From owner-freebsd-ports@FreeBSD.ORG Sun Jun 22 22:33:13 2014 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 11BB624C for ; Sun, 22 Jun 2014 22:33:13 +0000 (UTC) Received: from mail-wi0-x22f.google.com (mail-wi0-x22f.google.com [IPv6:2a00:1450:400c:c05::22f]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 9ADD02CB8 for ; Sun, 22 Jun 2014 22:33:12 +0000 (UTC) Received: by mail-wi0-f175.google.com with SMTP id r20so3186711wiv.14 for ; Sun, 22 Jun 2014 15:33:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=fQI4gizDOBU2twowXV4weyhzYNtGn4inugT4/Adjukc=; b=W5XerrPHdRW5ny5MYvISAm/4AJbjldO20LMYHvAw/k9Z2lEtkA8YBzJCFl7nL0+BtW dc8w9/sH7/voPrYKtkKM5MN3b3rFNQlKPFzskt0YX1JiTVTT+GZkGj0RO8anUfpcIHwb 11MDLmZmfBcOs7/EKAOwH1MvKdbhLQ0/tr3uOCD/J/JeEq9gEK2+oglhz6gS+1c4lIA6 zc+gmaUiI+LuPMlcPnwjOyyb85K/MHI89902nfdG4JjFNYdKM2jObRTTCb74stMvaE6f PV34eMEtWBsWJHCqfvMCliY8SxPsI91uD48aeCz/gyAdsGhyUpsWtyHe2hOUS6wIOXH+ xfJg== X-Received: by 10.180.38.10 with SMTP id c10mr11104604wik.59.1403476390878; Sun, 22 Jun 2014 15:33:10 -0700 (PDT) Received: from ivaldir.etoilebsd.net ([2001:41d0:8:db4c::1]) by mx.google.com with ESMTPSA id fc7sm31979016wjc.37.2014.06.22.15.33.09 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 22 Jun 2014 15:33:10 -0700 (PDT) Sender: Baptiste Daroussin Date: Mon, 23 Jun 2014 00:33:08 +0200 From: Baptiste Daroussin To: Dewayne Geraghty Subject: Re: Ports tree insecure because of IGNOREFILES+IGNORE Message-ID: <20140622223307.GK23976@ivaldir.etoilebsd.net> References: <53A6D7B4.2080601@heuristicsystems.com.au> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="BOhpupldhMlYbdva" Content-Disposition: inline In-Reply-To: <53A6D7B4.2080601@heuristicsystems.com.au> User-Agent: Mutt/1.5.23 (2014-03-12) Cc: philj@openmailbox.org, freebsd-ports@freebsd.org X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Jun 2014 22:33:13 -0000 --BOhpupldhMlYbdva Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Sun, Jun 22, 2014 at 11:18:44PM +1000, Dewayne Geraghty wrote: > Good catch philj, I wasn't aware of this "feature". I'm grepping the > ports that I use as I type my appreciation. Though this makes me wonder > about the efficacy of having a sha signature for the package manifest... > Regards, Dewayne. All the said port has been marked as broken, the "feature" removal is pending for reviews Thanks for the heads up, I wasn't aware of this "feature" regards, Bapt --BOhpupldhMlYbdva Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlOnWaMACgkQ8kTtMUmk6EyjSACfaWUVnUwzp+wSKB1psT3yPzQE sxoAoITdCMv+b1yAA8GqGs7urHu45w99 =F+Ga -----END PGP SIGNATURE----- --BOhpupldhMlYbdva--