Date: Thu, 17 Aug 2000 11:03:13 -0500 (CDT) From: Alex Charalabidis <alex@wnm.net> To: Kris Kennaway <kris@FreeBSD.ORG> Cc: security@FreeBSD.ORG, ports@FreeBSD.ORG Subject: Re: Hilighting dangerous ports Message-ID: <Pine.BSF.4.21.0008171100540.59130-100000@earth.wnm.net> In-Reply-To: <Pine.BSF.4.21.0008161822250.14500-100000@achilles.silby.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 16 Aug 2000, Mike Silbersack wrote:
>
> On Wed, 16 Aug 2000, Kris Kennaway wrote:
>
> > What does everyone think of the attached patch to bsd.port.mk, which
> > hilights potentially insecure files installed by a port at install-time?
> >
> > It does a find(1) over the packing list of the port looking for
> > setuid/setgid files, as well as checking for startup scripts installed in
> > ${PREFIX}/etc/rc.d which usually indicates a network daemon (Thanks to
> > Brian Feldman for the latter idea).
> >
> > If the port includes a WWW site, the user is directed there for contact
> > information so they can talk to the software developers about the security
> > of the port, if they have doubts (i.e. so they don't bother us) (Thanks to
> > Peter Wemm for this idea)
>
I like the idea. Something similar to indicate which ports have been
audited would also be useful.
-ac
--
==============================================================
Alex Charalabidis (AC8139) 5050 Poplar Ave, Ste 170
Systems Administrator Memphis, TN 38157
WebNet Memphis (901) 432 6000
Author, The Book of IRC http://www.bookofirc.com/
==============================================================
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0008171100540.59130-100000>