cvs commit: doc/en_US.ISO8859-1/books/handbook/ports chapter.sgml

Marc Fonvieille blackend at FreeBSD.org
Sat Apr 3 08:47:58 PST 2004


On Sat, Apr 03, 2004 at 06:30:04PM +0200, Simon L. Nielsen wrote:
[...]
> >   Log:
> >   Add some warnings: people should check http://vuxml.freebsd.org/ before
> >   installing any application.
> 
> Isn't that a bit overkill?  Ports that have security issues are marked
> FORBIDDEN so users can't install them.  If people want extra securirty
> they can use portaudit which checks the vuxml databases automatically.
> 

It's overkill for some persons but for persons who have old ports
collection, packages on an old CD etc. it's not "too much" to point them
to the security issues database.  The security aspect was not really
mentioned in the ports chapter.

> I also think it would be very hard to check vuxml manually in many
> cases, since ports can have a lot of dependencies, which might also
> contain security problems.

Well it's a VuXML issue :)
However http://www.vuxml.org/freebsd/index-pkg.html is not a so bad
thing.

Marc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-all/attachments/20040403/f2f1ab15/attachment.bin


More information about the cvs-all mailing list