From owner-freebsd-questions Wed Sep 27 20:13:30 2000 Delivered-To: freebsd-questions@freebsd.org Received: from xena.gsicomp.on.ca (cr677933-a.ktchnr1.on.wave.home.com [24.42.130.87]) by hub.freebsd.org (Postfix) with ESMTP id 7F45237B423; Wed, 27 Sep 2000 20:13:17 -0700 (PDT) Received: from hermes (hermes.gsicomp.on.ca [192.168.0.18]) by xena.gsicomp.on.ca (8.10.1/8.9.2) with SMTP id e8S3DGs84893; Wed, 27 Sep 2000 23:13:16 -0400 (EDT) (envelope-from matt@gsicomp.on.ca) Message-ID: <002a01c028fa$1a566ae0$1200a8c0@gsicomp.on.ca> From: "Matthew Emmerton" To: Cc: Subject: Feature request for ports subsystem Date: Wed, 27 Sep 2000 23:13:41 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I've been pondering over ways to increase my ability to detect changes that occur to my server. I frequently use the mtree files on the CD to detect changes to the date/time, ownership and permissions of files that come with FreeBSD, but don't really have a good way of verifying the applications that are added via ports or packages. What I was wondering is if anyone has though about adding mtree support to the ports subsystem? The existing PLIST system is good for determining the files and directories that belong to a port/package, but don't provide enough information for the purposes of security auditing. If an mtree file was generated during the installation process of a port/package, then it could be used to validate the installation of that port/package in the future. I've been tinkering with this myself, but if anyone expresses more of an interest, then I will try to make my contributions robust enough to become part of the ports subsystem. -- Matthew Emmerton GSI Computer Services +1 (800) 217 5409 (Canada) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message