Date: Sat, 10 Feb 2018 22:12:57 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 225780] www/caddy: missing documentation Message-ID: <bug-225780-13-d8z6JEBpDT@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-225780-13@https.bugs.freebsd.org/bugzilla/> References: <bug-225780-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D225780 Chris Hutchinson <portmaster@bsdforge.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|Rejected |--- Status|Closed |Open --- Comment #2 from Chris Hutchinson <portmaster@bsdforge.com> --- (In reply to Fabian Freyer from comment #1) > It's correct that it doesn't come with any manpage. It might be worth fil= ing > a bug upstream [1] for this. >=20 > However, there is a README, README.md in the git repository [2] (which the > port builds from) and there is documentation on the Homepage indicated in > pgk-descr. This is of no value when attempting to use the port after installation. >=20 > I'm not quite sure what the intent of this PR is. The summary indicates s= ome > supsicion as to whether the port may be malicious. I haven't performed a > full audit of the source code and don't know of one having taken place. > Therefore, while it's theoretically possible there may be some malicious > code involved, I haven't observed the port to do anything of the sort. The purpose, and choice of title for this pr(1) is/was to indicate that an administrator auditing a system finding a command, or application with no documentation of any kind. Should, and Does find the file to be suspect. Highly suspect, should the system not be working correctly, and be suspected of infection. This is just another reason as to why UNIX has always provided some form of documentation for the (executable) files present on the system. Why should/would www/caddy think that they should be an exception to that rule? Why would/should www/caddy believe that documentation for it is of so little value, that it shouldn't accompany it's product? This is simply bad policy, and I don't think it's in FreeBSD', or it's users best interest to accommodate such a policy. Allowing www/caddy to continue with it's current policy sets a bad precedence, and should not be permitted. >=20 > I'm closing this PR as there isn't much I can do about this. There is plenty you can do as a maintainer -- especially when you have given an indication that there is documentation online; you can simply add/include [at least] the Usage documentation. Does the README contain this? As such. I'm re-opening this pr(1). I hope you better understand now. :-) All the best. :-) --Chris > Feel free to > reopen if there is a manpage upstream to be included in the port or there > are some concrete other concerns. >=20 > [1] https://github.com/mholt/caddy/issues > [2] https://github.com/mholt/caddy --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-225780-13-d8z6JEBpDT>