installed ports library audit?

Gary Aitken freebsd at
Mon Mar 1 16:56:44 UTC 2021

On 3/1/21 9:05 AM, Steve O'Hara-Smith wrote:
> On Mon, 1 Mar 2021 08:54:53 -0700
> Gary Aitken <freebsd at> wrote:
>> Is there a similar check for the base system install?  I see security
>> audits but those are event related.
> 	freebsd-update IDS - note caveats in man page.


The results are mostly tweaked files in /etc, which is not in /usr,
which was the problem filesystem, so I should be ok there.  I'm puzzled
by a symlink complaint, though:

/usr/src/contrib/tcpdump/README is a symlink, should be a regular file

It's a symlink to, which seems reasonable and deliberate.

For future disasters...
If I needed to, is there a master easy to get at that I can diff against
to see what the changes to things like /etc/passwd are?
I could regenerate the .db files if I knew the source was ok, but to check
that I would need to be able to diff.


More information about the freebsd-questions mailing list