From owner-freebsd-ports@FreeBSD.ORG Tue Jul 15 12:45:21 2014 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 6B093C0 for ; Tue, 15 Jul 2014 12:45:21 +0000 (UTC) Received: from mail-oa0-x229.google.com (mail-oa0-x229.google.com [IPv6:2607:f8b0:4003:c02::229]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 367882278 for ; Tue, 15 Jul 2014 12:45:21 +0000 (UTC) Received: by mail-oa0-f41.google.com with SMTP id j17so3012411oag.28 for ; Tue, 15 Jul 2014 05:45:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:date:message-id:subject:from:to:content-type; bh=kOwG0b2I6L5gnFI042CdXygDAAgFJQsYKNDKi4N7bV4=; b=ApZ7N3DciZmQcSFURRCUx+68bmbJTrsdwx7JicRKeHmN9jq+4sNoERt0Jy0MsvWYCw LKEd44BKLhoPYujfd/QmWWI/J0s6+oSpqy/gqvWOKZWy1N5n0Bo5HlPRmrMrGDNfGFlh iSkoXQhzdsqMl4zxB/R5W0OlEPsnhS4LJJ4ul82BczUQN9PMJLi61Fjh7NVi0yUJU/Jf XZt4VJUodATAGcv53AoSRssw4lBrd6xFTXMw/0FDCfpd50thXBjjmB9SnvwfIjUu9AWj eUfbHPshz45CvLdw/LvPuNdgr/qenkoC80EMEPWBpzokWlsnt//YeLL6FqX9yXS1eqs9 TOEw== MIME-Version: 1.0 X-Received: by 10.60.73.129 with SMTP id l1mr26132827oev.2.1405428319420; Tue, 15 Jul 2014 05:45:19 -0700 (PDT) Sender: r.c.ladan@gmail.com Received: by 10.182.146.5 with HTTP; Tue, 15 Jul 2014 05:45:19 -0700 (PDT) Date: Tue, 15 Jul 2014 14:45:19 +0200 X-Google-Sender-Auth: YtmQD0T3S-HrbOmHyZAtRcopnNc Message-ID: Subject: marking vulnerable ports forbidden? From: =?UTF-8?Q?Ren=C3=A9_Ladan?= To: "ports@freebsd.org Ports" Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Jul 2014 12:45:21 -0000 Hi, according to Freshports [1] there are currently 24 vulnerable ports not marked as forbidden. How about checking this list on a regular basis and marking such ports and forbidden and optionally as deprecated? This would inform users not using vuxml earlier about vulnerabilities. [1] http://www.freshports.org/ports-vulnerable.php Regards, Ren=C3=A9