Date: Thu, 8 Sep 2016 07:23:43 +0800 From: Ben Woods <woodsb02@gmail.com> To: Mark Felder <feld@freebsd.org> Cc: Miroslav Lachman <000.fbsd@quip.cz>, freebsd security <freebsd-security@freebsd.org> Subject: Re: using pkg audit to show base vulnerabilities Message-ID: <CAOc73CD9Hou73tHBwsLk4BC=f%2B1JhT_QixywPsJNccw4BrybJA@mail.gmail.com> In-Reply-To: <1473283515.3860529.718903225.76BE1456@webmail.messagingengine.com> References: <57BEE965.8000903@quip.cz> <1473283515.3860529.718903225.76BE1456@webmail.messagingengine.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 8 September 2016 at 05:25, Mark Felder <feld@freebsd.org> wrote: > I have been toying with the idea of creating a port that provides a > script called "baseaudit" that can make it very easy to check your > system for known vulns. With the majority of the logic in this script we > could also include this periodic script in the package which would check > nightly as well. Perhaps we should collaborate on this together? I will > need to review your script in detail but at a glance it appears very > thorough. > > > Thanks! > > -- > Mark Felder > ports-secteam member > feld@FreeBSD.org > Just a thought, once we move to PkgBase, will this simply work work "pkg audit"? Are the new vuxml entries in the correct format to detect for individual base packages? E.g. FreeBSD-libxo, FreeBSD-libxo-debug, FreeBSD-libxo-development Are the new vuxml entries in a format that would support PkgBase for releases as well as for stable/current? E.g. FreeBSD-libxo-12.0_2, FreeBSD-libxo-12.0.s20160903042939 Regards, Ben
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAOc73CD9Hou73tHBwsLk4BC=f%2B1JhT_QixywPsJNccw4BrybJA>