Recent security announcement and csup/cvsup?
Garrett Wollman
wollman at bimajority.org
Wed Nov 21 04:00:08 UTC 2012
<<On Tue, 20 Nov 2012 15:45:20 +0000, Matthew Seaman <matthew at freebsd.org> said:
> pkgng will have a crypto-signing mechanism for packages with
> per-repository public keys and so forth. It's not there yet -- stuff is
> awaiting review by security team people, who are (even moreso, given
> current events) generally insanely busy.
Huh? What's not there yet? I've been signing my local repository
since the very beginning. (I'm an unusual case and don't really care
about "official" binary packages -- I want/need to control the options
things are built with, and pkgng won't be able to handle that case
usefully until it has a SAT solver for dependency resolution.)
pkgng is the thing that is finally allowing my to manage the FreeBSD
machines in our infrastructure as easily as the Debian machines;
thankfully we only need about a hundred packages (and no X) rather
than the full set.
-GAWollman
More information about the freebsd-security
mailing list