port php5 - what I am supposed to do here?
wolf at k18.ch
Fri Oct 6 18:34:55 PDT 2006
-----BEGIN PGP SIGNED MESSAGE-----
On 06.10.2006 11:26, * Alex Zbyslaw wrote:
> Matt Emmerton wrote:
>>> Hello List,
>>> Portuadit telles my about the "open_basedir Race Condition
>>> Vulnerability", OK.
>>> By reading the advisory on
>>> http://www.hardened-php.net/advisory_082006.132.html I can safely say
>>> this does not apply to our environment, we don't use open_basedir or
>>> safe_mode and Suhosin is planned anyway (after test).
>>> So what to do now?
>> You've established that the security issue doesn't apply to your
>> 1) Add "DISABLE_VULNERABILITIES=yes" to /etc/make.conf
>> 2) Run "portupgrade -u" or "make install clean"
> By doing this you have disabled vulnerability checking for *all* ports
> which seems a little extreme. Either add the flag to pkgtools.conf (for
> portupgrade (and portmanager?)) or use it from the command line with make.
Thanks for the advice, as matter of fact this came to my mind too, so I
actually did in make.conf was:
# PHP 5 Port installation options
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
More information about the freebsd-questions