From owner-freebsd-ports@FreeBSD.ORG  Tue Jul 15 12:48:25 2014
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: ports@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id A449E260;
 Tue, 15 Jul 2014 12:48:25 +0000 (UTC)
Received: from mail-wi0-x233.google.com (mail-wi0-x233.google.com
 [IPv6:2a00:1450:400c:c05::233])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 1600B229D;
 Tue, 15 Jul 2014 12:48:24 +0000 (UTC)
Received: by mail-wi0-f179.google.com with SMTP id f8so3302280wiw.6
 for <multiple recipients>; Tue, 15 Jul 2014 05:48:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=sender:date:from:to:cc:subject:message-id:references:mime-version
 :content-type:content-disposition:in-reply-to:user-agent;
 bh=IuCYKR6SMCeY4Lh5amYxmHQlbjVWp8+mmIdtCGLRNKk=;
 b=AFyIZUCg14AGIokAt6FUfUhMSvHfABtjyFIwrFKNoswaz0Aiz5VxkXL95NrW0edNgm
 JdFiPuoDc9d3piu377AbYKNDeG2ELhARDxX4UjX7zUKtFBboVvtAqbRXoJQltJZqtIo7
 tF/10iPNc8Aos3V5HLNTWdspEBWWfkGFRvuFCvzwJr/MMexqsA+9KpTOG/k0qvI+zDAs
 HDazJJsa+ERXP11+6SAcnv7IytcVX+cMpu+qdntN4Od9On/AER9Jl1ZcMW6aAH22Gynv
 /TEEf4tjzYVYH9KBC5UO1kam2XjniQw53XGHzLAtGf4HqG8lyDg0DgJbrrI/k2bjVjQo
 aLRg==
X-Received: by 10.180.72.43 with SMTP id a11mr5433848wiv.21.1405428503435;
 Tue, 15 Jul 2014 05:48:23 -0700 (PDT)
Received: from ivaldir.etoilebsd.net ([2001:41d0:8:db4c::1])
 by mx.google.com with ESMTPSA id q11sm43452117wib.14.2014.07.15.05.48.21
 for <multiple recipients>
 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Tue, 15 Jul 2014 05:48:22 -0700 (PDT)
Sender: Baptiste Daroussin <baptiste.daroussin@gmail.com>
Date: Tue, 15 Jul 2014 14:48:20 +0200
From: Baptiste Daroussin <bapt@FreeBSD.org>
To: =?iso-8859-1?Q?Ren=E9?= Ladan <rene@freebsd.org>
Subject: Re: marking vulnerable ports forbidden?
Message-ID: <20140715124819.GU93051@ivaldir.etoilebsd.net>
References: <CADL2u4gw7VSvuYwk_N26QnrOCyBd71=-R9U225372vYPEVz=Bw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
 protocol="application/pgp-signature"; boundary="3pZQ0wszfDg7ZRO+"
Content-Disposition: inline
In-Reply-To: <CADL2u4gw7VSvuYwk_N26QnrOCyBd71=-R9U225372vYPEVz=Bw@mail.gmail.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Cc: "ports@freebsd.org Ports" <ports@freebsd.org>
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jul 2014 12:48:25 -0000


--3pZQ0wszfDg7ZRO+
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Tue, Jul 15, 2014 at 02:45:19PM +0200, Ren=E9 Ladan wrote:
> Hi,
>=20
> according to Freshports [1] there are currently 24 vulnerable ports not
> marked as forbidden.
> How about checking this list on a regular basis and marking such ports and
> forbidden and optionally as deprecated? This would inform users not using
> vuxml earlier about vulnerabilities.
>=20
> [1] http://www.freshports.org/ports-vulnerable.php

Please mark them as forbidden

regards,
Bapt

--3pZQ0wszfDg7ZRO+
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iEYEARECAAYFAlPFIxMACgkQ8kTtMUmk6EyksQCfWCmCQl5UT0fKolK+80SQRDRF
bkgAoKxQldtw/IrjmWuQBQQIwLjT9GJP
=A4CX
-----END PGP SIGNATURE-----

--3pZQ0wszfDg7ZRO+--