FreeBSD Mail Archives

Date:      Fri, 19 Nov 2021 09:47:44 +0100
From:      Baptiste Daroussin <bapt@FreeBSD.org>
To:        Andriy Gapon <avg@FreeBSD.org>
Cc:        FreeBSD Ports <ports@FreeBSD.org>
Subject:   Re: pkg audit: security problems only
Message-ID:  <20211119084744.irhskceo7c5p5iah@aniel.nours.eu>
In-Reply-To: <34ea8551-b2a0-2b72-6217-56e6c0228ed4@FreeBSD.org>
References:  <34ea8551-b2a0-2b72-6217-56e6c0228ed4@FreeBSD.org>

On Fri, Nov 19, 2021 at 10:31:37AM +0200, Andriy Gapon wrote:
> 
> Is there an option to limit pkg audit to report security problems only?
> 
> Right now the corresponding periodic script reports a lot of (what I
> consider to be) noise every night.  It's about deprecated packages, mostly
> depending on python 2.7.  And I consider those reports to be noise because
> 90% of reported packages are not actually going to be removed (e.g., kmail,
> korganizer, etc).
> 
> So, I would like to be getting a security focused report useful for end users.
> Is that possible?
> Thank you!
> 

>From the periodic script here are all the parameters:

: ${security_status_pkgaudit_enable:=YES}
: ${security_status_pkgaudit_period:=daily}
: ${security_status_pkgaudit_quiet:=YES}
: ${security_status_pkgaudit_chroots=$pkg_chroots}
: ${security_status_pkgaudit_jails=$pkg_jails}
: ${security_status_pkgaudit_jails_ignore+=""}
: ${security_status_pkgaudit_expiry:=2}
: ${security_status_pkgaudit_expiration:=YES}
: ${security_status_pkgaudit_deprecation:=YES}

Best regards,
Bapt

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20211119084744.irhskceo7c5p5iah>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation