From owner-freebsd-questions@FreeBSD.ORG Sat May 21 19:49:47 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BE9E216A4CE for ; Sat, 21 May 2005 19:49:47 +0000 (GMT) Received: from royk.itea.ntnu.no (royk.itea.ntnu.no [129.241.190.230]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6166043D1D for ; Sat, 21 May 2005 19:49:47 +0000 (GMT) (envelope-from svein-freebsd-questions@theloosingend.net) Received: from localhost (localhost [127.0.0.1]) by royk.itea.ntnu.no (Postfix) with ESMTP id 08AD96700E for ; Sat, 21 May 2005 21:49:46 +0200 (CEST) Received: from maren.thelosingend.net (maren.math.ntnu.no [129.241.211.48]) by royk.itea.ntnu.no (Postfix) with SMTP for ; Sat, 21 May 2005 21:49:45 +0200 (CEST) Received: (qmail 26385 invoked by uid 1001); 21 May 2005 21:49:45 +0200 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 21 May 2005 21:49:45 +0200 Date: Sat, 21 May 2005 21:49:45 +0200 (CEST) From: Svein Halvor Halvorsen X-X-Sender: sveinhal@maren.thelosingend.net To: Robert S In-Reply-To: <7093dffb05052106296c487773@mail.gmail.com> Message-ID: <20050521214539.B26364@maren.thelosingend.net> References: <7093dffb05052106296c487773@mail.gmail.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Content-Scanned: with sophos and spamassassin at mailgw.ntnu.no. cc: freebsd-questions@freebsd.org Subject: Re: portaudit: recommended packages can't be installed X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 21 May 2005 19:49:47 -0000 * Robert S [2005-05-21 13:29 -0000] > Are fixes not necessarily made available when security vulnerabilities > are found? No, fixes are not *necessarily* made available, although the most often are. As Kent pointed out, your specific problem should long be fixed. See the thread about portaudit and wget from just the other day, and you will realize that fixes are not necessarily being commited once a security flaw has been found. > Also -- is there a similar utility to portaudit and freebsd-update, > that can be used on the base operating system (not through ports)? Portaudit will report security issues with the base system as well, based on the kern.osreldate sysctl.