file://localhost/usr/ports/security/crack/README.html
Kris Kennaway
kris at obsecurity.org
Tue Mar 13 01:39:45 UTC 2007
On Mon, Mar 12, 2007 at 04:55:39PM -0600, crs at swcp.com wrote:
> Hello,
>
> Something strange is going on.
>
> I've used crack in past to check for weak passwords among my users
> when I was sysadmin for a small network of Sun workstations used by
> physicists for computation.
>
> So, I decided to install it on my current system to verify that I'm
> using reasonably good passwords. I tried to install it from the
> ports collection and it complained that it (a) couldn't find it in
> /usr/ports//usr/ports/distfiles -- therefore I fetched a copy of
> the same version that *should* have been in /usr/ports, installed
> it in /usr/ports/distfiles and tried again. And again. And ran
> rehash and tried again. And again. And again a few minutes ago.
>
> Here's what make had to say:
>
> ===> Vulnerability check disabled
> ===> Extracting for crack-5.0
> => Checksum mismatch for crack5.0.tar.gz.
> ===> Refetch for 1 more times files: crack5.0.tar.gz
> ===> Vulnerability check disabled
> => crack5.0.tar.gz doesn't seem to exist in /usr/ports/distfiles/.
> => Attempting to fetch from
> ftp://ftp.cerias.purdue.edu/pub/tools/unix/pwdutils/crack/.
> fetch:
> ftp://ftp.cerias.purdue.edu/pub/tools/unix/pwdutils/crack/crack5.0.tar.gz:
> size unknown
> fetch:
> ftp://ftp.cerias.purdue.edu/pub/tools/unix/pwdutils/crack/crack5.0.tar.gz:
> size of remote file is not known
> ^C
>
> And here's what ls has to say:
>
> PC% ls -gl /usr/ports/distfiles//crack*
> -rw-r--r-- 1 root wheel 2945388 Mar 11 22:28
> /usr/ports/distfiles//crack5.0.tar.gz
>
> Can you explain to me why it is that the port cannot find something
> that's there?
It doesn't say it can't find it, it says it has an incorrect checksum.
Kris
More information about the freebsd-ports
mailing list