) + * Bumped standards version and DH_COMPAT + + -- Lars Bahner Thu, 21 Aug 2008 20:24:22 +0000 + +cryptcat (20031202-2.1) unstable; urgency=low + + * Non-maintainer upload. + * Fix segfault in listen mode (Closes: #431010) + + -- Paul Wise Sun, 25 Nov 2007 18:56:00 +0930 + +cryptcat (20031202-2) unstable; urgency=low + + * Rebuilt source dir to provide diff + * Missing build dependency on dpatch + * missing dependency on patch target in debian/rules + + -- Lars Bahner Thu, 11 Dec 2003 18:15:35 +0100 + +cryptcat (20031202-1) unstable; urgency=low + + * New explicitly free version of cryptcat! + * Cleaner build + + -- Lars Bahner Wed, 3 Dec 2003 12:16:57 +0100 + +cryptcat (0.0.950915-7) unstable; urgency=low + + * Moving to non-free since the licensing hasn't changed. + * Corrected warning in farm9crypt.h. + * Wrote reference to CERT-advisory in README.Debian. + * Removed "Enhances:" field in debian/control. + + -- Lars Bahner Sat, 1 Nov 2003 13:15:58 +0100 + +cryptcat (0.0.950915-6) unstable; urgency=low + + * New standards version + * No setting of /usr/doc links + + -- Lars Bahner Fri, 28 Mar 2003 12:47:39 +0100 + +cryptcat (0.0.950915-5) unstable; urgency=low + + * Rebuilt package to fix tar-archive issue. (closes: #152822) + + -- Lars Bahner Fri, 19 Jul 2002 16:06:25 +0200 + +cryptcat (0.0.950915-4) unstable; urgency=low + + * Changed dependency + * Moved to new category + + -- Lars Bahner Sun, 10 Feb 2002 23:27:23 +0100 + +cryptcat (0.0.950915-3) unstable; urgency=low + + * Added authors proper to manpage + * Cleaned up package + * Changed maintainer email address + + -- Lars Bahner Thu, 3 Jan 2002 21:32:46 +0100 + +cryptcat (0.0.950915-2) unstable; urgency=low + + * Added XLIBS="-lstdc++" (Thanks to James Troup.) (closes: #120135) + * Package seems installed. Closing ITP. (closes: #104328) + + -- Lars Bahner Mon, 19 Nov 2001 01:21:10 +0100 + +cryptcat (0.0.950915-1) unstable; urgency=low + + * Initial Release. + * Changed Makefile to link dynamically for Linux + * Wrote a manpage + * Sent manpage upstream + + -- Lars Bahner Wed, 11 Jul 2001 15:58:38 +0200 + +Local variables: +mode: debian-changelog +End: --- cryptcat-20031202.orig/debian/control +++ cryptcat-20031202/debian/control @@ -0,0 +1,20 @@ +Source: cryptcat +Section: net +Priority: optional +Maintainer: Lars Bahner +Build-Depends: debhelper (>> 5.0.0), dpatch +Standards-Version: 3.8.0 + +Package: cryptcat +Architecture: any +Depends: ${shlibs:Depends} +Description: A lightweight version netcat extended with twofish encryption + Cryptcat is a simple Unix utility which reads and writes data across + network connections, using TCP or UDP protocol while encrypting the + data being transmitted. + It is designed to be a reliable "back-end" tool that can be used directly + or easily driven by other programs and scripts. At the same time, it is a + feature-rich network debugging and exploration tool, since it can create + almost any kind of connection you would need and has several interesting + built-in capabilities. + --- cryptcat-20031202.orig/debian/README.Debian +++ cryptcat-20031202/debian/README.Debian @@ -0,0 +1,21 @@ +cryptcat for Debian +------------------- + +Package compiled without ``-DGAPING_SECURITY_HOLE'', so that it will not +run as an alternative to inetd. This should remedy CERT advisory 165099. +While it doesn't fix the problem, it removes the -e switch. For more +information please refer to http://www.kb.cert.org/vuls/id/165099 + +Furthermore this package is linked dynamically in contrast to the advice +of the author. + +There were some uncertainties with the licensing, but they have been fixed. + +As of 2008-08-23 I won't upgrade to a newer version of cryptcat, as the +changes made to the code does not have any bearing on the version in debian. +I write this here, so that I may close bug #390033, instead of leaving it +open as a wontfix bug. +Furthermore the licensing of the new tarball - although GPL - does not +contain any licensing information. + + -- Lars Bahner , Wed, 03 Dec 2003 12:32:35 +0100 --- cryptcat-20031202.orig/debian/docs +++ cryptcat-20031202/debian/docs @@ -0,0 +1,2 @@ +README +README.cryptcat --- cryptcat-20031202.orig/debian/cryptcat.1 +++ cryptcat-20031202/debian/cryptcat.1 @@ -0,0 +1,52 @@ +.\" Hey, EMACS: -*- nroff -*- +.TH cryptcat 1 "August 9, 2001" "Debian GNU/Linux" "Cryptcat" +.SH NAME +cryptcat \- twofish encryption enabled version of +.B nc(1) +.SH SYNOPSIS +.B cryptcat +.RI "-k \fIsecret\fP [-options] hostname port[s] [ports]" +.br +.B cryptcat +.RI "-k \fIsecret\fP -l -p port [-options] [hostname] [port]" +.SH DESCRIPTION +This manual page documents briefly the \fBcryptcat\fP command. +This manual page was written for the Debian GNU/Linux distribution because the original program does not have a manual page. It only documents the features specific to \fBcryptcat\fP and not the features that are described at length in the manpage for \fBnc(1)\fP. +.br +If you do not know \fBnc\fP then the chances are you won't have much use for this manpage. +.PP +\fBcryptcat\fP can act as a \fBtcp\fP or \fBudp\fP client or server - connecting to or listening on a socket, while otherwise working as the standard Unix command \fBcat(1)\fP. +.PP +\fBcryptcat\fP takes a password as a salt to encrypt the data being sent over the connection. +Without a specified password \fBcryptcat\fP will default to the hardcoded password ``\fImetallica\fP''. Needless to say, failure to specify a different password makes the connection as good as unencrypted. +.PP +.SH OPTIONS +This programs \fIdoes not\fP follow the usual GNU command line syntax, with long options starting with two dashes (`-'). +A summary of the options specific to cryptcat is included below. +.TP +.B \-h +.br +Show summary of options. +.TP +.B \-k \fIsecret password\fP +.br +Change the shared secret password to be used to establish a connection. +.SH +BUGS +This version of \fBcryptcat\fP does not support the \fB-e\fP \fIcommand\fP command line option available in some versions of \fBnc\fP. +.SH SEE ALSO +.BR nc(1), +.BR cat(1). +.br +/usr/share/doc/cryptcat/README.gz +.br +/usr/share/doc/cryptcat/README.cryptcat +.br +/usr/share/doc/cryptcat/README.Debian +.SH AUTHOR +The original \fBnetcat\fP was written by \fBhobbit@avian.org\fP. + +\fBcryptcat\fP is the work of \fBfarm9 \fP with the help of Dan F, Jeff Nathan, Matt W, Frank Knobbe, Dragos, Bill Weiss, Jimmy. + +This manual page was written by Lars Bahner for Debian. + --- cryptcat-20031202.orig/debian/rules +++ cryptcat-20031202/debian/rules @@ -0,0 +1,53 @@ +#!/usr/bin/make -f +# Sample debian/rules that uses debhelper. +# GNU copyright 1997 to 1999 by Joey Hess. + +include /usr/share/dpatch/dpatch.make + +configure: + + dh_testdir + +build: patch + dh_testdir + + $(MAKE) linux + +clean: unpatch + + dh_testdir + dh_testroot + + [ ! -f Makefile ] || $(MAKE) clean + + dh_clean + +install: build + dh_testdir + dh_testroot + dh_clean -k + dh_installdirs + + $(MAKE) install DESTDIR=$(CURDIR)/debian/cryptcat + + +binary-indep: build install + +binary-arch: build install + dh_testdir + dh_testroot + dh_installdocs -n + dh_installman debian/cryptcat.1 + dh_installchangelogs Changelog + dh_link + dh_strip + dh_compress + dh_fixperms + dh_installdeb + dh_shlibdeps + dh_gencontrol + dh_md5sums + dh_builddeb + +binary: binary-indep binary-arch +.PHONY: build clean binary-indep binary-arch binary install configure --- cryptcat-20031202.orig/debian/patches/01_makefile +++ cryptcat-20031202/debian/patches/01_makefile @@ -0,0 +1,69 @@ +#!/bin/sh -e +## DP: Debian conformance patch for the Debian pyca-package +## DP: This patch consists mainly of FHS (2.2) stuff +## Copyright @ 2003 by Lars Bahner + +if [ $# -ne 1 ]; then + echo >&2 "`basename $0`: script expects -patch|-unpatch as argument" + exit 1 +fi + +[ -f debian/patches/00patch-opts ] && . debian/patches/00patch-opts +patch_opts="${patch_opts:--f --no-backup-if-mismatch}" + +case "$1" in + -patch) patch $patch_opts -p0 < $0;; + -unpatch) patch $patch_opts -p0 -R < $0;; + *) + echo >&2 "`basename $0`: script expects -patch|-unpatch as argument" + exit 1;; +esac + +exit 0 + +@DPATCH@ +--- Makefile.orig 2008-08-21 22:48:42.000000000 +0000 ++++ Makefile 2008-08-21 22:51:09.000000000 +0000 +@@ -5,18 +5,22 @@ + + ### PREDEFINES + ++# Added for Debian GNU/Linux ++DESTDIR = ++BIN = $DESTDIR/usr/bin ++ + # DEFAULTS, possibly overridden by recursive call: + # pick gcc if you'd rather , and/or do -g instead of -O if debugging + # debugging + # DFLAGS = -DTEST -DDEBUG +-DFLAGS = -DGAPING_SECURITY_HOLE ++DFLAGS = + CFLAGS = -O + XFLAGS = # xtra cflags, set by systype targets + XLIBS = # xtra libs if necessary? + # -Bstatic for sunos, -static for gcc, etc. You want this, trust me. + STATIC = + CC = cc $(CFLAGS) +-LD = $(CC) -s # linker; defaults to stripped executables ++LD = $(CC) # linker; defaults to stripped executables no more + o = o # object extension + + ALL = cryptcat +@@ -68,7 +72,9 @@ + make -e $(ALL) $(MFLAGS) XFLAGS='-DAIX' + + linux: +- make -e $(ALL) $(MFLAGS) XFLAGS='-DLINUX' STATIC=-static ++# Linked dynamically for Debian ++# make -e $(ALL) $(MFLAGS) XFLAGS='-DLINUX' STATIC=-static ++ make -e $(ALL) $(MFLAGS) XLIBS='-lstdc++' XFLAGS='-DLINUX' + + # irix 5.2, dunno 'bout earlier versions. If STATIC='-non_shared' doesn't + # work for you, null it out and yell at SGI for their STUPID default +@@ -129,3 +135,6 @@ + clean: + rm -f $(ALL) *.o *.obj + ++#Added for Debian GNU/Linux ++install: cryptcat ++ cp -a ./cryptcat $(DESTDIR)/usr/bin --- cryptcat-20031202.orig/debian/patches/00list +++ cryptcat-20031202/debian/patches/00list @@ -0,0 +1,2 @@ +01_makefile +02_fix_listen_mode_segfault --- cryptcat-20031202.orig/debian/patches/02_fix_listen_mode_segfault +++ cryptcat-20031202/debian/patches/02_fix_listen_mode_segfault @@ -0,0 +1,21 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 02_fix_listen_mode_segfault by Niek Linnenbank +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Fix segfault in listen mode (Closes: #431010) + +@DPATCH@ +diff -urNad cryptcat-20031202~/farm9crypt.cc cryptcat-20031202/farm9crypt.cc +--- cryptcat-20031202~/farm9crypt.cc 2003-12-03 09:17:58.000000000 +0930 ++++ cryptcat-20031202/farm9crypt.cc 2007-11-25 18:33:28.000000000 +0930 +@@ -104,8 +104,8 @@ + * + * Parameters same as "recv" + */ +-static char outBuffer[8193]; +-static char inBuffer[8193]; ++static char outBuffer[8193 + 32]; ++static char inBuffer[8193 + 32]; + + extern "C" int farm9crypt_read( int sockfd, char* buf, int size ) { + int total = 0;