pkgsrc - [no description]

Age	Commit message (Collapse)	Author	Files	Lines
2003-08-22	Update audit-packages to 1.17.	agc	2	-6/+7
	Instead of using the number of bytes to determine whether or not the file has shrunk, use the number of lines. This will allow for spelling corrections, login name of committers being shorter than others, etc. This is a temporary measure until a better distribution mechanism is used. Suggested by David Brownlee.
2003-07-21	COMMENT should start with a capital letter.	martti	1	-2/+2

2003-07-17	s/netbsd.org/NetBSD.org/	grant	1	-2/+2

2003-07-09	Remove NO_MTREE=yes	aymeric	1	-2/+1
	It broke installation of audit-packages as the first package in the system. Okayed by Alistair.
2003-06-12	-f the symlinks. Requested by Jeremy C. Reed.	wiz	1	-3/+3

2003-06-12	Add man page supplied by Jeremy C. Reed in PR 21865, with some fixes by me.	wiz	3	-6/+188
	Bump to 1.16.
2003-05-21	Update to version 1.15.	seb	3	-17/+20
	The directory ${PKGVULNDIR)} holding the 'vulnerabilities' file which default value is determined at configure time can now be overridden at runtime from the environment. As a side effect the strings substituted at configure time in files/{audit-packages,download-vulnerability-list} are now of the form '@VAR@' and not '${VAR}'.
2003-04-25	Make the PKGVULNDIR variable more generic, so one can choose where to	jmmv	1	-3/+1
	store the vulnerabilities file. This variable was already recognized by audit-packages but not by bsd.pkg.mk which hardcoded DISTDIR.
2003-03-29	Place WRKSRC where it belongs, to make pkglint happy; ok'ed by wiz.	jmmv	1	-2/+2

2002-12-13	Change directory before ${FETCH_CMD} as mk/bsd.pkg.mk does. This avoids a	uebayasi	1	-3/+4
	fetch error if FETCH_CMD is e.g. ``curl -O''. No functional changes.
2002-09-24	Complete standardization of messages according to latest pkglint.	wiz	1	-3/+3

2002-07-04	Add chmod a+r after downloading the new vulnerability file.	wiz	2	-3/+4
	Addresses part of pkg/17368. Bump to 1.14.
2002-06-04	Make sure we get the grandchild output before the script exits.	kim	2	-4/+4

2002-04-26	Store vulnerabilities file in ${PKGVULNDIR} instead of ${DISTDIR}, in case	lukem	3	-15/+17
	the latter is not appropriate. The former defaults to the latter. Bump version to 1.12. Per discussion with Alistair Crooks.
2002-02-06	Make sure this package installs properly. Pointed out in mail by	agc	1	-2/+2
	Toru TAKAMIZU <ttaka@ma1.seikyou.ne.jp>
2001-12-29	Don't hardcode the PKG_DBDIR value at package installation time.	agc	2	-5/+5
	Bump version to 1.11
2001-12-17	Add RCS Ids.	wiz	2	-0/+2

2001-11-01	Move pkg/ files into package's toplevel directory	zuntum	4	-4/+4

2001-06-25	Apply patch from pkg/13295; seems not to hurt NetBSD, and should help	wiz	3	-5/+6
	Solaris. Bump to 1.10.
2001-06-06	Fix warning output if new file is smaller than old one.	wiz	2	-3/+3
	Noted by Kimmo Suominen. Bump to 1.9.
2001-04-27	Update audit-packages to 1.8:	agc	2	-4/+10
	Fix a problem which occurs if the vulnerability list does not already exist. This fixes PR 12763 from Brian de Alwis (bsd@cs.ubc.ca), albeit in a slightly different manner. (I also added a check for the existence of the new vulnerabilities file, in case it was not downloaded for some reason).
2001-04-24	Update to version 1.7 of audit-packages.	agc	3	-12/+14
	Incorporates the following changes from Anne Bennett (anne@alcor.concordia.ca) in PR 12538: (1) Running download-vulnerability-list as it stands from cron will spam the sysadmin with ftp output. Easy to fix: redirect output to /dev/null as per the example in pkg/MESSAGE. Problem: now we lose some error messages as well. Patch: make sure error complaints in that script are spouted to STDERR, not STDOUT. (3) Minor readability issue: set the source location for the vulnerability list in a variable at the top of the script. (4) PR 12457 reported that audit-packages complained spuriously when the vulnerability list had not been updated in over a week, and suggested touching it as a solution. This loses the information of when the file was really last updated. I'd prefer to always "mv" the new file into place, and use mtime instead of ctime in the file freshness test. I did this part of the PR differently, as I was worried about incomplete vulnerability lists being downloaded, and overwriting an existing vulnerability list: (2) ftp failure in download-vulnerability-list is not being detected properly by the current "${FETCH_CMD} .. \|\| (complain; exit 1)" test. Patch: test for a non-zero vulnerability file instead. Don't forget to remove any zero-length droppings, if any. We know that the vulnerability list size will increase, and not decrease, so test the size of the newly-downloaded file. If the new file is smaller than the existing file, then a bad transfer has taken place - log this fact, and remove the new list.
2001-04-02	Bump audit-packages to 1.6.	agc	2	-6/+8
	Always touch the downloaded vulnerability list, so that the audit-packages script doesn't moan erroneously. From Jim Bernard, in PR 12457.
2001-03-27	Clean up temporary vulnerabilities file, if it's the same as the existing	agc	2	-2/+4
	one - addresses 2nd part of PR 12457, from Jim Bernard.
2001-03-20	Update the download-vulnerability-list script to check for the	agc	2	-4/+9
	existence of ${DISTDIR}, and to create it if it doesn't exist. This is for machines built with binary packages, which lack pkgsrc, but this way preserves the location of the vulnerabilities file. Addresses PR 12367
2001-02-22	add a MESSAGE suggesting that the package audit be added to /etc/security.local	dmcmahill	1	-0/+21
	and the vulnerabilities file be downloaded via cron every day.
2001-02-17	Update to new COMMENT style: COMMENT var in Makefile instead of pkg/COMMENT.	wiz	2	-2/+2

2000-11-11	touch vulnerability list after update, to make audit-package happier	itojun	2	-3/+5
	when vulnerability list is not updated for more than a week. solves PR 11463 (there are other ways to solve this, i'm open to your opinion).
2000-10-26	audit-packages 1.2:	sommerfeld	2	-4/+12
	check if vulnerabilities file is more than a week old, and whine if it is whine to stderr rather than stdout
2000-10-02	Update to 1.1 - Give a slightly more friendly error message if vulnerabilities	abs	2	-2/+7
	file not present.
2000-09-19	Initial import of a package to scan a vulnerability list, looking for	agc	6	-0/+66
	installed packages which are insecure and open to exploitation. The original idea came from Roland Dowdeswell and Bill Sommerfeld, quite independently, the unorthodox implementation by me. This package contains two scripts: (1) download-vulnerability-list, which downloads a list of vulnerable packages from the NetBSD ftp server, and (2) audit-packages, which scans all the packages installed on the local machine, looking for packages which are vulnerable.