From owner-freebsd-ports@FreeBSD.ORG  Sun Jun 22 15:32:08 2014
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: freebsd-ports@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id EBFCC32A
 for <freebsd-ports@freebsd.org>; Sun, 22 Jun 2014 15:32:08 +0000 (UTC)
Received: from nschwqsrv03p.mx.bigpond.com (nschwqsrv03p.mx.bigpond.com
 [61.9.189.237]) by mx1.freebsd.org (Postfix) with ESMTP id 8416F2ED2
 for <freebsd-ports@freebsd.org>; Sun, 22 Jun 2014 15:32:07 +0000 (UTC)
Received: from nschwcmgw05p ([61.9.190.165]) by nschwmtas02p.mx.bigpond.com
 with ESMTP
 id <20140622152712.NBCL12338.nschwmtas02p.mx.bigpond.com@nschwcmgw05p>;
 Sun, 22 Jun 2014 15:27:12 +0000
Received: from hermes.heuristicsystems.com.au ([121.210.107.100])
 by nschwcmgw05p with BigPond Outbound
 id HTTB1o00929zwdD01TTBoA; Sun, 22 Jun 2014 15:27:12 +0000
X-Authority-Analysis: v=2.0 cv=XNWyuHdE c=1 sm=1
 a=SEJ2iDwVkb98DYvesvueMw==:17 a=JipEcVzqA9wA:10 a=BRxfQ_mlIWsA:10
 a=8nJEP1OIZ-IA:10 a=GHIR_BbyAAAA:8 a=fQSHx_agWgGFowFMKaoA:9 a=wPNLvfGTeEIA:10
 a=LbPRrf8F6H4A:10 a=Duoat89pzVQA:10 a=SEJ2iDwVkb98DYvesvueMw==:117
Received: from [10.0.5.3] (ewsw01.hs [10.0.5.3]) (authenticated bits=0)
 by hermes.heuristicsystems.com.au (8.14.5/8.13.6) with ESMTP id s5MDIiGp022033
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT);
 Sun, 22 Jun 2014 23:18:45 +1000 (EST)
 (envelope-from dewayne.geraghty@heuristicsystems.com.au)
Message-ID: <53A6D7B4.2080601@heuristicsystems.com.au>
Date: Sun, 22 Jun 2014 23:18:44 +1000
From: Dewayne Geraghty <dewayne.geraghty@heuristicsystems.com.au>
User-Agent: Mozilla/5.0 (Windows NT 6.1;
 rv:24.0) Gecko/20100101 Thunderbird/24.3.0
MIME-Version: 1.0
To: philj@openmailbox.org, freebsd-ports@freebsd.org
Subject: Re: Ports tree insecure because of IGNOREFILES+IGNORE
References: <a226646bae78ce27377cdfc975c3fd46@openmailbox.org>
In-Reply-To: <a226646bae78ce27377cdfc975c3fd46@openmailbox.org>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Jun 2014 15:32:09 -0000

Good catch philj, I wasn't aware of this "feature".  I'm grepping the
ports that I use as I type my appreciation.  Though this makes me wonder
about the efficacy of having a sha signature for the package manifest...
Regards, Dewayne.