From owner-freebsd-security Wed Aug 16 2:11:14 2000 Delivered-To: freebsd-security@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 567EB37C2BB; Wed, 16 Aug 2000 02:11:07 -0700 (PDT) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id CAA99368; Wed, 16 Aug 2000 02:03:33 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Wed, 16 Aug 2000 02:03:33 -0700 (PDT) From: Kris Kennaway To: Sheldon Hearn Cc: security@FreeBSD.ORG, ports@FreeBSD.ORG Subject: Re: Hilighting dangerous ports In-Reply-To: <15001.966414585@axl.ops.uunet.co.za> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 16 Aug 2000, Sheldon Hearn wrote: > > What does everyone think of the attached patch to bsd.port.mk, which > > hilights potentially insecure files installed by a port at install-time? > > I like the idea. It would be even more of an improvement over the > status quo if a solution for packages could be found. Many folks use > packages only and many more use packages mostly. :-) In principle it's a straightforward thing, since pkg_add also has the PLIST available - it's just slightly more difficult to write the equivalent in C than as a shell script. Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message