From owner-freebsd-current@FreeBSD.ORG Sat Dec 21 22:14:44 2013 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3816CCE9 for ; Sat, 21 Dec 2013 22:14:44 +0000 (UTC) Received: from mail-wi0-x232.google.com (mail-wi0-x232.google.com [IPv6:2a00:1450:400c:c05::232]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id B9E381661 for ; Sat, 21 Dec 2013 22:14:43 +0000 (UTC) Received: by mail-wi0-f178.google.com with SMTP id bz8so5045050wib.17 for ; Sat, 21 Dec 2013 14:14:42 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=69wVTpAUdE9+7ktT9byROLeaZcoR1I+HjnHKAi6v4iA=; b=V8xTpKinAhs+ldxg2nzn5hS8csPL6wQ0UWspZ5cGEt0w1gN+t9Fxzd3wKmy3Q/74Py FCPlFkHhNsdIklPWj332wHWztIXO5eB0T3Ki8jRJrXdHpQ+XcBO9uKnQxGuAVICr5xJp ozwjmKEpAR5Mur4YtdhFq8C/AeUpwJ9swUvxoeNG67Di6lkTq5xkT0sAMhsxlFRBf79b X2olpq8c7X3HG8fF9XxuWYFHTadLnDLAiDiapEd0hBrQG7mLQrtL5KexURrkeQ/iwkl7 GjvSx+W7vJk1soXXKUwSfe6dMBN34Oq0ZPSzHLeGY66l5iXFDdnoRJVG/QM1z/OLuGdX Jcjw== X-Received: by 10.194.89.97 with SMTP id bn1mr12458055wjb.18.1387664082021; Sat, 21 Dec 2013 14:14:42 -0800 (PST) Received: from ithaqua.etoilebsd.net (ithaqua.etoilebsd.net. [37.59.37.188]) by mx.google.com with ESMTPSA id w1sm24728477wib.6.2013.12.21.14.14.40 for (version=TLSv1 cipher=RC4-SHA bits=128/128); Sat, 21 Dec 2013 14:14:41 -0800 (PST) Sender: Baptiste Daroussin Date: Sat, 21 Dec 2013 23:14:39 +0100 From: Baptiste Daroussin To: Steve Kargl Subject: Re: PACKAGESITE spam Message-ID: <20131221221439.GA59524@ithaqua.etoilebsd.net> References: <52B5DF8C.5050204@gmx.com> <20131221200538.GA60827@troutmask.apl.washington.edu> <20131221201026.GB1730@glenbarber.us> <20131221201403.GB60827@troutmask.apl.washington.edu> <20131221210553.GA61158@troutmask.apl.washington.edu> <52B60727.8090001@bluerosetech.com> <20131221213959.GA61238@troutmask.apl.washington.edu> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="huq684BweRXVnRxX" Content-Disposition: inline In-Reply-To: <20131221213959.GA61238@troutmask.apl.washington.edu> User-Agent: Mutt/1.5.21 (2010-09-15) Cc: freebsd-current@freebsd.org, Darren Pilgrim X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 21 Dec 2013 22:14:44 -0000 --huq684BweRXVnRxX Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Dec 21, 2013 at 01:39:59PM -0800, Steve Kargl wrote: > On Sat, Dec 21, 2013 at 01:24:55PM -0800, Darren Pilgrim wrote: > > On 12/21/2013 1:05 PM, Steve Kargl wrote: > > > On Sat, Dec 21, 2013 at 02:54:39PM -0600, Greg Rivers wrote: > > >> On Sat, 21 Dec 2013, Steve Kargl wrote: > > >> > > >>> It did not ask how to stop this stupidity. I asked to have this > > >>> stupidity stopped by default. The spewing of this information in > > >>> /var/log/messages provides NOTHING. Please turn it off by default. > > >>> > > >> > > >> Do you really feel that strongly about it? Having a record of chang= es to > > >> the system has always seemed like a feature to me... > > >> > > > > > > Yes, I do feel strongly about it. It is completely unnecesary noise. > > > It should be off by default. If someone wants to fill /var up with > > > useless information, then that someone can turn on the noise. > >=20 > > It's about what's safe in the common case. There are significant=20 > > security risks inherent in pkg's activities, so having a written=20 > > external record is the safe option. > >=20 > > I don't buy the "fill up /var" argument. If your /var is so small that= =20 > > pkg's logging risks filling it up, why are you not logging to an=20 > > external syslog server? There are much more voluminous sources of logs= =20 > > on a FreeBSD system. >=20 > It has nothing to do with the size of /var, really. It is completely > useless information. You want to know what package are installed, use > 'pkg info'. Packages do not spontaneously install themselves. If > your system is so insecure that you are worried that some unpriveleged > user installed a package, you have bigger problems. >=20 > --=20 > steve >=20 >=20 > --=20 > Steve > _______________________________________________ > freebsd-current@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" this has been done and activated for reason, first for lot of companies, it= is important (PCI DSS requirement for example), secondly I receive tons of req= uest to actiavte on by default while you are the first to request it off by defa= ult Bapt --huq684BweRXVnRxX Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (FreeBSD) iEYEARECAAYFAlK2Es8ACgkQ8kTtMUmk6Ex1ZwCgmiPNlqvN35iyggoCJKJGES9N njQAni/ltqr8m664A4erzvCUT3dbQEPf =k2A9 -----END PGP SIGNATURE----- --huq684BweRXVnRxX--