Date: Mon, 27 Jun 2005 22:40:01 +0100 From: Dick Davies <rasputnik@hellooperator.net> To: "Simon L. Nielsen" <simon@FreeBSD.org> Cc: FreeBSD Stable Users <freebsd-stable@freebsd.org> Subject: Re: marking ports as 'cleaned' in portaudit.conf ? Message-ID: <20050627214001.GA20492@eris.tenfour> In-Reply-To: <20050627195248.GE958@zaphod.nitro.dk> References: <20050624095836.GB1311@eris.tenfour> <20050627195248.GE958@zaphod.nitro.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
--oyUTqETQ0mS9luUI Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable * Simon L. Nielsen <simon@FreeBSD.org> [0652 20:52]: > On 2005.06.24 10:58:36 +0100, Dick Davies wrote: > > > > I just manually patched up my ruby18 install and tried to tell > > portaudit that the local port is now clean, but it doesn't want to > > know: > > > > root@eris rasputnik # portaudit > > Affected package: ruby-1.8.2_3 > > Type of problem: ruby -- arbitrary command execution on XMLRPC server. > > Reference: <http://www.FreeBSD.org/ports/portaudit/594eb447-e398-11d9-= a8bd-000cf18bbe54.html> > > > > ^C > > root@eris rasputnik # cat /usr/local/etc/portaudit.conf > > portaudit_fixed=3D"594eb447-e398-11d9-a8bd-000cf18bbe54" > > root@eris rasputnik # > > > > what did I miss? >=20 > It seems like portaudit_fixed only works for "system" entries, > ie. base system vulnerabilities and is ignored package entries. Oh, OK. I thought portaudit only audited, well, ports :) =20 > I think it would be useful to be able to suppress the certain package > vulnerabilities like you are trying to, but I don't think I will get > around to looking at implementing it any time soon. That's fine, I'll have another look at it when I get half an hour. =20 --=20 'INCREASE the life of your carpets by rolling them up and keeping them in t= he garage.' -- Top Tips Rasputin :: Jack of All Trades - Master of Nuns --oyUTqETQ0mS9luUI Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQFCwHIwVFnamZKfe00RArWDAJ9KSd6EEwoy+it/llmjt+7G8ZCUOQCeIZfy miCyVUrRYX0SanSfJ93FbU0= =tmke -----END PGP SIGNATURE----- --oyUTqETQ0mS9luUI--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050627214001.GA20492>