From nobody Sun Mar 26 16:14:13 2023 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Pl1H916Spz421df for ; Sun, 26 Mar 2023 16:14:29 +0000 (UTC) (envelope-from kh@panix.com) Received: from mailbackend.panix.com (mailbackend.panix.com [166.84.1.89]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4Pl1H738r2z3Msb for ; Sun, 26 Mar 2023 16:14:27 +0000 (UTC) (envelope-from kh@panix.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=panix.com header.s=panix header.b=MahfCplw; spf=pass (mx1.freebsd.org: domain of kh@panix.com designates 166.84.1.89 as permitted sender) smtp.mailfrom=kh@panix.com; dmarc=pass (policy=none) header.from=panix.com Received: from rain.cave (unknown [73.142.21.0]) by mailbackend.panix.com (Postfix) with ESMTPSA id 4Pl1H02wpLz484v for ; Sun, 26 Mar 2023 12:14:20 -0400 (EDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=panix.com; s=panix; t=1679847260; bh=sZRfHZVWU1rUVuTq8WXFVRjKCkLrKx8+vS3PFnELx4A=; h=Date:From:To:Subject:References:In-Reply-To; b=MahfCplw9wlG64qypNkzYaJ+Ah/C8JXw8+h9dnkUunlrcYq0QLmbgJ/WT7Rw3N9wT Wttlj0Ltlsb0N4yUB5DMtyyOu6dM3PNPpv058x+U+vIR7ifRjGdYAGyQUUp7/hLWqU ZVuWj0fbwynywFzCeCrt+CCp9Hjn3IBYCsv2zhgc= Date: Sun, 26 Mar 2023 12:14:13 -0400 From: Kurt Hackenberg To: questions@freebsd.org Subject: Re: Security Run Output Message-ID: References: <20230326081128.00005b98@seibercom.net> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/2.2.9 (2022-11-12) X-Spamd-Result: default: False [-4.08 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.98)[-0.977]; DMARC_POLICY_ALLOW(-0.50)[panix.com,none]; R_DKIM_ALLOW(-0.20)[panix.com:s=panix]; R_SPF_ALLOW(-0.20)[+ip4:166.84.1.64/26]; MIME_GOOD(-0.10)[text/plain]; RWL_MAILSPIKE_GOOD(-0.10)[166.84.1.89:from]; RCVD_VIA_SMTP_AUTH(0.00)[]; MLMMJ_DEST(0.00)[questions@freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; ASN(0.00)[asn:2033, ipnet:166.84.0.0/16, country:US]; MIME_TRACE(0.00)[0:+]; DKIM_TRACE(0.00)[panix.com:+]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; ARC_NA(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; FROM_HAS_DN(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCVD_TLS_ALL(0.00)[] X-Rspamd-Queue-Id: 4Pl1H738r2z3Msb X-Spamd-Bar: ---- X-ThisMailContainsUnwantedMimeParts: N On Sun, Mar 26, 2023 at 03:32:57PM +0300, Odhiambo Washington wrote: >On Sun, Mar 26, 2023 at 3:18 PM Gerard E. Seibert >wrote: > >> For quite some time now, I have been receiving a warning message of >> 1025 packages with mismatched checksums in the daily "Security Run >> Output" email. They are all prefixed with "py39-" ... > > >pkg check -r or pkg check --recompute recalculates and sets the checksums > of installed packages. This command should only be used when the admin- > istrator has made modifications that invalidate a package checksum. > Spontaneous checksum problems can indicate data or security problems. > > Mismatched checksums are a bad sign -- "can indicate data or security problems." It would be good to find out why the checksums don't match the package contents. Maybe the checksums are correct, but the package contents are wrong. In that case, resetting the checksums wouldn't fix anything; it would only hide the problem.