From owner-freebsd-doc@freebsd.org Mon Mar 21 17:27:09 2016 Return-Path: Delivered-To: freebsd-doc@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 481ACAD7B69 for ; Mon, 21 Mar 2016 17:27:09 +0000 (UTC) (envelope-from mheitm@gmail.com) Received: from mail-wm0-x22e.google.com (mail-wm0-x22e.google.com [IPv6:2a00:1450:400c:c09::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D9B6B1C1 for ; Mon, 21 Mar 2016 17:27:08 +0000 (UTC) (envelope-from mheitm@gmail.com) Received: by mail-wm0-x22e.google.com with SMTP id l68so130984064wml.1 for ; Mon, 21 Mar 2016 10:27:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to; bh=RGgBt+KhgtnUgHWX6Q3L1rjP3MHGtLIU/CtUstMju5I=; b=XDLRf3zj8XmOeRPpVCIsPLOzOBDBG9wIT2lwG4cJEXz0TXqg8jI1DxoZCwWcehW//R uc0j3yyqwGgU52oo/xSBMW3y0ccf5quj2iHDuSAv0NxdN3r59ka+3Co32bAT7aL5I9Yi WrllnqL3c6i4OeZbH92sZPCjmzWNFWL6ek35hMCaa1u7DJslXfITcodWpjIIL56mzgIr EbBYSb03QW+oG/LVY+782z41pZDllHJIUbxSemLJOj0yWhFj6ZAmn5p/NdkENSZ/O4xU 3wswmdlBVX2zeUzLUTvlqq/0cuklslsY65sbVSSW4Lvm9nS2Us6NVIm6MGEnZEDmQxcn dn7Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:date:message-id:subject:from:to; bh=RGgBt+KhgtnUgHWX6Q3L1rjP3MHGtLIU/CtUstMju5I=; b=C6zxwWtUX7qSzSysh4rQpxrrbyq6xBqZ5/Z2FmRwJlEGyRnjkXkq2V63ieEkG7bwoa HYlnY4mRyEAD0hJTtIE/Ly8CkfEDJIHn5W3nl5P7X3okWSrgm+z01zrah5DxEvxvBPLT 58KrDSOpNhsLHqcDk5sxX/5Ao++q62BZs1gQalUakmrv0zkewTsKui78GuxT4o7O+kcX A5VKrOBBO/wfIU8AAYAY4z2PXxiP/Tlsorie2NWtIMgO1fQI0cLpNjYD1nb4sf2wB0Zz FxwwKOdwdLY3nv+G7L3OG6g7TENRJ+2FDKGBPy9OMudryib5X+YzdJk8Bvas+xrVuOvh ZI3A== X-Gm-Message-State: AD7BkJJiSAOyhUWoV15xSP9dBBU88MF2R3gONXlBvDHa4ydCL/5LIq6HqAWBk26gd1odyeZYGIzO+lZjaWcB8w== MIME-Version: 1.0 X-Received: by 10.28.145.196 with SMTP id t187mr14594725wmd.81.1458581226644; Mon, 21 Mar 2016 10:27:06 -0700 (PDT) Received: by 10.194.14.105 with HTTP; Mon, 21 Mar 2016 10:27:06 -0700 (PDT) Date: Mon, 21 Mar 2016 18:27:06 +0100 Message-ID: Subject: https://www.freebsd.org/doc/handbook/pkgng-intro.html From: Michael Heitmeier To: freebsd-doc@FreeBSD.org X-Mailman-Approved-At: Mon, 21 Mar 2016 17:51:19 +0000 Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.21 X-BeenThere: freebsd-doc@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: Documentation project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Mar 2016 17:27:09 -0000 Hello, May I humbly suggest that the mere mention in the handbook of pkg audit -F is not sufficient without some instruction how security-minded users might want to proceed to mitigate any issues that are found? Right now the following packages are found wanting on my system: handbrake-0.10.2_2 pcre-8.37_4 tidy4-20000804_3 and yet pkg upgrade upgrades none of them, so that cannot be the answer and even this simple one should be in the handbook as the first line of defense, as obvious as it may be to more experienced folks. Thank you for your attention and for making the handbook ever better! Michael