View Single Post
  #5   (View Single Post)  
Old 7th May 2008
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Tcpdump Spy
 
Join Date: Apr 2008
Location: Netherlands
Posts: 2,243
Default

Well, you should see if the issues affect you, and uprade as neccesary.

The "Vulnerability database out of date" should be gone now, portaudit is now run on every port installation to make sure you're not installing ports with know security issues.

portaudit also added /usr/local/etc/periodic/security/410.portaudit
This script automatically updates the portaudit database and checks all ports for known vulnerabilities when periodic daily is run (usually from cron, it's in /etc/crontab by default).

To enable it add:
Code:
daily_status_security_portaudit_enable="YES"
to /etc/periodic.conf

See periodic(8) and periodic.conf(5), and portaudit(1) for more information.
__________________
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote