Port details |
- portaudit Checks installed ports against a list of security vulnerabilities
- 0.5.11 security
=141 0.5.11Version of this port present on the latest quarterly branch.
- Maintainer: secteam@FreeBSD.org
- Port Added: 2004-01-27 19:26:48
- Last Update: 2007-02-05 01:08:46
- SVN Revision: UNKNOWN
- People watching this port, also watch:: gettext, libiconv, expat, gmake
- License: not specified in port
- WWW:
- http://people.freebsd.org/~eik/portaudit/
- Description:
- portaudit provides a system to check if installed ports are listed in a
database of published security vulnerabilities.
After installation it will update this security database automatically and
include its reports in the output of the daily security run.
If you have found a vulnerability not listed in the database, please contact
the FreeBSD Security Officer <security-officer@FreeBSD.org>. Refer to
http://www.freebsd.org/security/#sec
for more information.
WWW: http://people.freebsd.org/~eik/portaudit/
Oliver Eikemeier <eik@FreeBSD.org>
-
cgit ¦ GitHub ¦ GitHub ¦ GitLab ¦
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - There is no configure plist information for this port.
- Dependency lines:
-
- portaudit>0:security/portaudit
- No installation instructions:
- This port has been deleted.
- PKGNAME: portaudit
- Flavors: there is no flavor information for this port.
- distinfo:
- There is no distinfo for this port.
No package information for this port in our database- Sometimes this happens. Not all ports have packages. Perhaps there is a build error. Check the fallout link:
- This port has no dependencies.
- There are no ports dependent upon this port
Configuration Options:
- No options to configure
- Options name:
- N/A
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|
Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
0.5.11 05 Feb 2007 01:08:46 |
pav |
Populate a new ports-mgmt category. List of moved ports:
devel/portcheckout -> ports-mgmt/portcheckout
devel/portlint -> ports-mgmt/portlint
devel/portmk -> ports-mgmt/portmk
devel/porttools -> ports-mgmt/porttools
misc/instant-tinderbox -> ports-mgmt/instant-tinderbox
misc/porteasy -> ports-mgmt/porteasy
misc/portell -> ports-mgmt/portell
misc/portless -> ports-mgmt/portless
misc/tinderbox -> ports-mgmt/tinderbox
security/jailaudit -> ports-mgmt/jailaudit
security/portaudit -> ports-mgmt/portaudit
security/portaudit-db -> ports-mgmt/portaudit-db
security/vulnerability-test-port -> ports-mgmt/vulnerability-test-port (Only the first 15 lines of the commit message are shown above ) |
0.5.11 16 Apr 2006 13:32:28 |
simon |
Avoid unnecessary invocations of pkg_info by checking whether the
package is installed or not using a precalculated regex.
This speeds up "portaudit -a" with around a factor of 10.
The change is slightly modified from the one from the PR by using
pkg_info -aE instead of ls /var/db/pkg for determining installed
packages.
Submitted by: Kuang-che Wu <kcwu@csie.org>
PR: ports/92942 |
0.5.10 22 Jan 2006 02:50:55 |
edwin |
Replace ugly "@unexec rmdir %D... 2>/dev/null || true" with @dirrmtry
Approved by: krion@
PR: ports/88711 (related) |
0.5.10 30 Jul 2005 19:13:10 |
simon |
Change MAINTAINER address for ports maintained by the Security Team to
secteam@ instead of security@ to make it more clear that the ports are
not maintained by the freebsd-security@ mailing list. Both addresses
go to the same people. |
0.5.10 03 Jul 2005 20:31:01 |
simon |
portaudit 0.5.10:
- Unbreak portaudit -vF.
- Sync usage with reality.
- Document the q, v, and V options.
- Markup fixes for the portaudit(1) manual page.
- Make quiet mode output even less "redundant" text [1].
- Set maintainership to security@. [2]
Suggested by: Phil Kernick philk at rotfl dot com dot au [1]
Suggested by: nectar, remko [2] |
0.5.9 14 Jun 2005 22:04:55 |
simon |
Grab maintainer-ship of portaudit. While I do not currently have any
plans for improvements (though I have ideas) I feel that portaudit is
too important to not have an active maintainer.
Approved by: portmgr (linimon) |
0.5.9 09 Sep 2004 13:15:25 |
brueffer |
Typo-fix in a comment
Approved by: portmgr (krion) |
0.5.9 03 Sep 2004 20:30:54 |
eik |
- update to version 0.5.9
(first attempts to check the base system for vulnerabilities) |
0.5.4 23 Aug 2004 17:39:12 |
eik |
fix "too many open files" error when using the -r flag
Noted by: nectar |
0.5.3 16 Aug 2004 02:24:06 |
eik |
Don't check the base system when PACKAGE_BUILDING |
0.5.3 15 Aug 2004 12:26:16 |
eik |
Remove -a from the default fetch(1) flags, so that the daily security
report is not delayed when the distribution site is down.
Submitted by: kuriyama |
0.5.2 13 Aug 2004 17:07:05 |
eik |
fix man page nits,
modify the vulnerability report depending on -q/-v (experimental)
PR: 69935, 68942
Submitted by: Chris Pepper <pepper@reppep.com>, Johan Karlsson
<k@numeri.campus.luth.se> |
0.5.1 24 Jul 2004 13:34:52 |
eik |
New option -r: restrict listed entries to selected references.
Useful for testing new entries. |
0.5 13 Jul 2004 19:32:09 |
eik |
check for a working tr(1). |
0.5 02 Jul 2004 00:31:18 |
eik |
Test OSVERSION instead of pkg_info -P to enable cross-version builds
Requested by: kris |
0.5 01 Jul 2004 10:59:48 |
eik |
- update to version 0.5
*** NOTE ***
The preferences file format has changed, as have the periodic.conf(5) names.
Normally the default settings should be adequate, except when you need to
configure a proxy. Use $PREFIX/etc/portaudit.conf.sample as an example.
- moved portaudit to sbin
- clean up, merging stuff into the portaudit script
- better return codes and errors to stderr
- -f can check stdin now
- dropped ports tree auditing
- merged the periodic(8) scripts into one
- run daily auditing as `nobody' |
0.4.1 25 Jun 2004 01:21:20 |
eik |
update to version 0.4.1
Use
portaudit [packagename ...]
to check if package is listed as vulnerable |
0.4 23 Jun 2004 16:02:23 |
eik |
Add pkg-req file which was forgotten in the last commit. |
0.4 23 Jun 2004 16:01:38 |
eik |
Update to version 0.4, with a new `-f' option.
To check which of the current ports have known vulnerabilities, do
portaudit -f /usr/ports/INDEX
This port requires pkg_install(-devel)>=20040623 |
0.3.3 21 Jun 2004 16:04:27 |
eik |
make expiry date customizable via daily_status_portaudit_expiry |
0.3.2 18 Jun 2004 08:07:29 |
eik |
Fetch the database from http://www.FreeBSD.org/ports/ first.
Thanks to: kuriyama |
0.3.1 31 Mar 2004 22:52:02 |
eik |
update to 0.3.1:
- use passive ftp by default, don't retry on failure [1]
- add a -C flag, portlint style
- don't keep databases that are tool old [2]
Requested by: hubs [1]
Noticed by: Nicolas Rachinsky <nicolas@rachinsky.de> [2] |
0.3 11 Mar 2004 11:11:59 |
eik |
Update to 0.3.
Since we are using the official VuXML database
the auditing should be pretty complete.
- mention web page
- add more mirrors, disabling .ru mirror (too much lag)
- allow combined options in portaudit shell script
- add sample configuration file
- use absolute paths for binaries, to ease use in crontab scripts [1]
- correct type in man page [2]
PR: 64005 [2]
Submitted by: Tomasz Pilat <poncki@axelspringer.com.pl> [1]
Nathan Dove <njdove@wafer.sandia.gov> [2] |
0.2.1 25 Feb 2004 14:12:03 |
eik |
grammar
Submitted by: will, nectar |
0.2.1 25 Feb 2004 12:47:13 |
eik |
add a security contact |
0.2.1 25 Feb 2004 09:46:26 |
eik |
- bugfix: awk in -CURRENT accepts no regexes in RS, causing the database
update to fail
- add an install & deinstall message
Submitted by: nectar & Ion-Mihai Tetcu <itetcu@apropo.ro> |
0.2 21 Feb 2004 21:19:41 |
eik |
update to 0.2:
- new command line tool
- new man page
- reworked database update code, incorporating feedback from
Max Khon <fjoe>, Radim Kolar <hsn@netmag.cz> (PR 63066) and
Ion-Mihai Tetcu <itetcu@apropo.ro> (PR 62655) |
0.1 19 Feb 2004 02:19:33 |
eik |
Disable auditfile.txt until we decide on a database format,
two databases cause more confusion than it is worth.
portaudit uses ports/security/vuxml/vuln.xml in the meantime,
please commit your changes there and send feedback wich format
you prefer.
Currently we have to migrate gnats, mailman, monkey and some
apache versions. |
0.1 17 Feb 2004 12:28:13 |
eik |
add bind, pine, samba 3.x |
0.1 16 Feb 2004 20:19:53 |
eik |
remove duplicate mutt entry, sorry. |
0.1 16 Feb 2004 19:14:24 |
eik |
add mutt and mailman |
0.1 16 Feb 2004 18:41:05 |
eik |
XFree86-Server font file buffer overflows |
0.1 16 Feb 2004 15:02:04 |
eik |
add GNATS3 |
0.1 13 Feb 2004 14:20:15 |
eik |
require gaim version 0.75_6, since the vulnerability has been re-introduced
add libtool symlink vulnerability |
0.1 13 Feb 2004 01:22:49 |
eik |
add fspd <= 2.8.1.3
PR: 62747
Submitted by: Radim Kolar <hsn@netmag.cz> |
0.1 11 Feb 2004 18:28:18 |
clement |
Add mutt < 1.4.2 vulnerabilty. |
0.1 11 Feb 2004 11:54:29 |
eik |
add an URL where at least somek kind of advisory for monkeyd can be found... |
0.1 11 Feb 2004 00:07:29 |
clement |
Add entries for:
- www/apache13-ssl<1.3.29.1.53
- www/monkey < 0.8.2 |
0.1 10 Feb 2004 14:11:14 |
eik |
add clamav<0.65_7
PR: 62586 |
0.1 28 Jan 2004 16:19:08 |
eik |
Add some more examples (inn, apache) to test combined >= & < relations |
0.1 27 Jan 2004 19:24:53 |
eik |
portaudit provides a list of published security vulnerabilities
of FreeBSD ports and tools to check if installed ports are listed.
Since this is a prerelease version, it is mostly usable for
committers that want to contribute to the project, and can currently
not be relied upon as an extensive security auditing tool. |