Date: Sat, 3 Apr 2004 11:05:58 -0600 From: "Jacques A. Vidrine" <nectar@FreeBSD.org> To: "Simon L. Nielsen" <simon@FreeBSD.org> Cc: cvs-doc@FreeBSD.org Subject: Re: cvs commit: doc/en_US.ISO8859-1/books/handbook/ports chapter.sgml Message-ID: <20040403170558.GA81162@madman.celabo.org> In-Reply-To: <20040403163003.GE870@zaphod.nitro.dk> References: <200404031621.i33GLXi0093774@repoman.freebsd.org> <20040403163003.GE870@zaphod.nitro.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Apr 03, 2004 at 06:30:04PM +0200, Simon L. Nielsen wrote: > On 2004.04.03 08:21:33 -0800, Marc Fonvieille wrote: > > blackend 2004/04/03 08:21:33 PST > > > > FreeBSD doc repository > > > > Modified files: > > en_US.ISO8859-1/books/handbook/ports chapter.sgml > > Log: > > Add some warnings: people should check http://vuxml.freebsd.org/ before > > installing any application. Thanks, Marc! > Isn't that a bit overkill? Ports that have security issues are marked > FORBIDDEN so users can't install them. If people want extra securirty > they can use portaudit which checks the vuxml databases automatically. > > I also think it would be very hard to check vuxml manually in many > cases, since ports can have a lot of dependencies, which might also > contain security problems. I haven't looked at the diff, but, it would probably be good to say more or less: Please check http://vuxml.freebsd.org/ for security issues, or you can use portaudit to automate the checking for you. Cheers, -- Jacques Vidrine / nectar@celabo.org / jvidrine@verio.net / nectar@freebsd.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040403170558.GA81162>