From owner-freebsd-stable@FreeBSD.ORG Mon Jun 27 21:40:08 2005 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9FB7016A420; Mon, 27 Jun 2005 21:40:08 +0000 (GMT) (envelope-from rasputnik@hellooperator.net) Received: from mta08-winn.ispmail.ntl.com (mta08-winn.ispmail.ntl.com [81.103.221.48]) by mx1.FreeBSD.org (Postfix) with ESMTP id C1C1843D48; Mon, 27 Jun 2005 21:40:07 +0000 (GMT) (envelope-from rasputnik@hellooperator.net) Received: from aamta10-winn.ispmail.ntl.com ([81.103.221.35]) by mta08-winn.ispmail.ntl.com with ESMTP id <20050627214006.OFJF889.mta08-winn.ispmail.ntl.com@aamta10-winn.ispmail.ntl.com>; Mon, 27 Jun 2005 22:40:06 +0100 Received: from 9.hellooperator.net ([82.31.78.41]) by aamta10-winn.ispmail.ntl.com with ESMTP id <20050627214006.GTGC23101.aamta10-winn.ispmail.ntl.com@9.hellooperator.net>; Mon, 27 Jun 2005 22:40:06 +0100 Received: from [10.4.0.5] (helo=eris.tenfour) by 9.hellooperator.net with esmtp (Exim 4.51) id 1Dn1Kj-0001yX-JG; Mon, 27 Jun 2005 22:40:03 +0100 Received: from rasputnik by eris.tenfour with local (Exim 4.51 (FreeBSD)) id 1Dn1Kj-0005NR-HF; Mon, 27 Jun 2005 22:40:01 +0100 Date: Mon, 27 Jun 2005 22:40:01 +0100 From: Dick Davies To: "Simon L. Nielsen" Message-ID: <20050627214001.GA20492@eris.tenfour> References: <20050624095836.GB1311@eris.tenfour> <20050627195248.GE958@zaphod.nitro.dk> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="oyUTqETQ0mS9luUI" Content-Disposition: inline In-Reply-To: <20050627195248.GE958@zaphod.nitro.dk> User-Agent: Mutt/1.4.2.1i Cc: FreeBSD Stable Users Subject: Re: marking ports as 'cleaned' in portaudit.conf ? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Dick Davies List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Jun 2005 21:40:08 -0000 --oyUTqETQ0mS9luUI Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable * Simon L. Nielsen [0652 20:52]: > On 2005.06.24 10:58:36 +0100, Dick Davies wrote: > > > > I just manually patched up my ruby18 install and tried to tell > > portaudit that the local port is now clean, but it doesn't want to > > know: > > > > root@eris rasputnik # portaudit > > Affected package: ruby-1.8.2_3 > > Type of problem: ruby -- arbitrary command execution on XMLRPC server. > > Reference: > > > > ^C > > root@eris rasputnik # cat /usr/local/etc/portaudit.conf > > portaudit_fixed=3D"594eb447-e398-11d9-a8bd-000cf18bbe54" > > root@eris rasputnik # > > > > what did I miss? >=20 > It seems like portaudit_fixed only works for "system" entries, > ie. base system vulnerabilities and is ignored package entries. Oh, OK. I thought portaudit only audited, well, ports :) =20 > I think it would be useful to be able to suppress the certain package > vulnerabilities like you are trying to, but I don't think I will get > around to looking at implementing it any time soon. That's fine, I'll have another look at it when I get half an hour. =20 --=20 'INCREASE the life of your carpets by rolling them up and keeping them in t= he garage.' -- Top Tips Rasputin :: Jack of All Trades - Master of Nuns --oyUTqETQ0mS9luUI Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQFCwHIwVFnamZKfe00RArWDAJ9KSd6EEwoy+it/llmjt+7G8ZCUOQCeIZfy miCyVUrRYX0SanSfJ93FbU0= =tmke -----END PGP SIGNATURE----- --oyUTqETQ0mS9luUI--