View Single Post
  #2   (View Single Post)  
Old 3rd May 2009
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 3,318
Default

Quote:
Originally Posted by TheNoob View Post
On freebsd, I use portaudit to check my ports vulnerabilities.
On OpenBSD ,I saw there is a VUXML for OpenBSD too (http://www.vuxml.org/openbsd/index.html)
The latest entries on that page come from 2006, so I would be wary of how conscientiously this application is being maintained.

As for portaudit, there aren't even any references found in the ports@ mailing list.

Your questions are valid, however Mark Espie has put a lot of work into improving the infrastructure of OpenBSD's ports/package system, so I would be hesitant about making any generalized assumptions about similarities with FreeBSD's ports system.

With respect to security concerns over third-party applications, I would say that keeping OpenBSD up-to-date is a good first step in making your goal.
Reply With Quote