From owner-freebsd-questions@FreeBSD.ORG  Thu Jul 28 14:45:34 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id CF07E16A41F;
	Thu, 28 Jul 2005 14:45:34 +0000 (GMT)
	(envelope-from wblock@wonkity.com)
Received: from wonkity.com (wonkity.com [67.158.26.137])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 5EEB543D45;
	Thu, 28 Jul 2005 14:45:34 +0000 (GMT)
	(envelope-from wblock@wonkity.com)
Received: from wonkity.com (localhost [127.0.0.1])
	by wonkity.com (8.13.3/8.13.3) with ESMTP id j6SEjXI5033257;
	Thu, 28 Jul 2005 08:45:33 -0600 (MDT)
	(envelope-from wblock@wonkity.com)
Received: from localhost (wblock@localhost)
	by wonkity.com (8.13.3/8.13.3/Submit) with ESMTP id j6SEjX3m033254;
	Thu, 28 Jul 2005 08:45:33 -0600 (MDT)
	(envelope-from wblock@wonkity.com)
Date: Thu, 28 Jul 2005 08:45:33 -0600 (MDT)
From: Warren Block <wblock@wonkity.com>
To: Viren Patel <virenp@mail.utexas.edu>
In-Reply-To: <37675.146.6.178.5.1122498494.squirrel@mail.cm.utexas.edu>
Message-ID: <20050728084428.J56124@wonkity.com>
References: <37675.146.6.178.5.1122498494.squirrel@mail.cm.utexas.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0
	(wonkity.com [127.0.0.1]); Thu, 28 Jul 2005 08:45:33 -0600 (MDT)
Cc: freebsd-questions@freebsd.org, freebsd-ports@freebsd.org
Subject: Re: apache13-modssl-1.3.33+2.8.22_1 port broken??
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2005 14:45:35 -0000

On Wed, 27 Jul 2005, Viren Patel wrote:

> I am trying to install apache+mod_ssl-1.3.33+2.8.22_1 and
> get the following:
>
> #make
> ===>  apache+mod_ssl-1.3.33+2.8.22_1 has known
> vulnerabilities:
> => apache -- http request smuggling.
>   Reference:
> <http://www.FreeBSD.org/ports/portaudit/651996e0-fe07-11d9-8329-000e0c2e438a.html>
> => Please update your ports tree and try again.
> *** Error code 1
>
> Stop in /usr/ports/www/apache13-modssl.
>
> I have updated the ports tree and the files directory
> contains the patch for this vulnerability
> (patch-secfix-CAN-2005-2088).
>
> I need to install this port urgently. What am I doing
> wrong?? If the vulnerability has not been fixed, how can I
> force install? TIA.

# make -DDISABLE_VULNERABILITIES

will override portaudit.

-Warren Block * Rapid City, South Dakota USA