Date: Tue, 5 May 2009 13:56:59 +0100 From: "Daniel Bye" <danielby@slightlystrange.org> To: freebsd-questions@freebsd.org Subject: Re: Using portsuprade only for security Message-ID: <20090505125659.GA46153@torus.slightlystrange.org> In-Reply-To: <b6c05a470905050537r65d39df8u2e192d13e00c9c40@mail.gmail.com> References: <b6c05a470905050537r65d39df8u2e192d13e00c9c40@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--RnlQjJ0d97Da+TV1
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Tue, May 05, 2009 at 08:37:28AM -0400, Daniel Underwood wrote:
> I ran a portsupgrade scan, and was presented with a long list of
> installed ports and whether an update was available. In general, I
> prefer not to update ports/packages between FreeBSD releases. An
> obvious exception to this general rules is the patching of security
> vulnerabilities; of course not all available updates are security
> fixes.
>=20
> So my question is: how or where can I monitor security
> vulnerabilities? Or, how can I keep my system up-to-date with respect
> to security, without applying every non-security update?
Subscribe to security-notifications@ (for base system security alerts),
and install ports-mgmt/portaudit.
--=20
Daniel Bye
_
ASCII ribbon campaign ( )
- against HTML, vCards and X
- proprietary attachments in e-mail / \
--RnlQjJ0d97Da+TV1
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (FreeBSD)
iEYEARECAAYFAkoAN5sACgkQixf5fBYiFmpdXgCfeAYdKE7lg2E7raeHFBnH6LV7
7vkAn1FXDffM5wK9AgGEJMqA6/sqEN1L
=geUf
-----END PGP SIGNATURE-----
--RnlQjJ0d97Da+TV1--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090505125659.GA46153>