From owner-freebsd-security@FreeBSD.ORG Sun May 16 07:12:22 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CA4AF16A5B0 for ; Sun, 16 May 2004 07:12:22 -0700 (PDT) Received: from web61310.mail.yahoo.com (web61310.mail.yahoo.com [216.155.196.153]) by mx1.FreeBSD.org (Postfix) with SMTP id 2247343D49 for ; Sun, 16 May 2004 07:12:22 -0700 (PDT) (envelope-from richard_bejtlich@yahoo.com) Message-ID: <20040516141221.68945.qmail@web61310.mail.yahoo.com> Received: from [68.50.168.243] by web61310.mail.yahoo.com via HTTP; Sun, 16 May 2004 07:12:21 PDT Date: Sun, 16 May 2004 07:12:21 -0700 (PDT) From: Richard Bejtlich To: freebsd-security@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: Way to ignore portaudit results? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 May 2004 14:12:22 -0000 Hello, The mysql40-client port currently reports a security problem when I try to install it: neely:/usr/ports/databases/mysql40-client$ make ===> mysql-client-4.0.18_1 has known vulnerabilities: >> MySQL insecure temporary file creation (mysqlbug). Reference: >> Please update your ports tree and try again. This is a minor problem affecting only the 'mysqlbug' script, not core mysql client functionality. We may not see a fix in the MySQL distribution until 4.0.19. Is there a way to force installation of a port, even though portaudit reports a security problem? Thank you, Richard http://www.taosecurity.com __________________________________ Do you Yahoo!? SBC Yahoo! - Internet access at a great low price. http://promo.yahoo.com/sbc/