marking vulnerable ports forbidden?
René Ladan
rene at freebsd.org
Tue Jul 15 14:43:01 UTC 2014
2014-07-15 14:48 GMT+02:00 Baptiste Daroussin <bapt at freebsd.org>:
> On Tue, Jul 15, 2014 at 02:45:19PM +0200, René Ladan wrote:
> > Hi,
> >
> > according to Freshports [1] there are currently 24 vulnerable ports not
> > marked as forbidden.
> > How about checking this list on a regular basis and marking such ports
> and
> > forbidden and optionally as deprecated? This would inform users not using
> > vuxml earlier about vulnerabilities.
> >
> > [1] http://www.freshports.org/ports-vulnerable.php
>
> Please mark them as forbidden
>
> In progress... I marked all relevant ports as forbidden locally. For some
ports the vulnerability information is wrong, e.g. x11/nvidia-driver-96 is
a false positive.
I'll have to filter ports with multiple vulnerabilities.
Regards,
René
More information about the freebsd-ports
mailing list