From owner-freebsd-security Wed Sep 20 17:18:17 2000 Delivered-To: freebsd-security@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id D98E337B422; Wed, 20 Sep 2000 17:18:13 -0700 (PDT) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id RAA74892; Wed, 20 Sep 2000 17:18:13 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Wed, 20 Sep 2000 17:18:13 -0700 (PDT) From: Kris Kennaway To: Will Andrews Cc: James Housley , ports@FreeBSD.ORG, security@FreeBSD.org Subject: Re: Package Vulnerability scanner (CVS commit: pkgsrc (fwd)) In-Reply-To: <20000920184458.S35550@radon.gryphonsoft.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 20 Sep 2000, Will Andrews wrote: > On Wed, Sep 20, 2000 at 07:37:42PM -0400, James Housley wrote: > > Unless I hear someone has started I will take a crack at this. > > Beat you to it. I already submitted one to Kris. The real difficulty here is developing the list of vulnerable packages - in order for it to be useful, we should at least cover the advisories released this year. NetBSD also integrated it into their bsd.pkg.mk somehow - I didn't check what they did. Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message