From owner-freebsd-ports Wed Sep 20 15:59: 7 2000 Delivered-To: freebsd-ports@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 3FD4F37B50F for ; Wed, 20 Sep 2000 15:59:04 -0700 (PDT) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id PAA60254 for ; Wed, 20 Sep 2000 15:59:04 -0700 (PDT) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Wed, 20 Sep 2000 15:59:04 -0700 (PDT) From: Kris Kennaway To: ports@freebsd.org Subject: Package Vulnerability scanner (CVS commit: pkgsrc (fwd)) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Anyone care to adapt this for FreeBSD? I don't have time right now. Kris -- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe ---------- Forwarded message ---------- Date: Tue, 19 Sep 2000 22:23:17 +0300 (EEST) From: Alistair G. Crooks To: source-changes@netbsd.org Subject: CVS commit: pkgsrc Module Name: pkgsrc Committed By: agc Date: Tue Sep 19 19:23:17 UTC 2000 Update of /cvsroot/pkgsrc/security/audit-packages In directory netbsd.hut.fi:/tmp/cvs-serv6663 Log Message: Initial import of a package to scan a vulnerability list, looking for installed packages which are insecure and open to exploitation. The original idea came from Roland Dowdeswell and Bill Sommerfeld, quite independently, the unorthodox implementation by me. This package contains two scripts: (1) download-vulnerability-list, which downloads a list of vulnerable packages from the NetBSD ftp server, and (2) audit-packages, which scans all the packages installed on the local machine, looking for packages which are vulnerable. Status: Vendor Tag: TNF Release Tags: pkgsrc-base N pkgsrc/security/audit-packages/Makefile N pkgsrc/security/audit-packages/files/download-vulnerability-list N pkgsrc/security/audit-packages/files/audit-packages N pkgsrc/security/audit-packages/pkg/COMMENT N pkgsrc/security/audit-packages/pkg/DESCR N pkgsrc/security/audit-packages/pkg/PLIST No conflicts created by this import To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message