Populate a new ports-mgmt category. List of moved ports:

  devel/portcheckout -> ports-mgmt/portcheckout
  devel/portlint -> ports-mgmt/portlint
  devel/portmk -> ports-mgmt/portmk
  devel/porttools -> ports-mgmt/porttools
  misc/instant-tinderbox -> ports-mgmt/instant-tinderbox
  misc/porteasy -> ports-mgmt/porteasy
  misc/portell -> ports-mgmt/portell
  misc/portless -> ports-mgmt/portless
  misc/tinderbox -> ports-mgmt/tinderbox
  security/jailaudit -> ports-mgmt/jailaudit
  security/portaudit -> ports-mgmt/portaudit
  security/portaudit-db -> ports-mgmt/portaudit-db
  security/vulnerability-test-port -> ports-mgmt/vulnerability-test-port

Avoid unnecessary invocations of pkg_info by checking whether the
package is installed or not using a precalculated regex.

This speeds up "portaudit -a" with around a factor of 10.

The change is slightly modified from the one from the PR by using
pkg_info -aE instead of ls /var/db/pkg for determining installed
packages.

Submitted by:   Kuang-che Wu <kcwu@csie.org>
PR:             ports/92942

Replace ugly "@unexec rmdir %D... 2>/dev/null || true" with @dirrmtry

Approved by:    krion@
PR:             ports/88711 (related)

Change MAINTAINER address for ports maintained by the Security Team to
secteam@ instead of security@ to make it more clear that the ports are
not maintained by the freebsd-security@ mailing list.  Both addresses
go to the same people.

portaudit 0.5.10:

- Unbreak portaudit -vF.
- Sync usage with reality.
- Document the q, v, and V options.
- Markup fixes for the portaudit(1) manual page.
- Make quiet mode output even less "redundant" text [1].
- Set maintainership to security@. [2]

Suggested by:   Phil Kernick philk at rotfl dot com dot au [1]
Suggested by:   nectar, remko [2]

Grab maintainer-ship of portaudit.  While I do not currently have any
plans for improvements (though I have ideas) I feel that portaudit is
too important to not have an active maintainer.

Approved by:    portmgr (linimon)

Typo-fix in a comment

Approved by:    portmgr (krion)

- update to version 0.5.9
  (first attempts to check the base system for vulnerabilities)

fix "too many open files" error when using the -r flag

Noted by:       nectar

Don't check the base system when PACKAGE_BUILDING

Remove -a from the default fetch(1) flags, so that the daily security
report is not delayed when the distribution site is down.

Submitted by:   kuriyama

fix man page nits,
modify the vulnerability report depending on -q/-v (experimental)

PR:             69935, 68942
Submitted by:   Chris Pepper <pepper@reppep.com>, Johan Karlsson
<k@numeri.campus.luth.se>

New option -r: restrict listed entries to selected references.
Useful for testing new entries.

check for a working tr(1).

Test OSVERSION instead of pkg_info -P to enable cross-version builds

Requested by:   kris

- update to version 0.5

*** NOTE ***

The preferences file format has changed, as have the periodic.conf(5) names.
Normally the default settings should be adequate, except when you need to
configure a proxy. Use $PREFIX/etc/portaudit.conf.sample as an example.

- moved portaudit to sbin
- clean up, merging stuff into the portaudit script
- better return codes and errors to stderr
- -f can check stdin now
- dropped ports tree auditing
- merged the periodic(8) scripts into one
- run daily auditing as `nobody'

update to version 0.4.1

Use
  portaudit [packagename ...]
to check if package is listed as vulnerable

Add pkg-req file which was forgotten in the last commit.

Update to version 0.4, with a new `-f' option.

To check which of the current ports have known vulnerabilities, do

  portaudit -f /usr/ports/INDEX

This port requires pkg_install(-devel)>=20040623

make expiry date customizable via daily_status_portaudit_expiry

Fetch the database from http://www.FreeBSD.org/ports/ first.

Thanks to:      kuriyama

update to 0.3.1:

- use passive ftp by default, don't retry on failure [1]
- add a -C flag, portlint style
- don't keep databases that are tool old [2]

Requested by:   hubs [1]
Noticed by:     Nicolas Rachinsky <nicolas@rachinsky.de> [2]

Update to 0.3.
Since we are using the official VuXML database
the auditing should be pretty complete.

- mention web page
- add more mirrors, disabling .ru mirror (too much lag)
- allow combined options in portaudit shell script
- add sample configuration file
- use absolute paths for binaries, to ease use in crontab scripts [1]
- correct type in man page [2]

PR:             64005 [2]
Submitted by:   Tomasz Pilat <poncki@axelspringer.com.pl> [1]
                Nathan Dove <njdove@wafer.sandia.gov> [2]

grammar

Submitted by:   will, nectar

add a security contact

- bugfix: awk in -CURRENT accepts no regexes in RS, causing the database
  update to fail

- add an install & deinstall message

Submitted by:   nectar & Ion-Mihai Tetcu <itetcu@apropo.ro>

update to 0.2:
- new command line tool
- new man page
- reworked database update code, incorporating feedback from
  Max Khon <fjoe>, Radim Kolar <hsn@netmag.cz> (PR 63066) and
  Ion-Mihai Tetcu <itetcu@apropo.ro> (PR 62655)

Disable auditfile.txt until we decide on a database format,
two databases cause more confusion than it is worth.

portaudit uses ports/security/vuxml/vuln.xml in the meantime,
please commit your changes there and send feedback wich format
you prefer.

Currently we have to migrate gnats, mailman, monkey and some
apache versions.

add bind, pine, samba 3.x

remove duplicate mutt entry, sorry.

add mutt and mailman

XFree86-Server font file buffer overflows

add GNATS3

require gaim version 0.75_6, since the vulnerability has been re-introduced
add libtool symlink vulnerability

add fspd <= 2.8.1.3

PR:             62747
Submitted by:   Radim Kolar <hsn@netmag.cz>

Add mutt < 1.4.2 vulnerabilty.

add an URL where at least somek kind of advisory for monkeyd can be found...

Add entries for:
        - www/apache13-ssl<1.3.29.1.53
        - www/monkey < 0.8.2

add clamav<0.65_7

PR:             62586

Add some more examples (inn, apache) to test combined >= & < relations

portaudit provides a list of published security vulnerabilities
of FreeBSD ports and tools to check if installed ports are listed.

Since this is a prerelease version, it is mostly usable for
committers that want to contribute to the project, and can currently
not be relied upon as an extensive security auditing tool.