port php5 - what I am supposed to do here?
xfb52 at dial.pipex.com
Fri Oct 6 02:26:36 PDT 2006
Matt Emmerton wrote:
>>Portuadit telles my about the "open_basedir Race Condition
>>By reading the advisory on
>>http://www.hardened-php.net/advisory_082006.132.html I can safely say
>>this does not apply to our environment, we don't use open_basedir or
>>safe_mode and Suhosin is planned anyway (after test).
>>So what to do now?
>You've established that the security issue doesn't apply to your
>1) Add "DISABLE_VULNERABILITIES=yes" to /etc/make.conf
>2) Run "portupgrade -u" or "make install clean"
By doing this you have disabled vulnerability checking for *all* ports
which seems a little extreme. Either add the flag to pkgtools.conf (for
portupgrade (and portmanager?)) or use it from the command line with make.
More information about the freebsd-questions