Default security checks for pkgsrc

Jan Lentfer Jan.Lentfer at web.de
Sat Jan 23 12:28:43 PST 2010


Justin C. Sherrill schrieb:
/etc/daily and /etc/security in NetBSD now update and check against known
pkgsrc vulnerabilities if there's any packages installed on the system.
http://blog.netbsd.org/tnf/entry/new_package_security_checks

This would be a good idea for DragonFly too - anyone want to tackle it? 
This is probably within my meager skills but not within my meager time
budget.

The diffs, to make it easier:

http://cvsweb.netbsd.org/bsdweb.cgi/src/etc/daily.diff?r1=1.72&r2=1.73&only_with_tag=MAIN&f=h

http://cvsweb.netbsd.org/bsdweb.cgi/src/etc/security.diff?r1=1.106&r2=1.107&only_with_tag=MAIN&f=h



Here is a patch that should incorporate this into daily security mails. 
As this is my first work on periodic/security stuff I'd rather not 
commit it right away but ask for review here.

Jan
Attachment:
pkgsrc_audit.patch
-------------- next part --------------
A non-text attachment was scrubbed...
Name: bin00000.bin
Type: application/octet-stream
Size: 3447 bytes
Desc: "Description: Binary data"
URL: <http://lists.dragonflybsd.org/pipermail/kernel/attachments/20100123/b9178e02/attachment-0016.bin>


More information about the Kernel mailing list