From owner-freebsd-questions@FreeBSD.ORG Tue Dec 20 06:24:33 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 642BC16A41F for ; Tue, 20 Dec 2005 06:24:33 +0000 (GMT) (envelope-from rihad@mail.ru) Received: from mx6.mail.ru (mx6.mail.ru [194.67.23.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id B359343D62 for ; Tue, 20 Dec 2005 06:24:32 +0000 (GMT) (envelope-from rihad@mail.ru) Received: from [62.212.229.11] (port=14971 helo=[62.212.229.11]) by mx6.mail.ru with esmtp id 1EoavG-000EmW-00 for freebsd-questions@freebsd.org; Tue, 20 Dec 2005 09:24:30 +0300 Message-ID: <43A7A39D.7000305@mail.ru> Date: Tue, 20 Dec 2005 10:24:29 +0400 From: rihad User-Agent: Debian Thunderbird 1.0.2 (X11/20051002) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: ports security branch X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Dec 2005 06:24:33 -0000 Is there a security branch for the FreeBSD ports collection? Let's say, I installed FreeBSD 6.0 together with all needed -RELEASE ports/packages (i.e., those on the CD). Running security/portaudit after a while reveals that some of the installed packages have vulnerabilities. Am I on my own to go grab the fresh ports tree, and upgrade the affected software, suffering all the intricacies of the move by myself? Debian GNU/Linux has its security package updates, OpenBSD has a separately maintained "errata" ports branch (it's very likely you still get to download a newer release of the software, though). Sorry if this is a bit OT. I've already asked this on freebsd-questions@ but they told me there's no such thing at all.