marking ports as 'cleaned' in portaudit.conf ?
Dick Davies
rasputnik at hellooperator.net
Mon Jun 27 21:40:08 GMT 2005
* Simon L. Nielsen <simon at FreeBSD.org> [0652 20:52]:
> On 2005.06.24 10:58:36 +0100, Dick Davies wrote:
> >
> > I just manually patched up my ruby18 install and tried to tell
> > portaudit that the local port is now clean, but it doesn't want to
> > know:
> >
> > root at eris rasputnik # portaudit
> > Affected package: ruby-1.8.2_3
> > Type of problem: ruby -- arbitrary command execution on XMLRPC server.
> > Reference: <http://www.FreeBSD.org/ports/portaudit/594eb447-e398-11d9-a8bd-000cf18bbe54.html>
> >
> > ^C
> > root at eris rasputnik # cat /usr/local/etc/portaudit.conf
> > portaudit_fixed="594eb447-e398-11d9-a8bd-000cf18bbe54"
> > root at eris rasputnik #
> >
> > what did I miss?
>
> It seems like portaudit_fixed only works for "system" entries,
> ie. base system vulnerabilities and is ignored package entries.
Oh, OK. I thought portaudit only audited, well, ports :)
> I think it would be useful to be able to suppress the certain package
> vulnerabilities like you are trying to, but I don't think I will get
> around to looking at implementing it any time soon.
That's fine, I'll have another look at it when I get half an hour.
--
'INCREASE the life of your carpets by rolling them up and keeping them in the garage.'
-- Top Tips
Rasputin :: Jack of All Trades - Master of Nuns
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20050627/d4eba136/attachment.bin
More information about the freebsd-stable
mailing list