From owner-freebsd-ports Wed Aug 16 16:25:27 2000 Delivered-To: freebsd-ports@freebsd.org Received: from silby.com (cb34181-a.mdsn1.wi.home.com [24.14.173.39]) by hub.freebsd.org (Postfix) with ESMTP id 101BD37B5E4 for ; Wed, 16 Aug 2000 16:25:18 -0700 (PDT) (envelope-from silby@silby.com) Received: (qmail 14535 invoked by uid 1000); 16 Aug 2000 23:25:16 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 16 Aug 2000 23:25:16 -0000 Date: Wed, 16 Aug 2000 18:25:16 -0500 (CDT) From: Mike Silbersack To: Kris Kennaway Cc: security@freebsd.org, ports@freebsd.org Subject: Re: Hilighting dangerous ports In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 16 Aug 2000, Kris Kennaway wrote: > What does everyone think of the attached patch to bsd.port.mk, which > hilights potentially insecure files installed by a port at install-time? > > It does a find(1) over the packing list of the port looking for > setuid/setgid files, as well as checking for startup scripts installed in > ${PREFIX}/etc/rc.d which usually indicates a network daemon (Thanks to > Brian Feldman for the latter idea). > > If the port includes a WWW site, the user is directed there for contact > information so they can talk to the software developers about the security > of the port, if they have doubts (i.e. so they don't bother us) (Thanks to > Peter Wemm for this idea) Any way this could be mailed to root as well, or incorporated into that day's security log? I find when I'm installing ports, I tend to zoom by all the messages. However, if the info was (in addition) mailed to me, I'd be more likely to pay attention. I can see the mail to root being useful on boxes with multiple admins as well. Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message