Re: Adding functionality to a port

From: Rob LA LAU <>
Date: Sun, 14 Nov 2021 16:18:36 UTC

On 14/11/2021 16:54, Kurt Jaeger wrote:
> Maybe it makes it easier to understand if you tell us the port
> in question ?

It won't actually, because I don't want to focus on this 1 buggy script 
I found.

My question is not about a single bug in a single script. It's about 
FreeBSD policy, trust, security and reliability.

As a port maintainer, can I just modify the functionality of the ports I 
maintain without any limits?

And as a software developer, can I be sure that the package that is 
installed on FreeBSD systems, and that carries my name and URL, is 
actually still the package that I developed, with the functionality I 

And as a sysadmin or user, can I be sure that the port I installed 
actually does what is advertised on the upstream website?

I honestly think that these are very important questions...
The internet is no longer this friendly place it was 30 years ago. 
People with malicious intent have infiltrated software repositories 
before, and they will keep doing so.