apache13-modssl-1.3.33+2.8.22_1 port broken??
Warren Block
wblock at wonkity.com
Thu Jul 28 14:45:35 GMT 2005
On Wed, 27 Jul 2005, Viren Patel wrote:
> I am trying to install apache+mod_ssl-1.3.33+2.8.22_1 and
> get the following:
>
> #make
> ===> apache+mod_ssl-1.3.33+2.8.22_1 has known
> vulnerabilities:
> => apache -- http request smuggling.
> Reference:
> <http://www.FreeBSD.org/ports/portaudit/651996e0-fe07-11d9-8329-000e0c2e438a.html>
> => Please update your ports tree and try again.
> *** Error code 1
>
> Stop in /usr/ports/www/apache13-modssl.
>
> I have updated the ports tree and the files directory
> contains the patch for this vulnerability
> (patch-secfix-CAN-2005-2088).
>
> I need to install this port urgently. What am I doing
> wrong?? If the vulnerability has not been fixed, how can I
> force install? TIA.
# make -DDISABLE_VULNERABILITIES
will override portaudit.
-Warren Block * Rapid City, South Dakota USA
More information about the freebsd-ports
mailing list