From owner-freebsd-questions@freebsd.org  Mon Mar  1 18:33:03 2021
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6A3B75678BC
 for <freebsd-questions@mailman.nyi.freebsd.org>;
 Mon,  1 Mar 2021 18:33:03 +0000 (UTC)
 (envelope-from matthew@FreeBSD.org)
Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "smtp.freebsd.org", Issuer "R3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 4Dq85W2Hnwz3L7k;
 Mon,  1 Mar 2021 18:33:03 +0000 (UTC)
 (envelope-from matthew@FreeBSD.org)
Received: from smtp.infracaninophile.co.uk (smtp.infracaninophile.co.uk
 [IPv6:2001:8b0:151:1:c4ea:bd49:619b:6cb3])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.infracaninophile.co.uk", Issuer "R3" (verified OK))
 (Authenticated sender: matthew/mail)
 by smtp.freebsd.org (Postfix) with ESMTPSA id 1FDEE3549A;
 Mon,  1 Mar 2021 18:33:03 +0000 (UTC)
 (envelope-from matthew@FreeBSD.org)
Received: from liminal.local (unknown [IPv6:2001:8b0:151:1:ca8:272c:dd1a:8b91])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
 (No client certificate requested)
 (Authenticated sender: m.seaman@infracaninophile.co.uk)
 by smtp.infracaninophile.co.uk (Postfix) with ESMTPSA id 0A1C8F3E4;
 Mon,  1 Mar 2021 18:33:02 +0000 (UTC)
Authentication-Results: smtp.infracaninophile.co.uk;
 dmarc=none (p=none dis=none) header.from=FreeBSD.org
Authentication-Results: smtp.infracaninophile.co.uk/0A1C8F3E4; dkim=none;
 dkim-atps=neutral
To: freebsd@dreamchaser.org, Steve O'Hara-Smith <steve@sohara.org>,
 freebsd-questions@freebsd.org
References: <a99e82cc-da39-70e8-f3b1-7b250250876a@dreamchaser.org>
 <97db8511-c5e0-26cc-5e56-4dfa976d7d12@FreeBSD.org>
 <0935eab6-d458-2c3e-3f8a-a6879fe27363@FreeBSD.org>
 <efddda4a-d2a6-a1ab-9b7f-0a03b8cba1e8@dreamchaser.org>
 <20210301160552.454db2bec5975457026c57ba@sohara.org>
 <4a1160b1-a6a2-6bc1-cb37-476d89ef1ff3@dreamchaser.org>
From: Matthew Seaman <matthew@FreeBSD.org>
Subject: Re: installed ports library audit?
Message-ID: <c02f086e-314a-77cf-b360-0b0d8e0b9c69@FreeBSD.org>
Date: Mon, 1 Mar 2021 18:32:58 +0000
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.16; rv:78.0)
 Gecko/20100101 Thunderbird/78.8.0
MIME-Version: 1.0
In-Reply-To: <4a1160b1-a6a2-6bc1-cb37-476d89ef1ff3@dreamchaser.org>
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature";
 boundary="K5CkOchY7VbU099Y2qG9ieMEXN8j0UlfR"
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Mar 2021 18:33:03 -0000

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--K5CkOchY7VbU099Y2qG9ieMEXN8j0UlfR
Content-Type: multipart/mixed; boundary="foh59Zs8DvSSy0GpbxIeQZsfIrMtYin9b";
 protected-headers="v1"
From: Matthew Seaman <matthew@FreeBSD.org>
To: freebsd@dreamchaser.org, Steve O'Hara-Smith <steve@sohara.org>,
 freebsd-questions@freebsd.org
Message-ID: <c02f086e-314a-77cf-b360-0b0d8e0b9c69@FreeBSD.org>
Subject: Re: installed ports library audit?
References: <a99e82cc-da39-70e8-f3b1-7b250250876a@dreamchaser.org>
 <97db8511-c5e0-26cc-5e56-4dfa976d7d12@FreeBSD.org>
 <0935eab6-d458-2c3e-3f8a-a6879fe27363@FreeBSD.org>
 <efddda4a-d2a6-a1ab-9b7f-0a03b8cba1e8@dreamchaser.org>
 <20210301160552.454db2bec5975457026c57ba@sohara.org>
 <4a1160b1-a6a2-6bc1-cb37-476d89ef1ff3@dreamchaser.org>
In-Reply-To: <4a1160b1-a6a2-6bc1-cb37-476d89ef1ff3@dreamchaser.org>

--foh59Zs8DvSSy0GpbxIeQZsfIrMtYin9b
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-GB
Content-Transfer-Encoding: quoted-printable

On 01/03/2021 16:51, Gary Aitken wrote:

> For future disasters...
> If I needed to, is there a master easy to get at that I can diff agains=
t
> to see what the changes to things like /etc/passwd are?
> I could regenerate the .db files if I knew the source was ok, but to ch=
eck
> that I would need to be able to diff.

For /etc files, and if you use etcupdate(8), then there will be pristine =

copies of many files under /var/db/etcupdate/current or=20
/var/db/etcupdate/old

However, you'ld really only use etcupdate(8) if you were installing from =

source, so you'ld also have pristine copies hiding somewhere under /usr/s=
rc.

  	Cheers,

	Matthew






--foh59Zs8DvSSy0GpbxIeQZsfIrMtYin9b--

--K5CkOchY7VbU099Y2qG9ieMEXN8j0UlfR
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature"

-----BEGIN PGP SIGNATURE-----
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=chnz
-----END PGP SIGNATURE-----

--K5CkOchY7VbU099Y2qG9ieMEXN8j0UlfR--