Date: Wed, 26 Jan 2005 20:20:22 -0500 From: Andrew J Caines <A.J.Caines@halplant.com> To: ports@freebsd.org Subject: Re: FreeBSD Port: awstats-6.2 Message-ID: <20050127012022.GD18600@hal9000.halplant.com> In-Reply-To: <790a9fff05012608282ceb53b2@mail.gmail.com> References: <41F00880.2050506@covad.net> <41F71C20.4080002@covad.net> <790a9fff05012608282ceb53b2@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
FWIW, I think the original patch posted was lacking some changes in the pkg-plist which may or may not have been in the 6.2 update, when various bit moved around and the installed files changed. I've made another[1] for the 6.3 port[2]. This 6.3 port builds, installs, runs[3] and deinstalls cleanly. It doesn't specifically address any .jar install or other issues. The maintainer was alive a little while ago, when he reviewed my 6.2 patch and provided the update to ports/74788, which pav committed. People running 6.2 _are_ getting exploited, and given how so many webmasters don't know how to properly set up web servers to run as an unprivileged application user, with content owned by a different user without write access to the app user, this port really needs to be updated ASAP. [1] http://halplant.com:88/software/FreeBSD/ports/awstats-6.3.patch [2] http://halplant.com:88/software/FreeBSD/ports/awstats-6.2.tar [3] http://halplant.com:88/awstats/ -Andrew- -- _______________________________________________________________________ | -Andrew J. Caines- Unix Systems Engineer A.J.Caines@halplant.com | | "They that can give up essential liberty to obtain a little temporary | | safety deserve neither liberty nor safety" - Benjamin Franklin, 1759 |
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050127012022.GD18600>